last executing test programs: 2m13.190156287s ago: executing program 3 (id=397): r0 = socket$kcm(0x10, 0x2, 0x0) recvmsg$kcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000001f00)=""/4075, 0xfeb}], 0x1}, 0x0) write$cgroup_subtree(r0, &(0x7f0000001ec0)=ANY=[@ANYBLOB="004000003a00913a74067388481f9c0e0a"], 0xfe33) 2m12.314763985s ago: executing program 3 (id=399): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18) kexec_load(0x0, 0x0, 0x0, 0x0) 2m11.727972355s ago: executing program 3 (id=402): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r0) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000800)={0x14, r1, 0x1, 0x70bd27, 0x0, {0x4, 0x74, 0x609}}, 0x14}, 0x1, 0xffffffff00000003}, 0x0) 2m11.079600286s ago: executing program 3 (id=405): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x8000, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x1, 0x1221, &(0x7f0000002300)="$eJzs3M9rHGUYB/Bn2/wyNdmotdqC9EUvehmbHDx5CZKCdEFpm0IrCFMz0WU3uyGzBLaI7c2rf4d49CaI/0AuXjwL3nLx2IM40p1gTUiRFNrdhs/nsg8775d9ZncZ2OF9dv/D77Y6m2W2mQ/iTKMRU9sR6WGKFGfibNQexHu3fvv9rRu371xbbbXWrqd0dfXm8gcppcXLP3/29Q9v/zI4d+vHxZ9mY2/p8/0/V/7Yu7B3cf/vm1+1y9QuU68/SHm62+8P8rvdIm20y06W0qfdIi+L1O6Vxc6h45vd/vb2MOW9jYX57Z2iLFPeG6ZOMUyDfhrsDFP+Zd7upSzL0sJ88PRmYv37h1VVRVTVdMxEVVXVSzEf5+LlWIjFaMbSdMSr8Vqcj9fjQrwRb8bF0apxdw4AAAAAAAAAAAAAAAAAAACny//M/8cr5v8BAAAAAAAAAAAAAAAAAADgmTP/DwAAAAAAAAAAAAAAAAAAAONn/h8AAAAAAAAAAAAAAAAAAADG78btO9dWW6216ynNRWx9u7u+u14/1sdXN6Md3SjiSjTjrxhN/9fq+urHrbUraWQp3t+6f5C/v7t+9nB+efR3Asfml+t8Opyfjfn/5leiGeePz68cm5+Ld9+p841H+Sya8esX0Y9ubMSj7OP8N8spffRJ60j+0mgdAAAAnAZZ+texv9+zLDUa9dIjx+snn3x/oGoeuT/QOJyfiktTYzxxRsrhvU7e7RY7L1Zx8JWMe5388iT08+Ri5qDTSelnAoqDd+TBpPTzghbTEfEMX+LIhWIuImaf44WJ5+Lxhz7uTgAAAAAAAAAAADiJE2wMnKr32558O+G4zxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAfduBYAAAAAECYv3UaHRsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcFQAA//8my+RP") mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x2837481, 0x0) mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./file1\x00', 0x0, 0x2804, 0x0) 2m8.633101132s ago: executing program 3 (id=414): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) keyctl$dh_compute(0x17, 0x0, 0x0, 0x0, 0x0) unshare(0x62040200) 2m6.25753749s ago: executing program 3 (id=421): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) add_key(&(0x7f0000000000)='pkcs7_test\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) linkat(r0, &(0x7f0000000240)='./file2\x00', 0xffffffffffffffff, 0x0, 0x1400) 2m3.571821971s ago: executing program 32 (id=421): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0) add_key(&(0x7f0000000000)='pkcs7_test\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffe) linkat(r0, &(0x7f0000000240)='./file2\x00', 0xffffffffffffffff, 0x0, 0x1400) 5.577845761s ago: executing program 5 (id=926): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_GET(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000580)={0x50, r1, 0x2b8ee6cf79dab3f, 0x0, 0x0, {0x17}, [{@nsim={{0xe}, {0x2c, 0x2, {'netdevsim', 0x0}}}, {0x1c}}]}, 0x50}}, 0x0) 5.532453403s ago: executing program 4 (id=927): r0 = socket$inet6(0xa, 0x1, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x35}}}, 0x1c) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) 5.248633203s ago: executing program 1 (id=930): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x540a, 0x0) ioctl$TCXONC(r0, 0x540a, 0x1) 4.837927532s ago: executing program 5 (id=931): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000100)={0x18, 0x0, {0x2, @local, 'veth1_to_team\x00'}}, 0x1e) ioctl$PPPOEIOCSFWD(r0, 0x4008b100, &(0x7f00000014c0)={0x18, 0x0, {0x3, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x24}, 'dummy0\x00'}}) 4.690695963s ago: executing program 2 (id=932): r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000040), 0x4) 4.423290268s ago: executing program 1 (id=933): timer_create(0x3, 0x0, &(0x7f0000001400)=0x0) syz_clone(0x206000, 0x0, 0x0, 0x0, 0x0, 0x0) timer_settime(r0, 0x0, &(0x7f0000000280)={{}, {0x77359400}}, &(0x7f00000002c0)) 4.126484983s ago: executing program 0 (id=934): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x4800}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000d40)={0x18, 0x16, 0xa01, 0x0, 0x0, {0xd}, [@nested={0x4, 0x44}]}, 0x18}, 0x1, 0x0, 0x0, 0x48000}, 0x0) 4.033543376s ago: executing program 4 (id=935): r0 = socket$kcm(0x1e, 0x1, 0x0) sendmsg$kcm(r0, &(0x7f0000000540)={&(0x7f0000000280)=@tipc=@id={0x1e, 0x3, 0x1, {0x4e21}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000300)="80", 0x1}], 0x1}, 0x0) recvmsg(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000080)=""/248, 0xf8}], 0x1, &(0x7f0000000480)=""/19, 0xfffffedb}, 0x40000010) 3.974962995s ago: executing program 5 (id=936): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) connect$bt_rfcomm(r0, &(0x7f0000000000)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x15}, 0xa) getsockopt$sock_buf(r0, 0x1, 0x1c, &(0x7f0000000100)=""/120, &(0x7f0000000240)=0x78) 3.809286172s ago: executing program 2 (id=937): r0 = socket$inet6(0xa, 0x5, 0x0) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000340)=0xfffffffffffffff9, 0x4) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f00000004c0)=[@in={0x2, 0x4e24, @rand_addr=0x64010100}], 0x10) 3.267663321s ago: executing program 0 (id=938): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100030000002c00048005000300010000000500030000000000050003000000000005000300010000000500030080000000080002"], 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x0) 3.173687432s ago: executing program 1 (id=939): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x68, r1, 0x3061f551887da13d, 0x70bd27, 0x25dfdbfe, {{}, {}, {0x4c, 0x18, {0x871101, @link='broadcast-link\x00'}}}}, 0x68}, 0x1, 0x0, 0x0, 0x800}, 0x0) 3.060475078s ago: executing program 4 (id=940): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000400)='./bus\x00', 0x200048, &(0x7f00000003c0)=ANY=[], 0xfd, 0x1db, &(0x7f0000001980)="$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") chdir(&(0x7f0000000040)='./file0\x00') llistxattr(&(0x7f0000000100)='./file1\x00', 0x0, 0x0) 3.05399364s ago: executing program 2 (id=941): r0 = syz_io_uring_setup(0x7b, &(0x7f00000003c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000640)=@IORING_OP_RECVMSG={0xa, 0x2d, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}, {0x0}], 0x2}, 0x0, 0x40000020, 0x1, {0x3}}) io_uring_enter(r0, 0x46f6, 0x0, 0x0, 0x0, 0x0) 2.565095596s ago: executing program 0 (id=942): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00', 0x800, 0x0, 0x103, 0x1}, 0x20) sendmsg$inet6(r0, &(0x7f0000000100)={&(0x7f0000000040)={0xa, 0x4e24, 0xf5, @dev, 0x3}, 0x1c, 0x0, 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='`\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x00\v\x00\x00\x00\x00\b'], 0x60}, 0x0) 2.483614266s ago: executing program 5 (id=943): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000000)="bc", 0x1) setsockopt$inet6_int(r0, 0x29, 0x3, 0x0, 0xd) 2.381167533s ago: executing program 1 (id=944): syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800004, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x189, &(0x7f00000027c0)="$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") sync() creat(&(0x7f0000000300)='./file2\x00', 0x0) 2.307138233s ago: executing program 4 (id=945): r0 = socket(0x40000000002, 0x3, 0x2) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='syz_tun\x00', 0x4d) syz_emit_ethernet(0x36, &(0x7f0000000080)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @timestamp_reply={0x11, 0x0, 0x0, 0x0, 0xa, 0x9}}}}}, 0x0) 2.255984929s ago: executing program 2 (id=946): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="b400000010000904000000000000000000002200", @ANYRES32=0x0, @ANYBLOB="fffffffed9526cfd8400128009000100766c616e000000007400028006000100000600000c000200367da1650e000000280003802800010001800000002000000c000100a1000000c84200000c0001000800000008000000340004800c17010006000000ff0300000c00010004000000080000000c00010004000000020000000c000100050000000300000008000500", @ANYRES32=r1], 0xb4}, 0x1, 0x0, 0x0, 0x4044080}, 0x0) 1.693123323s ago: executing program 0 (id=947): r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x1, 0x2) ioctl$VIDIOC_S_OUTPUT(r0, 0xc004562f, &(0x7f00000000c0)=0x1) ioctl$VIDIOC_S_DV_TIMINGS(r0, 0xc0845657, &(0x7f0000000380)={0x0, @bt={0x12, 0x7c5, 0x1, 0x0, 0xd59f80, 0x4, 0x1, 0x7, 0x8, 0x5d, 0x8, 0xe72, 0x6, 0x8, 0x18, 0x8, {0x5, 0x5}, 0x3, 0xed}}) 1.353974041s ago: executing program 4 (id=948): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000340)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300)={0xffffffffffffffff}, 0x106}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000080)={0xe, 0x18, 0xfa00, @ib_path={0x0, r1}}, 0x20) 1.303939639s ago: executing program 2 (id=949): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), r0) sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, r1, 0x6a9354ab0d020bb7, 0x0, 0x0, {0xf}}, 0x14}}, 0x0) 1.231998744s ago: executing program 5 (id=950): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_USECS_LOW={0x8, 0x10, 0x100}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES_LOW={0x8}]}, 0x3c}}, 0x0) 961.836773ms ago: executing program 0 (id=951): r0 = syz_open_dev$sndpcmp(&(0x7f0000002440), 0x0, 0x0) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0xc0984124, 0x0) 836.848192ms ago: executing program 1 (id=952): unshare(0x400) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x5, &(0x7f0000000000)=@framed={{}, [@map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x7}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 548.161169ms ago: executing program 4 (id=953): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./file2\x00', 0x4000, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000500)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) 422.146096ms ago: executing program 2 (id=954): ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0) syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000580)='./file2\x00', 0x2000000, &(0x7f00000004c0)=ANY=[], 0x1, 0x21d, &(0x7f0000000b40)="$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") statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0xf0cb2f4a0c2cfc5d, 0x0) 325.644833ms ago: executing program 5 (id=955): prctl$PR_SET_IO_FLUSHER(0x43, 0xfffffffffffffffd) r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/mm/ksm/run\x00', 0x1, 0x0) write$sysctl(r0, &(0x7f0000000000)='2\x00', 0x2) 135.669347ms ago: executing program 0 (id=956): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)={0x60, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x10, 0x8, 0x0, 0x1, [{0xc, 0x5, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSLVLLOC={0x8}]}]}, @NLBL_CIPSOV4_A_TAGLST={0x2c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}, {0x5}]}]}, 0x60}}, 0x0) 0s ago: executing program 1 (id=957): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000480)=0x2, 0x4) syz_genetlink_get_family_id$ipvs(&(0x7f0000000600), r0) kernel console output (not intermixed with test programs): netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 268.514619][ T6007] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 268.518622][ T5844] usb 1-1: config 0 descriptor?? [ 268.543006][ T5999] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 268.583081][ T6007] Zero length message leads to an empty skb [ 269.073797][ T5844] wacom 0003:056A:0015.0001: unknown main item tag 0xe [ 269.147698][ T5844] wacom 0003:056A:0015.0001: Unknown device_type for 'HID 056a:0015'. Assuming pen. [ 269.192257][ T5844] wacom 0003:056A:0015.0001: hidraw0: USB HID v0.14 Device [HID 056a:0015] on usb-dummy_hcd.0-1/input0 [ 269.208011][ T5844] input: Wacom Graphire4 4x5 Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:0015.0001/input/input5 [ 269.331597][ T30] audit: type=1326 audit(1742555007.064:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.4.19" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f4d78d169 code=0x7ffc0000 [ 269.353730][ C1] vkms_vblank_simulate: vblank timer overrun [ 269.499994][ T30] audit: type=1326 audit(1742555007.144:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.4.19" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f7f4d78d169 code=0x7ffc0000 [ 269.524963][ T5844] usb 1-1: USB disconnect, device number 2 [ 269.532795][ T30] audit: type=1326 audit(1742555007.144:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.4.19" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f4d78d169 code=0x7ffc0000 [ 269.555325][ T30] audit: type=1326 audit(1742555007.154:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.4.19" exe="/root/syz-executor" sig=0 arch=c000003e syscall=287 compat=0 ip=0x7f7f4d78d169 code=0x7ffc0000 [ 269.577812][ T30] audit: type=1326 audit(1742555007.154:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6011 comm="syz.4.19" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f4d78d169 code=0x7ffc0000 [ 269.599946][ C1] vkms_vblank_simulate: vblank timer overrun [ 270.023706][ T6017] bond0: Unable to set down delay as MII monitoring is disabled [ 270.843591][ T6029] loop3: detected capacity change from 0 to 512 [ 270.935723][ T6029] ======================================================= [ 270.935723][ T6029] WARNING: The mand mount option has been deprecated and [ 270.935723][ T6029] and is ignored by this kernel. Remove the mand [ 270.935723][ T6029] option from the mount to silence this warning. [ 270.935723][ T6029] ======================================================= [ 270.970934][ C1] vkms_vblank_simulate: vblank timer overrun [ 270.986023][ T6029] EXT4-fs: Ignoring removed nobh option [ 271.190535][ T6029] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 271.555733][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 273.428694][ T6066] sg_write: process 25 (syz.2.44) changed security contexts after opening file descriptor, this is not allowed. [ 273.686589][ T6068] sp0: Synchronizing with TNC [ 274.691730][ T6084] loop4: detected capacity change from 0 to 64 [ 275.074754][ T5844] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 275.080964][ T26] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 275.333486][ T26] usb 3-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 275.343465][ T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.370815][ T5844] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 275.382385][ T5844] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 275.392615][ T5844] usb 4-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 275.402101][ T5844] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.418307][ T26] usb 3-1: config 0 descriptor?? [ 275.584631][ T5844] usb 4-1: config 0 descriptor?? [ 275.901179][ T26] hackrf 3-1:0.0: Board ID: 00 [ 275.906223][ T26] hackrf 3-1:0.0: Firmware version: [ 275.960610][ T26] hackrf 3-1:0.0: Registered as swradio24 [ 275.966645][ T26] videodev: could not get a free minor [ 275.977093][ T26] hackrf 3-1:0.0: Failed to register as video device (-23) [ 276.041981][ T26] hackrf 3-1:0.0: probe with driver hackrf failed with error -23 [ 276.105813][ T5844] hid-thrustmaster 0003:044F:B65D.0002: unknown main item tag 0x0 [ 276.158931][ T5843] usb 3-1: USB disconnect, device number 2 [ 276.225871][ T5844] hid-thrustmaster 0003:044F:B65D.0002: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.3-1/input0 [ 276.239212][ T5844] hid-thrustmaster 0003:044F:B65D.0002: Wrong number of endpoints? [ 276.314834][ C0] hid-thrustmaster 0003:044F:B65D.0002: URB to get model id failed with error -71 [ 276.406903][ T5844] usb 4-1: USB disconnect, device number 2 [ 276.557370][ T6096] loop0: detected capacity change from 0 to 4096 [ 276.836112][ T6096] ntfs3(loop0): ino=b, mi_enum_attr [ 276.841866][ T6096] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 276.906037][ T6096] ntfs3(loop0): Failed to load $Extend (-22). [ 276.913609][ T6096] ntfs3(loop0): Failed to initialize $Extend. [ 277.249386][ T6105] loop1: detected capacity change from 0 to 164 [ 277.381501][ T6105] Unsupported NM flag settings (8) [ 277.921531][ T6116] netlink: 60 bytes leftover after parsing attributes in process `syz.2.68'. [ 277.961740][ T6114] netlink: 60 bytes leftover after parsing attributes in process `syz.2.68'. [ 278.777224][ T6129] loop1: detected capacity change from 0 to 256 [ 278.834176][ T6129] exFAT-fs (loop1): failed to read boot sector [ 278.846050][ T6129] exFAT-fs (loop1): failed to recognize exfat type [ 278.972426][ T6129] ptrace attach of "./syz-executor exec"[5787] was attempted by " [ 279.404930][ T6138] loop2: detected capacity change from 0 to 64 [ 279.691812][ T30] audit: type=1800 audit(1742555017.444:7): pid=6138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.78" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 280.051529][ T6147] loop3: detected capacity change from 0 to 1024 [ 280.202119][ T6147] hfsplus: bad catalog entry type [ 280.459166][ T3733] hfsplus: b-tree write err: -5, ino 4 [ 280.971180][ T6154] capability: warning: `syz.4.85' uses deprecated v2 capabilities in a way that may be insecure [ 281.477504][ T6158] loop2: detected capacity change from 0 to 4096 [ 281.635141][ T6166] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 281.683494][ T6168] loop4: detected capacity change from 0 to 8 [ 283.182883][ T6178] loop2: detected capacity change from 0 to 32768 [ 283.254301][ T6178] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section members_v1: device 0: bucket size 16 smaller than btree node size 256 [ 283.254301][ T6178] members_v1 (size 64): [ 283.254301][ T6178] Device: 0 [ 283.254301][ T6178] Label: (none) [ 283.254301][ T6178] UUID: 87bd6f1c-e82e-46d8-bfd9-42f53008fa72 [ 283.254301][ T6178] Size: 1048576 [ 283.254301][ T6178] read errors: 0 [ 283.254301][ T6178] write errors: 0 [ 283.254301][ T6178] checksum errors: 0 [ 283.254301][ T6178] seqread iops: 0 [ 283.254301][ T6178] seqwrite iops: 0 [ 283.254301][ T6178] randread iops: 0 [ 283.254301][ T6178] randwrite iops: 0 [ 283.254301][ T6178] Bucket size: 8192 [ 283.254301][ T6178] First bucket: 0 [ 283.254301][ T6178] Buckets: 128 [ 283.254301][ T6178] Last mount: 1714681267 [ 283.254301][ T6178] Last superblock write: 0 [ 283.254301][ T6178] State: rw [ 283.254301][ T6178] Data allowed: journal,btree,user [ 283.254301][ T6178] Has data: (none) [ 283.254301][ T6178] Btree allocated bitmap blocksize:256 [ 283.254301][ T6178] Btree allocated bitmap: 0000000000000000000000000000000000000000000000000000000000000000 [ 283.254301][ T6178] Dur [ 283.255254][ T6178] bcachefs: bch2_fs_get_tree() error: invalid_sb_members [ 283.825854][ T6190] netlink: 8 bytes leftover after parsing attributes in process `syz.2.102'. [ 283.853803][ T26] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 284.100674][ T26] usb 1-1: Using ep0 maxpacket: 32 [ 284.158000][ T26] usb 1-1: config 0 has an invalid interface number: 35 but max is 0 [ 284.171450][ T26] usb 1-1: config 0 has no interface number 0 [ 284.244211][ T6185] loop1: detected capacity change from 0 to 4096 [ 284.278842][ T26] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 284.288550][ T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 284.297298][ T26] usb 1-1: Product: syz [ 284.301953][ T26] usb 1-1: Manufacturer: syz [ 284.306783][ T26] usb 1-1: SerialNumber: syz [ 284.415108][ T6185] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 284.507276][ T26] usb 1-1: config 0 descriptor?? [ 284.538233][ T6194] loop3: detected capacity change from 0 to 256 [ 284.820069][ T26] radio-si470x 1-1:0.35: this is not a si470x device. [ 284.856774][ T26] radio-raremono 1-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 285.068016][ T26] radio-raremono 1-1:0.35: raremono_cmd_main failed (-71) [ 285.161263][ T26] radio-raremono 1-1:0.35: V4L2 device registered as radio48 [ 285.222518][ T26] usb 1-1: USB disconnect, device number 3 [ 285.229740][ T26] radio-raremono 1-1:0.35: Thanko's Raremono disconnected [ 285.367926][ T6194] FAT-fs (loop3): Directory bread(block 64) failed [ 285.374871][ T6194] FAT-fs (loop3): Directory bread(block 65) failed [ 285.382077][ T6194] FAT-fs (loop3): Directory bread(block 66) failed [ 285.394531][ T6194] FAT-fs (loop3): Directory bread(block 67) failed [ 285.403363][ T6194] FAT-fs (loop3): Directory bread(block 68) failed [ 285.410234][ T6194] FAT-fs (loop3): Directory bread(block 69) failed [ 285.417125][ T6194] FAT-fs (loop3): Directory bread(block 70) failed [ 285.424742][ T6194] FAT-fs (loop3): Directory bread(block 71) failed [ 285.432504][ T6194] FAT-fs (loop3): Directory bread(block 72) failed [ 285.439301][ T6194] FAT-fs (loop3): Directory bread(block 73) failed [ 285.862888][ T5844] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 286.158090][ T5844] usb 3-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0 [ 286.168315][ T5844] usb 3-1: config 0 interface 0 has no altsetting 0 [ 286.175332][ T5844] usb 3-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00 [ 286.185326][ T5844] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.419852][ T5844] usb 3-1: config 0 descriptor?? [ 287.422262][ T6214] loop4: detected capacity change from 0 to 32768 [ 287.434131][ T6214] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.111 (6214) [ 287.476696][ T6214] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 287.487466][ T6214] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 287.496695][ T6214] BTRFS error (device loop4): ignoredatacsums must be used with ro mount option [ 287.506134][ T6214] BTRFS info (device loop4): using free-space-tree [ 287.513843][ T6214] BTRFS error (device loop4): open_ctree failed: -22 [ 287.972520][ T5844] magicmouse 0003:05AC:0269.0003: hidraw0: USB HID v10.00 Device [HID 05ac:0269] on usb-dummy_hcd.2-1/input0 [ 288.011968][ T5844] usb 3-1: USB disconnect, device number 3 [ 289.141319][ T26] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 289.349411][ T26] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 289.361075][ T26] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 289.371464][ T26] usb 4-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 289.381027][ T26] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 289.433145][ T6234] loop2: detected capacity change from 0 to 4096 [ 289.498218][ T26] usb 4-1: config 0 descriptor?? [ 289.625870][ T6234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 289.853779][ T6242] loop1: detected capacity change from 0 to 512 [ 290.002400][ T26] mcp2200 0003:04D8:00DF.0004: item fetching failed at offset 4/5 [ 290.047030][ T26] mcp2200 0003:04D8:00DF.0004: can't parse reports [ 290.054450][ T26] mcp2200 0003:04D8:00DF.0004: probe with driver mcp2200 failed with error -22 [ 290.173027][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 290.192378][ T5844] usb 4-1: USB disconnect, device number 3 [ 290.379144][ T6248] loop0: detected capacity change from 0 to 512 [ 290.393149][ T6248] EXT4-fs: Ignoring removed oldalloc option [ 290.439475][ T6248] EXT4-fs (loop0): filesystem is read-only [ 290.471088][ T6248] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 290.536273][ T6248] EXT4-fs (loop0): filesystem is read-only [ 290.542907][ T6248] EXT4-fs (loop0): orphan cleanup on readonly fs [ 290.588611][ T6248] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.124: bg 0: block 64: padding at end of block bitmap is not set [ 290.634638][ T6242] EXT4-fs (loop1): Test dummy encryption mode enabled [ 290.641838][ T6242] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 290.655273][ T6242] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 290.712412][ T6248] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 290.822419][ T6242] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc018, mo2=0002] [ 290.837371][ T6248] EXT4-fs (loop0): 1 orphan inode deleted [ 290.845435][ T6248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 290.849172][ T6242] System zones: 1-12 [ 290.899507][ T6248] overlay: filesystem on ./file0 is read-only [ 290.900801][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 290.912623][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 291.001059][ T6242] EXT4-fs (loop1): 1 truncate cleaned up [ 291.008685][ T6242] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 291.152492][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.583112][ T6260] loop2: detected capacity change from 0 to 16 [ 291.593234][ T6259] loop0: detected capacity change from 0 to 256 [ 291.617886][ T6260] erofs (device loop2): mounted with root inode @ nid 36. [ 291.682958][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 291.706684][ T6260] erofs (device loop2): bogus lookback distance 0 @ lcn 0 of nid 36 [ 291.715556][ T6260] erofs (device loop2): bogus lookback distance 0 @ lcn 0 of nid 36 [ 291.724064][ T6260] erofs (device loop2): read error -117 @ 0 of nid 36 [ 291.731412][ T6260] erofs (device loop2): fail to readdir of logical block 0 of nid 36 [ 291.833610][ T6259] FAT-fs (loop0): Directory bread(block 64) failed [ 291.846603][ T6259] FAT-fs (loop0): Directory bread(block 65) failed [ 291.855341][ T6259] FAT-fs (loop0): Directory bread(block 66) failed [ 291.862388][ T6259] FAT-fs (loop0): Directory bread(block 67) failed [ 291.869275][ T6259] FAT-fs (loop0): Directory bread(block 68) failed [ 291.876191][ T6259] FAT-fs (loop0): Directory bread(block 69) failed [ 291.883220][ T6259] FAT-fs (loop0): Directory bread(block 70) failed [ 291.889993][ T6259] FAT-fs (loop0): Directory bread(block 71) failed [ 291.897098][ T6259] FAT-fs (loop0): Directory bread(block 72) failed [ 291.904549][ T6259] FAT-fs (loop0): Directory bread(block 73) failed [ 292.458594][ T26] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 292.636639][ T6267] netlink: 56 bytes leftover after parsing attributes in process `syz.2.131'. [ 292.672455][ T26] usb 4-1: Using ep0 maxpacket: 16 [ 292.724135][ T26] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 292.734607][ T26] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 292.817013][ T26] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 292.826738][ T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 292.835155][ T26] usb 4-1: Product: syz [ 292.839529][ T26] usb 4-1: Manufacturer: syz [ 292.844463][ T26] usb 4-1: SerialNumber: syz [ 293.317858][ T6275] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 293.411574][ T5844] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 293.435644][ T26] usb 4-1: cannot find UAC_HEADER [ 293.577307][ T26] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 293.604133][ T5844] usb 5-1: Using ep0 maxpacket: 8 [ 293.671269][ T5844] usb 5-1: config 0 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 293.677765][ T26] usb 4-1: USB disconnect, device number 4 [ 293.689739][ T5844] usb 5-1: config 0 interface 0 has no altsetting 0 [ 293.702978][ T5844] usb 5-1: New USB device found, idVendor=057e, idProduct=2017, bcdDevice= 0.00 [ 293.712411][ T5844] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 293.862856][ T5844] usb 5-1: config 0 descriptor?? [ 294.032304][ T6223] udevd[6223]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 294.391142][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.398716][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.414326][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.424639][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.432221][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.439675][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.447188][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.455050][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.462683][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.470231][ T5844] nintendo 0003:057E:2017.0005: unknown main item tag 0x0 [ 294.730118][ T6289] loop2: detected capacity change from 0 to 1024 [ 294.757177][ T6291] loop3: detected capacity change from 0 to 256 [ 294.778565][ T5844] nintendo 0003:057E:2017.0005: hidraw0: USB HID v80.0b Device [HID 057e:2017] on usb-dummy_hcd.4-1/input0 [ 294.847497][ T6284] loop1: detected capacity change from 0 to 4096 [ 294.871303][ T5844] nintendo 0003:057E:2017.0005: Failed to get joycon info; ret=-38 [ 294.879690][ T5844] nintendo 0003:057E:2017.0005: Failed to retrieve controller info; ret=-38 [ 294.888902][ T5844] nintendo 0003:057E:2017.0005: Failed to initialize controller; ret=-38 [ 294.986994][ T6292] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 295.011599][ T5844] nintendo 0003:057E:2017.0005: probe - fail = -38 [ 295.026989][ T5844] nintendo 0003:057E:2017.0005: probe with driver nintendo failed with error -38 [ 295.090447][ T30] audit: type=1800 audit(1742555032.834:8): pid=6284 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.139" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 295.108545][ T6284] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 295.172474][ T5844] usb 5-1: USB disconnect, device number 2 [ 295.343843][ T4052] hfsplus: b-tree write err: -5, ino 4 [ 295.883568][ T6294] loop0: detected capacity change from 0 to 32768 [ 295.934560][ T6284] Remounting filesystem read-only [ 295.961739][ T6284] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 524288 [ 295.970324][ T6284] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=15) [ 295.979669][ T6284] NILFS (loop1): error -5 truncating bmap (ino=15) [ 296.081731][ T6294] (syz.0.143,6294,1):ocfs2_check_set_options:1259 ERROR: Group quotas were requested, but this filesystem does not have the feature enabled. [ 296.099182][ T6294] (syz.0.143,6294,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 296.556483][ T5787] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 296.631039][ T6300] loop2: detected capacity change from 0 to 32768 [ 296.639800][ T6300] btrfs: Deprecated parameter 'usebackuproot' [ 296.646287][ T6300] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 296.671883][ T6300] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.145 (6300) [ 296.709247][ T6300] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 296.720974][ T6300] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm [ 296.730040][ T6300] BTRFS info (device loop2): using free-space-tree [ 296.941097][ T3964] BTRFS warning (device loop2): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x25710f61 level 0 [ 296.955386][ T6300] BTRFS error (device loop2): failed to load root extent [ 296.969941][ T6300] BTRFS warning (device loop2): try to load backup roots slot 1 [ 297.076223][ T1095] BTRFS warning (device loop2): checksum verify failed on logical 5320704 mirror 1 wanted 0xbb380407 found 0xd2e04263 level 0 [ 297.090993][ T6300] BTRFS error (device loop2): failed to load root free space [ 297.098691][ T6300] BTRFS warning (device loop2): try to load backup roots slot 2 [ 297.110515][ T75] BTRFS error (device loop2): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 297.125435][ T6300] BTRFS warning (device loop2): couldn't read tree root [ 297.133156][ T6300] BTRFS warning (device loop2): try to load backup roots slot 3 [ 297.155366][ T6300] BTRFS warning (device loop2): global root 2 0 already exists [ 297.163751][ T6300] BTRFS error (device loop2): failed to load root extent [ 297.229733][ T6300] BTRFS error (device loop2): open_ctree failed: -17 [ 298.902428][ T6328] loop4: detected capacity change from 0 to 40427 [ 299.077645][ T6328] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 299.085035][ T6328] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 299.143718][ T6328] F2FS-fs (loop4): project quota file already specified [ 299.472477][ T6333] loop2: detected capacity change from 0 to 40427 [ 299.556046][ T6333] F2FS-fs (loop2): build fault injection attr: rate: 17009, type: 0x1fffff [ 299.565486][ T6333] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8 [ 299.574404][ T6333] F2FS-fs (loop2): Image doesn't support compression [ 299.660377][ T6333] F2FS-fs (loop2): invalid crc value [ 299.666094][ T6333] F2FS-fs (loop2): Wrong cp_pack_start_sum: 1 [ 299.674265][ T6333] F2FS-fs (loop2): Failed to get valid F2FS checkpoint [ 299.779197][ T6334] loop1: detected capacity change from 0 to 2048 [ 300.254674][ T6337] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 301.343188][ T6354] syz.1.163 (6354): /proc/6353/oom_adj is deprecated, please use /proc/6353/oom_score_adj instead. [ 302.096117][ T6366] loop2: detected capacity change from 0 to 1024 [ 302.123232][ T6366] EXT4-fs: Ignoring removed orlov option [ 302.129445][ T6366] EXT4-fs: Ignoring removed mblk_io_submit option [ 302.190308][ T6366] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 302.199259][ T6366] EXT4-fs (loop2): Test dummy encryption mode enabled [ 302.467526][ T6366] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 302.977164][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 303.073397][ T6384] netlink: 24 bytes leftover after parsing attributes in process `syz.0.177'. [ 303.957327][ T6396] loop3: detected capacity change from 0 to 64 [ 304.210423][ T6398] loop2: detected capacity change from 0 to 64 [ 304.700554][ T5844] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 304.918855][ T6409] MPI: mpi too large (113288 bits) [ 304.931111][ T5844] usb 1-1: Using ep0 maxpacket: 32 [ 304.938111][ T6410] loop1: detected capacity change from 0 to 128 [ 304.980669][ T5844] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 304.989082][ T5844] usb 1-1: config 0 has no interface number 0 [ 304.995621][ T5844] usb 1-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 305.007065][ T5844] usb 1-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 305.020868][ T5844] usb 1-1: config 0 interface 1 has no altsetting 0 [ 305.027809][ T5844] usb 1-1: New USB device found, idVendor=076a, idProduct=0300, bcdDevice= 0.00 [ 305.037288][ T5844] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 305.066559][ T6410] VFS: Found a Xenix FS (block size = 512) on device loop1 [ 305.159438][ T5844] usb 1-1: config 0 descriptor?? [ 305.365573][ T5787] sysv_free_block: trying to free block not in datazone [ 305.374009][ T5787] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 305.709814][ T5844] hid-generic 0003:076A:0300.0006: hidraw0: USB HID v0.05 Device [HID 076a:0300] on usb-dummy_hcd.0-1/input1 [ 305.844575][ T5844] usb 1-1: USB disconnect, device number 4 [ 306.454627][ T6424] loop4: detected capacity change from 0 to 1024 [ 306.705062][ T6420] loop3: detected capacity change from 0 to 32768 [ 306.781206][ T6420] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section members_v1: device 0: not enough buckets (got 0, max 64) [ 306.781206][ T6420] members_v1 (size 96): [ 306.781206][ T6420] [ 306.807640][ T6420] bcachefs: bch2_fs_get_tree() error: invalid_sb_members [ 306.861598][ T6424] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 306.874379][ T6424] ext4 filesystem being mounted at /40/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 307.053013][ T6424] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 307.566845][ T6432] loop1: detected capacity change from 0 to 1024 [ 307.911051][ T6432] hfsplus: bad catalog entry type [ 307.941448][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 308.391841][ T1095] hfsplus: b-tree write err: -5, ino 4 [ 308.688723][ T6442] tmpfs: Bad value for 'mpol' [ 308.731829][ T6436] loop2: detected capacity change from 0 to 4096 [ 309.160517][ T6436] ntfs3(loop2): ino=19, mi_enum_attr [ 309.166135][ T6436] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 309.221111][ T5843] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 309.461039][ T5843] usb 2-1: Using ep0 maxpacket: 16 [ 309.522557][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 309.533976][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 309.544258][ T5843] usb 2-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00 [ 309.553683][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 309.833121][ T5843] usb 2-1: config 0 descriptor?? [ 310.164989][ T6452] loop0: detected capacity change from 0 to 256 [ 310.302827][ T6452] exfat: Deprecated parameter 'namecase' [ 310.323556][ T6454] loop3: detected capacity change from 0 to 512 [ 310.397614][ T5843] kye 0003:0458:5016.0007: control desc unexpectedly large [ 310.402844][ T6454] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 310.405293][ T5843] kye 0003:0458:5016.0007: control desc unexpectedly large [ 310.446400][ T6458] loop4: detected capacity change from 0 to 128 [ 310.482917][ T6458] EXT4-fs: Ignoring removed nobh option [ 310.523976][ T6452] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 310.593376][ T5843] input: HID 0458:5016 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0458:5016.0007/input/input8 [ 310.610862][ T6454] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002] [ 310.634715][ T6454] System zones: 1-12 [ 310.644307][ T6454] EXT4-fs (loop3): 1 truncate cleaned up [ 310.653653][ T6454] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.657698][ T6458] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 310.811114][ T6458] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 310.833535][ T5843] kye 0003:0458:5016.0007: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.1-1/input0 [ 310.940836][ T5843] usb 2-1: USB disconnect, device number 2 [ 310.948078][ T6454] EXT4-fs warning (device loop3): ext4_group_extend:1862: can't shrink FS - resize aborted [ 311.055547][ T6458] EXT4-fs warning (device loop4): __ext4_ioctl:1258: Setting inode version is not supported with metadata_csum enabled. [ 311.653123][ T5800] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 311.731525][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 312.130835][ T26] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 312.324394][ T26] usb 1-1: Using ep0 maxpacket: 16 [ 312.382444][ T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 312.393763][ T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 312.403994][ T26] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 312.417298][ T26] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 312.430811][ T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.671504][ T26] usb 1-1: config 0 descriptor?? [ 312.860974][ T6475] ieee802154 phy0 wpan0: encryption failed: -22 [ 313.135145][ T6479] loop4: detected capacity change from 0 to 64 [ 313.409575][ T26] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0008/input/input9 [ 313.529731][ T26] microsoft 0003:045E:07DA.0008: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 313.658636][ T26] usb 1-1: USB disconnect, device number 5 [ 313.694062][ T6483] Bluetooth: MGMT ver 1.23 [ 315.657650][ T6508] loop4: detected capacity change from 0 to 1024 [ 315.697160][ T6502] loop0: detected capacity change from 0 to 32768 [ 315.712765][ T6502] btrfs: Deprecated parameter 'usebackuproot' [ 315.719103][ T6502] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 315.736970][ T6502] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.233 (6502) [ 315.765801][ T6502] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 315.778246][ T6502] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 315.787452][ T6502] BTRFS error (device loop0): superblock checksum mismatch [ 315.796352][ T6502] BTRFS error (device loop0): open_ctree failed: -22 [ 315.855417][ T6512] loop3: detected capacity change from 0 to 512 [ 315.996757][ T6514] hfsplus: request for non-existent node 2048 in B*Tree [ 316.004089][ T6514] hfsplus: request for non-existent node 2048 in B*Tree [ 316.101187][ T6512] EXT4-fs (loop3): orphan cleanup on readonly fs [ 316.107805][ T6512] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 316.240456][ T6512] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 316.338375][ T6512] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.237: attempt to clear invalid blocks 2 len 1 [ 316.471098][ T6512] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.237: invalid indirect mapped block 1819239214 (level 0) [ 316.547790][ T6512] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.237: invalid indirect mapped block 1819239214 (level 1) [ 316.614556][ T6512] EXT4-fs (loop3): 1 truncate cleaned up [ 316.626184][ T6512] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 316.821823][ T6512] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 316.886618][ T6512] EXT4-fs error (device loop3): __ext4_remount:6738: comm syz.3.237: Abort forced by user [ 316.932177][ T6512] EXT4-fs (loop3): Remounting filesystem read-only [ 316.939046][ T6512] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 317.222303][ T6517] loop2: detected capacity change from 0 to 4096 [ 317.376570][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 319.972817][ T6556] loop2: detected capacity change from 0 to 1024 [ 320.592483][ T1095] hfsplus: b-tree write err: -5, ino 4 [ 321.117619][ T6565] loop4: detected capacity change from 0 to 32768 [ 321.144556][ T6565] (syz.4.261,6565,0):ocfs2_find_entry:1075 ERROR: status = -117 [ 321.152740][ T6565] (syz.4.261,6565,0):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 66 [ 321.164099][ T6565] (syz.4.261,6565,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 321.173239][ T6565] (syz.4.261,6565,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? [ 321.173425][ T6565] (syz.4.261,6565,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 321.195030][ T6565] (syz.4.261,6565,0):ocfs2_initialize_super:2195 ERROR: status = -22 [ 321.204045][ T6565] (syz.4.261,6565,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 322.351862][ T6584] loop1: detected capacity change from 0 to 256 [ 322.365628][ T6584] exfat: Deprecated parameter 'utf8' [ 322.464236][ T6584] exFAT-fs (loop1): error, invalid access to FAT (entry 0x00000005) bogus content (0x00000001) [ 322.475091][ T6584] exFAT-fs (loop1): Filesystem has been set read-only [ 322.482213][ T6584] exFAT-fs (loop1): failed to load upcase table [ 322.488673][ T6584] exFAT-fs (loop1): failed to recognize exfat type [ 323.427340][ T6599] loop3: detected capacity change from 0 to 256 [ 323.464738][ T6599] exfat: Deprecated parameter 'utf8' [ 323.570543][ T6599] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 323.832260][ T30] audit: type=1804 audit(1742555061.564:9): pid=6599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.279" name="/newroot/56/file0/bus" dev="loop3" ino=23 res=1 errno=0 [ 324.336862][ T6608] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 324.346006][ T6608] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 324.355130][ T6608] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 324.364285][ T6608] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 324.416248][ T6611] loop0: detected capacity change from 0 to 16 [ 324.788574][ T6605] loop4: detected capacity change from 0 to 40427 [ 324.805299][ T6605] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 324.818363][ T6605] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 324.846051][ T6605] F2FS-fs (loop4): invalid crc_offset: 33558524 [ 324.876509][ T6605] F2FS-fs (loop4): Found nat_bits in checkpoint [ 325.115415][ T6605] F2FS-fs (loop4): sanity_check_inode: corrupted inode footer i_ino=3, ino,nid: [1, 3] run fsck to fix. [ 325.140021][ T6605] F2FS-fs (loop4): Failed to read root inode [ 325.892032][ T6620] bond0: Unable to set down delay as MII monitoring is disabled [ 326.366035][ T6626] netlink: 'syz.3.289': attribute type 1 has an invalid length. [ 326.465147][ T6629] loop1: detected capacity change from 0 to 512 [ 326.543036][ T6629] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 326.694069][ T6629] EXT4-fs (loop1): Couldn't remount RDWR because of unprocessed orphan inode list. Please umount/remount instead [ 327.102849][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.147047][ T6637] loop4: detected capacity change from 0 to 512 [ 327.212835][ T6637] EXT4-fs: Ignoring removed nobh option [ 327.318111][ T6637] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 328.028075][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 328.221890][ T6651] warning: `syz.2.300' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 328.719273][ T6649] loop3: detected capacity change from 0 to 4096 [ 328.738038][ T6656] loop1: detected capacity change from 0 to 1024 [ 328.836577][ T6656] EXT4-fs: Ignoring removed bh option [ 328.926329][ T6657] loop4: detected capacity change from 0 to 2048 [ 328.995038][ T6657] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 329.020052][ T6656] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 329.033513][ T6656] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 329.084088][ T6661] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 329.138063][ T6223] udevd[6223]: incorrect nilfs2 checksum on /dev/loop4 [ 329.179782][ T6223] udevd[6223]: incorrect nilfs2 checksum on /dev/loop4 [ 329.270063][ T6663] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 329.353687][ T30] audit: type=1800 audit(1742555067.114:10): pid=6656 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.303" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 329.515051][ T6657] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 3044605952 [ 329.528349][ T6657] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=15) [ 329.603470][ T6657] Remounting filesystem read-only [ 329.608894][ T6657] NILFS (loop4): error -5 truncating bmap (ino=15) [ 330.033961][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 330.191630][ T5800] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 330.336765][ T6669] loop0: detected capacity change from 0 to 1024 [ 330.567978][ T6669] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 330.695162][ T6678] loop3: detected capacity change from 0 to 164 [ 330.840372][ T6678] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 331.000872][ T26] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 331.152581][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 331.234407][ T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 331.245844][ T26] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64 [ 331.257245][ T26] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 331.274738][ T26] usb 2-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00 [ 331.285360][ T26] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 331.583455][ T26] usb 2-1: config 0 descriptor?? [ 331.591002][ T6679] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 332.267314][ T26] hid-multitouch 0003:0EEF:72D0.0009: hidraw0: USB HID v0.00 Device [HID 0eef:72d0] on usb-dummy_hcd.1-1/input0 [ 332.423884][ T26] usb 2-1: USB disconnect, device number 3 [ 332.500616][ T5843] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 332.731200][ T5843] usb 5-1: Using ep0 maxpacket: 16 [ 332.794104][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 332.809012][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 332.820415][ T5843] usb 5-1: New USB device found, idVendor=056a, idProduct=032a, bcdDevice= 0.00 [ 332.829704][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 332.976006][ T5843] usb 5-1: config 0 descriptor?? [ 333.563010][ T5843] wacom 0003:056A:032A.000A: hidraw0: USB HID v0.00 Device [HID 056a:032a] on usb-dummy_hcd.4-1/input0 [ 333.673556][ T5843] usb 5-1: USB disconnect, device number 3 [ 333.758172][ T6710] loop0: detected capacity change from 0 to 256 [ 333.836175][ T6704] loop2: detected capacity change from 0 to 2048 [ 333.961955][ T6704] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 334.001676][ T6710] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 334.514697][ T6715] loop3: detected capacity change from 0 to 512 [ 334.737282][ T6715] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 334.754637][ T6715] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 335.615598][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 335.781461][ T6724] loop2: detected capacity change from 0 to 32768 [ 335.809692][ T6724] (syz.2.328,6724,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 335.831513][ T6724] (syz.2.328,6724,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 335.863907][ T6724] (syz.2.328,6724,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xd5db68cb, computed 0x61a7be75. Applying ECC. [ 335.881597][ T6724] (syz.2.328,6724,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xd5db68cb, computed 0x71d5655d [ 335.895770][ T6724] (syz.2.328,6724,1):ocfs2_validate_inode_block:1393 ERROR: Checksum failed for dinode 22 [ 335.906196][ T6724] (syz.2.328,6724,1):ocfs2_read_locked_inode:535 ERROR: status = -5 [ 335.914820][ T6724] (syz.2.328,6724,1):_ocfs2_get_system_file_inode:144 ERROR: status = -5 [ 335.924569][ T6724] (syz.2.328,6724,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 335.933827][ T6724] (syz.2.328,6724,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 3, possibly corrupt fs? [ 335.934010][ T6724] (syz.2.328,6724,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 335.955645][ T6724] (syz.2.328,6724,1):ocfs2_initialize_super:2195 ERROR: status = -22 [ 335.964501][ T6724] (syz.2.328,6724,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 336.456024][ T6737] loop4: detected capacity change from 0 to 64 [ 338.678059][ T6753] loop3: detected capacity change from 0 to 40427 [ 338.710929][ T6753] F2FS-fs (loop3): quotafile must be on filesystem root [ 339.199116][ T6767] loop4: detected capacity change from 0 to 256 [ 339.788913][ T6771] loop2: detected capacity change from 0 to 2048 [ 339.842211][ T6771] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=3932051, location=3932051 [ 339.925561][ T6775] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 339.938583][ T6771] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 340.006878][ T6775] IPVS: stopping backup sync thread 6776 ... [ 341.927180][ T6787] loop0: detected capacity change from 0 to 32768 [ 341.936319][ T6787] gfs2: commit mount option requires a positive numeric argument [ 343.254467][ T6802] loop2: detected capacity change from 0 to 32768 [ 343.295200][ T6802] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 343.303933][ T6802] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 343.319558][ T6802] gfs2: fsid=syz:syz.0: no journals! [ 344.289038][ T6811] loop4: detected capacity change from 0 to 4096 [ 344.368984][ T6811] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 344.601538][ T6816] loop3: detected capacity change from 0 to 32768 [ 344.853653][ T6816] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,wide_macs,journal_flush_disabled,norecovery,nojournal_transaction_names,version_upgrade=incompatible [ 344.877204][ T6816] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 344.891524][ T6816] bcachefs (loop3): Version upgrade required: [ 344.891524][ T6816] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 344.891524][ T6816] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size [ 344.891524][ T6816] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 344.962893][ T6816] bcachefs (loop3): Now allowing incompatible features up to 1.20: directory_size, previously allowed up to 0.0: (unknown version) [ 344.962893][ T6816] [ 345.059956][ T6816] bcachefs (loop3): error validating btree node at btree alloc level 0/0 [ 345.060054][ T6816] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 345.060326][ T6816] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 345.105909][ T6816] bcachefs (loop3): btree_node_read_work: rewriting btree node at due to error [ 345.105909][ T6816] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 345.216754][ T6816] bcachefs (loop3): accounting_read... done [ 345.227235][ T6816] bcachefs (loop3): alloc_read... done [ 345.234168][ T6816] bcachefs (loop3): stripes_read... done [ 345.240393][ T6816] bcachefs (loop3): snapshots_read... done [ 345.246965][ T6816] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean [ 345.259500][ T6816] bcachefs (loop3): done starting filesystem [ 345.341973][ T6835] pimreg: entered allmulticast mode [ 345.348153][ T6811] ntfs3(loop4): ino=5, "/" indx_read [ 345.354513][ T6811] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 345.458703][ T6811] ntfs3(loop4): ino=5, ntfs_readdir [ 345.461884][ T5786] bcachefs (loop3): shutting down [ 345.585047][ T5786] bcachefs (loop3): shutdown complete [ 346.071490][ T26] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 346.241255][ T26] usb 1-1: Using ep0 maxpacket: 16 [ 346.327364][ T26] usb 1-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5 [ 346.336991][ T26] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.345418][ T26] usb 1-1: Product: syz [ 346.349804][ T26] usb 1-1: Manufacturer: syz [ 346.355081][ T26] usb 1-1: SerialNumber: syz [ 346.360563][ T5843] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 346.446404][ T26] usb 1-1: config 0 descriptor?? [ 346.477902][ T26] visor 1-1:0.0: Sony Clie 3.5 converter detected [ 346.590937][ T5843] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 196, using maximum allowed: 30 [ 346.602332][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 346.613778][ T5843] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 346.627456][ T5843] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 196 [ 346.642031][ T5843] usb 2-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00 [ 346.651522][ T5843] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 346.882449][ T5843] usb 2-1: config 0 descriptor?? [ 346.982480][ T26] usb 1-1: Sony Clie 3.5 converter now attached to ttyUSB0 [ 347.168832][ T5844] usb 1-1: USB disconnect, device number 6 [ 347.281919][ T5844] clie_3.5 ttyUSB0: Sony Clie 3.5 converter now disconnected from ttyUSB0 [ 347.294394][ T5844] visor 1-1:0.0: device disconnected [ 347.370648][ T5843] holtek_kbd 0003:04D9:A055.000B: unbalanced collection at end of report description [ 347.418893][ T5843] holtek_kbd 0003:04D9:A055.000B: probe with driver holtek_kbd failed with error -22 [ 347.549396][ T5843] usb 2-1: USB disconnect, device number 4 [ 348.465239][ T6861] loop0: detected capacity change from 0 to 256 [ 348.581943][ T6861] exfat: Deprecated parameter 'namecase' [ 348.789156][ T6861] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d) [ 349.839145][ T6874] sp0: Synchronizing with TNC [ 350.395817][ T6878] netlink: 12 bytes leftover after parsing attributes in process `syz.3.391'. [ 350.631003][ T26] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 350.850667][ T26] usb 5-1: Using ep0 maxpacket: 8 [ 350.928402][ T26] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 350.939897][ T26] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 350.951078][ T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 350.961194][ T26] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 350.972802][ T26] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 350.986530][ T26] usb 5-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 350.995977][ T26] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.035536][ T26] usb 5-1: config 0 descriptor?? [ 351.048779][ T6877] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 351.723867][ T5794] Bluetooth: hci5: Opcode 0x0c03 failed: -71 [ 351.733709][ T5844] usb 5-1: USB disconnect, device number 4 [ 352.266294][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 352.273158][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 352.520656][ T6895] sctp: [Deprecated]: syz.1.398 (pid 6895) Use of int in max_burst socket option. [ 352.520656][ T6895] Use struct sctp_assoc_value instead [ 353.767708][ T6912] loop4: detected capacity change from 0 to 256 [ 353.802867][ T6913] netlink: 284 bytes leftover after parsing attributes in process `syz.0.407'. [ 354.159132][ T6912] FAT-fs (loop4): Directory bread(block 64) failed [ 354.166259][ T6912] FAT-fs (loop4): Directory bread(block 65) failed [ 354.173391][ T6912] FAT-fs (loop4): Directory bread(block 66) failed [ 354.180281][ T6912] FAT-fs (loop4): Directory bread(block 67) failed [ 354.187195][ T6912] FAT-fs (loop4): Directory bread(block 68) failed [ 354.194174][ T6912] FAT-fs (loop4): Directory bread(block 69) failed [ 354.206038][ T6912] FAT-fs (loop4): Directory bread(block 70) failed [ 354.214277][ T6912] FAT-fs (loop4): Directory bread(block 71) failed [ 354.221471][ T6912] FAT-fs (loop4): Directory bread(block 72) failed [ 354.228248][ T6912] FAT-fs (loop4): Directory bread(block 73) failed [ 354.556380][ T6914] loop1: detected capacity change from 0 to 32768 [ 354.811199][ T6916] loop2: detected capacity change from 0 to 2048 [ 354.999121][ T6914] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,wide_macs,journal_flush_disabled,norecovery,nojournal_transaction_names,version_upgrade=incompatible [ 355.019781][ T6916] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 355.036912][ T6914] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 355.046336][ T6914] bcachefs (loop1): Version upgrade required: [ 355.046336][ T6914] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 355.046336][ T6914] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size [ 355.046336][ T6914] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 355.047751][ T6911] loop3: detected capacity change from 0 to 8192 [ 355.117280][ T6914] bcachefs (loop1): Now allowing incompatible features up to 1.20: directory_size, previously allowed up to 0.0: (unknown version) [ 355.117280][ T6914] [ 355.193641][ T6914] bcachefs (loop1): error validating btree node at btree alloc level 0/0 [ 355.193728][ T6914] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 355.193829][ T6914] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 355.244004][ T6914] bcachefs (loop1): btree_node_read_work: rewriting btree node at due to error [ 355.244004][ T6914] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 355.303884][ T6914] bcachefs (loop1): accounting_read... done [ 355.312819][ T6914] bcachefs (loop1): alloc_read... done [ 355.319627][ T6914] bcachefs (loop1): stripes_read... done [ 355.325881][ T6914] bcachefs (loop1): snapshots_read... done [ 355.336890][ T6914] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean [ 355.349018][ T6914] bcachefs (loop1): done starting filesystem [ 355.531416][ T5787] bcachefs (loop1): shutting down [ 355.667989][ T5787] bcachefs (loop1): shutdown complete [ 355.761220][ T6930] loop0: detected capacity change from 0 to 256 [ 355.770857][ T6930] exfat: Deprecated parameter 'namecase' [ 355.962594][ T5786] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 355.970707][ T5786] FAT-fs (loop3): Filesystem has been set read-only [ 356.020458][ T6930] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 356.068111][ T5786] FAT-fs (loop3): error, corrupted directory (invalid entries) [ 356.504961][ T6931] loop4: detected capacity change from 0 to 32768 [ 356.520756][ T6931] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section journal_v2: journal buckets entry with bad nr: 1080863910568919064+0 [ 356.520756][ T6931] journal_v2 (size 40): [ 356.520756][ T6931] Buckets: 9-16 1080863910568919064-1080863910568919064 [ 356.520756][ T6931] [ 356.549787][ T6931] bcachefs: bch2_fs_get_tree() error: invalid_sb_journal [ 356.677799][ T6934] netlink: 'syz.2.413': attribute type 29 has an invalid length. [ 356.691128][ T6934] netlink: 'syz.2.413': attribute type 29 has an invalid length. [ 357.603088][ T6936] loop4: detected capacity change from 0 to 32768 [ 357.626781][ T6936] bcachefs (/dev/loop4): error validating superblock: Invalid superblock: optional field with size 0 (type 1) [ 357.639410][ T6936] bcachefs: bch2_fs_get_tree() error: invalid_sb_field_size [ 358.356819][ T3733] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 358.394945][ T5844] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 358.546675][ T3733] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 358.619087][ T5844] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 358.630698][ T5844] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 358.641945][ T5844] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 358.652191][ T5844] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 358.700023][ T6942] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 358.717270][ T6946] loop4: detected capacity change from 0 to 256 [ 358.725656][ T5844] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 358.823504][ T3733] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 358.955211][ T6946] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d) [ 358.970683][ T6946] exFAT-fs (loop4): error, invalid access to FAT bad cluster (entry 0x00000005) [ 358.970775][ T6946] exFAT-fs (loop4): failed to initialize root inode [ 358.995202][ T3733] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 359.067041][ T6942] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(5) [ 359.067166][ T6942] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 359.067594][ T6942] vhci_hcd vhci_hcd.0: Device attached [ 359.190875][ T6950] vhci_hcd: connection closed [ 359.207530][ T4982] vhci_hcd: stop threads [ 359.207600][ T4982] vhci_hcd: release socket [ 359.207713][ T4982] vhci_hcd: disconnect device [ 359.278785][ T5843] vhci_hcd: vhci_device speed not set [ 359.509227][ T26] usb 3-1: USB disconnect, device number 4 [ 359.711079][ T3733] bridge_slave_1: left allmulticast mode [ 359.711181][ T3733] bridge_slave_1: left promiscuous mode [ 359.712226][ T3733] bridge0: port 2(bridge_slave_1) entered disabled state [ 359.773461][ T3733] bridge_slave_0: left allmulticast mode [ 359.773550][ T3733] bridge_slave_0: left promiscuous mode [ 359.774395][ T3733] bridge0: port 1(bridge_slave_0) entered disabled state [ 360.616760][ T3733] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 360.643903][ T3733] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 360.667473][ T3733] bond0 (unregistering): Released all slaves [ 361.285626][ T6956] tipc: Started in network mode [ 361.291493][ T6956] tipc: Node identity fee00000000000000079940000000001, cluster identity 4711 [ 361.300904][ T6956] tipc: Enabling of bearer rejected, failed to enable media [ 361.491881][ T5957] udevd[5957]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 361.854246][ T3733] hsr_slave_0: left promiscuous mode [ 361.885353][ T3733] hsr_slave_1: left promiscuous mode [ 361.887674][ T3733] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 361.887821][ T3733] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 361.965975][ T3733] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 361.966104][ T3733] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 362.064363][ T3733] veth1_macvtap: left promiscuous mode [ 362.064506][ T3733] veth0_macvtap: left promiscuous mode [ 362.064789][ T3733] veth1_vlan: left promiscuous mode [ 362.065002][ T3733] veth0_vlan: left promiscuous mode [ 362.720635][ T30] audit: type=1326 audit(1742555100.404:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.720854][ T30] audit: type=1326 audit(1742555100.404:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.854026][ T30] audit: type=1326 audit(1742555100.614:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.879711][ T30] audit: type=1326 audit(1742555100.634:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.882566][ T30] audit: type=1326 audit(1742555100.644:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.882798][ T30] audit: type=1326 audit(1742555100.644:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.430" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83dc18d169 code=0x7ffc0000 [ 362.930530][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 362.961556][ T5793] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 362.997948][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 363.015238][ T5793] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 363.019524][ T5793] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 363.026194][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 363.265152][ T3733] team0 (unregistering): Port device team_slave_1 removed [ 363.342780][ T3733] team0 (unregistering): Port device team_slave_0 removed [ 365.111873][ T5794] Bluetooth: hci0: command tx timeout [ 365.612393][ T6970] chnl_net:caif_netlink_parms(): no params data found [ 366.719944][ T7007] loop1: detected capacity change from 0 to 32768 [ 366.752564][ T7006] loop4: detected capacity change from 0 to 32768 [ 366.762624][ T7006] XFS (loop4): Invalid device [./file1], error=-15 [ 367.250437][ T5794] Bluetooth: hci0: command tx timeout [ 368.081429][ T45] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 368.353561][ T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 368.365184][ T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 368.375443][ T45] usb 5-1: New USB device found, idVendor=0403, idProduct=97c1, bcdDevice= 0.00 [ 368.384899][ T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 368.560247][ T45] usb 5-1: config 0 descriptor?? [ 368.634323][ T6970] bridge0: port 1(bridge_slave_0) entered blocking state [ 368.645290][ T6970] bridge0: port 1(bridge_slave_0) entered disabled state [ 368.654008][ T6970] bridge_slave_0: entered allmulticast mode [ 368.665856][ T6970] bridge_slave_0: entered promiscuous mode [ 368.787889][ T7029] loop2: detected capacity change from 0 to 256 [ 368.833926][ T6970] bridge0: port 2(bridge_slave_1) entered blocking state [ 368.842312][ T6970] bridge0: port 2(bridge_slave_1) entered disabled state [ 368.853048][ T6970] bridge_slave_1: entered allmulticast mode [ 368.924664][ T6970] bridge_slave_1: entered promiscuous mode [ 369.061214][ T45] hid-retrode 0003:0403:97C1.000C: unknown main item tag 0x3 [ 369.069023][ T45] hid-retrode 0003:0403:97C1.000C: item fetching failed at offset 3/5 [ 369.145026][ T45] hid-retrode 0003:0403:97C1.000C: probe with driver hid-retrode failed with error -22 [ 369.258145][ T7029] FAT-fs (loop2): Directory bread(block 64) failed [ 369.264624][ T53] Bluetooth: hci0: command tx timeout [ 369.266590][ T7029] FAT-fs (loop2): Directory bread(block 65) failed [ 369.277545][ T7029] FAT-fs (loop2): Directory bread(block 66) failed [ 369.285008][ T7029] FAT-fs (loop2): Directory bread(block 67) failed [ 369.292065][ T7029] FAT-fs (loop2): Directory bread(block 68) failed [ 369.298851][ T7029] FAT-fs (loop2): Directory bread(block 69) failed [ 369.305860][ T7029] FAT-fs (loop2): Directory bread(block 70) failed [ 369.312884][ T7029] FAT-fs (loop2): Directory bread(block 71) failed [ 369.319728][ T7029] FAT-fs (loop2): Directory bread(block 72) failed [ 369.326935][ T7029] FAT-fs (loop2): Directory bread(block 73) failed [ 369.360550][ T45] usb 5-1: USB disconnect, device number 5 [ 369.407455][ T6970] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 369.505847][ T7031] loop1: detected capacity change from 0 to 1024 [ 369.518965][ T6970] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 369.599085][ T7031] EXT4-fs: Ignoring removed orlov option [ 369.661359][ T53] Bluetooth: hci2: command 0x0406 tx timeout [ 369.671367][ T5791] Bluetooth: hci1: command 0x0406 tx timeout [ 369.677918][ T53] Bluetooth: hci3: command 0x0406 tx timeout [ 369.687052][ T5791] Bluetooth: hci4: command 0x0406 tx timeout [ 369.793190][ T7031] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 369.856999][ T6970] team0: Port device team_slave_0 added [ 369.884061][ T6970] team0: Port device team_slave_1 added [ 370.178242][ T6970] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 370.185750][ T6970] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.212681][ T6970] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 370.242291][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 370.331435][ T6970] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 370.338610][ T6970] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 370.365611][ T6970] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 370.735856][ T6970] hsr_slave_0: entered promiscuous mode [ 370.745618][ T6970] hsr_slave_1: entered promiscuous mode [ 370.754447][ T6970] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 370.762288][ T6970] Cannot create hsr debugfs directory [ 371.352020][ T5790] Bluetooth: hci0: command tx timeout [ 371.788415][ T7058] loop1: detected capacity change from 0 to 512 [ 371.909067][ T7058] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 372.107176][ T7058] EXT4-fs (loop1): 1 orphan inode deleted [ 372.113334][ T7058] EXT4-fs (loop1): 1 truncate cleaned up [ 372.123128][ T7058] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 372.334015][ T7058] EXT4-fs error (device loop1): empty_inline_dir:1850: inode #12: block 7: comm syz.1.460: bad entry in directory: directory entry overrun - offset=4, inode=13, rec_len=784, size=60 fake=0 [ 372.379185][ T7064] sp0: Synchronizing with TNC [ 372.445630][ T7058] EXT4-fs (loop1): Remounting filesystem read-only [ 372.452643][ T7058] EXT4-fs warning (device loop1): empty_inline_dir:1857: bad inline directory (dir #12) - inode 13, rec_len 784, name_len 5inline size 60 [ 372.516611][ T6970] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 372.657664][ T6970] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 372.687366][ T7069] loop2: detected capacity change from 0 to 1024 [ 372.772000][ T7069] EXT4-fs: Ignoring removed orlov option [ 372.792110][ T6970] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 372.878612][ T6970] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 372.989051][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.024096][ T7069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.132580][ T7069] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2793: inode #12: comm syz.2.462: corrupted in-inode xattr: bad magic number in in-inode xattr [ 373.229492][ T7069] EXT4-fs (loop2): Remounting filesystem read-only [ 373.236483][ T7069] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2863: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 373.517793][ T7081] loop1: detected capacity change from 0 to 128 [ 373.597207][ T7081] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 373.707449][ T7081] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 373.755186][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.239983][ T6970] 8021q: adding VLAN 0 to HW filter on device bond0 [ 374.443075][ T6970] 8021q: adding VLAN 0 to HW filter on device team0 [ 374.558315][ T3964] bridge0: port 1(bridge_slave_0) entered blocking state [ 374.566088][ T3964] bridge0: port 1(bridge_slave_0) entered forwarding state [ 374.698742][ T3964] bridge0: port 2(bridge_slave_1) entered blocking state [ 374.706517][ T3964] bridge0: port 2(bridge_slave_1) entered forwarding state [ 375.967864][ T7112] loop4: detected capacity change from 0 to 64 [ 376.180871][ T7115] loop2: detected capacity change from 0 to 256 [ 376.594954][ T7115] FAT-fs (loop2): Directory bread(block 64) failed [ 376.602170][ T7115] FAT-fs (loop2): Directory bread(block 65) failed [ 376.609071][ T7115] FAT-fs (loop2): Directory bread(block 66) failed [ 376.617483][ T7115] FAT-fs (loop2): Directory bread(block 67) failed [ 376.625524][ T7115] FAT-fs (loop2): Directory bread(block 68) failed [ 376.634496][ T7115] FAT-fs (loop2): Directory bread(block 69) failed [ 376.642264][ T7115] FAT-fs (loop2): Directory bread(block 70) failed [ 376.649059][ T7115] FAT-fs (loop2): Directory bread(block 71) failed [ 376.656179][ T7115] FAT-fs (loop2): Directory bread(block 72) failed [ 376.663102][ T7115] FAT-fs (loop2): Directory bread(block 73) failed [ 377.210722][ T7129] loop0: detected capacity change from 0 to 256 [ 377.354561][ T6970] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 377.423687][ T7129] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 379.312806][ T7156] devpts: called with bogus options [ 379.661074][ T11] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 379.862396][ T11] usb 1-1: Using ep0 maxpacket: 32 [ 379.921735][ T11] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 379.934399][ T11] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 379.946337][ T11] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 379.955744][ T11] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.153165][ T11] usb 1-1: config 0 descriptor?? [ 380.173657][ T7162] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 380.186535][ T7170] netlink: 16 bytes leftover after parsing attributes in process `syz.1.495'. [ 380.236535][ T11] hub 1-1:0.0: USB hub found [ 380.445458][ T11] hub 1-1:0.0: 1 port detected [ 380.589975][ T6970] veth0_vlan: entered promiscuous mode [ 380.654658][ T11] hub 1-1:0.0: hub_hub_status failed (err = -71) [ 380.661610][ T11] hub 1-1:0.0: config failed, can't get hub status (err -71) [ 380.712933][ T6970] veth1_vlan: entered promiscuous mode [ 380.771356][ T11] usbhid 1-1:0.0: can't add hid device: -71 [ 380.778036][ T11] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 380.917669][ T11] usb 1-1: USB disconnect, device number 7 [ 381.139152][ T6970] veth0_macvtap: entered promiscuous mode [ 381.218427][ T6970] veth1_macvtap: entered promiscuous mode [ 381.284363][ T7178] loop1: detected capacity change from 0 to 1024 [ 381.476776][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 381.487621][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.497855][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 381.508691][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.518942][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 381.529682][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.539799][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 381.555409][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.572173][ T6970] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 381.607349][ T7183] tc_dump_action: action bad kind [ 381.787607][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 381.800288][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.811697][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 381.823225][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.833313][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 381.844149][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.858869][ T6970] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 381.870810][ T6970] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 381.885997][ T6970] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 382.397491][ T6970] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.406960][ T6970] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.416245][ T6970] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.425380][ T6970] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 382.892107][ T7190] loop0: detected capacity change from 0 to 4096 [ 383.074654][ T7201] loop4: detected capacity change from 0 to 256 [ 383.271798][ T7201] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe1cea053, utbl_chksum : 0x7319d30d) [ 383.501570][ T30] audit: type=1800 audit(1742555121.254:17): pid=7201 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.506" name="bus" dev="loop4" ino=100 res=0 errno=0 [ 383.553103][ T7203] process 'syz.0.501' launched './file0' with NULL argv: empty string added [ 384.243805][ T7211] netlink: 16 bytes leftover after parsing attributes in process `syz.4.509'. [ 384.332671][ T7215] bridge0: port 2(bridge_slave_1) entered disabled state [ 384.342644][ T7215] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.496104][ T7215] bridge_slave_1: left allmulticast mode [ 384.502327][ T7215] bridge_slave_1: left promiscuous mode [ 384.509185][ T7215] bridge0: port 2(bridge_slave_1) entered disabled state [ 384.601104][ T7215] bridge_slave_0: left allmulticast mode [ 384.607092][ T7215] bridge_slave_0: left promiscuous mode [ 384.619696][ T7215] bridge0: port 1(bridge_slave_0) entered disabled state [ 384.890634][ T7218] netlink: 8 bytes leftover after parsing attributes in process `syz.0.511'. [ 386.957360][ T7252] loop2: detected capacity change from 0 to 256 [ 387.231235][ T7252] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 387.698890][ T7262] loop0: detected capacity change from 0 to 256 [ 388.799619][ T7265] loop1: detected capacity change from 0 to 40427 [ 388.870751][ T7265] F2FS-fs (loop1): Invalid log sectorsize (131081) [ 388.877688][ T7265] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 388.911907][ T7265] F2FS-fs (loop1): Invalid gid value -1 [ 389.293600][ T7270] loop2: detected capacity change from 0 to 32768 [ 389.590738][ T7270] bcachefs (loop2): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 389.611346][ C1] vkms_vblank_simulate: vblank timer overrun [ 389.619312][ T7270] bcachefs (loop2): recovering from clean shutdown, journal seq 10 [ 389.628826][ T7270] bcachefs (loop2): Version upgrade required: [ 389.628826][ T7270] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 389.628826][ T7270] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.20: directory_size [ 389.628826][ T7270] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 389.699353][ C1] vkms_vblank_simulate: vblank timer overrun [ 389.783583][ T7270] bcachefs (loop2): dropping and reconstructing all alloc info [ 389.962463][ T7270] bcachefs (loop2): accounting_read... done [ 389.969432][ T7270] bcachefs (loop2): alloc_read... done [ 389.975989][ T7270] bcachefs (loop2): stripes_read... done [ 389.985369][ T7270] bcachefs (loop2): snapshots_read... done [ 389.992007][ T7270] bcachefs (loop2): check_allocations... done [ 390.133726][ T7270] bcachefs (loop2): going read-write [ 390.172041][ T7270] bcachefs (loop2): done starting filesystem [ 390.446059][ T5796] bcachefs (loop2): shutting down [ 390.456667][ T5796] bcachefs (loop2): going read-only [ 390.463640][ T5796] bcachefs (loop2): finished waiting for writes to stop [ 390.542891][ T5796] bcachefs (loop2): flushing journal and stopping allocators, journal seq 10 [ 390.595494][ T5796] bcachefs (loop2): flushing journal and stopping allocators complete, journal seq 10 [ 390.650561][ T5796] bcachefs (loop2): unclean shutdown complete, journal seq 11 [ 390.663079][ T5796] bcachefs (loop2): done going read-only, filesystem not clean [ 390.844083][ T5796] bcachefs (loop2): shutdown complete [ 391.279537][ T7300] vxcan3: entered allmulticast mode [ 392.667618][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 392.675942][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 392.949122][ T4292] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 392.957586][ T4292] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 393.081226][ T7320] loop4: detected capacity change from 0 to 256 [ 393.090388][ T7320] exfat: Deprecated parameter 'utf8' [ 393.096059][ T7320] exfat: Deprecated parameter 'utf8' [ 393.364993][ T7320] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 394.300857][ T5790] Bluetooth: hci0: command 0x0405 tx timeout [ 395.847793][ T7351] loop2: detected capacity change from 0 to 256 [ 396.422892][ T7351] FAT-fs (loop2): Directory bread(block 64) failed [ 396.429767][ T7351] FAT-fs (loop2): Directory bread(block 65) failed [ 396.436872][ T7351] FAT-fs (loop2): Directory bread(block 66) failed [ 396.444065][ T7351] FAT-fs (loop2): Directory bread(block 67) failed [ 396.451133][ T7351] FAT-fs (loop2): Directory bread(block 68) failed [ 396.457877][ T7351] FAT-fs (loop2): Directory bread(block 69) failed [ 396.464977][ T7351] FAT-fs (loop2): Directory bread(block 70) failed [ 396.472119][ T7351] FAT-fs (loop2): Directory bread(block 71) failed [ 396.479016][ T7351] FAT-fs (loop2): Directory bread(block 72) failed [ 396.485914][ T7351] FAT-fs (loop2): Directory bread(block 73) failed [ 396.807787][ T7361] loop0: detected capacity change from 0 to 512 [ 397.058123][ T7359] loop5: detected capacity change from 0 to 32768 [ 397.072504][ T7359] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.554 (7359) [ 397.094238][ T7359] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 397.105161][ T7359] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm [ 397.120516][ T7359] BTRFS info (device loop5): disk space caching is enabled [ 397.127990][ T7359] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 397.302587][ T7361] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002] [ 397.343929][ T7361] System zones: 0-2, 18-18, 34-34 [ 397.450371][ T7361] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.555: bg 0: block 248: padding at end of block bitmap is not set [ 397.497380][ T7361] Quota error (device loop0): write_blk: dquota write failed [ 397.505485][ T7361] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 397.518486][ T7361] EXT4-fs error (device loop0): ext4_acquire_dquot:6927: comm syz.0.555: Failed to acquire dquot type 1 [ 397.573269][ T7359] BTRFS info (device loop5): rebuilding free space tree [ 397.643369][ T7359] BTRFS info (device loop5): disabling free space tree [ 397.651050][ T7359] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 397.661129][ T7359] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 397.694470][ T7359] BTRFS info (device loop5): checking UUID tree [ 397.712710][ T3964] BTRFS warning (device loop5): checksum verify failed on logical 5308416 mirror 1 wanted 0xe1d58233 found 0x7db35a2b level 0 [ 397.732125][ T7359] BTRFS: error (device loop5) in btrfs_fill_super:981: errno=-5 IO failure [ 397.750855][ T7359] BTRFS error (device loop5 state E): commit super ret -30 [ 397.760599][ T7361] EXT4-fs (loop0): 1 truncate cleaned up [ 397.768449][ T7361] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.781951][ T7361] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 398.139372][ T7390] loop2: detected capacity change from 0 to 1024 [ 398.387784][ T7390] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 398.474191][ T7361] syz.0.555 (7361) used greatest stack depth: 3824 bytes left [ 398.592481][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.610723][ T7390] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4115: comm syz.2.558: Allocating blocks 385-513 which overlap fs metadata [ 398.711863][ T7389] EXT4-fs (loop2): pa ffff8881239845b0: logic 16, phys. 129, len 24 [ 398.720818][ T7389] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:5366: group 0, free 0, pa_free 8 [ 399.186734][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 399.342279][ T7403] tipc: Enabling of bearer rejected, failed to enable media [ 399.711756][ T7409] IPVS: Error connecting to the multicast addr [ 401.110032][ T7428] 8021q: adding VLAN 0 to HW filter on device bond1 [ 401.124064][ T7428] team0: Port device bond1 added [ 401.393367][ T7432] xt_hashlimit: max too large, truncated to 1048576 [ 401.858044][ T30] audit: type=1326 audit(1742555139.614:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7437 comm="syz.0.577" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb96e18d169 code=0x0 [ 402.041758][ T7441] netlink: 44 bytes leftover after parsing attributes in process `syz.1.578'. [ 402.284757][ T7444] netlink: 332 bytes leftover after parsing attributes in process `syz.5.579'. [ 402.294499][ T7444] netlink: 104 bytes leftover after parsing attributes in process `syz.5.579'. [ 402.303893][ T7444] netlink: 32 bytes leftover after parsing attributes in process `syz.5.579'. [ 402.852020][ T7452] netlink: 32 bytes leftover after parsing attributes in process `syz.1.582'. [ 403.068898][ T7455] loop5: detected capacity change from 0 to 16 [ 403.152026][ T7455] erofs (device loop5): mounted with root inode @ nid 36. [ 404.049426][ T7466] netlink: 204 bytes leftover after parsing attributes in process `syz.1.587'. [ 404.078962][ T7463] loop0: detected capacity change from 0 to 32768 [ 404.141386][ T7467] loop2: detected capacity change from 0 to 64 [ 404.208756][ T7463] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 404.225338][ T7463] (syz.0.586,7463,0):ocfs2_init_local_system_inodes:496 ERROR: status=-22, sysfile=10, slot=0 [ 404.236563][ T7463] (syz.0.586,7463,0):ocfs2_init_local_system_inodes:505 ERROR: status = -22 [ 404.245635][ T7463] (syz.0.586,7463,0):ocfs2_mount_volume:1758 ERROR: status = -22 [ 404.261838][ T7463] (syz.0.586,7463,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 405.345904][ T7483] netlink: 'syz.2.592': attribute type 3 has an invalid length. [ 405.356007][ T7483] netlink: 'syz.2.592': attribute type 1 has an invalid length. [ 405.364286][ T7483] netlink: 201360 bytes leftover after parsing attributes in process `syz.2.592'. [ 405.394397][ T7482] loop5: detected capacity change from 0 to 256 [ 405.511966][ T7482] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 405.572576][ T7485] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 406.388144][ T7493] loop2: detected capacity change from 0 to 256 [ 406.433613][ T7493] exfat: Deprecated parameter 'namecase' [ 406.439799][ T7493] exfat: Deprecated parameter 'utf8' [ 406.448471][ T7495] loop4: detected capacity change from 0 to 64 [ 406.557416][ T7498] loop5: detected capacity change from 0 to 64 [ 406.591037][ T7493] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 406.795144][ T7502] netlink: 24 bytes leftover after parsing attributes in process `syz.1.601'. [ 408.667712][ T7526] loop4: detected capacity change from 0 to 512 [ 408.798418][ T7526] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 408.877235][ T7526] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 408.904429][ T7528] netlink: 8 bytes leftover after parsing attributes in process `syz.0.613'. [ 408.914226][ T7528] IPVS: Error joining to the multicast group [ 408.962964][ T7526] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.612: corrupted in-inode xattr: e_value size too large [ 409.154751][ T7526] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.612: couldn't read orphan inode 15 (err -117) [ 409.270548][ T7526] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 413.467623][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.701485][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 413.708146][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 414.726336][ T30] audit: type=1326 audit(1742555152.464:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26dad8d169 code=0x7ffc0000 [ 414.869905][ T30] audit: type=1326 audit(1742555152.514:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f26dad8d169 code=0x7ffc0000 [ 414.893090][ T30] audit: type=1326 audit(1742555152.514:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26dad8d169 code=0x7ffc0000 [ 414.915793][ T30] audit: type=1326 audit(1742555152.524:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f26dad8d169 code=0x7ffc0000 [ 414.939898][ T30] audit: type=1326 audit(1742555152.524:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7569 comm="syz.1.629" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f26dad8d169 code=0x7ffc0000 [ 415.011852][ T5844] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 415.247782][ T5844] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 415.259224][ T5844] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 415.270919][ T5844] usb 5-1: New USB device found, idVendor=046d, idProduct=c52b, bcdDevice= 0.00 [ 415.280476][ T5844] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 415.445627][ T5844] usb 5-1: config 0 descriptor?? [ 415.953376][ T7588] bond0: option arp_interval: invalid value (18446744072034198015) [ 415.961762][ T7588] bond0: option arp_interval: allowed values 0 - 2147483647 [ 416.036195][ T7590] loop2: detected capacity change from 0 to 64 [ 416.204035][ T30] audit: type=1800 audit(1742555153.954:24): pid=7590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.636" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 416.244086][ T45] usb 5-1: USB disconnect, device number 6 [ 416.341505][ T7593] netlink: 8 bytes leftover after parsing attributes in process `syz.1.638'. [ 417.011803][ T5844] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 417.776032][ T7608] loop4: detected capacity change from 0 to 512 [ 417.814078][ T7602] loop1: detected capacity change from 0 to 32768 [ 417.907551][ T7609] loop2: detected capacity change from 0 to 1024 [ 418.013093][ T7608] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 418.024106][ T7609] EXT4-fs (loop2): couldn't mount as ext2 due to feature incompatibilities [ 418.260388][ T7608] EXT4-fs (loop4): 1 truncate cleaned up [ 418.267945][ T7608] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 418.376507][ T5844] usb 1-1: Using ep0 maxpacket: 32 [ 418.492191][ T5844] usb 1-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40 [ 418.502365][ T5844] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 418.630457][ T45] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 418.662904][ T5844] usb 1-1: config 0 descriptor?? [ 418.860965][ T45] usb 3-1: Using ep0 maxpacket: 8 [ 418.940869][ T45] usb 3-1: config 1 interface 0 altsetting 135 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 418.952713][ T45] usb 3-1: config 1 interface 0 has no altsetting 0 [ 418.953166][ T5844] dvb-usb: found a 'Elgato EyeTV Sat' in warm state. [ 419.047581][ T45] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.40 [ 419.057220][ T45] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.059209][ T5844] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 419.065610][ T45] usb 3-1: Product: syz [ 419.079537][ T45] usb 3-1: Manufacturer: syz [ 419.085739][ T45] usb 3-1: SerialNumber: syz [ 419.126436][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 419.166465][ T5844] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat) [ 419.174109][ T5844] usb 1-1: media controller created [ 419.393591][ T5844] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 419.421543][ T45] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input14 [ 419.541089][ C0] appletouch 3-1:1.0: atp_complete: usb_submit_urb failed with result -1 [ 419.679836][ T45] usb 3-1: USB disconnect, device number 5 [ 419.680101][ C0] appletouch 3-1:1.0: atp_complete: usb_submit_urb failed with result -19 [ 419.867108][ T45] appletouch 3-1:1.0: input: appletouch disconnected [ 420.065805][ T5844] az6027: usb out operation failed. (-71) [ 420.071979][ T5844] stb0899_attach: Driver disabled by Kconfig [ 420.078164][ T5844] az6027: no front-end attached [ 420.078164][ T5844] [ 420.110478][ T5844] az6027: usb out operation failed. (-71) [ 420.116397][ T5844] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat' [ 420.126856][ T5844] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input15 [ 420.244690][ T5844] dvb-usb: schedule remote query interval to 400 msecs. [ 420.262101][ T5844] dvb-usb: Elgato EyeTV Sat successfully initialized and connected. [ 420.363863][ T5844] usb 1-1: USB disconnect, device number 8 [ 420.509542][ T7624] loop1: detected capacity change from 0 to 2048 [ 420.569134][ T7624] EXT4-fs: Ignoring removed mblk_io_submit option [ 420.735072][ T7624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 420.807424][ T7634] loop2: detected capacity change from 0 to 764 [ 420.929449][ T7634] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 421.053117][ T5787] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 421.104262][ T5844] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected. [ 422.142732][ T7642] loop5: detected capacity change from 0 to 4096 [ 425.398592][ T7694] loop5: detected capacity change from 0 to 1024 [ 426.912480][ T7721] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 3, id = 0 [ 427.444553][ T7732] loop4: detected capacity change from 0 to 512 [ 427.515731][ T7732] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 427.527456][ T7732] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 427.643251][ T7732] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended [ 427.706122][ T7732] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c02c, mo2=0002] [ 427.783312][ T7732] System zones: 0-2, 18-18, 34-34 [ 427.859397][ T7732] EXT4-fs error (device loop4): ext4_orphan_get:1389: inode #15: comm syz.4.691: iget: bogus i_mode (115) [ 427.935383][ T7732] EXT4-fs (loop4): Remounting filesystem read-only [ 427.944044][ T7732] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 427.991041][ T7740] usb usb6: usbfs: process 7740 (syz.1.694) did not claim interface 0 before use [ 428.680960][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 428.736583][ T7745] loop2: detected capacity change from 0 to 1024 [ 429.002176][ T7745] hfsplus: can't free extent [ 429.063609][ T5844] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 429.212337][ T7743] loop0: detected capacity change from 0 to 4096 [ 429.340472][ T5844] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 429.353096][ T5844] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 429.368366][ T5844] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 429.379144][ T5844] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 429.533769][ T1895] hfsplus: b-tree write err: -5, ino 4 [ 429.582719][ T7749] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 429.640031][ T5844] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 429.883833][ T7749] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5) [ 429.890643][ T7749] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed) [ 429.899299][ T7749] vhci_hcd vhci_hcd.0: Device attached [ 429.972152][ T7759] vhci_hcd: connection closed [ 429.983117][ T1895] vhci_hcd: stop threads [ 429.992720][ T1895] vhci_hcd: release socket [ 429.997335][ T1895] vhci_hcd: disconnect device [ 430.165446][ T5844] usb 2-1: USB disconnect, device number 5 [ 430.812907][ T6193] udevd[6193]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 431.284334][ T7773] loop0: detected capacity change from 0 to 2048 [ 431.581555][ T7773] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 431.594446][ T7773] ext4 filesystem being mounted at /146/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 432.263846][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.561691][ T7785] loop4: detected capacity change from 0 to 4096 [ 432.607725][ T7785] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 433.003953][ T7785] ntfs3(loop4): ino=19, mi_enum_attr [ 433.009728][ T7785] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 435.134044][ T7824] loop1: detected capacity change from 0 to 4096 [ 435.320452][ T7833] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 435.784509][ T2002] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 435.845915][ T7843] netlink: 'syz.0.730': attribute type 30 has an invalid length. [ 436.000681][ T2002] usb 5-1: Using ep0 maxpacket: 8 [ 436.048764][ T2002] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 436.057957][ T2002] usb 5-1: config 179 has no interface number 0 [ 436.068075][ T2002] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 436.079548][ T2002] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 436.091224][ T2002] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 436.108745][ T2002] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 436.122541][ T2002] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 436.136669][ T2002] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 436.146181][ T2002] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 436.183589][ T7836] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 436.891214][ T5844] usb 5-1: USB disconnect, device number 7 [ 436.891235][ C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 436.906354][ C1] dummy_hcd dummy_hcd.4: timer fired with no URBs pending? [ 437.032482][ T7855] sch_fq: defrate 9 ignored. [ 437.595712][ T7865] loop1: detected capacity change from 0 to 64 [ 437.789123][ T7865] hfs: keylen 1794 too large [ 437.841783][ T7865] hfs: keylen 1794 too large [ 437.941066][ T7869] loop2: detected capacity change from 0 to 64 [ 438.097826][ T30] audit: type=1800 audit(1742555175.854:25): pid=7869 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.742" name="file1" dev="loop2" ino=21 res=0 errno=0 [ 439.794879][ T7890] loop4: detected capacity change from 0 to 8 [ 439.842066][ T7890] SQUASHFS error: Unable to read inode 0x11f [ 440.023631][ T7893] loop1: detected capacity change from 0 to 128 [ 440.061241][ T7893] VFS: Found a Xenix FS (block size = 1024) on device loop1 [ 440.086473][ T7894] loop0: detected capacity change from 0 to 256 [ 440.138654][ T7893] sysv_count_free_blocks: free block count was -2049934592, correcting to 0 [ 440.164651][ T7894] exfat: Deprecated parameter 'utf8' [ 440.171297][ T7894] exfat: Deprecated parameter 'namecase' [ 440.353881][ T7894] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 440.412919][ T7893] sysv_count_free_inodes: unable to read inode table [ 442.452902][ T7927] overlay: filesystem on ./file0 is read-only [ 443.435594][ T7944] netlink: 24 bytes leftover after parsing attributes in process `syz.1.770'. [ 443.748292][ T7947] loop0: detected capacity change from 0 to 2048 [ 443.974289][ T7951] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 444.096156][ T7947] CPU: 1 UID: 0 PID: 7947 Comm: syz.0.771 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 444.096294][ T7947] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 444.096388][ T7947] Call Trace: [ 444.096436][ T7947] [ 444.096483][ T7947] dump_stack_lvl+0x216/0x2d0 [ 444.096646][ T7947] dump_stack+0x1e/0x24 [ 444.096760][ T7947] nilfs_btree_do_lookup+0x1492/0x16d0 [ 444.096939][ T7947] ? kmsan_get_shadow_origin_ptr+0x40/0xb0 [ 444.097150][ T7947] nilfs_btree_lookup_contig+0x2fd/0x14b0 [ 444.097300][ T7947] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 444.097452][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.097615][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.097781][ T7947] ? down_read+0x6bb/0xb20 [ 444.097930][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.098085][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.098256][ T7947] ? __pfx_nilfs_btree_lookup_contig+0x10/0x10 [ 444.098414][ T7947] nilfs_bmap_lookup_contig+0x80/0x210 [ 444.098560][ T7947] nilfs_get_block+0x1a5/0xc10 [ 444.098683][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.098852][ T7947] ? __pfx_nilfs_get_block+0x10/0x10 [ 444.098976][ T7947] do_mpage_readpage+0xc45/0x2780 [ 444.099217][ T7947] mpage_readahead+0x43f/0x840 [ 444.099399][ T7947] ? __pfx_nilfs_get_block+0x10/0x10 [ 444.099539][ T7947] ? __pfx_nilfs_readahead+0x10/0x10 [ 444.099694][ T7947] nilfs_readahead+0x25/0x30 [ 444.099830][ T7947] read_pages+0x178/0xe00 [ 444.100005][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.100181][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.100364][ T7947] page_cache_ra_unbounded+0xd47/0xe70 [ 444.100579][ T7947] page_cache_ra_order+0x11a0/0x1370 [ 444.100755][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.100932][ T7947] ? kmsan_get_shadow_origin_ptr+0x40/0xb0 [ 444.101151][ T7947] page_cache_sync_ra+0xed1/0x11a0 [ 444.101334][ T7947] filemap_get_pages+0x6ed/0x3a90 [ 444.101549][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.101765][ T7947] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 444.101953][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.102158][ T7947] filemap_read+0x615/0x1be0 [ 444.102349][ T7947] ? do_check+0xa8b0/0x15d90 [ 444.102534][ T7947] ? _raw_spin_unlock_irq+0x31/0x50 [ 444.102684][ T7947] ? loop_queue_rq+0x1668/0x19e0 [ 444.102893][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.103074][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.103277][ T7947] ? __update_load_avg_cfs_rq+0x121/0x10e0 [ 444.103513][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.103718][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.103912][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.104081][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.104277][ T7947] generic_file_read_iter+0x136/0xad0 [ 444.104455][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.104609][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.104764][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.104931][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.105093][ T7947] ? __pfx_generic_file_read_iter+0x10/0x10 [ 444.105279][ T7947] ? __pfx_generic_file_read_iter+0x10/0x10 [ 444.105458][ T7947] __kernel_read+0x729/0xd40 [ 444.105614][ T7947] integrity_kernel_read+0x77/0x90 [ 444.105770][ T7947] ima_calc_file_hash+0x1731/0x3c90 [ 444.105961][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.106132][ T7947] ? filter_irq_stacks+0x60/0x1a0 [ 444.106304][ T7947] ? stack_depot_save_flags+0x2c/0x750 [ 444.106495][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.106683][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.106864][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.107041][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.107237][ T7947] ? generic_fillattr+0x71f/0x8b0 [ 444.107436][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.107618][ T7947] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 444.107799][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.107974][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.108147][ T7947] ima_collect_measurement+0x46d/0xe60 [ 444.108350][ T7947] ? is_bad_inode+0x2d/0x70 [ 444.108495][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.108647][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.108821][ T7947] process_measurement+0x2948/0x3f30 [ 444.109026][ T7947] ? filter_irq_stacks+0x60/0x1a0 [ 444.109179][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.109335][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.109505][ T7947] ? end_current_label_crit_section+0x124/0x2a0 [ 444.109678][ T7947] ? kmsan_get_metadata+0x13e/0x1c0 [ 444.109830][ T7947] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 444.110000][ T7947] ima_file_check+0x8e/0xd0 [ 444.110162][ T7947] security_file_post_open+0xc6/0x540 [ 444.110326][ T7947] path_openat+0x5916/0x6250 [ 444.110515][ T7947] do_filp_open+0x268/0x600 [ 444.110683][ T7947] do_sys_openat2+0x1bf/0x2f0 [ 444.110865][ T7947] __x64_sys_openat+0x2a1/0x310 [ 444.111014][ T7947] x64_sys_call+0x36f5/0x3c30 [ 444.111172][ T7947] do_syscall_64+0xcd/0x1e0 [ 444.111365][ T7947] ? clear_bhb_loop+0x25/0x80 [ 444.111553][ T7947] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 444.111752][ T7947] RIP: 0033:0x7fb96e18d169 [ 444.111869][ T7947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 444.112000][ T7947] RSP: 002b:00007fb96f02d038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 444.112145][ T7947] RAX: ffffffffffffffda RBX: 00007fb96e3a5fa0 RCX: 00007fb96e18d169 [ 444.112255][ T7947] RDX: 0000000000000000 RSI: 0000200000000080 RDI: ffffffffffffff9c [ 444.112361][ T7947] RBP: 00007fb96e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 444.112457][ T7947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 444.112544][ T7947] R13: 0000000000000000 R14: 00007fb96e3a5fa0 R15: 00007fffa5c68d48 [ 444.112663][ T7947] [ 444.686705][ T7947] NILFS (loop0): btree level mismatch (ino=16): 1 != 3 [ 444.703363][ T7947] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 444.802405][ T7956] option changes via remount are deprecated (pid=7955 comm=syz.1.775) [ 444.837011][ T7953] loop5: detected capacity change from 0 to 256 [ 445.212535][ T30] audit: type=1804 audit(1742555182.844:26): pid=7961 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.771" name="/newroot/161/file2/file2" dev="loop0" ino=16 res=1 errno=0 [ 445.311898][ T7947] Remounting filesystem read-only [ 445.361681][ T7961] CPU: 0 UID: 0 PID: 7961 Comm: syz.0.771 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 445.361834][ T7961] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 445.361921][ T7961] Call Trace: [ 445.361977][ T7961] [ 445.362027][ T7961] dump_stack_lvl+0x216/0x2d0 [ 445.362192][ T7961] dump_stack+0x1e/0x24 [ 445.362316][ T7961] nilfs_btree_last_key+0x807/0xb50 [ 445.362518][ T7961] ? __pfx_nilfs_btree_last_key+0x10/0x10 [ 445.362703][ T7961] nilfs_bmap_last_key+0x72/0x200 [ 445.362891][ T7961] nilfs_truncate_bmap+0xe2/0x580 [ 445.363058][ T7961] nilfs_truncate+0x287/0x580 [ 445.363208][ T7961] nilfs_setattr+0x306/0x3f0 [ 445.363357][ T7961] ? __pfx_nilfs_setattr+0x10/0x10 [ 445.363497][ T7961] notify_change+0x1a8e/0x1b80 [ 445.363678][ T7961] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 445.363861][ T7961] do_truncate+0x22a/0x2b0 [ 445.364008][ T7961] path_openat+0x5c86/0x6250 [ 445.364170][ T7961] ? filter_irq_stacks+0x60/0x1a0 [ 445.364355][ T7961] ? kmsan_get_metadata+0x13e/0x1c0 [ 445.364540][ T7961] do_filp_open+0x268/0x600 [ 445.364721][ T7961] do_sys_openat2+0x1bf/0x2f0 [ 445.364911][ T7961] __x64_sys_creat+0xe6/0x140 [ 445.365057][ T7961] x64_sys_call+0x12e3/0x3c30 [ 445.365199][ T7961] do_syscall_64+0xcd/0x1e0 [ 445.365361][ T7961] ? clear_bhb_loop+0x25/0x80 [ 445.365551][ T7961] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 445.365743][ T7961] RIP: 0033:0x7fb96e18d169 [ 445.365860][ T7961] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 445.365986][ T7961] RSP: 002b:00007fb96f00c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 445.366124][ T7961] RAX: ffffffffffffffda RBX: 00007fb96e3a6080 RCX: 00007fb96e18d169 [ 445.366227][ T7961] RDX: 0000000000000000 RSI: 0000000000000142 RDI: 0000200000000140 [ 445.366322][ T7961] RBP: 00007fb96e20e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 445.366408][ T7961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 445.366492][ T7961] R13: 0000000000000001 R14: 00007fb96e3a6080 R15: 00007fffa5c68d48 [ 445.366605][ T7961] [ 445.366747][ T7961] NILFS (loop0): btree level mismatch (ino=16): 1 != 3 [ 445.393682][ T7947] syz.0.771 (7947) used greatest stack depth: 3504 bytes left [ 445.394982][ T7961] NILFS error (device loop0): nilfs_bmap_last_key: broken bmap (inode number=16) [ 445.625410][ T7961] NILFS (loop0): error -5 truncating bmap (ino=16) [ 445.671246][ T30] audit: type=1800 audit(1742555183.074:27): pid=7947 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.771" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 445.727097][ T7953] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 445.740932][ T7953] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 446.120014][ T5788] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 446.849416][ T7982] netlink: 4 bytes leftover after parsing attributes in process `syz.5.784'. [ 446.951295][ T7984] netlink: 'syz.2.785': attribute type 2 has an invalid length. [ 447.304176][ T7992] loop0: detected capacity change from 0 to 64 [ 447.329918][ T7988] loop4: detected capacity change from 0 to 2048 [ 447.478950][ T7988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 447.563871][ T7996] loop2: detected capacity change from 0 to 128 [ 447.572808][ T7992] overlayfs: upper fs needs to support d_type. [ 447.603139][ T7996] EXT4-fs warning (device loop2): ext4_init_metadata_csum:4624: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 447.617760][ T7996] EXT4-fs (loop2): VFS: Found ext4 filesystem with invalid superblock checksum. Run e2fsck? [ 447.679039][ T7992] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 447.687192][ T7992] overlayfs: failed to set xattr on upper [ 447.698825][ T7992] overlayfs: ...falling back to redirect_dir=nofollow. [ 447.707699][ T7992] overlayfs: ...falling back to index=off. [ 447.713858][ T7992] overlayfs: ...falling back to uuid=null. [ 448.023474][ T8000] loop5: detected capacity change from 0 to 1764 [ 448.127377][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 449.618118][ T8022] loop4: detected capacity change from 0 to 256 [ 449.683688][ T8022] exfat: Deprecated parameter 'namecase' [ 449.689860][ T8022] exfat: Deprecated parameter 'utf8' [ 449.948438][ T8022] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 450.318478][ T30] audit: type=1326 audit(1742555188.044:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.0.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.341809][ T30] audit: type=1326 audit(1742555188.044:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.0.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.369015][ T30] audit: type=1326 audit(1742555188.114:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="syz.0.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.393283][ T30] audit: type=1326 audit(1742555188.114:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.415096][ T30] audit: type=1326 audit(1742555188.154:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.436944][ T30] audit: type=1326 audit(1742555188.164:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.451411][ T2002] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 450.464438][ T30] audit: type=1326 audit(1742555188.164:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8031 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb96e18d169 code=0x7ffc0000 [ 450.722496][ T2002] usb 3-1: Using ep0 maxpacket: 8 [ 450.781954][ T2002] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 16 [ 450.795465][ T2002] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d50, bcdDevice= 0.00 [ 450.808585][ T2002] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 450.928984][ T2002] usb 3-1: config 0 descriptor?? [ 451.509497][ T2002] kovaplus 0003:1E7D:2D50.000E: hidraw0: USB HID v1.ff Device [HID 1e7d:2d50] on usb-dummy_hcd.2-1/input0 [ 451.669986][ T2002] usb 3-1: USB disconnect, device number 6 [ 452.284009][ T8056] loop5: detected capacity change from 0 to 1024 [ 452.332600][ T5844] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 452.393230][ T8056] EXT4-fs: Ignoring removed bh option [ 452.556903][ T8056] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 452.603969][ T5844] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 452.618597][ T5844] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 452.629088][ T5844] usb 5-1: Product: syz [ 452.634100][ T5844] usb 5-1: Manufacturer: syz [ 452.638938][ T5844] usb 5-1: SerialNumber: syz [ 452.673907][ T5844] usb 5-1: config 0 descriptor?? [ 452.957622][ T2002] usb 5-1: USB disconnect, device number 8 [ 453.094635][ T8068] loop0: detected capacity change from 0 to 512 [ 453.138645][ T6970] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 453.419851][ T6193] udevd[6193]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 453.502737][ T8068] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 453.516067][ T8068] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 454.017808][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 454.997315][ T8091] loop5: detected capacity change from 0 to 1024 [ 455.062949][ T8091] EXT4-fs: Ignoring removed bh option [ 455.109562][ T8095] tipc: Enabling not permitted [ 455.115786][ T8095] tipc: Enabling of bearer rejected, failed to enable media [ 455.163729][ T8091] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 455.181592][ T8091] ext4 filesystem being mounted at /50/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 455.228547][ T30] audit: type=1800 audit(1742555192.974:35): pid=8091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.819" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 455.390459][ T8101] Driver unsupported XDP return value 0 on prog (id 21) dev N/A, expect packet loss! [ 455.422113][ T8094] loop1: detected capacity change from 0 to 2048 [ 455.775793][ T6970] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.854958][ T8094] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 456.184942][ T8099] loop0: detected capacity change from 0 to 32768 [ 456.280642][ T8099] bcachefs (/dev/loop0): error validating superblock: Invalid superblock section members_v1: device 0: not enough buckets (got 0, max 64) [ 456.280642][ T8099] members_v1 (size 640): [ 456.280642][ T8099] Device: 0 [ 456.280642][ T8099] Label: (none) [ 456.280642][ T8099] UUID: 00000000-0000-0000-3800-000000000000 [ 456.280642][ T8099] Size: 0 [ 456.280642][ T8099] read errors: 0 [ 456.280642][ T8099] write errors: 0 [ 456.280642][ T8099] checksum errors: 0 [ 456.280642][ T8099] seqread iops: 0 [ 456.280642][ T8099] seqwrite iops: 0 [ 456.280642][ T8099] randread iops: 0 [ 456.280642][ T8099] randwrite iops: 0 [ 456.280642][ T8099] Bucket size: 0 [ 456.280642][ T8099] First bucket: 0 [ 456.280642][ T8099] Buckets: 0 [ 456.280642][ T8099] Last mount: (never) [ 456.280642][ T8099] Last superblock write: 0 [ 456.280642][ T8099] State: spare [ 456.280642][ T8099] Data allowed: (none) [ 456.280642][ T8099] Has data: journal,btree,user [ 456.280642][ T8099] Btree allocated bitmap blocksize:1 [ 456.280642][ T8099] Btree allocated bitmap: 0000000000000000000000000000000000000000000000000000000000000000 [ 456.280642][ T8099] Durability: [ 456.281579][ T8099] bcachefs: bch2_fs_get_tree() error: invalid_sb_members [ 456.420984][ C0] vkms_vblank_simulate: vblank timer overrun [ 457.290467][ T8107] loop4: detected capacity change from 0 to 1024 [ 457.372670][ T8107] EXT4-fs (loop4): Test dummy encryption mode enabled [ 457.454033][ T8107] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 458.180941][ T8127] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check. [ 458.204138][ T2002] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 458.237101][ T8125] loop5: detected capacity change from 0 to 1024 [ 458.313434][ T2002] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 458.487222][ T8130] loop0: detected capacity change from 0 to 128 [ 458.523003][ T8107] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 458.821796][ T8107] fscrypt (loop4): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 458.926949][ T8107] overlayfs: upper fs does not support tmpfile. [ 458.960843][ T8107] fscrypt (loop4): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 459.727737][ T8150] netlink: 'syz.5.837': attribute type 1 has an invalid length. [ 459.834852][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 460.108548][ T8157] loop1: detected capacity change from 0 to 64 [ 461.183595][ T8174] netlink: 'syz.1.845': attribute type 8 has an invalid length. [ 461.408139][ T8178] loop0: detected capacity change from 0 to 256 [ 462.913431][ T8195] loop4: detected capacity change from 0 to 1024 [ 462.984957][ T8192] loop2: detected capacity change from 0 to 1024 [ 463.236159][ T8198] hfsplus: xattr exists yet [ 463.796766][ T75] hfsplus: b-tree write err: -5, ino 4 [ 464.644534][ T8215] loop0: detected capacity change from 0 to 256 [ 465.419789][ T8223] loop2: detected capacity change from 0 to 1024 [ 466.284908][ T61] hfsplus: b-tree write err: -5, ino 4 [ 468.388859][ T8257] loop4: detected capacity change from 0 to 32768 [ 468.403042][ T8257] bcachefs (/dev/loop4): error reading default superblock: Invalid superblock: too big (got 1577560 bytes, layout max 1048576) [ 468.548547][ T8257] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,norecovery,reconstruct_alloc [ 468.571743][ T8257] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 468.580569][ T8257] bcachefs (loop4): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.20: directory_size [ 468.580569][ T8257] running recovery passes: check_allocations,check_extents_to_backpointers,check_inodes [ 468.607787][ T8257] bcachefs (loop4): dropping and reconstructing all alloc info [ 468.702047][ T8257] bcachefs (loop4): accounting_read... done [ 468.709149][ T8257] bcachefs (loop4): alloc_read... done [ 468.715309][ T8257] bcachefs (loop4): stripes_read... done [ 468.724261][ T8257] bcachefs (loop4): snapshots_read... done [ 468.733657][ T8257] bcachefs (loop4): done starting filesystem [ 468.761643][ T8273] netlink: 4 bytes leftover after parsing attributes in process `syz.2.885'. [ 468.903030][ T5800] bcachefs (loop4): shutting down [ 469.012858][ T5800] bcachefs (loop4): shutdown complete [ 470.146303][ T5844] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 470.389567][ T5844] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 470.399128][ T5844] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 470.407634][ T5844] usb 2-1: Product: syz [ 470.412113][ T5844] usb 2-1: Manufacturer: syz [ 470.416952][ T5844] usb 2-1: SerialNumber: syz [ 470.525737][ T5844] usb 2-1: config 0 descriptor?? [ 470.598408][ T30] audit: type=1326 audit(1742555208.354:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8291 comm="syz.0.891" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb96e18d169 code=0x0 [ 471.200814][ T5844] usb 2-1: Firmware version (0.0) predates our first public release. [ 471.209208][ T5844] usb 2-1: Please update to version 0.2 or newer [ 471.342079][ T5844] usb 2-1: USB disconnect, device number 6 [ 471.798639][ T8304] loop2: detected capacity change from 0 to 64 [ 472.521903][ T8311] mkiss: ax0: crc mode is auto. [ 473.049980][ T8319] loop5: detected capacity change from 0 to 256 [ 473.326872][ T8319] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 473.666230][ T8324] loop1: detected capacity change from 0 to 1024 [ 474.019513][ T8324] hfsplus: invalid extended attribute record [ 474.427918][ T3964] hfsplus: b-tree write err: -5, ino 4 [ 475.077307][ T8343] loop4: detected capacity change from 0 to 1024 [ 475.119905][ T8343] EXT4-fs: Ignoring removed bh option [ 475.149982][ T1290] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.157458][ T1290] ieee802154 phy1 wpan1: encryption failed: -22 [ 475.257589][ T8343] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 475.272520][ T8343] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 475.351823][ T8348] loop5: detected capacity change from 0 to 1024 [ 475.476290][ T8348] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 475.489928][ T8348] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 475.888539][ T5800] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.128115][ T6970] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.445781][ T8360] loop1: detected capacity change from 0 to 64 [ 476.651215][ T8365] program syz.2.913 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.811872][ T8370] program syz.2.913 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 476.901059][ T8370] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 479.796662][ T8408] loop0: detected capacity change from 0 to 1024 [ 481.775085][ T8441] loop4: detected capacity change from 0 to 16 [ 481.839655][ T8441] erofs (device loop4): mounted with root inode @ nid 36. [ 482.526716][ T8451] loop1: detected capacity change from 0 to 64 [ 482.657449][ T8456] netlink: 8 bytes leftover after parsing attributes in process `syz.2.946'. [ 482.669784][ T8456] netlink: 48 bytes leftover after parsing attributes in process `syz.2.946'. [ 482.679168][ T8456] netlink: 36 bytes leftover after parsing attributes in process `syz.2.946'. [ 482.706412][ T8456] vlan2: entered allmulticast mode [ 482.712526][ T8456] gretap0: entered allmulticast mode [ 484.389348][ T8476] loop4: detected capacity change from 0 to 256 [ 484.445466][ T8478] loop2: detected capacity change from 0 to 16 [ 484.555557][ T8478] erofs (device loop2): mounted with root inode @ nid 36. [ 484.928041][ T8486] netlink: 'syz.0.956': attribute type 5 has an invalid length. [ 485.006807][ T8487] ===================================================== [ 485.014404][ T8487] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0xd66/0xe80 [ 485.024128][ T8487] ieee802154_hdr_push+0xd66/0xe80 [ 485.029498][ T8487] ieee802154_header_create+0x9bc/0xc70 [ 485.039077][ T8487] dgram_sendmsg+0xd91/0x15e0 [ 485.044149][ T8487] ieee802154_sock_sendmsg+0x96/0xd0 [ 485.049677][ T8487] __sock_sendmsg+0x30f/0x380 [ 485.054785][ T8487] __sys_sendto+0x594/0x750 [ 485.060278][ T8487] __x64_sys_sendto+0x125/0x1d0 [ 485.065309][ T8487] x64_sys_call+0x346a/0x3c30 [ 485.074967][ T8487] do_syscall_64+0xcd/0x1e0 [ 485.079685][ T8487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.086539][ T8487] [ 485.088986][ T8487] Local variable hdr created at: [ 485.094458][ T8487] ieee802154_header_create+0x4e/0xc70 [ 485.103233][ T8487] dgram_sendmsg+0xd91/0x15e0 [ 485.108153][ T8487] [ 485.111980][ T8487] CPU: 1 UID: 0 PID: 8487 Comm: syz.1.957 Not tainted 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 485.123204][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 485.136298][ T8487] ===================================================== [ 485.143452][ T8487] Disabling lock debugging due to kernel taint [ 485.149714][ T8487] Kernel panic - not syncing: kmsan.panic set ... [ 485.156260][ T8487] CPU: 1 UID: 0 PID: 8487 Comm: syz.1.957 Tainted: G B 6.14.0-rc7-syzkaller-00179-gb3ee1e460951 #0 [ 485.168566][ T8487] Tainted: [B]=BAD_PAGE [ 485.172886][ T8487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 485.183128][ T8487] Call Trace: [ 485.186546][ T8487] [ 485.189601][ T8487] dump_stack_lvl+0x216/0x2d0 [ 485.194454][ T8487] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 485.200495][ T8487] dump_stack+0x1e/0x24 [ 485.204818][ T8487] panic+0x4e2/0xcf0 [ 485.208926][ T8487] ? kmsan_get_metadata+0x81/0x1c0 [ 485.214248][ T8487] kmsan_report+0x2c7/0x2d0 [ 485.218915][ T8487] ? __msan_memcpy+0x108/0x1c0 [ 485.223870][ T8487] ? __x64_sys_sendto+0x125/0x1d0 [ 485.229079][ T8487] ? __msan_warning+0x95/0x120 [ 485.234034][ T8487] ? ieee802154_hdr_push+0xd66/0xe80 [ 485.239573][ T8487] ? ieee802154_header_create+0x9bc/0xc70 [ 485.245532][ T8487] ? dgram_sendmsg+0xd91/0x15e0 [ 485.250579][ T8487] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 485.256264][ T8487] ? __sock_sendmsg+0x30f/0x380 [ 485.261333][ T8487] ? __sys_sendto+0x594/0x750 [ 485.266201][ T8487] ? __x64_sys_sendto+0x125/0x1d0 [ 485.271409][ T8487] ? x64_sys_call+0x346a/0x3c30 [ 485.276455][ T8487] ? do_syscall_64+0xcd/0x1e0 [ 485.281350][ T8487] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.287664][ T8487] ? ieee802154_header_create+0x99f/0xc70 [ 485.293601][ T8487] ? dgram_sendmsg+0xd91/0x15e0 [ 485.298643][ T8487] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 485.304320][ T8487] ? __sock_sendmsg+0x30f/0x380 [ 485.309382][ T8487] ? __sys_sendto+0x594/0x750 [ 485.314209][ T8487] ? __x64_sys_sendto+0x125/0x1d0 [ 485.319386][ T8487] ? x64_sys_call+0x346a/0x3c30 [ 485.324407][ T8487] ? kmsan_get_metadata+0x13e/0x1c0 [ 485.329831][ T8487] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 485.335859][ T8487] ? ieee802154_hdr_push+0x49/0xe80 [ 485.341291][ T8487] ? filter_irq_stacks+0x60/0x1a0 [ 485.346520][ T8487] ? kmsan_get_metadata+0x13e/0x1c0 [ 485.351939][ T8487] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 485.358413][ T8487] ? kmsan_get_metadata+0x13e/0x1c0 [ 485.363815][ T8487] ? kmsan_internal_memmove_metadata+0x17b/0x230 [ 485.370349][ T8487] ? kmsan_get_metadata+0x13e/0x1c0 [ 485.375756][ T8487] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 485.381810][ T8487] __msan_warning+0x95/0x120 [ 485.386611][ T8487] ieee802154_hdr_push+0xd66/0xe80 [ 485.391978][ T8487] ? __msan_memcpy+0x108/0x1c0 [ 485.396938][ T8487] ieee802154_header_create+0x9bc/0xc70 [ 485.402714][ T8487] ? __pfx_ieee802154_header_create+0x10/0x10 [ 485.409016][ T8487] dgram_sendmsg+0xd91/0x15e0 [ 485.413928][ T8487] ? __pfx_dgram_sendmsg+0x10/0x10 [ 485.419247][ T8487] ieee802154_sock_sendmsg+0x96/0xd0 [ 485.424723][ T8487] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 485.430919][ T8487] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 485.437098][ T8487] __sock_sendmsg+0x30f/0x380 [ 485.441972][ T8487] __sys_sendto+0x594/0x750 [ 485.446647][ T8487] ? kmsan_get_metadata+0x13e/0x1c0 [ 485.452084][ T8487] __x64_sys_sendto+0x125/0x1d0 [ 485.457119][ T8487] x64_sys_call+0x346a/0x3c30 [ 485.461973][ T8487] do_syscall_64+0xcd/0x1e0 [ 485.466678][ T8487] ? clear_bhb_loop+0x25/0x80 [ 485.471548][ T8487] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 485.477734][ T8487] RIP: 0033:0x7f26dad8effc [ 485.482327][ T8487] Code: 2a 5f 02 00 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 70 5f 02 00 48 8b [ 485.502168][ T8487] RSP: 002b:00007f26dbccaec0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 485.510784][ T8487] RAX: ffffffffffffffda RBX: 00007f26dbccafc0 RCX: 00007f26dad8effc [ 485.518903][ T8487] RDX: 0000000000000020 RSI: 00007f26dbccb010 RDI: 0000000000000004 [ 485.527009][ T8487] RBP: 0000000000000000 R08: 00007f26dbccaf14 R09: 000000000000000c [ 485.535119][ T8487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000004 [ 485.543206][ T8487] R13: 00007f26dbccaf68 R14: 00007f26dbccb010 R15: 0000000000000000 [ 485.551315][ T8487] [ 485.554774][ T8487] Kernel Offset: disabled [ 485.559173][ T8487] Rebooting in 86400 seconds..