last executing test programs: 1m46.581164227s ago: executing program 4 (id=1997): r0 = request_key(&(0x7f0000000f40)='user\x00', &(0x7f0000000f80)={'syz', 0x1}, &(0x7f0000000fc0)='\x00', 0xffffffffffffffff) request_key(&(0x7f0000000e80)='dns_resolver\x00', &(0x7f0000000ec0)={'syz', 0x1}, &(0x7f0000000f00)='IPVS\x00', r0) 1m45.707235825s ago: executing program 4 (id=2002): openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0) mount$tmpfs(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000280), 0x8400, &(0x7f00000005c0)={[{@quota}, {@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x31]}}, {@grpquota_block_hardlimit={'grpquota_block_hardlimit', 0x3d, [0x39]}}]}) 1m44.742151515s ago: executing program 4 (id=2007): r0 = syz_open_dev$vbi(&(0x7f00000000c0), 0x1, 0x2) ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f0000000280)={0xd, @capture={0x1000, 0x0, {0x7fff}, 0x800, 0x9}}) 1m43.751633571s ago: executing program 4 (id=2012): syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x200000, &(0x7f0000000280)=ANY=[], 0xbe, 0x1e6, &(0x7f0000000940)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 1m42.506404113s ago: executing program 4 (id=2017): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x804, &(0x7f0000001180)=ANY=[], 0xfd, 0x187, &(0x7f00000006c0)="$eJzskrGO00AQhr+1neRAxwkkqmvuipOAAuL4ANFx5dHT0WAlJkQ4QOJIkCiFEUIpKBAlT5DXQOIFoEA0dKlTRNTIaHfHlhMe4fYr9s/8Ozu7M/HzbJS1gL+beZczDD4H/FCKADhS1lt7Vj+L/hT9ZIXvkvdI/Peih9l01pScY65Z40Wcpsn4GPhjvMrKHr7zWJtSv+TQU6AoigI8eqDT2S9zNvOuD4yqHDgM4LppoqhydCM6uAG0J8PX7Ww6uz0Yxv2kn7yM/NP74d0wvBe1nw3SJLSrql0hraD1FtDaEyPeN/sN4INYl9lG1Z4m++oSTyhrN8sZHih28WpnS1V8rd7Vovy/4PEZ6Ge9yVXNPTFVAkxL5yh8CTpB7X32rj2zcaf7Ku0tUKjy2JKgqtFZ0aiCqB6cPsi5YkstpOSJ6LnoUnQlerTzyQS5Xj9KdDOHJm/jyWTc0UOyvxp28/e4MGgvuprXB6Zv/eJtN/fN+2+2DofD4XA4HA6Hw3HR+BcAAP//KMR5Ig==") open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x0) 1m41.561192999s ago: executing program 4 (id=2021): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f00000002c0)={0x18, 0x2, {0x0, @dev, 'ip6gre0\x00'}}, 0x1e) 1m38.017994056s ago: executing program 32 (id=2021): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f00000002c0)={0x18, 0x2, {0x0, @dev, 'ip6gre0\x00'}}, 0x1e) 5.230177908s ago: executing program 1 (id=2529): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="700000001000390400"/20, @ANYRES32=0x0, @ANYBLOB="8c4504000000000014001280090001007665746800000000", @ANYRES32, @ANYBLOB="34001a8028"], 0x70}, 0x1, 0x0, 0x0, 0x4015}, 0x0) 4.805429309s ago: executing program 0 (id=2532): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000140)=@newlink={0x90, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10}, [@IFLA_LINKINFO={0x68, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x58, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR={0x8, 0x4, @remote}, @IFLA_MACVLAN_MACADDR_DATA={0x40, 0x5, 0x0, 0x1, [{0xa, 0x4, @random="2ae0d5b3974e"}, {0xa, 0x4, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x16}}, {0xa, 0x4, @broadcast}, {0xa, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, {0xa, 0x4, @multicast}]}]}}}, @IFLA_LINK={0x8}]}, 0x90}}, 0x10) 4.489297013s ago: executing program 1 (id=2534): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=@newtaction={0x4c, 0x30, 0x1, 0x0, 0x0, {}, [{0x38, 0x1, [@m_tunnel_key={0x34, 0x1, 0x0, 0x0, {{0xf}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4}, 0x2000c010) 4.428021209s ago: executing program 3 (id=2535): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x8, 0x88}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000085000000a000000095"], &(0x7f0000000240)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 4.259330304s ago: executing program 5 (id=2536): r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000001000008500000095000000b70000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x2, 0xffd, &(0x7f0000001e40)=""/4093}, 0x94) 3.937330494s ago: executing program 2 (id=2537): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) stat(0x0, 0x0) 3.909494821s ago: executing program 1 (id=2538): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x88a, &(0x7f00000001c0)={[{@usrquota}, {@usrjquota, 0x22}, {@data_ordered}, {@noload}, {@noinit_itable}, {@grpjquota, 0x22}, {@init_itable}, {@jqfmt_vfsold}, {@noblock_validity}]}, 0xfe, 0x44e, &(0x7f0000000900)="$eJzs3M1vG0UbAPDHdpw0bfMmbykfDS0ECiLiI2nSD3rgUgQSB5CQ4FDEKSRpFeo2qAkSrSIIHMIRVeKOOCLxF3ChXBBwQuIKd4QUoVwonIzW3k3dxE7ixIlL/ftJm8x4xpp5dnfs8azXAXSsoeRPLuJgRPwaEf3V7J0Vhqr/bq0sTP69sjCZi3L5jT9zlXp/rSxMZlWz5x2oZsrlDdpdejtiolSavprmR+cvvzc6d+36czOXJy5OX5y+Mn727KmTx7rPjJ9uSZx9SV8HP5w9euSVt268Nnn+xjs/fp3092BaXhtHqwxV925dT7a6sTbrq0nnutrYEZpSiIjkcBUr478/CtG7WtYfL3/S1s4Bu6pczpd7GhcvloF7WDJRBzpR9kaffP7Ntj2aetwVls/F6jrGrXSrlnRFPq1TTD8j7YahiDi/+M8XyRa7tA4BAFDr5rmIeLbe/C8fD9TU+196bWggIv4fEYci4r6IOBwR90dU6j4YEQ812f7aKyTr5z/l/m0FtkXJ/O+F9NrWnfO/bPYXA4U011eJv5i7MFOaPpHuk+Eo9iT5sQ3a+O6lXz5rVFY7/0u2pP1sLpj244+uNQt0UxPzEzuJudbyxxGDXfXiz63OeZP58ZGIGNxmGzNPf3W0Udnm8W+gBZPy8pcRT1WP/2KsiT+Ta3h9cuz5M+OnR/dFafrEaHZWrPfTz0uvN2p/R/G3wPLNcuyve/6vxj+Q2xcxd+36pcr12rnm21j67dOGn2m2e/53596spLvTxz6YmJ+/OhbRnXt1/ePjt5+b5bP6yfk/fLz++D8Ut/fEwxGRnMTHIuKRiHg07ftjEfF4RBzfIP4fXnzi3ebj32BVvoWS+Kc2O/5Re/ybTxQuff9N8/FnkuN/qpIaTh/ZyuvfVju4k30HAAAA/xX5ynfgc/mR1XQ+PzJS/Q7/4difL83OzT9zYfb9K1PV78oPRDGfrXT116yHjqVrw1l+fE3+ZLpu/Hmht5IfmZwtTbU7eOhwBxqM/8TvhXb3Dth17teCzmX8Q+cy/qFzGf/QuYx/6Fz1xv9HbegHsPc2ef/v3at+AHvP/B86l/EPncv4h47U8N74/I5u+ZdoU+Lb7p39VsPWE5G/S0K+ZxLFqFvUteUfs9hmoqduUbtfmQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFrj3wAAAP//j57jFA==") syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000000)) 3.869795105s ago: executing program 0 (id=2539): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x6000, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB="480000001200ffffff7f00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000200012800e0001006970366772657461700000000c00028008000100", @ANYRES32, @ANYBLOB='\b\x00\n\x00', @ANYRES32], 0x48}}, 0x0) 3.682233474s ago: executing program 3 (id=2540): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000035c0)="5c00000013006bcd9e3fe3dc4e48aa31086b8703340000001f00000000000000040014000d000a00140000009ee517d34460bc08eab556a705251e6182949a3651f60a84c9f5d1938837e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f000801}, 0x240000c0) 3.439922586s ago: executing program 5 (id=2541): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) bind$rose(r0, &(0x7f0000002100)=@full={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, 0x4, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @null]}, 0x40) 3.279584286s ago: executing program 0 (id=2542): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0) ioctl$FS_IOC_GETFLAGS(r0, 0x80086601, 0x0) 3.261295744s ago: executing program 2 (id=2543): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x8d4, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) 2.655742297s ago: executing program 3 (id=2544): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000000c0)={0x14, 0x25, 0x1, 0x70bd27, 0x25dfdbfc, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x40000) 2.430344318s ago: executing program 2 (id=2545): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000007c0)=@updpolicy={0xfc, 0x19, 0x1, 0xfffffffd, 0x0, {{@in=@remote, @in=@local, 0x0, 0x0, 0x4e22, 0x0, 0xa, 0x0, 0x0, 0x2e}, {0x0, 0x1, 0x1fffffffffffe, 0x0, 0x2, 0x0, 0x0, 0xb}, {}, 0x0, 0x6e6bb8, 0x0, 0x0, 0x2}, [@tmpl={0x44, 0x8, [{{@in=@empty, 0x0, 0x32}, 0x0, @in6=@ipv4={'\x00', '\xff\xff', @private=0x2a010104}, 0x0, 0x2}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x8081}, 0x800) 2.377200397s ago: executing program 5 (id=2546): r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_ASSOCINFO(r0, 0x84, 0x7a, 0xffffffffffffffff, &(0x7f0000000100)=0x48) 2.237033334s ago: executing program 0 (id=2547): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000180)=0x1, 0x4) 2.185302695s ago: executing program 1 (id=2548): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x60, 0x2, 0x6, 0x3, 0x0, 0x0, {0x5}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x0, 0x0, 0x44}, @IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x6}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x60}}, 0x80) 1.82956261s ago: executing program 3 (id=2549): r0 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r0, 0x8916, &(0x7f0000000000)={'wlan1\x00', @random="0200ff7fdfff"}) 1.669472871s ago: executing program 5 (id=2550): r0 = socket(0x10, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x2, 0x4, 0xa, @loopback, @mcast2={0xff, 0x3}, 0x0, 0x0, 0x62fc, 0xffffffff}}) 1.660384361s ago: executing program 2 (id=2551): r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x76, 0x121301) ioctl$USBDEVFS_RELEASEINTERFACE(r0, 0x80045510, &(0x7f0000000040)=0x3) 1.371467236s ago: executing program 0 (id=2552): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x2, 0x4, 0x4, 0x8, 0x10}, 0x50) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20) 1.208001264s ago: executing program 1 (id=2553): mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000bc0000/0x400000)=nil, 0x400000, 0x9) 1.017794338s ago: executing program 3 (id=2554): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$sock_ifreq(r0, 0x8931, &(0x7f0000000000)={'dummy0\x00', @ifru_hwaddr}) 769.470994ms ago: executing program 5 (id=2555): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)={0x14, 0x15, 0x1, 0x0, 0x0, {0xb}}, 0x14}, 0x1, 0x0, 0x0, 0x1}, 0x0) 739.718279ms ago: executing program 2 (id=2556): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000140)=0x1196, 0x4) 640.699181ms ago: executing program 0 (id=2557): syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000a40)='./file2\x00', 0x810084, &(0x7f00000012c0)=ANY=[@ANYRES64=0x0, @ANYRES64, @ANYRES16, @ANYRESDEC, @ANYRES16=0x0, @ANYRES16=0x0, @ANYRESOCT], 0x5, 0x686, &(0x7f0000000ac0)="$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") truncate(&(0x7f0000000040)='./file2\x00', 0x3) 297.313112ms ago: executing program 3 (id=2558): r0 = socket$kcm(0x29, 0x2, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x119, 0x487, 0x0, &(0x7f0000000480)) 211.617592ms ago: executing program 1 (id=2559): r0 = socket$kcm(0x29, 0x2, 0x0) setsockopt$kcm_KCM_RECV_DISABLE(r0, 0x119, 0x41, &(0x7f0000000000)=0x6, 0x4) 46.025418ms ago: executing program 5 (id=2560): syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000400)='./file0\x00', 0x8, &(0x7f00000000c0)=ANY=[@ANYRES8=0x0, @ANYRESDEC=0x0], 0x1, 0x1c8, &(0x7f0000000600)="$eJzslT/P0lAUxp97iy0YP4GLgyTiYGmLGhcSWJwcTPxDHEwkUghaxEAHITHGT+Du5uDHMNHVD2HQxOiCizrX3D+0VwIovPB2eM8v4fC0997Tc89NnguCIE4sXz7/niW/6t+KAM6gDEe//25lc7gx/1Pxx/MPN663Xt1/+9GZuaVVOZPk/79fAPC+aSFO1/69uqz/b4On+g44LmrdAoOr9QNw3NU6BMM9rR8Zeijmu263H4Xuw2HUEcITwRchEKG2XN/8JUPHqI8Z4+PJ9HE7isLRAcW/+jdvctSN+szzcqGq9Yz++eDwta6B4ZbW1+AseqNaYuz/bCHLb23cv40jbvsrgOxN95CdtcWndloOsGM5+wMLC1IsTjT3evYuUNhbwsQB8t7OGvGuoc4vLfWFet4uT2PNkL1lHt351J+SNwwXDH9SVvJaXjXVePC0Op5ML/UH7V7YC58EQe2qd9nzrgRVaUQqbvC/kvSn01n+lXeSwGY2nrXjeOSrmD4HKq5yXC79j6NyHqfEs3BTeynvT0Mz/ePyX6iKtbZ4giCIHDkHJj1Z+vJC6NskHUiS4GbOdRIEQRAEQRAEQRAEsTt/AgAA//80fl+r") open(&(0x7f0000000200)='./file2\x00', 0x100, 0x123) 0s ago: executing program 2 (id=2561): r0 = socket$inet6(0xa, 0x2, 0x0) getsockopt$IP_VS_SO_GET_INFO(r0, 0x0, 0x29, 0x0, &(0x7f0000000d00)=0x46) kernel console output (not intermixed with test programs): type=1326 audit(1754773855.004:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7400 comm="syz.3.675" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 347.187103][ T30] audit: type=1326 audit(1754773855.064:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7400 comm="syz.3.675" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 347.209582][ T30] audit: type=1326 audit(1754773855.064:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7400 comm="syz.3.675" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 347.231938][ C0] vkms_vblank_simulate: vblank timer overrun [ 348.468919][ T7422] netlink: 8 bytes leftover after parsing attributes in process `syz.1.684'. [ 351.113346][ T7468] netlink: 4 bytes leftover after parsing attributes in process `syz.2.704'. [ 351.725996][ T7467] loop1: detected capacity change from 0 to 4096 [ 353.421302][ T7498] netlink: 'syz.3.719': attribute type 10 has an invalid length. [ 353.430169][ T7498] veth1_macvtap: left promiscuous mode [ 353.504791][ T7498] bridge0: port 3(macsec0) entered blocking state [ 353.512869][ T7498] bridge0: port 3(macsec0) entered disabled state [ 353.520303][ T7498] macsec0: entered allmulticast mode [ 353.529812][ T7498] macsec0: entered promiscuous mode [ 354.806363][ T7516] loop1: detected capacity change from 0 to 256 [ 355.841645][ T7531] netlink: 'syz.0.736': attribute type 10 has an invalid length. [ 355.850546][ T7531] veth1_macvtap: left promiscuous mode [ 355.966490][ T7531] bridge0: port 3(macsec0) entered blocking state [ 355.973832][ T7531] bridge0: port 3(macsec0) entered disabled state [ 355.974477][ T7531] macsec0: entered allmulticast mode [ 355.978734][ T7531] macsec0: entered promiscuous mode [ 356.698357][ T24] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 356.832032][ T7546] netlink: 'syz.0.742': attribute type 10 has an invalid length. [ 356.909180][ T7546] team0: Port device syz_tun added [ 356.939114][ T24] usb 2-1: Using ep0 maxpacket: 32 [ 356.989540][ T24] usb 2-1: config index 0 descriptor too short (expected 35577, got 27) [ 356.999083][ T24] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 357.008267][ T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 357.017506][ T24] usb 2-1: config 1 has no interface number 0 [ 357.024232][ T24] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 357.035698][ T24] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 357.046152][ T24] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 357.059597][ T24] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 357.069166][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.232452][ T24] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found [ 357.440342][ T24] snd_usb_pod 2-1:1.1: cannot start listening: -90 [ 357.447291][ T24] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected [ 357.457544][ T24] snd_usb_pod 2-1:1.1: probe with driver snd_usb_pod failed with error -90 [ 357.685503][ T24] usb 2-1: USB disconnect, device number 4 [ 357.861451][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 357.868714][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 358.531276][ T7565] netlink: 'syz.4.752': attribute type 10 has an invalid length. [ 358.540127][ T7565] veth1_macvtap: left promiscuous mode [ 358.604861][ T7565] bridge0: port 3(macsec0) entered blocking state [ 358.612079][ T7565] bridge0: port 3(macsec0) entered disabled state [ 358.624264][ T7565] macsec0: entered allmulticast mode [ 358.634359][ T7565] macsec0: entered promiscuous mode [ 358.998831][ T7570] loop2: detected capacity change from 0 to 512 [ 359.096282][ T7570] EXT4-fs (loop2): orphan cleanup on readonly fs [ 359.104265][ T7570] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 359.163170][ T7570] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 359.251600][ T7570] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #13: comm syz.2.753: attempt to clear invalid blocks 2 len 1 [ 359.323657][ T7570] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.753: invalid indirect mapped block 1819239214 (level 0) [ 359.423433][ T7570] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.753: invalid indirect mapped block 1819239214 (level 1) [ 359.527644][ T7570] EXT4-fs (loop2): 1 truncate cleaned up [ 359.549744][ T7570] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 359.805571][ T7581] loop3: detected capacity change from 0 to 1024 [ 359.820388][ T7570] EXT4-fs error (device loop2): ext4_lookup:1784: inode #2: comm syz.2.753: 'file1' linked to parent dir [ 360.105826][ T7581] hfsplus: extend alloc file! (16384,256,150995124) [ 360.392189][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.438795][ T30] audit: type=1400 audit(1754773868.384:43): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A273A02 pid=7586 comm="syz.1.763" [ 360.852791][ T7591] loop4: detected capacity change from 0 to 1024 [ 362.609487][ T7613] openvswitch: netlink: Geneve opt len 5 is not a multiple of 4. [ 364.399424][ T7645] syz.0.791 uses obsolete (PF_INET,SOCK_PACKET) [ 365.257015][ T7656] usb usb8: usbfs: process 7656 (syz.2.796) did not claim interface 0 before use [ 366.279912][ T7674] netlink: 8 bytes leftover after parsing attributes in process `syz.1.805'. [ 367.003174][ T7686] loop2: detected capacity change from 0 to 128 [ 367.048927][ T7685] netlink: 288 bytes leftover after parsing attributes in process `syz.1.810'. [ 367.156934][ T7686] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 367.289014][ T7686] ext4 filesystem being mounted at /167/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 367.370932][ T7692] loop4: detected capacity change from 0 to 764 [ 367.972311][ T5810] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 371.079328][ T1725] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 371.269250][ T1725] usb 3-1: Using ep0 maxpacket: 32 [ 371.283394][ T1725] usb 3-1: config 0 has an invalid interface number: 12 but max is 0 [ 371.292043][ T1725] usb 3-1: config 0 has no interface number 0 [ 371.298744][ T1725] usb 3-1: config 0 interface 12 has no altsetting 0 [ 371.323803][ T1725] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40 [ 371.333402][ T1725] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 371.341871][ T1725] usb 3-1: Product: syz [ 371.346355][ T1725] usb 3-1: Manufacturer: syz [ 371.351408][ T1725] usb 3-1: SerialNumber: syz [ 371.391758][ T1725] usb 3-1: config 0 descriptor?? [ 371.906278][ T1725] f81534 3-1:0.12: f81534_get_register: reg: 1003 failed: -71 [ 371.914610][ T1725] f81534 3-1:0.12: f81534_find_config_idx: read failed: -71 [ 371.922644][ T1725] f81534 3-1:0.12: f81534_calc_num_ports: find idx failed: -71 [ 371.934876][ T1725] f81534 3-1:0.12: probe with driver f81534 failed with error -71 [ 372.087137][ T1725] usb 3-1: USB disconnect, device number 4 [ 374.035716][ T7781] netlink: 'syz.3.854': attribute type 3 has an invalid length. [ 374.036372][ T7777] loop4: detected capacity change from 0 to 2048 [ 374.164885][ T7777] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 374.302292][ T7786] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 375.498497][ T24] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 375.708329][ T24] usb 4-1: config 0 has an invalid interface number: 64 but max is 0 [ 375.716697][ T24] usb 4-1: config 0 has no interface number 0 [ 375.860803][ T24] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07 [ 375.870381][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 375.879686][ T24] usb 4-1: Product: syz [ 375.884077][ T24] usb 4-1: Manufacturer: syz [ 375.889802][ T24] usb 4-1: SerialNumber: syz [ 376.090374][ T24] usb 4-1: config 0 descriptor?? [ 376.392400][ T7812] loop2: detected capacity change from 0 to 512 [ 376.458714][ T24] usb 4-1: Found UVC 0.08 device syz (046d:0823) [ 376.465878][ T24] usb 4-1: No valid video chain found. [ 376.550538][ T24] usb 4-1: USB disconnect, device number 4 [ 376.579456][ T7812] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 376.674027][ T7812] EXT4-fs (loop2): orphan cleanup on readonly fs [ 376.685246][ T7812] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 376.696645][ T7812] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 376.778483][ T7812] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 376.829496][ T7812] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.870: bg 0: block 40: padding at end of block bitmap is not set [ 376.878302][ T7812] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 376.945205][ T7812] EXT4-fs (loop2): 1 truncate cleaned up [ 376.957670][ T7812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 377.161316][ T7812] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 377.475708][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.729095][ T7828] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 378.749908][ T1725] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 378.964710][ T1725] usb 5-1: config 0 has an invalid interface number: 72 but max is 0 [ 378.973233][ T1725] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 378.984081][ T1725] usb 5-1: config 0 has no interface number 0 [ 378.990601][ T1725] usb 5-1: config 0 interface 72 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0 [ 379.003394][ T1725] usb 5-1: config 0 interface 72 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 10 [ 379.017749][ T1725] usb 5-1: New USB device found, idVendor=071d, idProduct=c160, bcdDevice=64.b8 [ 379.027426][ T1725] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 379.273816][ T1725] usb 5-1: config 0 descriptor?? [ 379.646409][ T1725] usb 5-1: USB disconnect, device number 6 [ 381.498440][ T7873] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 382.603781][ T7892] loop4: detected capacity change from 0 to 128 [ 382.892671][ T7895] ./file0: Can't open blockdev [ 382.923918][ T7897] loop3: detected capacity change from 0 to 128 [ 383.002303][ T7897] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 383.175760][ T7897] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 383.579409][ T7905] tmpfs: Bad value for 'mpol' [ 384.209134][ T7908] loop2: detected capacity change from 0 to 764 [ 384.354617][ T7908] Symlink component flag not implemented [ 384.360955][ T7908] Symlink component flag not implemented (101) [ 386.464773][ T7944] netlink: 48 bytes leftover after parsing attributes in process `syz.2.932'. [ 387.008433][ T7954] (unnamed net_device) (uninitialized): option use_carrier: invalid value (4) [ 387.193353][ T24] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 387.383733][ T24] usb 2-1: Using ep0 maxpacket: 8 [ 387.428981][ T24] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 387.437619][ T24] usb 2-1: config 179 has no interface number 0 [ 387.444583][ T24] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 387.456184][ T24] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 387.468047][ T24] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 387.478643][ T24] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 387.492664][ T24] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 387.505488][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 387.684760][ T7951] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 388.070332][ T1725] usb 2-1: USB disconnect, device number 5 [ 389.639328][ T7988] loop0: detected capacity change from 0 to 256 [ 389.833261][ T7988] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 394.106804][ T8048] netlink: 'syz.3.982': attribute type 2 has an invalid length. [ 394.311956][ T8046] loop4: detected capacity change from 0 to 2048 [ 394.352421][ T8046] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=2365, location=2365 [ 394.485346][ T8046] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 394.518567][ T8046] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 394.633209][ T8046] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 394.822871][ T8055] netlink: 'syz.1.985': attribute type 6 has an invalid length. [ 394.831255][ T8055] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.985'. [ 395.783219][ T8066] loop1: detected capacity change from 0 to 256 [ 396.639749][ T8077] netlink: 'syz.2.997': attribute type 8 has an invalid length. [ 396.857257][ T8083] loop3: detected capacity change from 0 to 1024 [ 397.096090][ T8083] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.832475][ T5807] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.481945][ T8105] tmpfs: Bad value for 'mpol' [ 398.901341][ T8112] netlink: 'syz.3.1014': attribute type 11 has an invalid length. [ 398.910106][ T8112] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1014'. [ 399.456908][ T8117] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1016'. [ 399.490667][ T8121] binder: 8118:8121 ioctl 400c620e 800013c0 returned -22 [ 399.545226][ T8123] loop3: detected capacity change from 0 to 64 [ 400.220822][ T8131] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551609) [ 400.231791][ T8131] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647 [ 401.317280][ T8146] caif0: entered allmulticast mode [ 401.336088][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.336088][ T8147] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0 [ 401.350262][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.350262][ T8147] nbd4: rw=0, sector=256, nr_sectors = 1 limit=0 [ 401.364005][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 401.374266][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.374266][ T8147] nbd4: rw=0, sector=512, nr_sectors = 1 limit=0 [ 401.388009][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 401.397741][ T8147] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 401.405708][ T8147] UDF-fs: Scanning with blocksize 512 failed [ 401.502649][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.502649][ T8147] nbd4: rw=0, sector=64, nr_sectors = 2 limit=0 [ 401.516416][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.516416][ T8147] nbd4: rw=0, sector=512, nr_sectors = 2 limit=0 [ 401.533121][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 401.544335][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.544335][ T8147] nbd4: rw=0, sector=1024, nr_sectors = 2 limit=0 [ 401.557933][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 401.567627][ T8147] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 401.575678][ T8147] UDF-fs: Scanning with blocksize 1024 failed [ 401.595734][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.595734][ T8147] nbd4: rw=0, sector=64, nr_sectors = 4 limit=0 [ 401.609401][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.609401][ T8147] nbd4: rw=0, sector=1024, nr_sectors = 4 limit=0 [ 401.623657][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 401.638974][ T8147] syz.4.1031: attempt to access beyond end of device [ 401.638974][ T8147] nbd4: rw=0, sector=2048, nr_sectors = 4 limit=0 [ 401.653743][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 401.663791][ T8147] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 401.671832][ T8147] UDF-fs: Scanning with blocksize 2048 failed [ 401.865135][ T8151] loop2: detected capacity change from 0 to 512 [ 402.129144][ T8151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 402.130178][ T8147] syz.4.1031: attempt to access beyond end of device [ 402.130178][ T8147] nbd4: rw=0, sector=64, nr_sectors = 8 limit=0 [ 402.146486][ T8151] ext4 filesystem being mounted at /209/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 402.159968][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=256, location=256 [ 402.160323][ T8147] UDF-fs: error (device nbd4): udf_read_tagged: read failed, block=512, location=512 [ 402.190786][ T8147] UDF-fs: warning (device nbd4): udf_load_vrs: No anchor found [ 402.198701][ T8147] UDF-fs: Scanning with blocksize 4096 failed [ 402.204959][ T8147] UDF-fs: warning (device nbd4): udf_fill_super: No partition found (1) [ 402.900006][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 403.033065][ T8168] loop4: detected capacity change from 0 to 128 [ 403.176592][ T8168] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 403.185566][ T8168] FAT-fs (loop4): Filesystem has been set read-only [ 403.326822][ T8172] Unsupported ieee802154 address type: 0 [ 404.073875][ T8180] loop4: detected capacity change from 0 to 512 [ 405.062207][ T8180] EXT4-fs (loop4): failed to open journal device unknown-block(0,0) -6 [ 406.289751][ T8215] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1062'. [ 407.511825][ T8233] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1071'. [ 408.212292][ T8244] @: renamed from bond_slave_0 (while UP) [ 408.864669][ T8253] tmpfs: Bad value for 'mpol' [ 408.958147][ T8256] loop3: detected capacity change from 0 to 128 [ 409.067725][ T8256] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 409.156293][ T8256] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 411.335542][ T8283] loop1: detected capacity change from 0 to 1024 [ 411.368647][ T8286] tipc: Can't bind to reserved service type 1 [ 411.500435][ T8289] netlink: 'syz.4.1098': attribute type 74 has an invalid length. [ 412.146876][ T8296] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1101'. [ 413.033379][ T8313] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1106'. [ 415.259446][ T8351] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1126'. [ 415.268947][ T8351] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1126'. [ 415.412026][ T8355] netlink: 'syz.1.1128': attribute type 15 has an invalid length. [ 415.420401][ T8355] netlink: 666 bytes leftover after parsing attributes in process `syz.1.1128'. [ 415.833190][ T8357] loop0: detected capacity change from 0 to 512 [ 415.948426][ T8357] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 415.961713][ T8357] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 416.444562][ T5818] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 416.600016][ T8375] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1136'. [ 416.697111][ T8377] delete_channel: no stack [ 417.518228][ T1725] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 417.559703][ T8394] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 417.732933][ T1725] usb 5-1: Using ep0 maxpacket: 16 [ 417.778440][ T1725] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 417.898561][ T1725] usb 5-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25 [ 417.911085][ T1725] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 417.920618][ T1725] usb 5-1: Product: syz [ 417.925032][ T1725] usb 5-1: Manufacturer: syz [ 417.929990][ T1725] usb 5-1: SerialNumber: syz [ 418.017546][ T1725] usb 5-1: config 0 descriptor?? [ 418.325249][ T24] usb 5-1: USB disconnect, device number 7 [ 418.542653][ T8396] loop3: detected capacity change from 0 to 4096 [ 418.659473][ T8396] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 419.141595][ T8396] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 419.299494][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 419.306458][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 422.220109][ T30] audit: type=1326 audit(1754774186.171:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8446 comm="syz.0.1172" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 422.243353][ T30] audit: type=1326 audit(1754774186.191:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8446 comm="syz.0.1172" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 422.266010][ T30] audit: type=1326 audit(1754774186.191:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8446 comm="syz.0.1172" exe="/root/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 422.288642][ T30] audit: type=1326 audit(1755298474.217:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8446 comm="syz.0.1172" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 422.314824][ T30] audit: type=1326 audit(1755298474.217:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8446 comm="syz.0.1172" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 422.629932][ T8453] syz.0.1175 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 423.891428][ T8472] netlink: 1284 bytes leftover after parsing attributes in process `syz.4.1183'. [ 423.901316][ T8472] openvswitch: netlink: EtherType 0 is less than min 600 [ 424.009788][ T8477] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1185'. [ 424.942274][ T8487] loop0: detected capacity change from 0 to 2048 [ 425.086509][ T8487] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 426.605430][ T30] audit: type=1326 audit(1755298478.558:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 426.753748][ T30] audit: type=1326 audit(1755298478.648:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=40000003 syscall=258 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 426.776590][ T30] audit: type=1326 audit(1755298478.648:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 426.803137][ T30] audit: type=1326 audit(1755298478.648:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8512 comm="syz.1.1203" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 427.262687][ T30] audit: type=1326 audit(1755298479.208:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8518 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 427.284866][ C0] vkms_vblank_simulate: vblank timer overrun [ 427.417976][ T30] audit: type=1326 audit(1755298479.268:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8518 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 427.443917][ T30] audit: type=1326 audit(1755298479.308:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8518 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=157 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 427.466134][ C0] vkms_vblank_simulate: vblank timer overrun [ 427.473637][ T30] audit: type=1326 audit(1755298479.308:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8518 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 427.496006][ T30] audit: type=1326 audit(1755298479.308:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8518 comm="syz.4.1205" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 427.518328][ C0] vkms_vblank_simulate: vblank timer overrun [ 428.036970][ T8531] kernel read not supported for file / lhOb~h3JyxvL=QRnFGrqςû~QV7"qHd0%NnyD (pid: 8531 comm: syz.0.1211) [ 428.069983][ T30] audit: type=1800 audit(1755298480.028:58): pid=8531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1211" name=BD16206C684F62EDF17EE501D168FEB51D9093339E8F064AC7C879FB78D0EEC3FC76F74CAA3D51E452FA6EC1B746477282A5F28F71F0CF82C3BB7E517F567F37B6B7227148E11197C964309DFA86F888B989FD254E6E79B503831CDD4402 dev="mqueue" ino=16806 res=0 errno=0 [ 428.106556][ C0] vkms_vblank_simulate: vblank timer overrun [ 428.755256][ T8544] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1218'. [ 428.781098][ T8545] loop0: detected capacity change from 0 to 256 [ 430.148159][ T8565] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1227'. [ 431.218342][ T8582] snd_dummy snd_dummy.0: control 5:16:0:syz0:-3 is already present [ 431.809169][ T8589] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1239'. [ 431.818638][ T8590] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1238'. [ 432.926860][ T30] audit: type=1326 audit(1755298484.879:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 433.054466][ T30] audit: type=1326 audit(1755298484.939:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 433.080376][ T30] audit: type=1326 audit(1755298484.959:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=40000003 syscall=301 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 433.103823][ T30] audit: type=1326 audit(1755298484.959:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 433.126310][ T30] audit: type=1326 audit(1755298484.959:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8601 comm="syz.4.1245" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 433.303245][ T8607] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1247'. [ 433.313174][ T8607] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 433.715779][ T8609] loop0: detected capacity change from 0 to 2048 [ 433.844253][ T8609] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 434.409054][ T8624] netlink: 188 bytes leftover after parsing attributes in process `syz.3.1256'. [ 435.128605][ T8620] loop4: detected capacity change from 0 to 4096 [ 435.175418][ T8620] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 435.746361][ T8642] loop1: detected capacity change from 0 to 256 [ 436.092312][ T8642] FAT-fs (loop1): Directory bread(block 64) failed [ 436.099727][ T8642] FAT-fs (loop1): Directory bread(block 65) failed [ 436.107027][ T8642] FAT-fs (loop1): Directory bread(block 66) failed [ 436.113867][ T8642] FAT-fs (loop1): Directory bread(block 67) failed [ 436.121063][ T8642] FAT-fs (loop1): Directory bread(block 68) failed [ 436.128176][ T8642] FAT-fs (loop1): Directory bread(block 69) failed [ 436.139425][ T8642] FAT-fs (loop1): Directory bread(block 70) failed [ 436.147631][ T8642] FAT-fs (loop1): Directory bread(block 71) failed [ 436.154614][ T8642] FAT-fs (loop1): Directory bread(block 72) failed [ 436.161560][ T8642] FAT-fs (loop1): Directory bread(block 73) failed [ 436.366504][ T30] audit: type=1800 audit(1755298488.319:64): pid=8642 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1265" name="file1" dev="loop1" ino=1048611 res=0 errno=0 [ 437.494703][ T8664] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 437.501704][ T8664] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 437.508838][ T8664] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 437.515623][ T8664] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 437.522502][ T8664] comedi comedi3: 8255: I/O port conflict (0x5c952397,4) [ 437.530234][ T8664] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 437.537116][ T8664] comedi comedi3: 8255: I/O port conflict (0x7f,4) [ 437.543948][ T8664] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 438.950513][ T8684] loop2: detected capacity change from 0 to 512 [ 439.059843][ T8690] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1288'. [ 439.124780][ T8684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 439.139401][ T8684] ext4 filesystem being mounted at /260/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 439.531264][ T8699] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1291'. [ 439.728537][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 440.987996][ T8719] loop3: detected capacity change from 0 to 764 [ 441.147428][ T8719] Symlink component flag not implemented [ 441.158932][ T8719] Symlink component flag not implemented (116) [ 442.138380][ T8736] overlayfs: conflicting options: userxattr,redirect_dir=on [ 442.170278][ T8738] loop0: detected capacity change from 0 to 256 [ 442.363194][ T8738] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 442.741830][ T8746] program syz.1.1315 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 444.976867][ T1725] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 445.196318][ T1725] usb 2-1: unable to get BOS descriptor or descriptor too short [ 445.267583][ T1725] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 445.276978][ T1725] usb 2-1: config 1 has an invalid descriptor of length 5, skipping remainder of the config [ 445.287715][ T1725] usb 2-1: config 1 interface 1 has no altsetting 0 [ 445.377012][ T1725] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 445.386476][ T1725] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 445.395063][ T1725] usb 2-1: Product: syz [ 445.399523][ T1725] usb 2-1: Manufacturer: syz [ 445.404326][ T1725] usb 2-1: SerialNumber: syz [ 445.858558][ T1725] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor [ 445.871271][ T1725] usb 2-1: found format II with max.bitrate = 2418, frame size=7 [ 445.881014][ T1725] usb 2-1: 2:1: All rates were zero [ 446.094400][ T1725] usb 2-1: USB disconnect, device number 6 [ 447.166428][ T8818] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1349'. [ 447.176284][ T8818] netlink: zone id is out of range [ 447.181660][ T8818] netlink: zone id is out of range [ 447.188263][ T8818] netlink: zone id is out of range [ 447.197448][ T8818] netlink: zone id is out of range [ 447.204835][ T8818] netlink: zone id is out of range [ 447.205616][ T8819] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1350'. [ 447.210091][ T8818] netlink: zone id is out of range [ 447.210149][ T8818] netlink: zone id is out of range [ 447.219313][ T8819] netlink: 'syz.4.1350': attribute type 3 has an invalid length. [ 447.224724][ T8818] netlink: zone id is out of range [ 447.224785][ T8818] netlink: zone id is out of range [ 447.224841][ T8818] netlink: zone id is out of range [ 447.464271][ T30] audit: type=1326 audit(1755298499.421:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8821 comm="syz.3.1351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 447.572903][ T30] audit: type=1326 audit(1755298499.501:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8821 comm="syz.3.1351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 447.708695][ T30] audit: type=1326 audit(1755298499.631:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8825 comm="syz.3.1351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 447.731886][ T30] audit: type=1326 audit(1755298499.631:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8821 comm="syz.3.1351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 447.900317][ T30] audit: type=1326 audit(1755298499.781:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8825 comm="syz.3.1351" exe="/root/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf710e539 code=0x7ffc0000 [ 447.945202][ T8829] vivid-008: disconnect [ 447.957263][ T8827] vivid-008: reconnect [ 449.519357][ T6400] udevd[6400]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 449.583859][ T30] audit: type=1326 audit(1755298501.531:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8846 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 449.606891][ T30] audit: type=1326 audit(1755298501.531:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8846 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 449.891484][ T30] audit: type=1326 audit(1755298501.621:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8846 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=122 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 449.914418][ T30] audit: type=1326 audit(1755298501.621:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8846 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 449.937274][ T30] audit: type=1326 audit(1755298501.621:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8846 comm="syz.0.1363" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 451.093130][ T8863] loop4: detected capacity change from 0 to 8 [ 451.358032][ T8863] SQUASHFS error: Failed to read block 0x2d7: -5 [ 451.364799][ T8863] SQUASHFS error: Unable to read metadata cache entry [2d5] [ 451.447133][ T8863] SQUASHFS error: Failed to read block 0x8f: -5 [ 452.921143][ T8887] netlink: 'syz.4.1381': attribute type 1 has an invalid length. [ 452.932690][ T8887] net_ratelimit: 76 callbacks suppressed [ 452.932767][ T8887] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 452.944696][ T24] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 453.199132][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 453.199209][ T30] audit: type=1326 audit(1755298505.172:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8890 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 453.319979][ T24] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 453.329718][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 453.342098][ T24] usb 4-1: Product: syz [ 453.348200][ T24] usb 4-1: Manufacturer: syz [ 453.353037][ T24] usb 4-1: SerialNumber: syz [ 453.374468][ T30] audit: type=1326 audit(1755298505.252:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8890 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 453.397208][ T30] audit: type=1326 audit(1755298505.312:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8890 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=71 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 453.420254][ T30] audit: type=1326 audit(1755298505.312:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8890 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 453.446007][ T30] audit: type=1326 audit(1755298505.312:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8890 comm="syz.1.1383" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 453.554480][ T24] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 453.790243][ T42] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 454.566967][ T5864] usb 4-1: USB disconnect, device number 5 [ 454.883921][ T42] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 454.891729][ T42] ath9k_htc: Failed to initialize the device [ 454.941080][ T5864] usb 4-1: ath9k_htc: USB layer deinitialized [ 455.905353][ T30] audit: type=1326 audit(1755298507.852:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1400" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 455.927806][ T30] audit: type=1326 audit(1755298507.892:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1400" exe="/root/syz-executor" sig=0 arch=40000003 syscall=308 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 455.950474][ T30] audit: type=1326 audit(1755298507.892:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1400" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 455.972809][ T30] audit: type=1326 audit(1755298507.902:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8924 comm="syz.1.1400" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 456.319632][ T8930] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1402'. [ 456.434610][ T30] audit: type=1326 audit(1755298508.382:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.4.1404" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ff00000 [ 458.143797][ T8959] program syz.4.1416 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 458.851763][ T8973] netlink: 'syz.1.1422': attribute type 21 has an invalid length. [ 458.861171][ T8973] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1422'. [ 458.875179][ T8973] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1422'. [ 458.932059][ T8978] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 0 [ 459.713991][ T8992] netlink: 'syz.3.1429': attribute type 21 has an invalid length. [ 461.004367][ T9014] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1437'. [ 461.312942][ T5864] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 461.541750][ T5864] usb 3-1: Using ep0 maxpacket: 16 [ 461.583388][ T5864] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 461.594047][ T5864] usb 3-1: config 0 interface 0 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 461.607457][ T5864] usb 3-1: config 0 interface 0 has no altsetting 0 [ 461.693438][ T5864] usb 3-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 461.703265][ T5864] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 461.711498][ T5864] usb 3-1: Product: syz [ 461.716159][ T5864] usb 3-1: Manufacturer: syz [ 461.720979][ T5864] usb 3-1: SerialNumber: syz [ 461.808625][ T5864] usb 3-1: config 0 descriptor?? [ 461.823754][ T42] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 462.052652][ T42] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 462.061432][ T42] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 462.071514][ T42] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 462.082789][ T42] usb 5-1: config 220 has no interface number 2 [ 462.089548][ T42] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 462.103432][ T42] usb 5-1: config 220 interface 0 has no altsetting 0 [ 462.110609][ T42] usb 5-1: config 220 interface 76 has no altsetting 0 [ 462.118062][ T42] usb 5-1: config 220 interface 1 has no altsetting 0 [ 462.224592][ T42] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 462.234366][ T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 462.245992][ T42] usb 5-1: Product: syz [ 462.250401][ T42] usb 5-1: Manufacturer: syz [ 462.256556][ T42] usb 5-1: SerialNumber: syz [ 462.474639][ T1725] usb 3-1: USB disconnect, device number 5 [ 462.574330][ T42] usb 5-1: selecting invalid altsetting 0 [ 462.580780][ T42] usb 5-1: Found UVC 7.01 device syz (8086:0b07) [ 462.589133][ T42] usb 5-1: No valid video chain found. [ 462.719286][ T42] usb 5-1: selecting invalid altsetting 0 [ 462.725769][ T42] usbtest 5-1:220.1: probe with driver usbtest failed with error -22 [ 462.809404][ T42] usb 5-1: USB disconnect, device number 8 [ 465.039081][ T9060] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 465.048623][ T9060] overlayfs: missing 'lowerdir' [ 466.635093][ T9084] bridge3: the hash_elasticity option has been deprecated and is always 16 [ 466.744058][ T9085] loop1: detected capacity change from 0 to 512 [ 466.825356][ T9085] EXT4-fs: Ignoring removed i_version option [ 466.922377][ T9085] EXT4-fs (loop1): corrupt root inode, run e2fsck [ 466.929155][ T9085] EXT4-fs (loop1): mount failed [ 467.348337][ T9094] loop4: detected capacity change from 0 to 512 [ 467.582875][ T9094] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 467.596004][ T9094] ext4 filesystem being mounted at /281/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 467.609102][ T9103] loop3: detected capacity change from 0 to 512 [ 467.681208][ T9094] fscrypt (loop4, inode 15): Error -61 getting encryption context [ 467.710484][ T9103] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters [ 467.719007][ T9106] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1480'. [ 467.821482][ T9103] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1479: invalid indirect mapped block 4278190080 (level 0) [ 467.914993][ T9103] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1479: invalid indirect mapped block 1 (level 1) [ 467.973623][ T9103] EXT4-fs (loop3): 1 truncate cleaned up [ 467.986170][ T9103] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 468.067550][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.129009][ T9103] EXT4-fs error (device loop3): ext4_lookup:1779: inode #2: comm syz.3.1479: bad inode number: 1 [ 468.282754][ T9111] openvswitch: netlink: Missing valid actions attribute. [ 468.294895][ T9111] openvswitch: netlink: Actions may not be safe on all matching packets [ 468.363960][ T9112] /dev/nullb0: Can't open blockdev [ 468.518760][ T9115] loop2: detected capacity change from 0 to 512 [ 468.585060][ T9115] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1485: iget: bad i_size value: 38620345925642 [ 468.634309][ T5807] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 468.697364][ T9115] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1485: couldn't read orphan inode 15 (err -117) [ 468.786475][ T9115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 468.944410][ T9115] EXT4-fs error (device loop2): ext4_validate_block_bitmap:432: comm syz.2.1485: bg 0: block 5: invalid block bitmap [ 468.990455][ T9121] mmap: syz.4.1488 (9121): VmData 175788032 exceed data ulimit 67108945. Update limits or use boot option ignore_rlimit_data. [ 469.094196][ T9124] overlayfs: missing 'lowerdir' [ 469.432701][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 470.503771][ T9139] netlink: 'syz.4.1495': attribute type 10 has an invalid length. [ 470.515881][ T9139] macsec0: left allmulticast mode [ 470.521517][ T9139] macsec0: left promiscuous mode [ 470.527757][ T9139] bridge0: port 3(macsec0) entered disabled state [ 471.728232][ T9155] netlink: 'syz.1.1504': attribute type 3 has an invalid length. [ 471.736579][ T9155] netlink: 'syz.1.1504': attribute type 1 has an invalid length. [ 471.744940][ T9155] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1504'. [ 471.754460][ T9155] NCSI netlink: No device for ifindex 33022 [ 471.858925][ T9157] netlink: 'syz.0.1505': attribute type 2 has an invalid length. [ 472.101713][ T30] kauditd_printk_skb: 9 callbacks suppressed [ 472.101796][ T30] audit: type=1326 audit(1755298524.074:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9161 comm="syz.4.1508" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 472.133316][ T30] audit: type=1326 audit(1755298524.094:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9161 comm="syz.4.1508" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 472.155864][ T30] audit: type=1326 audit(1755298524.124:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9161 comm="syz.4.1508" exe="/root/syz-executor" sig=0 arch=40000003 syscall=289 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 472.180683][ T30] audit: type=1326 audit(1755298524.124:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9161 comm="syz.4.1508" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 472.204107][ T30] audit: type=1326 audit(1755298524.124:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9161 comm="syz.4.1508" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 472.458864][ T9165] loop1: detected capacity change from 0 to 64 [ 472.650755][ T9165] Trying to free block not in datazone [ 472.694986][ T9165] minix_free_block (loop1:21): bit already cleared [ 473.526347][ T9183] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1518'. [ 473.921758][ T9190] openvswitch: netlink: Message has 12 unknown bytes. [ 474.562242][ T9199] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1527'. [ 474.572392][ T9199] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1527'. [ 475.172724][ T9210] netlink: 'syz.2.1532': attribute type 9 has an invalid length. [ 476.615033][ T9230] loop3: detected capacity change from 0 to 64 [ 476.952891][ T9232] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (13) [ 477.214475][ T9238] netlink: 'syz.0.1545': attribute type 2 has an invalid length. [ 477.222893][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1545'. [ 478.533950][ T9261] netlink: 'syz.1.1553': attribute type 3 has an invalid length. [ 478.542304][ T9261] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1553'. [ 478.617561][ T9260] loop4: detected capacity change from 0 to 1024 [ 479.194716][ T9269] loop3: detected capacity change from 0 to 8 [ 479.323360][ T9269] SQUASHFS error: zlib decompression failed, data probably corrupt [ 479.333037][ T9269] SQUASHFS error: Failed to read block 0x9b: -5 [ 479.339568][ T9269] SQUASHFS error: Unable to read metadata cache entry [99] [ 479.352149][ T9269] SQUASHFS error: Unable to read inode 0x127 [ 479.499261][ T3649] hfsplus: b-tree write err: -5, ino 4 [ 479.711141][ T1725] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 479.920451][ T1725] usb 2-1: Using ep0 maxpacket: 16 [ 479.973414][ T1725] usb 2-1: config 0 has an invalid interface number: 119 but max is 0 [ 479.982342][ T1725] usb 2-1: config 0 has no interface number 0 [ 479.988826][ T1725] usb 2-1: config 0 interface 119 has no altsetting 0 [ 479.998725][ T9278] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1560'. [ 480.088477][ T1725] usb 2-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=26.35 [ 480.098082][ T1725] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 480.106556][ T1725] usb 2-1: Product: syz [ 480.111058][ T1725] usb 2-1: Manufacturer: syz [ 480.115946][ T1725] usb 2-1: SerialNumber: syz [ 480.294503][ T1725] usb 2-1: config 0 descriptor?? [ 480.489447][ T9282] netlink: 1284 bytes leftover after parsing attributes in process `syz.2.1564'. [ 480.640390][ T1725] usb 2-1: USB disconnect, device number 7 [ 480.733533][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 480.740812][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 480.812133][ T30] audit: type=1326 audit(1755298532.795:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9285 comm="syz.4.1566" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 480.868980][ T30] audit: type=1326 audit(1755298532.835:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9285 comm="syz.4.1566" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 480.894297][ T30] audit: type=1326 audit(1755298532.845:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9285 comm="syz.4.1566" exe="/root/syz-executor" sig=0 arch=40000003 syscall=52 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 480.917582][ T30] audit: type=1326 audit(1755298532.845:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9285 comm="syz.4.1566" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 480.940264][ T30] audit: type=1326 audit(1755298532.845:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9285 comm="syz.4.1566" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 481.915997][ T9303] netlink: 763 bytes leftover after parsing attributes in process `syz.0.1574'. [ 482.360273][ T42] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 482.432841][ T9311] loop2: detected capacity change from 0 to 16 [ 482.470478][ T9311] erofs (device loop2): mounted with root inode @ nid 36. [ 482.570236][ T42] usb 4-1: Using ep0 maxpacket: 16 [ 482.646004][ T42] usb 4-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5 [ 482.655636][ T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 482.664102][ T42] usb 4-1: Product: syz [ 482.665924][ T9315] geneve2: entered allmulticast mode [ 482.668458][ T42] usb 4-1: Manufacturer: syz [ 482.678709][ T42] usb 4-1: SerialNumber: syz [ 482.801340][ T42] usb 4-1: config 0 descriptor?? [ 482.869825][ T42] visor 4-1:0.0: Sony Clie 3.5 converter detected [ 483.080520][ T42] usb 4-1: clie_3_5_startup: get config number bad return length: 0 [ 483.089420][ T42] visor 4-1:0.0: probe with driver visor failed with error -5 [ 483.121768][ T9309] loop1: detected capacity change from 0 to 4096 [ 483.142179][ T9309] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 483.316364][ T5868] usb 4-1: USB disconnect, device number 6 [ 483.380966][ T1725] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 483.580397][ T1725] usb 5-1: Using ep0 maxpacket: 16 [ 483.632487][ T1725] usb 5-1: config 0 has an invalid interface number: 104 but max is 1 [ 483.644463][ T1725] usb 5-1: config 0 has an invalid interface number: 104 but max is 1 [ 483.654123][ T1725] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 483.663496][ T1725] usb 5-1: config 0 has no interface number 0 [ 483.669958][ T1725] usb 5-1: config 0 interface 104 altsetting 0 endpoint 0x8 has invalid maxpacket 1340, setting to 64 [ 483.681317][ T1725] usb 5-1: config 0 interface 104 has no altsetting 1 [ 483.966590][ T1725] usb 5-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00 [ 483.976614][ T1725] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 483.985175][ T1725] usb 5-1: Product: syz [ 483.989776][ T1725] usb 5-1: Manufacturer: syz [ 483.994671][ T1725] usb 5-1: SerialNumber: syz [ 484.129274][ T1725] usb 5-1: config 0 descriptor?? [ 484.411441][ T1725] asix 5-1:0.104 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 484.424677][ T1725] asix 5-1:0.104: probe with driver asix failed with error -71 [ 484.521320][ T1725] usb 5-1: USB disconnect, device number 9 [ 484.572517][ T9323] loop2: detected capacity change from 0 to 4096 [ 485.105005][ T1725] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 485.323639][ T1725] usb 2-1: Using ep0 maxpacket: 16 [ 485.393699][ T1725] usb 2-1: config 0 has an invalid descriptor of length 226, skipping remainder of the config [ 485.405224][ T1725] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 31568, setting to 1024 [ 485.416989][ T1725] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 485.427762][ T1725] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 485.672836][ T1725] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 485.683505][ T1725] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 485.695182][ T1725] usb 2-1: Manufacturer: syz [ 485.776557][ T1725] usb 2-1: config 0 descriptor?? [ 485.804831][ T9328] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 486.034814][ T9339] bio_check_eod: 2 callbacks suppressed [ 486.034927][ T9339] syz.3.1593: attempt to access beyond end of device [ 486.034927][ T9339] nbd3: rw=6144, sector=128, nr_sectors = 8 limit=0 [ 486.054398][ T9339] gfs2: error -5 reading superblock [ 486.138477][ T9341] (unnamed net_device) (uninitialized): option lacp_rate: invalid value (8) [ 486.172860][ T1725] usb 2-1: USB disconnect, device number 8 [ 487.782381][ T49] Bluetooth: hci4: Malformed LE Event: 0x0d [ 487.979771][ T9364] netlink: 92 bytes leftover after parsing attributes in process `syz.1.1605'. [ 487.989740][ T9364] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1605'. [ 487.999294][ T9364] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1605'. [ 488.112668][ T9369] netlink: 'syz.3.1607': attribute type 12 has an invalid length. [ 488.121357][ T9369] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1607'. [ 488.655097][ T9375] autofs: Unknown parameter 'no9 PG!8E ' [ 488.726626][ T30] audit: type=1326 audit(1755298540.696:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9376 comm="syz.1.1611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 488.829938][ T30] audit: type=1326 audit(1755298540.756:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9376 comm="syz.1.1611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=453 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 488.852518][ T30] audit: type=1326 audit(1755298540.756:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9376 comm="syz.1.1611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 488.877923][ T30] audit: type=1326 audit(1755298540.756:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9376 comm="syz.1.1611" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 489.589222][ T9379] loop3: detected capacity change from 0 to 4096 [ 489.717057][ T9379] ntfs3(loop3): ino=3, Correct links count -> 2. [ 491.402341][ T9411] loop4: detected capacity change from 0 to 512 [ 491.543217][ T9411] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.1628: bad orphan inode 15 [ 491.642235][ T9411] ext4_test_bit(bit=14, block=5) = 0 [ 491.650461][ T9411] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 491.800741][ T9411] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 7987 vs 220 free clusters [ 492.374459][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 492.850681][ T9430] loop2: detected capacity change from 0 to 256 [ 492.874958][ T9431] loop4: detected capacity change from 0 to 8 [ 492.912920][ T9430] exfat: Deprecated parameter 'namecase' [ 493.066644][ T9431] SQUASHFS error: Failed to read block 0x738: -5 [ 493.074774][ T9431] SQUASHFS error: Unable to read metadata cache entry [736] [ 493.095658][ T9430] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d) [ 493.193251][ T9435] loop0: detected capacity change from 0 to 128 [ 493.936553][ T9445] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1640'. [ 493.970078][ T9444] tmpfs: Bad value for 'mpol' [ 494.559123][ T9453] netlink: 'syz.3.1647': attribute type 21 has an invalid length. [ 495.368410][ T9466] overlay: Unknown parameter 'smackfstransmute' [ 496.274494][ T9482] loop3: detected capacity change from 0 to 64 [ 496.347955][ T9481] loop4: detected capacity change from 0 to 256 [ 496.814087][ T9481] FAT-fs (loop4): Directory bread(block 64) failed [ 496.821399][ T9481] FAT-fs (loop4): Directory bread(block 65) failed [ 496.829296][ T9481] FAT-fs (loop4): Directory bread(block 66) failed [ 496.836141][ T9481] FAT-fs (loop4): Directory bread(block 67) failed [ 496.843261][ T9481] FAT-fs (loop4): Directory bread(block 68) failed [ 496.853728][ T9481] FAT-fs (loop4): Directory bread(block 69) failed [ 496.861946][ T9481] FAT-fs (loop4): Directory bread(block 70) failed [ 496.869026][ T9481] FAT-fs (loop4): Directory bread(block 71) failed [ 496.876009][ T9481] FAT-fs (loop4): Directory bread(block 72) failed [ 496.882955][ T9481] FAT-fs (loop4): Directory bread(block 73) failed [ 496.989495][ T9490] netlink: 'syz.1.1665': attribute type 1 has an invalid length. [ 497.295172][ T9493] loop3: detected capacity change from 0 to 8 [ 497.422527][ T9493] cramfs: Error -3 while decompressing! [ 497.428882][ T9493] cramfs: ffffffff9570a108(26)->ffff8880255f4000(4096) [ 497.436295][ T9493] cramfs: Error -3 while decompressing! [ 497.442380][ T9493] cramfs: ffffffff9570a122(26)->ffff8880255ed000(4096) [ 497.449851][ T9493] cramfs: Error -3 while decompressing! [ 497.459414][ T9493] cramfs: ffffffff9570a13c(16)->ffff888014cfb000(4096) [ 497.475033][ T9493] cramfs: Error -3 while decompressing! [ 497.482033][ T9493] cramfs: ffffffff9570a108(26)->ffff8880255f4000(4096) [ 498.149783][ T9504] netlink: 'syz.0.1671': attribute type 11 has an invalid length. [ 498.905390][ T9516] netlink: 'syz.0.1677': attribute type 30 has an invalid length. [ 498.914523][ T9516] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 498.924341][ T9516] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 499.392505][ T9524] netlink: 'syz.3.1681': attribute type 1 has an invalid length. [ 499.400662][ T9524] netlink: 244 bytes leftover after parsing attributes in process `syz.3.1681'. [ 499.812714][ T9532] loop4: detected capacity change from 0 to 1024 [ 500.030550][ T9532] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 500.040936][ T9532] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 500.050750][ T9532] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1685: Failed to acquire dquot type 0 [ 500.117753][ T9532] EXT4-fs error (device loop4): mb_free_blocks:2017: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 500.137711][ T9532] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1685: corrupted inode contents [ 500.248096][ T9532] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.1685: mark_inode_dirty error [ 500.273816][ T9539] loop3: detected capacity change from 0 to 16 [ 500.321593][ T9532] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1685: corrupted inode contents [ 500.347558][ T9539] erofs (device loop3): mounted with root inode @ nid 36. [ 500.371024][ T9532] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.1685: mark_inode_dirty error [ 500.411297][ T9539] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 500.445680][ T9532] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1685: corrupted inode contents [ 500.467704][ T9539] erofs (device loop3): failed to decompress -44 in[46, 4050] out[1851] [ 500.476582][ T9539] erofs (device loop3): read error -117 @ 43 of nid 36 [ 500.524421][ T9532] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 500.544668][ T9532] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.1685: corrupted inode contents [ 500.591435][ T9532] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.1685: mark_inode_dirty error [ 500.648491][ T9532] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 500.670371][ T9532] EXT4-fs (loop4): 1 truncate cleaned up [ 500.679008][ T9532] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 500.919846][ T9532] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 500.929762][ T9532] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 500.939675][ T9532] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.1685: Failed to acquire dquot type 0 [ 501.768900][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.954578][ T9552] loop1: detected capacity change from 0 to 2048 [ 502.280641][ T9552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 502.354607][ T9555] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1696'. [ 502.558756][ T9562] tmpfs: Bad value for 'mpol' [ 502.710119][ T9558] loop2: detected capacity change from 0 to 2048 [ 502.948641][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 503.040973][ T9563] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 503.203803][ T9558] NILFS error (device loop2): nilfs_lookup: deleted inode referenced: 12 [ 503.253298][ T9558] Remounting filesystem read-only [ 503.355618][ T9567] netlink: 'syz.3.1701': attribute type 1 has an invalid length. [ 503.364179][ T9567] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1701'. [ 504.824349][ T9584] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 505.385676][ T9591] bridge1: entered promiscuous mode [ 505.393347][ T9591] bridge1: entered allmulticast mode [ 505.631512][ T9595] loop1: detected capacity change from 0 to 2048 [ 505.852045][ T9595] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 506.317192][ T1725] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 506.521341][ T1725] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16 [ 506.531756][ T1725] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 506.638038][ T1725] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32 [ 506.647681][ T1725] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 506.655919][ T1725] usb 5-1: Product: syz [ 506.660563][ T1725] usb 5-1: Manufacturer: syz [ 506.665372][ T1725] usb 5-1: SerialNumber: syz [ 506.763496][ T1725] usb 5-1: config 0 descriptor?? [ 506.792952][ T9607] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 506.823853][ T9615] program syz.3.1724 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 506.854397][ T9607] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 507.268123][ T9607] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 507.275961][ T9607] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 507.637363][ T1725] Error reading MAC address [ 507.749277][ T1725] usb 5-1: USB disconnect, device number 10 [ 508.555052][ T9630] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1731'. [ 508.564557][ T9630] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1731'. [ 510.398572][ T9661] netlink: 10 bytes leftover after parsing attributes in process `syz.4.1746'. [ 510.481898][ T9663] loop0: detected capacity change from 0 to 256 [ 510.602074][ T9665] netlink: 'syz.1.1748': attribute type 11 has an invalid length. [ 510.927619][ T9663] FAT-fs (loop0): Directory bread(block 64) failed [ 510.934520][ T9663] FAT-fs (loop0): Directory bread(block 65) failed [ 510.941785][ T9663] FAT-fs (loop0): Directory bread(block 66) failed [ 510.948768][ T9663] FAT-fs (loop0): Directory bread(block 67) failed [ 510.955983][ T9663] FAT-fs (loop0): Directory bread(block 68) failed [ 510.962814][ T9663] FAT-fs (loop0): Directory bread(block 69) failed [ 510.970012][ T9663] FAT-fs (loop0): Directory bread(block 70) failed [ 510.976915][ T9663] FAT-fs (loop0): Directory bread(block 71) failed [ 510.988041][ T9663] FAT-fs (loop0): Directory bread(block 72) failed [ 510.996373][ T9663] FAT-fs (loop0): Directory bread(block 73) failed [ 512.063300][ T9683] netlink: 'syz.1.1757': attribute type 1 has an invalid length. [ 512.708191][ T9691] loop0: detected capacity change from 0 to 512 [ 512.817508][ T9700] netlink: 'syz.2.1766': attribute type 2 has an invalid length. [ 512.829568][ T9700] netlink: 'syz.2.1766': attribute type 1 has an invalid length. [ 512.873056][ T9691] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 513.070749][ T9691] EXT4-fs error (device loop0): ext4_find_dest_de:2052: inode #2: block 12: comm syz.0.1762: bad entry in directory: inode out of bounds - offset=60, inode=63, rec_len=16, size=2048 fake=0 [ 513.647108][ T5818] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 513.688437][ T9707] tracefs: Unknown parameter 'gi' [ 514.117857][ T9705] loop3: detected capacity change from 0 to 4096 [ 514.392476][ T9715] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 515.428470][ T9730] netlink: 41 bytes leftover after parsing attributes in process `syz.1.1781'. [ 515.438007][ T9730] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1781'. [ 516.005735][ T11] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 516.038345][ T9740] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1785'. [ 516.248118][ T11] usb 4-1: config 0 has an invalid interface number: 120 but max is 0 [ 516.257165][ T11] usb 4-1: config 0 has no interface number 0 [ 516.263519][ T11] usb 4-1: too many endpoints for config 0 interface 120 altsetting 48: 59, using maximum allowed: 30 [ 516.275229][ T11] usb 4-1: config 0 interface 120 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 59 [ 516.288925][ T11] usb 4-1: config 0 interface 120 has no altsetting 0 [ 516.528379][ T11] usb 4-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd [ 516.543230][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 516.554927][ T11] usb 4-1: Product: syz [ 516.559863][ T11] usb 4-1: Manufacturer: syz [ 516.564671][ T11] usb 4-1: SerialNumber: syz [ 516.643759][ T11] usb 4-1: config 0 descriptor?? [ 516.899298][ T9748] netlink: 'syz.1.1789': attribute type 3 has an invalid length. [ 516.908809][ T9748] netlink: 201372 bytes leftover after parsing attributes in process `syz.1.1789'. [ 516.941584][ T11] usb 4-1: USB disconnect, device number 7 [ 517.202420][ T9752] geneve3: entered promiscuous mode [ 517.824607][ T9761] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 518.968026][ T5864] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 519.140081][ T9778] loop0: detected capacity change from 0 to 256 [ 519.205242][ T5864] usb 3-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 519.214985][ T5864] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.223228][ T5864] usb 3-1: Product: syz [ 519.227900][ T5864] usb 3-1: Manufacturer: syz [ 519.232789][ T5864] usb 3-1: SerialNumber: syz [ 519.301587][ T5864] usb 3-1: config 0 descriptor?? [ 519.347915][ T5864] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 519.833645][ T5864] sonixb 3-1:0.0: Error writing register 01: -71 [ 519.840683][ T5864] sonixb 3-1:0.0: probe with driver sonixb failed with error -71 [ 519.967867][ T5864] usb 3-1: USB disconnect, device number 6 [ 519.985869][ T5980] udevd[5980]: setting owner of /dev/bus/usb/003/006 to uid=0, gid=0 failed: No such file or directory [ 521.225107][ T5864] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 521.311341][ T9804] netlink: 17279 bytes leftover after parsing attributes in process `syz.3.1816'. [ 521.449069][ T5864] usb 5-1: config 0 has an invalid interface number: 199 but max is 1 [ 521.457778][ T5864] usb 5-1: config 0 has no interface number 1 [ 521.464578][ T5864] usb 5-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 521.474863][ T5864] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 521.622956][ T5864] usb 5-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 521.635989][ T5864] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 521.646038][ T5864] usb 5-1: SerialNumber: syz [ 521.732321][ T5864] usb 5-1: config 0 descriptor?? [ 521.968491][ T5864] usb 5-1: Found UVC 0.00 device (0002:0000) [ 521.977097][ T5864] usb 5-1: No valid video chain found. [ 522.080291][ T5864] usb 5-1: USB disconnect, device number 11 [ 523.601132][ T9835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1831'. [ 523.875238][ T9841] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1834'. [ 524.917108][ T9848] loop1: detected capacity change from 0 to 4096 [ 525.412038][ T9864] Device name not specified. [ 525.412038][ T9864] [ 526.164302][ T9874] program syz.1.1849 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 526.687663][ T9880] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1853'. [ 526.967490][ T9883] loop2: detected capacity change from 0 to 512 [ 527.109426][ T9883] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 527.238458][ T9883] EXT4-fs (loop2): 1 truncate cleaned up [ 527.247054][ T9883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 527.339018][ T9883] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.1854: Logical block already allocated [ 527.399587][ T9883] EXT4-fs (loop2): Remounting filesystem read-only [ 527.681634][ T5810] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 527.736348][ T9892] loop1: detected capacity change from 0 to 4096 [ 527.858681][ T9900] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 528.713927][ T9913] loop0: detected capacity change from 0 to 64 [ 529.629802][ T30] audit: type=1326 audit(1755298581.602:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9925 comm="syz.0.1874" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 529.753847][ T30] audit: type=1326 audit(1755298581.652:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9925 comm="syz.0.1874" exe="/root/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 529.776631][ T30] audit: type=1326 audit(1755298581.662:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9925 comm="syz.0.1874" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 529.799375][ T30] audit: type=1326 audit(1755298581.662:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9925 comm="syz.0.1874" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff6539 code=0x7ffc0000 [ 530.269975][ T9938] netlink: 'syz.4.1880': attribute type 21 has an invalid length. [ 530.285121][ T9937] geneve4: entered allmulticast mode [ 531.041599][ T9947] loop4: detected capacity change from 0 to 1024 [ 531.245083][ T9947] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 531.498484][ T9947] EXT4-fs error (device loop4): ext4_generic_delete_entry:2668: inode #2: block 16: comm syz.4.1885: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1 [ 531.613515][ T9947] EXT4-fs error (device loop4) in ext4_delete_entry:2739: Corrupt filesystem [ 531.760920][ T9953] loop2: detected capacity change from 0 to 4096 [ 531.830031][ T9953] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 532.026255][ T5814] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.244217][ T9953] ntfs3(loop2): ino=19, mi_enum_attr [ 532.250023][ T9953] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 533.216758][ T9981] affs: No valid root block on device nbd1 [ 533.559399][ T9986] loop3: detected capacity change from 0 to 512 [ 533.728117][ T9986] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 533.741618][ T9986] ext4 filesystem being mounted at /379/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 533.946818][ T5807] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 535.602314][T10024] netlink: 'syz.0.1918': attribute type 7 has an invalid length. [ 537.635067][T10091] ieee802154 phy0 wpan0: encryption failed: -22 [ 538.173627][T10100] ip6gretap1: entered promiscuous mode [ 538.179346][T10100] ip6gretap1: entered allmulticast mode [ 538.630596][ T11] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 538.897474][ T11] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 538.907090][ T11] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 538.985461][ T11] usb 3-1: config 0 descriptor?? [ 539.007259][ T11] cp210x 3-1:0.0: cp210x converter detected [ 539.493018][ T11] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -71 [ 539.517849][ T11] cp210x 3-1:0.0: failed to get vendor val 0x3711 size 2: -71 [ 539.526337][ T11] cp210x 3-1:0.0: GPIO initialisation failed: -71 [ 539.536101][T10106] loop1: detected capacity change from 0 to 4096 [ 539.553608][ T11] usb 3-1: cp210x converter now attached to ttyUSB0 [ 539.617281][T10106] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 539.650000][ T11] usb 3-1: USB disconnect, device number 7 [ 539.705329][ T11] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 539.717312][ T11] cp210x 3-1:0.0: device disconnected [ 539.878979][T10106] ntfs3(loop1): ino=19, mi_enum_attr [ 539.885028][T10106] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 540.557449][T10126] netlink: 196 bytes leftover after parsing attributes in process `syz.2.1938'. [ 542.163084][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 542.170394][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 543.121956][ T5864] usb 4-1: new full-speed USB device number 8 using dummy_hcd [ 543.352663][ T5864] usb 4-1: config 0 has an invalid interface number: 110 but max is 0 [ 543.361263][ T5864] usb 4-1: config 0 has no interface number 0 [ 543.370746][ T5864] usb 4-1: config 0 interface 110 altsetting 2 endpoint 0x2 has invalid maxpacket 512, setting to 64 [ 543.382298][ T5864] usb 4-1: config 0 interface 110 altsetting 2 endpoint 0x82 has invalid maxpacket 512, setting to 64 [ 543.393744][ T5864] usb 4-1: config 0 interface 110 has no altsetting 0 [ 543.487573][ T5864] usb 4-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55 [ 543.497321][ T5864] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 543.505944][ T5864] usb 4-1: Product: syz [ 543.510343][ T5864] usb 4-1: Manufacturer: syz [ 543.515414][ T5864] usb 4-1: SerialNumber: syz [ 543.600921][ T5864] usb 4-1: config 0 descriptor?? [ 543.613717][T10168] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 543.625195][T10168] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 543.954945][T10168] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 544.002207][T10183] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1962'. [ 544.009699][T10168] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 544.115403][ T5864] cdc_subset 4-1:0.110 usb0: register 'cdc_subset' at usb-dummy_hcd.3-1, AnchorChips/Cypress 2720, 66:9d:0e:91:0a:c1 [ 544.310884][ T5864] usb 4-1: USB disconnect, device number 8 [ 544.359712][ T5864] cdc_subset 4-1:0.110 usb0: unregister 'cdc_subset' usb-dummy_hcd.3-1, AnchorChips/Cypress 2720 [ 546.968410][ T30] audit: type=1326 audit(1755298598.944:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 546.991470][ T30] audit: type=1326 audit(1755298598.944:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 547.217815][T10233] trusted_key: encrypted_key: insufficient parameters specified [ 547.221196][ T30] audit: type=1326 audit(1755298599.064:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=433 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 547.251613][ T30] audit: type=1326 audit(1755298599.064:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 547.275724][ T30] audit: type=1326 audit(1755298599.064:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10230 comm="syz.4.1987" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 548.062507][T10246] netlink: 13 bytes leftover after parsing attributes in process `syz.1.1994'. [ 548.072330][T10246] netlink: 'syz.1.1994': attribute type 3 has an invalid length. [ 548.080357][T10246] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1994'. [ 549.317537][T10262] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 551.242014][ T11] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 551.341672][T10284] loop4: detected capacity change from 0 to 64 [ 551.474862][ T11] usb 2-1: Using ep0 maxpacket: 8 [ 551.509912][T10286] netlink: 'syz.3.2013': attribute type 11 has an invalid length. [ 551.599332][ T11] usb 2-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 551.609777][ T11] usb 2-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 551.618850][ T11] usb 2-1: Product: syz [ 551.623948][ T11] usb 2-1: Manufacturer: syz [ 551.631498][ T11] usb 2-1: SerialNumber: syz [ 551.812290][ T11] usb 2-1: config 0 descriptor?? [ 551.838783][ T11] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 551.900507][T10290] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2015'. [ 552.314399][ T11] gspca_zc3xx: reg_r err -71 [ 552.319685][ T11] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 552.390838][ T5814] Bad inode number on dev loop4: 4160749571 is out of range [ 552.398759][ T5814] Bad inode number on dev loop4: 4160749571 is out of range [ 552.431546][ T11] usb 2-1: USB disconnect, device number 9 [ 553.152519][ T4032] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 553.446480][ T4032] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 553.715489][ T4032] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 553.966235][ T4032] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 554.727973][ T4032] bridge_slave_1: left allmulticast mode [ 554.734979][ T4032] bridge_slave_1: left promiscuous mode [ 554.742077][ T4032] bridge0: port 2(bridge_slave_1) entered disabled state [ 554.881952][ T4032] bridge_slave_0: left allmulticast mode [ 554.887851][ T4032] bridge_slave_0: left promiscuous mode [ 554.894983][ T4032] bridge0: port 1(bridge_slave_0) entered disabled state [ 556.661529][ T4032] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 556.732442][ T4032] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 556.780436][ T4032] bond0 (unregistering): Released all slaves [ 556.804926][ T4032] bond1 (unregistering): Released all slaves [ 557.432965][T10314] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 557.992210][ T4032] hsr_slave_0: left promiscuous mode [ 558.047327][ T4032] hsr_slave_1: left promiscuous mode [ 558.057318][ T4032] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 558.065280][ T4032] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 558.160974][T10321] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2032'. [ 558.253490][ T4032] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 558.261391][ T4032] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 558.425073][ T4032] veth0_macvtap: left promiscuous mode [ 558.431358][ T4032] veth1_vlan: left promiscuous mode [ 558.437063][ T4032] veth0_vlan: left promiscuous mode [ 558.535834][ T5822] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 558.551710][ T5822] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 558.573658][ T5822] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 558.598362][ T5822] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 558.611292][ T5822] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 560.527461][ T4032] team0 (unregistering): Port device team_slave_1 removed [ 560.570957][ T4032] team0 (unregistering): Port device team_slave_0 removed [ 560.694112][ T5822] Bluetooth: hci3: command tx timeout [ 561.923205][ T4032] ------------[ cut here ]------------ [ 561.929129][ T4032] WARNING: CPU: 0 PID: 4032 at net/xfrm/xfrm_state.c:3303 xfrm_state_fini+0x2fa/0x4c0 [ 561.939665][ T4032] Modules linked in: [ 561.943847][ T4032] CPU: 0 UID: 0 PID: 4032 Comm: kworker/u8:22 Not tainted 6.16.0-syzkaller-12256-g561c80369df0 #0 PREEMPT(none) [ 561.956321][ T4032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 561.968846][ T4032] Workqueue: netns cleanup_net [ 561.975418][ T4032] RIP: 0010:xfrm_state_fini+0x2fa/0x4c0 [ 561.981543][ T4032] Code: 48 83 c4 18 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 8b 3a e8 a5 74 c5 f3 4d 39 f7 0f 84 ac fd ff ff e8 77 a2 22 f3 90 <0f> 0b 90 e9 a3 fd ff ff 8b 3a e8 87 74 c5 f3 4d 85 f6 0f 84 03 fe [ 562.001566][ T4032] RSP: 0018:ffff888116f97a48 EFLAGS: 00010293 [ 562.008014][ T4032] RAX: ffffffff8ed25219 RBX: ffff8880292697c0 RCX: ffff8881184420c0 [ 562.016561][ T4032] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff88802926a5c0 [ 562.024986][ T4032] RBP: ffff888116f97a88 R08: ffffea000000000f R09: 0000000000000000 [ 562.033424][ T4032] R10: ffff888237b73028 R11: 0000000000000000 R12: 0000000003000131 [ 562.041768][ T4032] R13: ffff8880292697e8 R14: ffff88802926a5c0 R15: ffff888050028418 [ 562.050226][ T4032] FS: 0000000000000000(0000) GS:ffff8881aa698000(0000) knlGS:0000000000000000 [ 562.059529][ T4032] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 562.066333][ T4032] CR2: 00007fd557acc000 CR3: 0000000048a16000 CR4: 00000000003526f0 [ 562.076780][ T4032] Call Trace: [ 562.081151][ T4032] [ 562.084320][ T4032] xfrm_net_exit+0x46/0x90 [ 562.089202][ T4032] ? __pfx_xfrm_net_exit+0x10/0x10 [ 562.094793][ T4032] ops_undo_list+0x6c5/0xb80 [ 562.099868][ T4032] cleanup_net+0xb8f/0x14b0 [ 562.104717][ T4032] ? __pfx_cleanup_net+0x10/0x10 [ 562.110075][ T4032] process_scheduled_works+0xb91/0x1d80 [ 562.116019][ T4032] worker_thread+0xedf/0x1590 [ 562.121265][ T4032] kthread+0xd59/0xf00 [ 562.125594][ T4032] ? __pfx_worker_thread+0x10/0x10 [ 562.131528][ T4032] ? __pfx_kthread+0x10/0x10 [ 562.136411][ T4032] ret_from_fork+0x1e3/0x310 [ 562.141483][ T4032] ? __pfx_kthread+0x10/0x10 [ 562.146350][ T4032] ret_from_fork_asm+0x1a/0x30 [ 562.151588][ T4032] [ 562.154770][ T4032] ---[ end trace 0000000000000000 ]--- [ 562.528361][T10373] loop1: detected capacity change from 0 to 512 [ 562.737041][T10373] EXT4-fs error (device loop1): ext4_orphan_get:1418: comm syz.1.2048: bad orphan inode 13 [ 562.775499][ T5822] Bluetooth: hci3: command tx timeout [ 562.899467][T10373] ext4_test_bit(bit=12, block=4) = 1 [ 562.904994][T10373] is_bad_inode(inode)=0 [ 562.909697][T10373] NEXT_ORPHAN(inode)=0 [ 562.913936][T10373] max_ino=32 [ 562.917283][T10373] i_nlink=1 [ 563.060320][T10373] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 563.144734][T10382] loop0: detected capacity change from 0 to 512 [ 563.721609][ T5811] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 563.850619][T10326] chnl_net:caif_netlink_parms(): no params data found [ 564.850409][ T5822] Bluetooth: hci3: command tx timeout [ 565.980514][T10326] bridge0: port 1(bridge_slave_0) entered blocking state [ 565.988270][T10326] bridge0: port 1(bridge_slave_0) entered disabled state [ 565.997982][T10326] bridge_slave_0: entered allmulticast mode [ 566.008235][T10326] bridge_slave_0: entered promiscuous mode [ 566.201461][T10326] bridge0: port 2(bridge_slave_1) entered blocking state [ 566.209223][T10326] bridge0: port 2(bridge_slave_1) entered disabled state [ 566.217050][T10326] bridge_slave_1: entered allmulticast mode [ 566.227239][T10326] bridge_slave_1: entered promiscuous mode [ 566.512621][T10423] loop0: detected capacity change from 0 to 256 [ 566.596755][T10326] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 566.760701][T10326] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 566.872659][T10431] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2071'. [ 566.949806][ T5822] Bluetooth: hci3: command tx timeout [ 567.099757][T10423] FAT-fs (loop0): Directory bread(block 64) failed [ 567.106559][T10423] FAT-fs (loop0): Directory bread(block 65) failed [ 567.113826][T10423] FAT-fs (loop0): Directory bread(block 66) failed [ 567.120975][T10423] FAT-fs (loop0): Directory bread(block 67) failed [ 567.127921][T10423] FAT-fs (loop0): Directory bread(block 68) failed [ 567.136510][T10423] FAT-fs (loop0): Directory bread(block 69) failed [ 567.144682][T10423] FAT-fs (loop0): Directory bread(block 70) failed [ 567.151702][T10423] FAT-fs (loop0): Directory bread(block 71) failed [ 567.158899][T10423] FAT-fs (loop0): Directory bread(block 72) failed [ 567.165656][T10423] FAT-fs (loop0): Directory bread(block 73) failed [ 567.248423][T10326] team0: Port device team_slave_0 added [ 567.313833][T10326] team0: Port device team_slave_1 added [ 567.863637][T10326] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 567.873022][T10326] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 567.902115][T10326] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 568.162181][T10326] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 568.169849][T10326] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 568.196307][T10326] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 568.901239][T10453] netlink: 92 bytes leftover after parsing attributes in process `syz.1.2080'. [ 569.056021][T10326] hsr_slave_0: entered promiscuous mode [ 569.067052][T10326] hsr_slave_1: entered promiscuous mode [ 569.077266][T10326] debugfs: 'hsr0' already exists in 'hsr' [ 569.083432][T10326] Cannot create hsr debugfs directory [ 571.061087][T10326] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 571.149507][T10326] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 571.280082][T10326] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 571.398949][T10326] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 571.626136][T10488] netlink: 'syz.1.2096': attribute type 39 has an invalid length. [ 573.118769][T10326] 8021q: adding VLAN 0 to HW filter on device bond0 [ 573.321172][ T30] audit: type=1326 audit(1755298625.298:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.345654][ T30] audit: type=1326 audit(1755298625.298:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.482432][T10326] 8021q: adding VLAN 0 to HW filter on device team0 [ 573.679878][ T751] bridge0: port 1(bridge_slave_0) entered blocking state [ 573.687745][ T751] bridge0: port 1(bridge_slave_0) entered forwarding state [ 573.709472][ T30] audit: type=1326 audit(1755298625.378:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.732204][ T30] audit: type=1326 audit(1755298625.378:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.757265][ T30] audit: type=1326 audit(1755298625.398:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=374 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.781019][ T30] audit: type=1326 audit(1755298625.398:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.803521][ T30] audit: type=1326 audit(1755298625.398:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.826321][ T30] audit: type=1326 audit(1755298625.418:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.850943][ T30] audit: type=1326 audit(1755298625.418:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.874478][ T30] audit: type=1326 audit(1755298625.418:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10515 comm="syz.1.2107" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 573.886036][ T751] bridge0: port 2(bridge_slave_1) entered blocking state [ 573.904427][ T751] bridge0: port 2(bridge_slave_1) entered forwarding state [ 575.843968][T10543] program syz.1.2116 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 575.855504][T10543] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 577.249835][T10326] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 579.197674][T10594] loop0: detected capacity change from 0 to 128 [ 579.321350][T10594] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 579.483621][T10594] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 580.723488][T10326] veth0_vlan: entered promiscuous mode [ 580.901147][T10326] veth1_vlan: entered promiscuous mode [ 581.426025][T10326] veth0_macvtap: entered promiscuous mode [ 581.474597][T10625] netlink: 'syz.1.2146': attribute type 3 has an invalid length. [ 581.532846][T10326] veth1_macvtap: entered promiscuous mode [ 581.865736][T10326] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 582.023348][T10326] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 582.150811][T10633] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 582.246757][T10079] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 582.255883][T10079] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 582.330216][ T4032] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 582.415087][T10057] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 583.080796][ T30] audit: type=1326 audit(1755298635.059:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.1.2154" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 583.104807][ T30] audit: type=1326 audit(1755298635.059:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.1.2154" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 583.358149][ T30] audit: type=1326 audit(1755298635.119:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.1.2154" exe="/root/syz-executor" sig=0 arch=40000003 syscall=27 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 583.382653][ T30] audit: type=1326 audit(1755298635.119:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.1.2154" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 583.406113][ T30] audit: type=1326 audit(1755298635.119:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10644 comm="syz.1.2154" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 583.866226][T10656] netlink: 52 bytes leftover after parsing attributes in process `syz.1.2158'. [ 583.875787][T10656] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2158'. [ 584.456659][T10660] syz.2.2159: attempt to access beyond end of device [ 584.456659][T10660] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0 [ 584.470280][T10660] XFS (nbd2): SB validate failed with error -5. [ 584.572663][T10666] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2161'. [ 585.285502][ T30] audit: type=1326 audit(1755298637.259:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10674 comm="syz.2.2164" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08539 code=0x7ffc0000 [ 585.330836][T10678] netlink: 'syz.1.2165': attribute type 1 has an invalid length. [ 585.339295][T10678] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2165'. [ 585.426452][ T30] audit: type=1326 audit(1755298637.349:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10674 comm="syz.2.2164" exe="/root/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7f08539 code=0x7ffc0000 [ 585.449230][ T30] audit: type=1326 audit(1755298637.349:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10674 comm="syz.2.2164" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08539 code=0x7ffc0000 [ 585.472624][ T30] audit: type=1326 audit(1755298637.359:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10674 comm="syz.2.2164" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f08539 code=0x7ffc0000 [ 585.858184][T10679] loop0: detected capacity change from 0 to 4096 [ 585.900797][T10679] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 586.094609][T10689] netlink: 'syz.1.2168': attribute type 3 has an invalid length. [ 586.103569][T10689] netlink: 'syz.1.2168': attribute type 1 has an invalid length. [ 587.537187][T10707] netlink: 'syz.0.2173': attribute type 1 has an invalid length. [ 589.129994][T10731] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2183'. [ 591.295621][T10763] sctp: [Deprecated]: syz.0.2194 (pid 10763) Use of int in maxseg socket option. [ 591.295621][T10763] Use struct sctp_assoc_value instead [ 591.947446][ T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 591.955810][ T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 592.242747][T10773] netlink: 'syz.2.2198': attribute type 1 has an invalid length. [ 592.251350][T10773] netlink: 220 bytes leftover after parsing attributes in process `syz.2.2198'. [ 592.320064][T10086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 592.328973][T10086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 593.156453][T10788] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 593.163962][T10788] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 593.496542][ T11] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 593.802539][ T11] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 593.814036][ T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 593.823204][ T11] usb 4-1: Product: syz [ 593.827799][ T11] usb 4-1: Manufacturer: syz [ 593.832622][ T11] usb 4-1: SerialNumber: syz [ 593.987802][ T11] usb 4-1: config 0 descriptor?? [ 594.392197][ T11] hso 4-1:0.0: Failed to find BULK IN ep [ 594.441199][ T11] usb-storage 4-1:0.0: USB Mass Storage device detected [ 594.686275][ T11] usb 4-1: USB disconnect, device number 9 [ 594.771735][T10809] loop0: detected capacity change from 0 to 16 [ 594.821804][T10809] erofs (device loop0): mounted with root inode @ nid 36. [ 594.922714][T10809] syz.0.2210: attempt to access beyond end of device [ 594.922714][T10809] loop0: rw=0, sector=368, nr_sectors = 8 limit=16 [ 596.460002][T10838] /dev/nullb0: Can't open blockdev [ 596.476356][T10835] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2220'. [ 597.120198][T10846] macvlan0: entered promiscuous mode [ 597.127156][T10846] macvlan0: entered allmulticast mode [ 597.132767][T10846] veth1_vlan: entered allmulticast mode [ 597.153607][T10848] netlink: 'syz.3.2226': attribute type 5 has an invalid length. [ 597.174010][T10841] loop2: detected capacity change from 0 to 2048 [ 597.313320][T10841] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 598.408715][T10864] openvswitch: netlink: ufid size 20 bytes exceeds the range (1, 16) [ 598.419857][T10864] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 599.948297][T10890] loop3: detected capacity change from 0 to 256 [ 600.027086][T10890] exfat: Deprecated parameter 'namecase' [ 600.033758][T10890] exfat: Deprecated parameter 'utf8' [ 600.276426][T10890] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 600.306762][T10898] random: crng reseeded on system resumption [ 601.556347][T10914] loop5: detected capacity change from 0 to 2048 [ 601.675027][T10914] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 601.798283][ T30] audit: type=1326 audit(1755298653.762:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10918 comm="syz.1.2257" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 601.821317][ T30] audit: type=1326 audit(1755298653.762:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10918 comm="syz.1.2257" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 601.862162][T10923] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 601.984769][ T30] audit: type=1326 audit(1755298653.852:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10918 comm="syz.1.2257" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 602.011901][ T30] audit: type=1326 audit(1755298653.852:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10918 comm="syz.1.2257" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 602.157699][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.168764][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.276833][T10914] Remounting filesystem read-only [ 602.346565][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.357836][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.424987][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.436092][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.505819][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.519688][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.574841][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.585876][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.655388][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.667403][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.759267][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.770317][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.873190][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.884360][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 602.964405][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 602.975554][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.046447][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.057483][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.173314][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.186246][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.264859][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.275957][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.325439][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.342641][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.402118][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.415942][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.489966][T10941] loop2: detected capacity change from 0 to 764 [ 603.505077][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.516270][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.594142][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 603.600817][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 603.649189][T10941] Symlink component flag not implemented [ 603.655386][T10941] Symlink component flag not implemented [ 603.661533][T10941] Symlink component flag not implemented (129) [ 603.672062][T10941] Symlink component flag not implemented (6) [ 603.693987][T10914] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 603.705110][T10914] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 603.764864][ T30] audit: type=1800 audit(1755298655.712:143): pid=10914 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2255" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 604.241370][T10952] netlink: 26 bytes leftover after parsing attributes in process `syz.1.2270'. [ 605.060430][T10963] loop1: detected capacity change from 0 to 1024 [ 605.362909][T10963] hfsplus: bad catalog entry type [ 605.456896][T10972] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2278'. [ 608.291210][T11006] netlink: 'syz.3.2293': attribute type 1 has an invalid length. [ 608.563899][T11010] loop1: detected capacity change from 0 to 24 [ 608.678817][T11010] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 610.103360][T11029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2301'. [ 611.206411][T11037] loop3: detected capacity change from 0 to 1024 [ 611.275761][T11037] EXT4-fs: Ignoring removed orlov option [ 611.281917][T11037] EXT4-fs: Ignoring removed mblk_io_submit option [ 611.378987][T11037] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 611.614936][T11037] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 612.413852][ T5807] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 612.925639][T11066] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 613.345333][T11072] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2318'. [ 613.973133][T11082] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2322'. [ 613.987536][T11082] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2322'. [ 613.998549][T11082] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2322'. [ 614.965376][T11092] loop2: detected capacity change from 0 to 2048 [ 615.275314][T11092] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 616.432911][T11116] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2335'. [ 616.450570][T11116] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2335'. [ 617.003681][T11125] overlayfs: conflicting options: userxattr,metacopy=on [ 617.282509][T11130] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2340'. [ 617.790359][T11139] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2343'. [ 618.174510][T11144] netlink: 'syz.5.2346': attribute type 1 has an invalid length. [ 618.186025][T11144] netlink: 224 bytes leftover after parsing attributes in process `syz.5.2346'. [ 618.413277][T11148] netlink: 'syz.3.2348': attribute type 4 has an invalid length. [ 618.425367][T11148] netlink: 152 bytes leftover after parsing attributes in process `syz.3.2348'. [ 618.466903][T11148] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 618.524320][T11147] loop0: detected capacity change from 0 to 1024 [ 618.562719][T11147] hfsplus: Unknown parameter 'nlsmaccenteuro' [ 618.737494][T11152] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2350'. [ 619.002566][ T1725] usb 1-1: new full-speed USB device number 5 using dummy_hcd [ 619.041751][T11156] AppArmor: change_hat: Invalid input '0' [ 619.256922][ T1725] usb 1-1: config 9 has an invalid interface number: 2 but max is 0 [ 619.271195][ T1725] usb 1-1: config 9 has no interface number 0 [ 619.277926][ T1725] usb 1-1: config 9 interface 2 has no altsetting 0 [ 619.430181][ T1725] usb 1-1: New USB device found, idVendor=0b48, idProduct=3007, bcdDevice=16.33 [ 619.439801][ T1725] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 619.448234][ T1725] usb 1-1: Product: syz [ 619.452947][ T1725] usb 1-1: Manufacturer: syz [ 619.457754][ T1725] usb 1-1: SerialNumber: syz [ 619.703323][T11164] ALSA: mixer_oss: invalid OSS volume ';ʸgԊ8\>Px~)V'99' [ 619.714863][T11164] ALSA: mixer_oss: invalid OSS volume '*bbX-]OF{T0pc' [ 619.725611][T11164] ALSA: mixer_oss: invalid OSS volume 'gI"4-Z' [ 619.733543][T11164] ALSA: mixer_oss: invalid OSS volume 'eQCȡ*qpAڜe T|K' [ 619.742451][T11164] ALSA: mixer_oss: invalid OSS volume ':az]qeXfb]݆B.' [ 619.750068][T11167] Illegal XDP return value 109779168 on prog (id 54) dev N/A, expect packet loss! [ 619.752332][T11164] ALSA: mixer_oss: invalid OSS volume 'j|q⩃˚[w3^.ג' [ 619.769763][T11164] ALSA: mixer_oss: invalid OSS volume '"P޸ۜo[8>7|YMepq' [ 619.779061][T11164] ALSA: mixer_oss: invalid OSS volume 'wI׷#t\W,bP=&e' [ 619.788742][T11164] ALSA: mixer_oss: invalid OSS volume ']za-!)ϻvCYps' [ 619.797983][T11164] ALSA: mixer_oss: invalid OSS volume 'LE]Dxt݂OY3fk$T "' [ 619.807140][T11164] ALSA: mixer_oss: invalid OSS volume '[' [ 619.813746][T11164] ALSA: mixer_oss: invalid OSS volume '3A14IN+|\' [ 619.824253][T11164] ALSA: mixer_oss: invalid OSS volume '$ [ 655.286677][T11664] __dump_stack+0x26/0x30 [ 655.291242][T11664] dump_stack_lvl+0x53/0x270 [ 655.296167][T11664] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 655.302232][T11664] dump_stack+0x1e/0x25 [ 655.306616][T11664] vpanic+0x361/0xc50 [ 655.310835][T11664] panic+0x15d/0x160 [ 655.315002][T11664] kmsan_report+0x31c/0x320 [ 655.319725][T11664] ? __msan_warning+0x1b/0x30 [ 655.324618][T11664] ? hfsplus_lookup+0x674/0xf70 [ 655.329791][T11664] ? __lookup_slow+0x563/0x760 [ 655.334747][T11664] ? lookup_slow+0x6a/0xd0 [ 655.339352][T11664] ? walk_component+0x444/0x650 [ 655.344459][T11664] ? path_lookupat+0x251/0x6b0 [ 655.349408][T11664] ? filename_lookup+0x2bd/0x800 [ 655.354529][T11664] ? user_path_at+0x91/0x3d0 [ 655.359309][T11664] ? do_sys_truncate+0x82/0x240 [ 655.364398][T11664] ? __ia32_compat_sys_truncate+0x77/0xc0 [ 655.370378][T11664] ? ia32_sys_call+0x1012/0x4310 [ 655.375515][T11664] ? __do_fast_syscall_32+0xb0/0x150 [ 655.381035][T11664] ? do_fast_syscall_32+0x38/0x80 [ 655.386302][T11664] ? do_SYSENTER_32+0x1f/0x30 [ 655.391215][T11664] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 655.398057][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.403412][T11664] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 655.409899][T11664] ? __msan_memcpy+0x108/0x1c0 [ 655.414962][T11664] ? hfsplus_bnode_read+0x6f8/0x990 [ 655.420417][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.425826][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.431189][T11664] __msan_warning+0x1b/0x30 [ 655.435896][T11664] hfsplus_lookup+0x674/0xf70 [ 655.440935][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.446384][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.451718][T11664] ? __pfx_hfsplus_lookup+0x10/0x10 [ 655.457156][T11664] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 655.463222][T11664] ? __pfx_hfsplus_lookup+0x10/0x10 [ 655.468667][T11664] __lookup_slow+0x563/0x760 [ 655.473502][T11664] lookup_slow+0x6a/0xd0 [ 655.477952][T11664] walk_component+0x444/0x650 [ 655.482889][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.488410][T11664] path_lookupat+0x251/0x6b0 [ 655.493210][T11664] filename_lookup+0x2bd/0x800 [ 655.498190][T11664] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 655.504262][T11664] ? strncpy_from_user+0x255/0x470 [ 655.509624][T11664] ? kmsan_get_metadata+0xfb/0x160 [ 655.514962][T11664] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 655.521075][T11664] user_path_at+0x91/0x3d0 [ 655.525731][T11664] do_sys_truncate+0x82/0x240 [ 655.530691][T11664] __ia32_compat_sys_truncate+0x77/0xc0 [ 655.536511][T11664] ia32_sys_call+0x1012/0x4310 [ 655.541479][T11664] __do_fast_syscall_32+0xb0/0x150 [ 655.546845][T11664] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 655.552813][T11664] do_fast_syscall_32+0x38/0x80 [ 655.557899][T11664] do_SYSENTER_32+0x1f/0x30 [ 655.562638][T11664] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 655.569207][T11664] RIP: 0023:0xf7ff6539 [ 655.573541][T11664] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 655.593372][T11664] RSP: 002b:00000000f551655c EFLAGS: 00000206 ORIG_RAX: 000000000000005c [ 655.602008][T11664] RAX: ffffffffffffffda RBX: 0000000080000040 RCX: 0000000000000003 [ 655.610167][T11664] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 655.618397][T11664] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 655.626623][T11664] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 655.634746][T11664] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 655.643001][T11664] [ 655.646475][T11664] Kernel Offset: disabled [ 655.650882][T11664] Rebooting in 86400 seconds..