last executing test programs: 13m4.184909402s ago: executing program 1 (id=8337): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) bind$llc(r0, 0x0, 0x0) 13m4.052116262s ago: executing program 1 (id=8339): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="b7020000c0000000bfa30000000000000703000000feffff7a0af0ff2300000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010001011404000011000000b7030000000000006a0a00fe000000008500000032000000b700000001000000950000000000000075cdc4b57b0c65752a3ad50000007ddd0000cb450063dedba767ade51f7f1f66acd19100002000000000000000ff7f0000b52f17cee19d0001000000000000000000cb04fcbb4e4d0b9bafe3ba431351a58a885ba9918d37b056b9bbd11b6b9f6cf7db6d574620260000000000008062d77e85cef4a2ab938f65aac33c4d620de2c9b7dc10d7d313f9f57606b83b994fc4051ade12f41deff6df6a936b4ec3827c739bb39aad16cc75fe369258673b5df11cc2afb53611cc32a790bc0b80e80eae8f5e64be2c9d2d29db3d36dd0cf8f79a015c7bd3f15aa6aadbeab2a01685108e61aa00000000000000000000000000c67c6c6a06e828e5216f601b19db1af1b5d356d0f062137d866d11be4ba3f0151fdbbd4e97d62ecc645e143a60f10800000000000000826151e3b42bcae95239ef5ca2a730a00c87c493db0300e63fda97a296820000000001000000eecc952a3fd2c46f3c1cde71a19d1a2982492a210e00d2bfea3b8d188df2eff8d56aaae7d32a2e180022537395019f02ec4b85f6aad7faca088de9b26797a8446b16c28d85f225992dbdd5bb01ba51508951c7a7d6ca0916c3a12912715649c2b1c7192a4251b59d378d3f00000000000000665c8b7e89eddfc3783f6c9129a7c5f8ee5f50579e2f638f7eb12f63be72a3d81ab324d6e417b1c2cbfdcada0a16e31790e26cf19588a7e0496ee2782224cf30f810da86cf1a3204f4c9404f5d7321a4fefc4d1c9139ca4b65b99909950000006b42077ca60fdecb2717e21f8f187b1866108b6e8c71e2603217606637ece1fa89917e131f4034a8383e99c3568fd04201b37cd92ca6ebf94a2d8310f7032775cfd75652f87b039d5430b3c6643e9146d2478ce31344b554aca7670000000000000010c65608fda6ed5d08e7a796042aa127d874105787d0347aa37801faff5b9050803a19ff6205aa5c263e407a2f7de56f7a0000e094fa4e3f05528caab5a430c08dd810bc97204b767dd969721a26aa740000000000bc433fe2d0a6ef2a8a91cd3cb305aa80dadef8b0caca780000000000000000863e21db415a222bb1a7ab94bfe4a74157d794f9d0430c2c0eb563350559829865a3dd08fb31bd0801e09aa3ee45e61a56fc83076451cff7632e49a41eadb5044a0d5f73d6932161ae5e9ce218a35cd8e7b747887b1a74798982d0b492c3f0ff53189d80733eb04f8124877b648ff438f7d66c7efcc09a8f3330b6c22d14e80db8e5608bdeab9388b758a15f4ce70390c214bc6838798f5b9b0b500d4e8b5174f329b8501c6feb7a6982bcea74a0f2ced7fa2059234a8d10b7f0597151d5c9067d57d85f4ae933eaf5174ba122f3f702ef8695578d3c08562c9fc185f0f65d11b4c58ae52500cbe99cde3758a5cbe6093dd328ac820e2de309d25a324647aadffcecf0f3bbaeda7af4436d9ffbce1b240a2f5e346eba8812e6329e01b087bde7da4a6448f478102e90c8134f531de08d4cf4f6f35b15a202544c0ced0c1715fd3a90099f785a13a2412bedba2981dd22bd9d736c00000000000000000000000000000000eb6fec8d7d2f77f4d470a9caa5b1bfc00cd1d40830ac35f229f8ffe1c02a63d3c2d9"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000)={0x2}, 0x8, 0x10, &(0x7f0000000100), 0x10}, 0x57) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x702, 0xe, 0xff0f, &(0x7f0000000540)="e460334470b8d480eb20c15286dd", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 13m3.843987199s ago: executing program 1 (id=8341): socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$sock_ifreq(r0, 0x8993, &(0x7f0000000100)={'ip_vti0\x00', @ifru_map={0x0, 0x6, 0x43, 0x7, 0xf2, 0xb}}) 13m3.697736041s ago: executing program 1 (id=8342): syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x3, 0x1510, &(0x7f0000003640)="$eJzs3Am4TlX7MPD7Xmvt45D0dJLhsNa6N08yLCdJMiTJkCRJkmRKSDrJKwmJQ6akQxKS4ZAMh5AMJ0465nkekyTpJEmmTMn6rlN83t7qe//v/+17/a//uX/Xta9n3c/a99prP/czrL0N33UZWrNxrWoNiQj+LfjrQxIAxALAQAC4DgACACgXVy4uqz+nxKR/7yDsr/VI6tWeAbuauP7ZG9c/e+P6Z29c/+yN65+9cf2zN65/9sb1Zyw72zy94PW8Zd+N7/9nZ/z7/79IZumxX60tfWPXfyGF65+9cf3/1wr+Kztx/bM3rn/2xvXP3rj+2UGOP+3h+mdvXH/GsrOrff+Zt6u7Xe33H2OMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4yx7OGsv0IBwOX21Z4XY4wxxhhjjDHG/jo+x9WeAWOMMcYYY4wxxv7/QxAgQUEAMZADYiEn5AIBANdCHrgOInA9xMENkBduhHyQHwpAQYiHQlAYNBiwQBBCESgKUbgJisHNUBxKQEkoBQ5KQwLcAmXgVigLt0E5uB3Kwx1QASpCJagMd0IVuAuqwt1QDe6B6lADakItuBdqw31QB+6HuvAA1IMHoT48BA3gYWgIj0AjeBQaw2PQBB6HptAMmkMLaPnfyn8JesDL0BN6QRL0hj7wCvSFftAfBsBAeBUGwWswGF6HZBgCQ+ENGAZvwnB4C0bASBgFb8NoeAfGwFgYB+MhBSbARHgXJsF7MBmmwFSYBqkwHWbA+zATZsFs+ADmwIcwF+bBfFgAafARLIRFkA4fw2L4BDJgCSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVtsB12wE7YBbvhU9gDn8Fe+Bz2wRf/Yv6Zf8jvioCAAgUqVBiDMRiLsZgLc2FuzI15MA9GMIJxGId5MS/mw3xYAAtgPMZjYSyMBg0SEhbBIhjFKBbDYlgci2NJLIkOHSZgApbBW7EslsVyWA7LY3msgBWxIlbGylgFq2BVrIrVsBpWx+pYE2vivXgv9sY6WAfrYl2sh/Uu357ChtgQG2EjbIyNsQk2wabYFJtjc2yJLbEVtsLW2BrbYltsh+2wPbbHREzEDtgBO2JH7ISdsDN2xi7YBbtiN+yGL+UAfBlfxl5YXfTGPtgH+2Jyjv44AAfgqzgIX8PX8HVMxiE4FN/AN/BNHI6ncQSOxFE4CquId3AMjkUS4zEFU3AiTsRJOAkn4xScgtMwFafjDJyBM3EWzsIPcA5+iB/iPJyHCzAN03AhLsJ0TMfFeAYzcAkuxWW4HFfgclyFq3EVrsV1uBY34AbchJtwC27BbbgNd+AO3IUKAD/Fz/AzTMZ9uA/34348gAfwIB7ETMzEQ3gID+NhPIJH8CgexWN4HE/gcTyFp/A0nsGzeBbP43m8gC/Ef9NoV4k1ySCyKKFEjIgRsSJW5BK5RG6RW+QReURERESciBN5RV6RT+QTBUQBES/iRWFRWBhhBIkwBgBEVERFMVFMFBfFRUlRUjjhRIJIEGVEGVFWlBXlxO2ivLhDVBAVRRtXWVQWVURbV1XcLaqJaqK6qCFqilqilqgtaos6oo6oK+qKeqKeqC8eEg1Eb+yPj4isyjQWQ7CJGIpNRTMhL32DtRLDsbVoI9qKp8RIHIHtRSuXKJ4VHcQY7Cj+Jsbi86KzGI9dxIuiq+gmuouXRA/R2vUUvcRk7C36iGnYV/QT/cUAMRNriA9wTs6a4nWRLIaIoeINsQDfFMPFW2KEGClGibfFaPGOGCPGinFivEgRE8RE8a6YJN4Tk8UUMVVME6liupgh3hczxSwxW3wg5ogPxVwxT8wXC0Sa+EgsFItEuvhYLBafiAyxRCwVy8RysUKsFKvEarFGrBXrxHqxQWwUm8RmsUVsFdvEdrFD7BS7xG7xqdgjPhN7xedin/hC7BdfigPiK3FQfC0yxTfikPhWHBbfiSPie3FU/CCOiePihDgpTokfxWlxRpwV58R58ZO4IH4WF4UXIFEKKaWSgYyROWSszClzyWtkbhlcenWvl3HyBplX3ijzyfyygCwo42UhWVhqaaSVJENZRBaVUXmTLCZvlsVlCVlSlpJOlpYJ8hZZRt4qy8rbZDl5uywv75AVZEVZSVaWd8oq8i4JkV+PUV3WkDVlLXmvrC3vk3Xk/bKufEDWkw/K+vIh2UA+LBvKR2Qj+ahsLB+TTeTjsqlsJpvLFrKlfEK2kk/K1rKNbCufku3k07K9fEYmymdlB+kvvUWel53lC7KLfFF2ld1kd/mzvCi97Cl7SYDeso98RfaV/WR/OUAOlK/KQfI1OVi+LpPlEDlUviGHyTflcPmWHCFHylHybTlaviPHyLFynBwvU+QEOVG+KyfJ9+RkOUVOldNkqpwu+18aabaU/zT/3T/IH/zL0TfJzXKL3Cq3ye1yh9wpd8ndcrfcI/fIvXKv3Cf3yf1yvzwgD8iD8qDMlJnykDwkD8vD8og8Io/Ko/KYPC7PyZPylPxRnpZn5Bl5Tp6X5+WFS68BKFRCSaVUoGJUDhWrcqpc6hqVW12r8qjrVERdr+LUDSqvulHlU/lVAVVQxatCqrDSyiirSIWqiCqqouomvPSGUSVVKeVUaZWgbvlX8lUxdbMqrkr8Jv/y/JL+ZH4tVUvVSrVSrVVr1Va1Ve1UO9VetVeJKlF1UB1UR9VRdVKdVGfVWXVRXVRX1VV1V91VD9VD9VQ9VZJKUn3UK6qv6qf6qwFqoHpVDVKD1GA1WCWrZDVUDVXD1DA1XA1XI9QINUqNUqPVaDVGjVHj1DiVolLURDVRTVKT1GQ1WU1VU1WqSlUz1Aw1U81Us9VsNUfNUXPVXDVfzVdpKk0tVAtVukpXi9VilaGWqCVqmVqmVqgVapVapdaoNWqdWqc2qA0qQ21Wm9VWtVVtV9vVTrVT7Va71R61R+1Ve9U+tU/tV/vVAXVAHVQHVabKVIfUIXVYHVZH1BF1VB1Vx9QxdUKdUKfUKXVanVZn1Vl1Xp1XF9QFdVFdzFr2BSIQgQpUEBPEBLFBbJAryBXkDnIHeYI8QSSIBHFBXJA3uDHIF+QPCgQFg/igUFA40IEJbCAuFT0a3BQUC24OigclgpJBqcAFpYOE4JagTHBrUDa4LSgX3B6UD+4IKgQVg0pB5eDOoEpwV1A1uDuoFtwTVA9qBDWDWsG9Qe3gvqBOcH9QN3ggqBc8GNQPHgoaBA8HDYNHgkbBo0Hj4LGgSfB40DRoFjQPWgQt/9LxvT+d/0nXU/fSSbq37qNf0X11P91fD9AD9at6kH5ND9av62Q9RA/Vb+hh+k09XL+lR+iRepR+W4/W7+gxeqwep8frFD1BT9Tv6kn6PT1ZT9FT9TSdqqfrGfp9PVPP0rP1B3qO/lDP1fP0fL1Ap+mP9EK9SKfrj/Vi/YnO0Ev0Ur1ML9cr9Eq9Sq/Wa/RavU6v1xv0Rr1Jb9Zb9Fa9TW/XO/ROvUvv1p/qPfozvVd/rvfpL/R+/aU+oL/SB/XXOlN/ow/pb/Vh/Z0+or/XR/UP+pg+rk/ok/qU/lGf1mf0WX1On9c/6Qv6Z31R+6zFfdbPu1FGmRgTY2JNrMllcpncJrfJY/KYiImYOBNn8pq8Jp/JZwqYAibexJvCprDJQoZMEVPERE3UFDPFTHFT3JQ0JY0zziSYBFPGlDFlTVlTzpQz5U15U8FUMJVMJXOnudPcZe4yd5u7zT3mHlPD1DC1TC1T29Q2dUwdU9fUNfVMPVPf1DcNTAPT0DQ0jUwj09g0Nk1ME9PUNDXNTXPT0rQ0rUwr09q0Nm1NW9POtDPtTXuTaBJNB9PBdDQdTSfTyXQ2nU0X08V0NV1Nd9Pd9DA9TE/T0ySZJNPH9DF9TV/T3/Q3A81AM8gMMoPNYJNsks1QM9QMM8PMcDPcjDAjzaishap5x4wxY804M96kmBQz0Uw0k8wkM9lMNlPNVJNqUs0MM8PMNDPNbDPbzDFzzFwz18w3802aSTMLzUKTbtLNYrPYZJgMs9QsNcvNcrPSrDSrzWqz1qw162G92Wg2ms1ms9lqtprtZrvZaXaa3Wa32WP2mL1mr9ln9pn9Zr85YA6Yg+agyTSZ5pA5ZA6bw+aIOWKOmqPmmDlmTpgT5pQ5ZU6b0+asOWvOm/yXfi+9ibU5bS57jc1tr7V57HX2H+MCtqCNt4VsYattPpv/N7Gx1ha3JWxJW8o6W9om2Ft+F1ewFW0lW9neaavYu2zV38W17X22jr3f1rUP2Fr23t/E9eyDtr59zDZABLDNbCPbwja2j9km9nHb1DazzW0L284+bdvbZ2yifdZ2sM/9Ll5oF9nVdo1da9fZPfYze9aes4ftd/a8/cn2tL3sQPuqHWRfs4Pt6zbZDvldPMq+bUfbd+wYO9aOs+N/F0+102yqnW5n2PftTDvrd3Ga/cjOsel2rp1n59sFv8RZc0q3H9vF9hObYZfYpXaZXW5X2JV21f+d6zK7wW60m+xu+6ndarfZ7XaH3Wl3/RJnncde+7ndZ7+wh+y39oD9yh60R2ym/eaXOOv8jtjv7VH7gz1mj9sT9qQ9ZX+0p+2ZX84/69xP2p/tRestEBKQJEUBxVAOiqWclIuuodx0LeWh6yhC11Mc3UB56UbKR/mpABWkeCpEhUmTIUtEIRWhohSlm+jyOr0klSJHpSmBbqEydCuVpduoHN1O5ekOqkAVqRJVpjupCt1FVeluqkb3UHWqQTWpFt1Ltek+qkP3U116gOrRg1SfHqIG9DA1pEeoET1KjekxakKPU1NqRs2pBbWkJ6gVPUmtqQ21paeoHT1N7ekZSqRnqQM9Rx3pb9SJnqfO9AJ1oRepK3Wj7vQS9aCXqSf1oiTqTX3oFepL/ag/DaCB9CoNotdoML1OyTSEhtIbNIzepOH0Fo2gkTSK3qbR9A6NobE0jsZTCk2gifQuTaL3aDJNoak0jVJpOs2g92kmzaLZ9AHNoQ9pLs2j+bSA0ugjWkiLKJ0+psX0CWXQElpKy2g5raCVtIpW0xpaS+toPW2gjbSJNtMW2krbaDvtoJ20i3bTp7SHPqO99Dntoy9oP31JB+grOkhfUyZ9Q4foWzpM39ER+t73oh/oGB2nE3SSTtGPdJrO0Fk6R+fpJ7pAP9NF8gQhhiKUoQqDMCbMEcaGOcNc4TVh7vDaME94XRgJrw/jwhvCvOGNYb4wf1ggLBjGh4XCwqEOTWhDCsOwSFg0jIY3hcXCm8PiYYmwZFgqdGHpMCG8JSwT3hqWDW8Ly4W3h+XDO8IKYcXwsQcqh3eGVcK7wqrh3WG18J6welgjrBnWCu8Na4f3hXXC+8O64QNh2fDBsH74UNggfDhsGD4SNgofDRuHj4VNwsfDpmGzsHnYImwZPhG2Cp8MW4dtwrbhU2G78OmwffhMmBg+G3YIn/ul/8FFf96fFPYO+4SvhK+E3t8v50cXRNOiH0UXRhdF06MfRxdHP4lmRJdEl0aXRZdHV0RXRldFV0fXRNdG10XXRzdEN0Y3Rb2vlQMcOuGkUy5wMS6Hi3U5XS53jcvtrnV53HUu4q53ce4Gl9fd6PK5/K6AK+jiXSFX2GlnnHXkQlfEFXVRd5Mr5m52xV0JV9KVcs6VdgmuhWvpWrpW7knX2rVxbd1T7in3tHvaPeOecc+6Du4519H9zXVyz7vO7gX3gnvRdXXdXHf3kuvhJuT59TOZ5Pq4Pq6v6+v6u/5uoBvoBrlBbrAb7JJdshvqhrphbpgb7oa7EW6EG+VGudFutBvjxrhxbpxLcSluopvoJrlJbrKb7Ka6qS7VpboZboab6Wa6KrN+PcpcN9fNd/NdmktzC13WmjHdLXaLXYbLcEvdUrfcLXcr3Uq32q12a91at96tdxvdRrfZbXZb3Va33W13O91Ot9vtdnv8db8O6va5/W6/O+AOuIPua5fpvnGH3LfusPvOHXHfu6PuB3fMHXcn3El3yv3oTrsz7qw75867n9wF97O76LxLiUyITIy8G5kUeS8yOTIlMjUyLZIamR6ZEXk/MjMyKzI78kFkTuTDyNzIvMj8yIJIWuSjyMLIokh65OPI4sgnkYzIksjSyLLI8siKiPeFtoa+iC/qo/4mX8zf7Iv7Er6kL+WdL+0T/C2+jL/Vl/W3+XL+dl/e3+Er+Iq+kn/cN/XNfHPfwrf0T/hW/knf2rfxbf1Tvp1/2rf3z/hE/6zv4J/zHf3ffCf/vO/sX/Bd/Iu+q+/mu/uXfA//su/pe/kk39v38a/4vr6f7+8H+IH+VT/Iv+YH+9d9sh/ih/o3/DD/ph/u3/Ij/Eg/KuZtP/ryJTKM9yl+gp/o3/WT/Ht+sp/ip/ppPtVP9zP8+36mn+Vn+w/8HP+hn+vn+fl+gU/zH/mFfpFP9x/7xf4Tn+GXXL6p7Ff6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX673+F3+l1+t//U7/Gf+b3+c7/Pf+H3+y/9Af+VP+i/9pn+G3/If+sP++/8Ef+9P+p/8Mf8cX/Cn/Sn/I/+tD/jz/pz/rz/yV/wP/uL/G/WGGOMMcb+SyZcaYo/6u/9B8+Jv9u5DwBcu61g5t/3Z60o1+f7td1PxLeLAMCzvbo8cnmrXj0pKenSvhkSgqLzAC7/SVCWGLgSL4G28DQkQhso84fz7ye6nad/Mn70doBcf5cTC1fiK+N/+SfjP/HUqIXlw7Nx/4/x5wEUL3olJydciZdAW5X12AbK/sn4+Vv9k/nn/CoFoPXf5eSGK/GV+SfAk/AcJP5mT8YYY4wxxhhj7Ff9RKVOl68/L/+Nzz+6Po9XV3JywJX4n12fM8YYY4wxxhhj7Op7vlv3Z55ITGzT6V9vVP1vZXHjf2rDe4DLzygA+DcHBPiPn8WW/8ixki99dP6xa/k5H8D/jFL+FY2r/MXEGGOMMcYY+8tdWfT/9nl1tSbEGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xlQ/+J/07sap8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdrX9nwAAAP//geYOMQ==") mount$bind(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f00000007c0)='./file0/../file0\x00', 0x0, 0x1091, 0x0) 13m3.45411092s ago: executing program 1 (id=8346): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c01803002f000b12d25a80648c2594f90124fc60100c034002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 13m2.955576071s ago: executing program 1 (id=8352): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x0) mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='btrfs\x00', 0x0, 0x0) 13m2.580220371s ago: executing program 32 (id=8352): mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x8000, 0x0) mount(&(0x7f0000000080)=@filename='./file0\x00', &(0x7f0000000280)='./file0\x00', &(0x7f0000000040)='btrfs\x00', 0x0, 0x0) 2m51.949898472s ago: executing program 3 (id=16195): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001fc0)=ANY=[@ANYBLOB="88000000000101040000000000000000020000002c00018014000180080001007f00000108000200e00000020c000280050001000000000006000340000300002400028014000180080001000000000008000200ac1414bb0c000280050001000000000008000740000000001c000f80080001"], 0x88}}, 0x0) 2m51.751630638s ago: executing program 3 (id=16198): syz_emit_ethernet(0x2e, &(0x7f0000000000)={@multicast, @local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x4, 0x20, 0x66, 0x0, 0x7, 0x2, 0x0, @private=0xa010102, @local}, {0x11, 0xfe, 0x0, @empty, '\x00\x00\x00\x00'}}}}}, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000000)=ANY=[], 0x0) 2m51.731580979s ago: executing program 3 (id=16199): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a000b05d25a806c8c6f94f90424fc601000127a0a000600073582c137153e37080c188005ac0f000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x8100000}, 0x0) 2m51.47527686s ago: executing program 3 (id=16201): syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000340)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@nouid32}, {@grpid}, {@bsdgroups}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x47a, &(0x7f0000000f80)="$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") mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) 2m51.209911182s ago: executing program 3 (id=16203): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000010000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000002c0)='tlb_flush\x00', r0}, 0x18) 2m50.7278093s ago: executing program 3 (id=16210): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000002a00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2m50.204909282s ago: executing program 33 (id=16210): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000002a00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 19.855414947s ago: executing program 0 (id=18134): syz_mount_image$udf(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5e2, &(0x7f0000000880)="$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") rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000001300)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 19.152308064s ago: executing program 0 (id=18141): r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x0, 0x2) ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f00000001c0)={0x7, @win={{0x7ff, 0x6, 0x9, 0x9}, 0x8, 0x1, 0x0, 0x4efc, 0x0, 0x2}}) 18.905911364s ago: executing program 0 (id=18144): r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x3, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x0, 0x8, 0x1, {0x2, @pix={0x204, 0x8, 0x71070474, 0x3, 0x20829, 0x4, 0x4, 0x6, 0x1, 0x0, 0x1, 0x3}}}) 18.678244072s ago: executing program 0 (id=18148): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r0, 0x84, 0x18, &(0x7f0000000000)={0x0, 0x9}, 0x8) 18.410303174s ago: executing program 0 (id=18152): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000500)="$eJzskr9OAkEQxr+9O/5oFDWxooGC+KdQjkONnZbY29lI4ETiocKRKITijDEUFsbSJ+A1THwBLYwPQE1BrM2ZvZ3bLL6C+yvu2/l2ZnZ2c+d+208B+JkOajhEhIkMPhiDBSDHhDcxhD6TfpI+CcE75R2Rf0+a9Xv9JAC+nceKMC6qnud28gC+I09a/sGdgUnU6ms6qPHFKYAwDEPu1QGejgUlxwTQVnKyFrAaXSKUORYNsA6g2G1dF/1ef6vZqjbchnvpmOU9e8e2d53iWdNzbfFlyhF0FXDdBJBKQ8L3EwAeKJ7HLEwZjfbZHE5kbTJ+www9IExZayi1sTK8yrlSSsUx1sDHugmWFLcQdbEQXakCBpOCkqXMJ85KRxvbtSuvPgQDi8tGsGSP0hgJGThqUN4PsChaDallgbRCOiIdk+b+/DJWwL+PFG0EQBK31W63U+KPJFYsXjnSc5YD9cH4qS/G7OXeDGg0Go1Go9FoNBrNf+c3AAD//8PfdhM=") open(&(0x7f0000000400)='./file2\x00', 0x40, 0x82) 17.392155505s ago: executing program 0 (id=18164): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind(r0, &(0x7f0000000000)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80) 2.892285059s ago: executing program 2 (id=18362): ioctl$SIOCAX25ADDUID(0xffffffffffffffff, 0x89e1, 0x0) syz_usb_connect(0x2, 0x36, &(0x7f0000000b80)={{0x12, 0x1, 0x200, 0x2, 0x6a, 0xc2, 0x8, 0x4d8, 0xfd08, 0x3abc, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x5, 0xc, 0x0, 0x3, [{{0x9, 0x4, 0xda, 0x2, 0x2, 0xa, 0xf7, 0x84, 0x12, [], [{{0x9, 0x5, 0x8, 0x2, 0x420, 0xd, 0x1, 0x8}}, {{0x9, 0x5, 0x4, 0x14, 0x200, 0x7f, 0xf0, 0x45}}]}}]}}]}}, &(0x7f0000000d80)={0x0, 0x0, 0x0, 0x0}) 1.356687842s ago: executing program 5 (id=18384): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="58000000000901010000000000000000000000001000048008000140000001000000000014000280080001000000000008000200ac1414000800054000000000090001"], 0x58}}, 0x0) 1.163729637s ago: executing program 34 (id=18164): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind(r0, &(0x7f0000000000)=@qipcrtr={0x2a, 0x4, 0x1}, 0x80) 1.140154699s ago: executing program 5 (id=18386): r0 = socket(0xa, 0x3, 0x87) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f0000000200)={'syztnl1\x00', 0x0, 0x2f, 0xb, 0x8, 0x80000001, 0x54, @empty, @local, 0x7, 0x7, 0x0, 0x7}}) 1.049962177s ago: executing program 2 (id=18387): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x33c, 0x2) ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000080)={0x0, 0x8, 0x2, {0x3, @sliced={0x1, [0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x3ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1]}}}) 1.028494778s ago: executing program 4 (id=18388): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x881, 0x0) ioctl$SNDCTL_DSP_SUBDIVIDE(r0, 0xc0045009, &(0x7f0000001100)=0xfffffffc) 983.767721ms ago: executing program 5 (id=18389): io_setup(0x956, &(0x7f0000000000)=0x0) io_destroy(r0) 846.944453ms ago: executing program 2 (id=18390): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x30000001}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0x8847}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0) 825.761005ms ago: executing program 4 (id=18391): r0 = socket$inet6(0xa, 0x3, 0xff) setsockopt$inet6_int(r0, 0x29, 0x43, 0x0, 0x0) 730.088052ms ago: executing program 5 (id=18392): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x7fff, 0x7}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001740)={r0, 0x0, &(0x7f0000000040)=""/55}, 0x20) 682.024906ms ago: executing program 2 (id=18393): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x10840, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'utf8'}}, {@shortname_winnt}, {@shortname_win95}, {@uni_xlate}, {@shortname_winnt}, {@shortname_winnt}, {@numtail}, {@uni_xlateno}, {@rodir}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x10001}}, {@shortname_mixed}, {@fat=@nfs_nostale_ro}]}, 0x1, 0x26c, &(0x7f0000000340)="$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") mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 610.499252ms ago: executing program 4 (id=18394): r0 = memfd_create(&(0x7f0000000300)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xc4\x1a\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe8Y\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`\x00\x00\x00\x00\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x00\x00\x00', 0x4) ftruncate(r0, 0x10001) 459.936814ms ago: executing program 5 (id=18395): r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x6, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000f2ffffff0000000000000000850000001700000095"], &(0x7f0000000080)='GPL\x00'}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000200)={r0, 0x0, 0x2000, 0xd80, &(0x7f0000000040)="976d9023d56482cd284a63da539706d7009be646625bd75b025352ebe557df463106baeed6c2d75549b140f143fb8bb67bfe5b308b8d05758115c7ad", &(0x7f0000000180)=""/114, 0x0, 0x0, 0xd8, 0xc4, &(0x7f0000000400)="cf2240e6919817e49555d221b4e6c6ba11c4d974ddab2318db7b52cee499399a00be4b710e9246d7bca28cc8346eb84414e45f3f4633f4acb77bf8cc38c4c16fe035905db79cdc0be634a915662c4cac58ae94706f86ea320f339c21399b5bb7607044916c63c528ab4149718d6215a9a3749113c268e49b2b9dae91ed804e5ac5d4ec7ac9c5fd67a76f9a2b06f7304f6e81221a751008e786e1edde82cf1ecb76cb4cd71cf781ea3a19b917a1e215b1a6c7ee605b32b91eaae38517fde4303d5f2b1e63e9e52ae4b197fd72de1f71801e1f9f1369d1f530", &(0x7f0000000280)="bf049fd184f7b03c21d9bcddc4eef9ebb6a0da3eb91c56454e873dd7336ccf21a1eeb8da7adf80d6e06ef46c7f36222fadaed2103c286468b3f44adee51445bd1bedf8fcc1c0b9fdc8b3829b1bf0c9d2d409cdecb12ad033e299c029331993ae9760345bf7feb91ee96b0eee19454ad3dbce5019b68c114ff1921a9b4665744c7784ac6736101a70592d83c448a84c31ec60bb901d96ea99471d823ee523318878ee704a8d9502b566cad45587cb74ea8259c1c0a926fc09499395b2db5af40bb6f4c526", 0x0, 0x8000}, 0x24) 457.728494ms ago: executing program 2 (id=18396): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x6, 0x4, 0x240, 0x7}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0), &(0x7f0000000380), 0xfff, r0, 0x0, 0xa0028000}, 0x38) 417.920417ms ago: executing program 4 (id=18397): r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_RECVRCVINFO(r0, 0x84, 0x20, 0x0, &(0x7f0000000100)) 258.82218ms ago: executing program 5 (id=18398): r0 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000240)={0xf0f01c, 0x2}) 233.065752ms ago: executing program 4 (id=18399): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0xfd, 0x0, 0x7fff0002}]}) semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0) 100.251063ms ago: executing program 4 (id=18400): r0 = openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 0s ago: executing program 2 (id=18401): r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x5, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1}) kernel console output (not intermixed with test programs): ck bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 1776.761198][ T5875] usb 5-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice= 0.5a [ 1776.801611][ T5875] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1776.823131][T16927] EXT4-fs (loop3): 1 truncate cleaned up [ 1776.834808][T16927] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1776.856795][ T5875] usb 5-1: config 0 descriptor?? [ 1776.875102][ T5875] pegasus_notetaker: probe of 5-1:0.0 failed with error -22 [ 1777.033297][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1777.143483][ T5875] usb 5-1: USB disconnect, device number 29 [ 1777.837498][T16988] loop0: detected capacity change from 0 to 512 [ 1777.861548][T16988] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1777.863179][T16988] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1777.905401][T16988] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 1777.906182][T16988] EXT4-fs (loop0): 1 truncate cleaned up [ 1777.930553][T16988] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1778.010419][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1778.114337][T17002] netlink: 'syz.4.15741': attribute type 32 has an invalid length. [ 1778.326640][T17005] loop0: detected capacity change from 0 to 4096 [ 1778.378319][T17005] ntfs3: loop0: ino=3, Correct links count -> 2. [ 1778.868396][T17033] loop3: detected capacity change from 0 to 256 [ 1778.964537][T17033] FAT-fs (loop3): Directory bread(block 64) failed [ 1778.983995][T17033] FAT-fs (loop3): Directory bread(block 65) failed [ 1778.993073][T17033] FAT-fs (loop3): Directory bread(block 66) failed [ 1779.002044][T17033] FAT-fs (loop3): Directory bread(block 67) failed [ 1779.015518][T17033] FAT-fs (loop3): Directory bread(block 68) failed [ 1779.024099][T17033] FAT-fs (loop3): Directory bread(block 69) failed [ 1779.034336][T17033] FAT-fs (loop3): Directory bread(block 70) failed [ 1779.048339][T17033] FAT-fs (loop3): Directory bread(block 71) failed [ 1779.094074][T17033] FAT-fs (loop3): Directory bread(block 72) failed [ 1779.115303][T17033] FAT-fs (loop3): Directory bread(block 73) failed [ 1780.123581][T17092] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 1780.274441][T17101] loop3: detected capacity change from 0 to 256 [ 1780.361623][T17101] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 1780.750550][T17119] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 1781.539338][T17144] loop3: detected capacity change from 0 to 4096 [ 1781.585502][T17144] ntfs3: Unknown parameter 'nohide_dot_file—šANRpŒzÎs' [ 1781.749308][T17151] loop4: detected capacity change from 0 to 4096 [ 1781.899295][T17165] xt_l2tp: invalid flags combination: c [ 1782.337593][T17185] loop4: detected capacity change from 0 to 1764 [ 1782.408854][T17189] netlink: 'syz.2.15796': attribute type 1 has an invalid length. [ 1782.464907][T17185] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1782.709972][T17205] netdevsim netdevsim3: Firmware load for '..' refused, path contains '..' component [ 1783.115189][ T28] audit: type=1326 audit(1756098325.272:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.209284][ T28] audit: type=1326 audit(1756098325.309:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.231749][ C0] vkms_vblank_simulate: vblank timer overrun [ 1783.284765][ T28] audit: type=1326 audit(1756098325.309:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.295439][T17234] xt_l2tp: wrong L2TP version: 0 [ 1783.358388][ T28] audit: type=1326 audit(1756098325.309:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.444473][ T28] audit: type=1326 audit(1756098325.309:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.521247][ T28] audit: type=1326 audit(1756098325.309:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.551892][T17244] binder: BC_ACQUIRE_RESULT not supported [ 1783.573024][T17244] binder: 17243:17244 ioctl c0306201 200000000040 returned -22 [ 1783.618368][T17250] loop3: detected capacity change from 0 to 64 [ 1783.647659][ T28] audit: type=1326 audit(1756098325.309:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.715467][ T28] audit: type=1326 audit(1756098325.309:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.789989][ T28] audit: type=1326 audit(1756098325.309:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17228 comm="syz.4.15808" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1783.889101][T17264] loop4: detected capacity change from 0 to 256 [ 1783.926626][T17264] exfat: Deprecated parameter 'utf8' [ 1784.025657][T17264] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 1784.489623][T17287] loop3: detected capacity change from 0 to 2048 [ 1784.556892][T17287] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 1784.617665][T17298] befs: (nullb0): invalid magic header [ 1784.643360][T17287] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1784.720256][T17287] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry at pos 0 with unaligned length of impUse field [ 1784.879022][T17307] netlink: 16 bytes leftover after parsing attributes in process `syz.0.15832'. [ 1784.898921][ T169] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1784.958972][ T5876] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1784.974376][ T169] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1785.592869][T17339] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15841'. [ 1785.629317][T17339] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15841'. [ 1785.698444][T17345] x_tables: duplicate underflow at hook 2 [ 1785.807524][T17310] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1785.901163][T17356] netlink: 'syz.4.15847': attribute type 1 has an invalid length. [ 1785.913879][T17356] netlink: 232 bytes leftover after parsing attributes in process `syz.4.15847'. [ 1785.978893][T17310] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1786.506009][T17388] loop3: detected capacity change from 0 to 256 [ 1786.527827][T17388] exfat: Deprecated parameter 'utf8' [ 1786.548470][T17388] exfat: Deprecated parameter 'namecase' [ 1786.572005][T17388] exfat: Deprecated parameter 'utf8' [ 1786.608785][T17388] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1787.207498][T17424] netlink: 176 bytes leftover after parsing attributes in process `syz.2.15866'. [ 1787.375364][ T28] audit: type=1326 audit(1756098329.247:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17430 comm="syz.0.15869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1788.248702][T17427] loop4: detected capacity change from 0 to 32768 [ 1788.436825][ T169] read_mapping_page failed! [ 1788.443939][ T169] ERROR: (device loop4): txCommit: [ 1788.443939][ T169] [ 1788.494447][ T169] jfs_write_inode: jfs_commit_inode failed! [ 1788.700223][T17489] x_tables: unsorted entry at hook 1 [ 1788.868250][T17500] loop4: detected capacity change from 0 to 64 [ 1789.401660][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1789.490434][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1789.516609][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1789.575574][T17534] netlink: 144 bytes leftover after parsing attributes in process `syz.4.15902'. [ 1791.099606][T17608] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15925'. [ 1792.320266][T17652] €Â: renamed from veth0_vlan [ 1792.581152][T17666] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15944'. [ 1792.697154][T17669] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15945'. [ 1794.036065][T17734] syz.2.15963[17734] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1794.036214][T17734] syz.2.15963[17734] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1794.409748][T17747] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15967'. [ 1795.211495][T17782] loop3: detected capacity change from 0 to 22 [ 1795.232700][T17782] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1795.257975][T17782] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1796.387651][T17843] netlink: 'syz.4.15998': attribute type 6 has an invalid length. [ 1796.627476][T17859] sock: sock_timestamping_bind_phc: sock not bind to device [ 1797.101794][T17886] netlink: 'syz.4.16009': attribute type 32 has an invalid length. [ 1797.109213][T17888] ax25_connect(): syz.3.16010 uses autobind, please contact jreuter@yaina.de [ 1797.122205][ T4219] usb 3-1: new high-speed USB device number 67 using dummy_hcd [ 1797.330116][ T4219] usb 3-1: Using ep0 maxpacket: 32 [ 1797.373369][ T4219] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1797.405637][ T4219] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 1797.448442][ T4219] usb 3-1: New USB device found, idVendor=413c, idProduct=819b, bcdDevice=a7.c0 [ 1797.470077][ T4219] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1797.478157][ T4219] usb 3-1: Product: syz [ 1797.502579][ T4219] usb 3-1: Manufacturer: syz [ 1797.507244][ T4219] usb 3-1: SerialNumber: syz [ 1797.531513][ T4219] usb 3-1: config 0 descriptor?? [ 1797.540887][ T4219] qmi_wwan 3-1:0.0: bogus CDC Union: master=101, slave=0 [ 1797.555508][ T4219] qmi_wwan: probe of 3-1:0.0 failed with error -22 [ 1797.806664][ T4219] usb 3-1: USB disconnect, device number 67 [ 1798.389269][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1799.095420][T17993] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16042'. [ 1800.231968][T18047] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1800.239336][T18047] IPv6: NLM_F_CREATE should be set when creating new route [ 1800.246621][T18047] IPv6: NLM_F_CREATE should be set when creating new route [ 1800.262544][T18049] lo: entered promiscuous mode [ 1800.288282][T18049] lo: entered allmulticast mode [ 1800.294270][T18049] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1800.441874][T18056] netlink: 'syz.4.16061': attribute type 1 has an invalid length. [ 1800.854142][T18077] program syz.0.16068 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1800.919872][T18077] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1801.203069][T18092] loop0: detected capacity change from 0 to 64 [ 1801.476109][T18110] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1801.997858][T18140] smb3: Unexpected value for 'rdma' [ 1803.677991][T18214] xt_limit: Overflow, try lower: 0/0 [ 1803.959451][T18224] netlink: 6 bytes leftover after parsing attributes in process `syz.0.16113'. [ 1804.005952][T18224] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1804.108804][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 1804.108821][ T28] audit: type=1400 audit(1756098344.907:311): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=":=~" pid=18232 comm="syz.3.16115" [ 1804.979058][T18271] IPVS: sync thread started: state = BACKUP, mcast_ifn = dummy0, syncid = 1, id = 0 [ 1804.992834][T18272] netlink: 6 bytes leftover after parsing attributes in process `syz.3.16127'. [ 1805.049287][T18272] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1805.195438][T18278] ieee802154 phy0 wpan0: encryption failed: -22 [ 1805.428204][T18288] netlink: 'syz.4.16133': attribute type 10 has an invalid length. [ 1805.457079][T18288] netlink: 2 bytes leftover after parsing attributes in process `syz.4.16133'. [ 1805.479288][T18288] ipvlan1: entered promiscuous mode [ 1805.499691][T18288] bridge0: port 2(ipvlan1) entered blocking state [ 1805.509163][T18288] bridge0: port 2(ipvlan1) entered disabled state [ 1805.530819][T18288] ipvlan1: entered allmulticast mode [ 1805.537815][T18288] veth0_vlan: entered allmulticast mode [ 1805.548720][T18288] ipvlan1: left allmulticast mode [ 1805.556607][T18288] veth0_vlan: left allmulticast mode [ 1806.310807][T18322] netlink: 'syz.0.16144': attribute type 1 has an invalid length. [ 1806.393599][T18327] cgroup: Invalid name [ 1806.985714][T18355] netlink: 'syz.4.16155': attribute type 15 has an invalid length. [ 1807.048585][T18355] netlink: 666 bytes leftover after parsing attributes in process `syz.4.16155'. [ 1807.758011][T18381] xt_l2tp: v2 doesn't support IP mode [ 1807.942965][T18391] loop0: detected capacity change from 0 to 512 [ 1808.000827][T18393] xt_l2tp: v2 sid > 0xffff: 262144 [ 1808.065425][T18391] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.16166: casefold flag without casefold feature [ 1808.138844][T18391] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.16166: couldn't read orphan inode 15 (err -117) [ 1808.161014][T18391] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1808.313288][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1808.572589][T18420] netlink: 9 bytes leftover after parsing attributes in process `syz.3.16174'. [ 1808.830629][T18429] afs: Unknown parameter 'd' [ 1809.624735][ T54] usb 3-1: new high-speed USB device number 68 using dummy_hcd [ 1809.760584][T18478] netlink: 'syz.3.16191': attribute type 3 has an invalid length. [ 1809.830259][ T54] usb 3-1: config 0 has an invalid interface number: 199 but max is 1 [ 1809.848212][ T54] usb 3-1: config 0 has no interface number 1 [ 1809.870576][ T54] usb 3-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1809.902428][ T54] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 1809.924444][ T54] usb 3-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 1809.933783][ T54] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1809.948539][ T54] usb 3-1: SerialNumber: syz [ 1809.968398][ T54] usb 3-1: config 0 descriptor?? [ 1809.993507][ T54] usb 3-1: Found UVC 0.00 device (0002:0000) [ 1810.020023][ T54] usb 3-1: No valid video chain found. [ 1810.094990][T18497] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16195'. [ 1810.260615][ T54] usb 3-1: USB disconnect, device number 68 [ 1810.319019][T18514] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.16199'. [ 1810.519848][T18526] loop3: detected capacity change from 0 to 512 [ 1810.564922][T18526] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.16201: bad orphan inode 15 [ 1810.587790][T18526] ext4_test_bit(bit=14, block=5) = 0 [ 1810.594389][T18526] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1810.692520][ T5787] EXT4-fs error (device loop3): ext4_lookup:1858: inode #17: comm syz-executor: iget: bad extra_isize 255 (inode size 256) [ 1810.712374][ T5787] EXT4-fs error (device loop3): ext4_lookup:1858: inode #17: comm syz-executor: iget: bad extra_isize 255 (inode size 256) [ 1810.845904][T18530] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 8011 vs 220 free clusters [ 1811.080853][ T5787] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1811.296786][ T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1811.555146][ T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1811.759393][ T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1811.947182][ T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1812.688544][T18596] binfmt_misc: register: failed to install interpreter file ./bus [ 1812.933478][T18605] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1812.954505][T18605] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1812.970623][T18605] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1812.995331][T18609] deleting an unspecified loop device is not supported. [ 1813.025637][T18605] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1813.035100][T18605] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1813.044879][T18605] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1813.795788][T18648] Timeout policy `syz1' can only be used by L3 protocol number 35067 [ 1814.813633][T18707] netlink: 'syz.2.16239': attribute type 1 has an invalid length. [ 1814.841279][T18707] netlink: 224 bytes leftover after parsing attributes in process `syz.2.16239'. [ 1815.313622][T18605] Bluetooth: hci2: command tx timeout [ 1815.441239][ T11] IPVS: stopping backup sync thread 32647 ... [ 1816.137293][T18599] chnl_net:caif_netlink_parms(): no params data found [ 1816.572927][T17310] usb 3-1: new high-speed USB device number 69 using dummy_hcd [ 1816.782743][T17310] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 1816.803644][T17310] usb 3-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 1816.835799][T17310] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1816.851440][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1816.890150][T17310] usb 3-1: config 220 has no interface number 2 [ 1816.910337][T17310] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1816.945745][T17310] usb 3-1: config 220 interface 0 has no altsetting 0 [ 1816.972648][T18599] bridge0: port 1(bridge_slave_0) entered blocking state [ 1816.976738][T17310] usb 3-1: config 220 interface 76 has no altsetting 0 [ 1816.983908][T18599] bridge0: port 1(bridge_slave_0) entered disabled state [ 1817.000071][T17310] usb 3-1: config 220 interface 1 has no altsetting 0 [ 1817.002089][T18599] bridge_slave_0: entered allmulticast mode [ 1817.017070][T18599] bridge_slave_0: entered promiscuous mode [ 1817.036890][T17310] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1817.071069][T17310] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1817.091876][ T11] veth0_to_bridge: left allmulticast mode [ 1817.107958][T17310] usb 3-1: Product: syz [ 1817.112294][ T11] veth0_to_bridge: left promiscuous mode [ 1817.127826][T17310] usb 3-1: Manufacturer: syz [ 1817.137080][ T11] bridge0: port 1(veth0_to_bridge) entered disabled state [ 1817.145380][T17310] usb 3-1: SerialNumber: syz [ 1817.211367][ T11] veth1_macvtap: left promiscuous mode [ 1817.413838][T17310] usb 3-1: selecting invalid altsetting 0 [ 1817.448750][T17310] usb 3-1: Found UVC 7.01 device syz (8086:0b07) [ 1817.474631][T17310] usb 3-1: No valid video chain found. [ 1817.518669][T17310] usb 3-1: selecting invalid altsetting 0 [ 1817.535259][T18605] Bluetooth: hci2: command tx timeout [ 1817.567172][T17310] usbtest: probe of 3-1:220.1 failed with error -22 [ 1817.607420][T17310] usb 3-1: USB disconnect, device number 69 [ 1818.008774][ T11] bond7 (unregistering): Released all slaves [ 1818.026375][ T11] bond6 (unregistering): Released all slaves [ 1818.082359][ T11] bond5 (unregistering): Released all slaves [ 1818.161966][ T11] bond4 (unregistering): Released all slaves [ 1818.177803][ T11] bond3 (unregistering): Released all slaves [ 1818.639064][ T11] bond2 (unregistering): Released all slaves [ 1818.995838][ T11] bond1 (unregistering): Released all slaves [ 1819.758961][T17083] Bluetooth: hci2: command tx timeout [ 1820.574503][ T11] bond0 (unregistering): Released all slaves [ 1820.680559][T18599] bridge0: port 2(bridge_slave_1) entered blocking state [ 1820.687851][T18599] bridge0: port 2(bridge_slave_1) entered disabled state [ 1820.695238][T18599] bridge_slave_1: entered allmulticast mode [ 1820.703043][T18599] bridge_slave_1: entered promiscuous mode [ 1820.751235][T18936] workqueue: Failed to create a rescuer kthread for wq "bond7": -EINTR [ 1820.807860][T18965] netlink: 'syz.2.16260': attribute type 10 has an invalid length. [ 1820.850232][T18965] team0: Device ipvlan1 failed to register rx_handler [ 1820.987359][T18599] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1821.049279][T18599] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1821.278010][T18599] team0: Port device team_slave_0 added [ 1821.342370][T18599] team0: Port device team_slave_1 added [ 1821.601165][T18599] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1821.629005][T18599] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1821.672759][T18599] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1821.697152][T18599] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1821.715451][T18599] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1821.783117][T18599] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1821.982182][T17083] Bluetooth: hci2: command tx timeout [ 1822.343327][T18599] hsr_slave_0: entered promiscuous mode [ 1822.374244][T18599] hsr_slave_1: entered promiscuous mode [ 1822.383742][T18599] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1822.407459][T19122] netlink: 36 bytes leftover after parsing attributes in process `syz.0.16275'. [ 1822.416802][T18599] Cannot create hsr debugfs directory [ 1822.443210][ T11] IPVS: stop unused estimator thread 0... [ 1823.370490][T18599] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1823.417819][T18599] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1823.531672][T18599] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1823.611720][T18599] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1823.970183][T18599] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1824.052756][T18599] 8021q: adding VLAN 0 to HW filter on device team0 [ 1824.089489][ T3244] bridge0: port 1(bridge_slave_0) entered blocking state [ 1824.096712][ T3244] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1824.199782][ T3244] bridge0: port 2(bridge_slave_1) entered blocking state [ 1824.207027][ T3244] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1824.605884][ T28] audit: type=1326 audit(1756098364.074:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19276 comm="syz.0.16294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1824.698077][ T28] audit: type=1326 audit(1756098364.074:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19276 comm="syz.0.16294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1824.720561][ C0] vkms_vblank_simulate: vblank timer overrun [ 1824.792789][ T28] audit: type=1326 audit(1756098364.112:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19276 comm="syz.0.16294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=306 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1824.851011][ T28] audit: type=1326 audit(1756098364.112:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19276 comm="syz.0.16294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1825.038982][T18599] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1826.321907][T18599] veth0_vlan: entered promiscuous mode [ 1826.399199][T18599] veth1_vlan: entered promiscuous mode [ 1826.552542][T18599] veth0_macvtap: entered promiscuous mode [ 1826.601306][T18599] veth1_macvtap: entered promiscuous mode [ 1826.699970][T18599] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1826.765819][T18599] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1826.809083][T18599] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1826.858977][T18599] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1826.899772][T18599] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1826.928525][T18599] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1827.275255][ T3244] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1827.296238][ T3244] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1827.479152][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1827.487057][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1828.855915][T10014] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 1829.082205][T10014] usb 5-1: Using ep0 maxpacket: 8 [ 1829.093788][T10014] usb 5-1: config 0 has too many interfaces: 65, using maximum allowed: 32 [ 1829.133970][T10014] usb 5-1: config 0 has an invalid interface number: 150 but max is 64 [ 1829.142300][T10014] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1829.187283][T10014] usb 5-1: config 0 has 2 interfaces, different from the descriptor's value: 65 [ 1829.196434][T10014] usb 5-1: config 0 has no interface number 0 [ 1829.203571][T10014] usb 5-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1829.216661][T10014] usb 5-1: config 0 interface 150 has no altsetting 0 [ 1829.224076][T10014] usb 5-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75 [ 1829.245046][T10014] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1829.265989][T10014] usb 5-1: config 0 descriptor?? [ 1829.290927][ T28] audit: type=1326 audit(1756098368.461:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.380973][ T28] audit: type=1326 audit(1756098368.461:317): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.451360][ T28] audit: type=1326 audit(1756098368.461:318): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.550438][ T28] audit: type=1326 audit(1756098368.461:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.656315][ T28] audit: type=1326 audit(1756098368.461:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.743424][ T28] audit: type=1326 audit(1756098368.461:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1829.842183][T17310] usb 5-1: USB disconnect, device number 30 [ 1829.966992][ T28] kauditd_printk_skb: 147 callbacks suppressed [ 1829.967008][ T28] audit: type=1326 audit(1756098369.088:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.047623][ T28] audit: type=1326 audit(1756098369.116:470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.149031][ T28] audit: type=1326 audit(1756098369.116:471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.231851][ T28] audit: type=1326 audit(1756098369.116:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.300364][ T28] audit: type=1326 audit(1756098369.116:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.389338][ T28] audit: type=1326 audit(1756098369.116:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.434414][ T28] audit: type=1326 audit(1756098369.116:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.536633][ T28] audit: type=1326 audit(1756098369.116:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.709362][ T28] audit: type=1326 audit(1756098369.116:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1830.822865][ T28] audit: type=1326 audit(1756098369.116:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19501 comm="syz.5.16347" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x50000 [ 1832.048759][T19624] sctp: [Deprecated]: syz.4.16374 (pid 19624) Use of int in max_burst socket option deprecated. [ 1832.048759][T19624] Use struct sctp_assoc_value instead [ 1834.068159][T19719] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16402'. [ 1834.087577][T19721] xt_TCPMSS: Only works on TCP SYN packets [ 1834.316901][T19735] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 1834.488508][T19740] xt_l2tp: v2 doesn't support IP mode [ 1834.556258][T19745] netdevsim netdevsim4: Firmware load for './file0/../file0' refused, path contains '..' component [ 1834.655203][T19751] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 1834.661802][T19751] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1834.679236][T19751] vhci_hcd vhci_hcd.0: Device attached [ 1834.720833][T19754] vhci_hcd vhci_hcd.0: pdev(0) rhport(1) sockfd(6) [ 1834.727517][T19754] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 1834.772254][T19754] vhci_hcd vhci_hcd.0: Device attached [ 1834.794446][T19756] vhci_hcd: connection closed [ 1834.796821][T19752] vhci_hcd: connection closed [ 1834.813428][ T1073] vhci_hcd: stop threads [ 1834.850156][ T1073] vhci_hcd: release socket [ 1834.870292][ T1073] vhci_hcd: disconnect device [ 1834.877995][T19765] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1834.894352][ T4219] vhci_hcd: vhci_device speed not set [ 1834.903291][ T1073] vhci_hcd: stop threads [ 1834.908478][ T1073] vhci_hcd: release socket [ 1834.913046][ T1073] vhci_hcd: disconnect device [ 1834.970562][ T4219] usb 33-1: new high-speed USB device number 2 using vhci_hcd [ 1834.978284][ T4219] usb 33-1: enqueue for inactive port 0 [ 1835.088437][ T4219] vhci_hcd: vhci_device speed not set [ 1835.313278][ T28] kauditd_printk_skb: 1098 callbacks suppressed [ 1835.313295][ T28] audit: type=1326 audit(1756098374.093:1577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19785 comm="syz.5.16422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1835.342090][ C1] vkms_vblank_simulate: vblank timer overrun [ 1835.361489][ T28] audit: type=1326 audit(1756098374.130:1578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19785 comm="syz.5.16422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1835.397667][ T28] audit: type=1326 audit(1756098374.168:1579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19785 comm="syz.5.16422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1835.508208][ T28] audit: type=1326 audit(1756098374.168:1580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19785 comm="syz.5.16422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1835.543976][T19792] netlink: 36 bytes leftover after parsing attributes in process `syz.4.16423'. [ 1835.553254][ T28] audit: type=1326 audit(1756098374.168:1581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19785 comm="syz.5.16422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1835.589506][T19792] žåÓD`¼ê: renamed from hsr_slave_1 (while UP) [ 1835.835214][T19799] loop5: detected capacity change from 0 to 4096 [ 1835.978717][T19799] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 1836.077829][T19799] ntfs3: loop5: Failed to initialize $Extend/$Reparse. [ 1836.226965][T19819] loop0: detected capacity change from 0 to 1024 [ 1836.565450][T18083] hfsplus: b-tree write err: -5, ino 4 [ 1836.597190][T19833] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1837.048394][T19846] loop0: detected capacity change from 0 to 4096 [ 1837.102019][T19846] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1837.149385][T19846] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1837.183516][T19846] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1837.231814][T19846] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1837.316667][T19846] ntfs: volume version 3.1. [ 1837.538767][T19846] ntfs: (device loop0): ntfs_attr_find(): Inode is corrupt. Run chkdsk. [ 1837.838464][T19893] netlink: 388 bytes leftover after parsing attributes in process `syz.5.16454'. [ 1837.847411][T19890] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1837.855181][T19890] žåÓD`¼ê: hsr_addr_subst_dest: Unknown node [ 1837.863448][T19894] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 1838.136263][T19909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16459'. [ 1838.176534][T19909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16459'. [ 1838.216882][T19909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.16459'. [ 1838.339964][T19917] netlink: 16 bytes leftover after parsing attributes in process `syz.0.16461'. [ 1840.956478][T20057] netlink: 115 bytes leftover after parsing attributes in process `syz.0.16504'. [ 1840.994876][T20059] loop5: detected capacity change from 0 to 64 [ 1841.093133][T20065] netlink: 'syz.4.16505': attribute type 29 has an invalid length. [ 1841.118071][T20065] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16505'. [ 1841.171360][T20065] netlink: 'syz.4.16505': attribute type 29 has an invalid length. [ 1841.201204][T20065] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16505'. [ 1842.045775][T20109] team0: Port device team_slave_0 removed [ 1842.055205][T20109] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 1842.550092][ T5875] usb 3-1: new full-speed USB device number 70 using dummy_hcd [ 1842.746335][ T5875] usb 3-1: config 0 has an invalid interface number: 120 but max is 0 [ 1842.754890][ T5875] usb 3-1: config 0 has no interface number 0 [ 1842.776078][ T5875] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 12349, setting to 64 [ 1842.810136][T20148] loop5: detected capacity change from 0 to 4096 [ 1842.822550][ T5875] usb 3-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 1842.837348][T20148] __ntfs_warning: 1 callbacks suppressed [ 1842.837364][T20148] ntfs: (device loop5): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1842.865945][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1842.877092][ T5875] usb 3-1: config 0 descriptor?? [ 1842.883322][T20121] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 1842.907016][ T5875] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.120/input/input99 [ 1842.971029][ C0] usbtouchscreen 3-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -1 [ 1843.000882][ C0] usbtouchscreen 3-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -1 [ 1843.011322][T20148] ntfs: volume version 3.1. [ 1843.175069][T20168] netlink: 32 bytes leftover after parsing attributes in process `syz.4.16532'. [ 1843.202186][ C0] usbtouchscreen 3-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -1 [ 1843.306170][T17310] usb 3-1: USB disconnect, device number 70 [ 1843.306292][ C1] usbtouchscreen 3-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -19 [ 1844.925096][T20256] binder: 20255:20256 ioctl c0306201 200000000380 returned -14 [ 1845.177536][T20272] QAT: failed to copy from user cfg_data. [ 1845.253515][T20274] loop0: detected capacity change from 0 to 1024 [ 1845.345891][T20274] fuse: Bad value for 'fd' [ 1845.533311][ T169] hfsplus: b-tree write err: -5, ino 4 [ 1846.018503][T20312] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 1846.345177][ T5875] usb 3-1: new high-speed USB device number 71 using dummy_hcd [ 1846.558688][ T5875] usb 3-1: Using ep0 maxpacket: 8 [ 1846.567865][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1846.600874][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1846.604353][T20348] (unnamed net_device) (uninitialized): option arp_interval: mode dependency failed, not supported in mode balance-tlb(5) [ 1846.632813][ T5875] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1846.679055][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1846.706280][ T5875] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1846.763954][ T5875] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1846.789205][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1846.814603][ T5875] usb 3-1: config 0 descriptor?? [ 1846.821128][T20318] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1847.160547][T20371] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16576'. [ 1847.203516][T20373] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16577'. [ 1847.238460][T20373] netlink: 8 bytes leftover after parsing attributes in process `syz.5.16577'. [ 1847.420737][ T5875] usb 3-1: USB disconnect, device number 71 [ 1847.433150][T17083] Bluetooth: hci4: Opcode 0x0c03 failed: -19 [ 1847.959303][T20414] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1848.327564][T20430] netlink: 16 bytes leftover after parsing attributes in process `syz.5.16589'. [ 1849.194760][T20468] overlayfs: disabling nfs_export due to verity=on [ 1849.226207][T20468] overlayfs: conflicting options: userxattr,redirect_dir=on [ 1850.264770][T20470] loop0: detected capacity change from 0 to 32768 [ 1850.331503][T20477] loop5: detected capacity change from 0 to 32768 [ 1850.356670][T20470] ea_get: extended attribute size too large: 2617245744 > INT_MAX [ 1850.481907][ T28] audit: type=1326 audit(1756098388.274:1582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20515 comm="syz.2.16610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1850.588899][ T28] audit: type=1326 audit(1756098388.274:1583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20515 comm="syz.2.16610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1850.693025][ T28] audit: type=1326 audit(1756098388.312:1584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20515 comm="syz.2.16610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=105 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1850.832079][ T28] audit: type=1326 audit(1756098388.312:1585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20515 comm="syz.2.16610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1850.952238][ T28] audit: type=1326 audit(1756098388.312:1586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20515 comm="syz.2.16610" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1851.693836][T20568] kAFS: unable to lookup cell '/,' [ 1852.145124][T20580] loop0: detected capacity change from 0 to 4096 [ 1852.630749][ T4219] usb 6-1: new full-speed USB device number 2 using dummy_hcd [ 1852.858921][ T4219] usb 6-1: config index 0 descriptor too short (expected 69, got 36) [ 1852.879508][ T4219] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1852.934459][ T4219] usb 6-1: New USB device found, idVendor=093a, idProduct=2622, bcdDevice=b7.89 [ 1852.965246][ T4219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1853.015001][ T4219] usb 6-1: Product: syz [ 1853.020283][ T4219] usb 6-1: Manufacturer: syz [ 1853.024925][ T4219] usb 6-1: SerialNumber: syz [ 1853.080876][ T4219] usb 6-1: config 0 descriptor?? [ 1853.103582][ T4219] gspca_main: gspca_pac7302-2.14.0 probing 093a:2622 [ 1853.122454][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1853.562364][ T4219] gspca_pac7302: reg_w() failed i: 78 v: 00 error -71 [ 1853.569300][ T4219] gspca_pac7302: probe of 6-1:0.0 failed with error -71 [ 1853.606005][ T4219] usb 6-1: USB disconnect, device number 2 [ 1855.170329][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1855.178859][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1856.051925][T20760] xt_connbytes: Forcing CT accounting to be enabled [ 1856.058892][T20760] xt_bpf: check failed: parse error [ 1856.887093][T20755] loop0: detected capacity change from 0 to 32768 [ 1856.952166][T20755] JBD2: Ignoring recovery information on journal [ 1857.125348][T20755] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1857.407235][ T5785] ocfs2: Unmounting device (7,0) on (node local) [ 1857.697453][T20833] netlink: 'syz.2.16685': attribute type 13 has an invalid length. [ 1857.715299][T20833] lo: left promiscuous mode [ 1857.725234][T20833] lo: left allmulticast mode [ 1857.788101][T20833] gretap0: refused to change device tx_queue_len [ 1857.799834][T20833] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1859.345363][T20908] netlink: 24 bytes leftover after parsing attributes in process `syz.2.16709'. [ 1859.505117][ T28] audit: type=1326 audit(1756098396.731:1587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20913 comm="syz.5.16710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1859.585062][ T28] audit: type=1326 audit(1756098396.749:1588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20913 comm="syz.5.16710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1859.676820][ T28] audit: type=1326 audit(1756098396.759:1589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20913 comm="syz.5.16710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1859.795736][ T28] audit: type=1326 audit(1756098396.759:1590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20913 comm="syz.5.16710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1859.896553][ T28] audit: type=1326 audit(1756098396.759:1591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20913 comm="syz.5.16710" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f298218ebe9 code=0x7ffc0000 [ 1860.380644][T20983] netlink: 56 bytes leftover after parsing attributes in process `syz.0.16721'. [ 1860.967965][T21015] netlink: 'syz.5.16732': attribute type 10 has an invalid length. [ 1861.008247][T21015] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1861.062651][T21015] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 1861.179224][T21024] netlink: 8 bytes leftover after parsing attributes in process `syz.0.16734'. [ 1861.672302][T21049] netlink: 'syz.2.16742': attribute type 9 has an invalid length. [ 1862.362501][T21090] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 1862.383836][T21088] delete_channel: no stack [ 1862.956359][T21120] loop0: detected capacity change from 0 to 256 [ 1863.869249][T21169] sctp: [Deprecated]: syz.2.16779 (pid 21169) Use of int in maxseg socket option. [ 1863.869249][T21169] Use struct sctp_assoc_value instead [ 1864.869218][T21221] netlink: 'syz.0.16796': attribute type 3 has an invalid length. [ 1864.879287][T21221] netlink: 666 bytes leftover after parsing attributes in process `syz.0.16796'. [ 1865.042539][ T4219] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 1865.074253][T21227] netlink: 'syz.0.16798': attribute type 1 has an invalid length. [ 1865.082177][T21227] netlink: 154788 bytes leftover after parsing attributes in process `syz.0.16798'. [ 1865.245821][ T4219] usb 6-1: Using ep0 maxpacket: 32 [ 1865.254530][ T4219] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1865.269191][ T4219] usb 6-1: config 7 has an invalid interface number: 128 but max is 0 [ 1865.299455][ T4219] usb 6-1: config 7 contains an unexpected descriptor of type 0x1, skipping [ 1865.308252][ T4219] usb 6-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 1865.362678][ T4219] usb 6-1: config 7 has no interface number 0 [ 1865.369819][ T4219] usb 6-1: config 7 interface 128 altsetting 2 has an invalid endpoint with address 0x17, skipping [ 1865.387366][ T4219] usb 6-1: config 7 interface 128 altsetting 2 endpoint 0x87 has an invalid bInterval 209, changing to 11 [ 1865.403365][ T4219] usb 6-1: config 7 interface 128 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 6 [ 1865.421967][ T4219] usb 6-1: config 7 interface 128 has no altsetting 0 [ 1865.433590][ T4219] usb 6-1: New USB device found, idVendor=6033, idProduct=4108, bcdDevice=cc.13 [ 1865.455711][ T4219] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1865.483160][ T4219] usb 6-1: Product: syz [ 1865.488733][ T4219] usb 6-1: Manufacturer: syz [ 1865.493643][ T4219] usb 6-1: SerialNumber: syz [ 1865.502059][T21213] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1865.812188][ T4219] usb 6-1: Quirk or no altest; falling back to MIDI 1.0 [ 1865.819301][ T4219] usb 6-1: MIDIStreaming interface descriptor not found [ 1865.930926][ T4219] usb 6-1: USB disconnect, device number 3 [ 1866.045117][T21272] loop0: detected capacity change from 0 to 2048 [ 1866.126392][T21272] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1866.151756][T21272] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1866.205762][ T5917] udevd[5917]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:7.128/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1866.530322][T21301] netlink: 76 bytes leftover after parsing attributes in process `syz.2.16811'. [ 1866.765538][T21312] netlink: 16 bytes leftover after parsing attributes in process `syz.5.16814'. [ 1866.837031][T21312] netlink: 16 bytes leftover after parsing attributes in process `syz.5.16814'. [ 1866.890567][T21312] netlink: 72 bytes leftover after parsing attributes in process `syz.5.16814'. [ 1867.129450][T21327] dlm: no locking on control device [ 1867.457708][ T28] audit: type=1400 audit(1756098404.149:1592): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A0C7E pid=21341 comm="syz.2.16826" [ 1867.477052][ C1] vkms_vblank_simulate: vblank timer overrun [ 1867.587129][T21345] netlink: 'syz.4.16827': attribute type 10 has an invalid length. [ 1867.619477][T21345] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 1867.664731][T21345] team0: Port device virt_wifi0 added [ 1867.841188][T21315] loop0: detected capacity change from 0 to 32768 [ 1867.960235][T21315] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 1868.027591][T21315] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1868.098077][T21369] netlink: 128 bytes leftover after parsing attributes in process `syz.4.16832'. [ 1868.183998][T21369] netlink: 20 bytes leftover after parsing attributes in process `syz.4.16832'. [ 1868.237911][T21315] XFS (loop0): Ending clean mount [ 1868.278092][T21315] XFS (loop0): Quotacheck needed: Please wait. [ 1868.421396][T21315] XFS (loop0): Quotacheck: Done. [ 1868.680706][T21388] netlink: 16 bytes leftover after parsing attributes in process `syz.4.16837'. [ 1868.690292][ T5785] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1868.983948][T21399] netlink: 20 bytes leftover after parsing attributes in process `syz.2.16841'. [ 1869.430822][T21416] loop5: detected capacity change from 0 to 128 [ 1869.457356][T21416] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 1869.487818][T21416] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1870.095490][T21452] loop5: detected capacity change from 0 to 512 [ 1870.183805][T21452] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 1870.268114][T21463] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1870.283627][T21467] loop0: detected capacity change from 0 to 128 [ 1870.291187][T21452] EXT4-fs (loop5): 1 truncate cleaned up [ 1870.347047][T21452] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1870.395271][T21467] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1870.459441][T21467] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1870.660010][T18599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1871.235028][T21509] geneve4: entered promiscuous mode [ 1871.242298][T21509] geneve4: entered allmulticast mode [ 1871.271926][T21509] bridge6: port 1(geneve4) entered blocking state [ 1871.295944][T21509] bridge6: port 1(geneve4) entered disabled state [ 1871.783184][T21536] __nla_validate_parse: 1 callbacks suppressed [ 1871.783203][T21536] netlink: 20 bytes leftover after parsing attributes in process `syz.4.16882'. [ 1872.084960][T21540] loop5: detected capacity change from 0 to 4096 [ 1872.175156][T21540] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 1872.260610][T21553] cgroup: Unknown subsys name 'smackfshat' [ 1872.306774][T21540] ntfs3: loop5: Failed to initialize $Extend/$Reparse. [ 1873.326978][T10014] usb 3-1: new high-speed USB device number 72 using dummy_hcd [ 1873.530731][T10014] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1873.557549][T10014] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1873.582650][T10014] usb 3-1: config 0 descriptor?? [ 1873.616564][T10014] cp210x 3-1:0.0: cp210x converter detected [ 1873.715876][T21576] loop5: detected capacity change from 0 to 32768 [ 1873.765314][T21576] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9 [ 1873.903349][T10014] usb 3-1: cp210x converter now attached to ttyUSB0 [ 1873.995897][T10719] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 9 [ 1874.099073][T21618] loop5: detected capacity change from 0 to 512 [ 1874.110837][T10014] usb 3-1: USB disconnect, device number 72 [ 1874.127305][T10014] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1874.161150][T10014] cp210x 3-1:0.0: device disconnected [ 1874.238342][T21618] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 1874.286114][T21618] ext4 filesystem being mounted at /131/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1874.318413][ C1] vkms_vblank_simulate: vblank timer overrun [ 1874.385255][T21618] EXT4-fs error (device loop5): ext4_ext_check_inode:520: inode #12: comm syz.5.16902: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 1874.490384][T18599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 1875.391493][T21669] libceph: resolve '0.0' (ret=-3): failed [ 1875.583872][T21677] netlink: 128 bytes leftover after parsing attributes in process `syz.2.16916'. [ 1875.614481][T21677] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1875.738617][T21649] loop5: detected capacity change from 0 to 32768 [ 1875.801938][T21649] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode. [ 1876.148062][T18599] ocfs2: Unmounting device (7,5) on (node local) [ 1877.100895][T21735] Unknown options in mask 5 [ 1877.339841][T21703] loop5: detected capacity change from 0 to 32768 [ 1877.384872][T10014] IPVS: starting estimator thread 0... [ 1877.418332][T21703] ERROR: (device loop5): diNewExt: no free extents [ 1877.418332][T21703] [ 1877.470764][T21703] ERROR: (device loop5): remounting filesystem as read-only [ 1877.494252][T21703] ialloc: diAlloc returned -5! [ 1877.508243][T21741] IPVS: using max 22 ests per chain, 52800 per kthread [ 1877.802231][T21758] netlink: 16 bytes leftover after parsing attributes in process `syz.0.16939'. [ 1879.835558][T21835] loop5: detected capacity change from 0 to 8 [ 1881.869071][ T28] audit: type=1326 audit(1756098417.638:1593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21914 comm="syz.4.16985" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x0 [ 1882.086498][T21927] netlink: 20 bytes leftover after parsing attributes in process `syz.5.16989'. [ 1883.697801][T22012] netlink: 'syz.4.17017': attribute type 7 has an invalid length. [ 1883.802206][T22020] netlink: 'syz.2.17019': attribute type 21 has an invalid length. [ 1883.823777][T22020] netlink: 'syz.2.17019': attribute type 6 has an invalid length. [ 1883.832210][T22020] netlink: 132 bytes leftover after parsing attributes in process `syz.2.17019'. [ 1884.624755][T22054] netlink: 156 bytes leftover after parsing attributes in process `syz.2.17030'. [ 1884.751970][T22015] loop0: detected capacity change from 0 to 32768 [ 1885.116894][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.146100][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.175705][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.244931][T22075] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1885.312239][T22075] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 1885.394693][T22083] veth3: entered promiscuous mode [ 1885.418225][T22083] veth3: entered allmulticast mode [ 1885.473589][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.522334][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.564858][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.610203][T22075] wg1 speed is unknown, defaulting to 1000 [ 1885.884177][T22113] netlink: 'syz.0.17045': attribute type 1 has an invalid length. [ 1886.686328][T22152] loop0: detected capacity change from 0 to 764 [ 1886.817776][ T54] usb 5-1: new low-speed USB device number 31 using dummy_hcd [ 1887.054593][ T54] usb 5-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 65535, setting to 8 [ 1887.083503][ T54] usb 5-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7 [ 1887.123488][ T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1887.147241][T22143] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1887.160642][T22161] loop0: detected capacity change from 0 to 4096 [ 1887.184777][T22161] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1887.290125][T22161] ntfs3: loop0: failed to convert "c46c" to cp861 [ 1887.431462][ T54] usb 5-1: string descriptor 0 read error: -71 [ 1887.535073][ T54] usb 5-1: USB disconnect, device number 31 [ 1887.656720][ T5998] udevd[5998]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:32.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1888.019381][T22222] netlink: 28 bytes leftover after parsing attributes in process `syz.5.17070'. [ 1888.048503][T22225] netlink: 'syz.0.17072': attribute type 10 has an invalid length. [ 1888.062490][T22225] bridge0: port 1(team0) entered blocking state [ 1888.082474][T22225] bridge0: port 1(team0) entered disabled state [ 1888.095469][T22225] team0: entered allmulticast mode [ 1888.118767][T22225] team0: entered promiscuous mode [ 1888.656205][T22255] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1888.698947][ T54] usb 3-1: new high-speed USB device number 73 using dummy_hcd [ 1888.902914][ T54] usb 3-1: Using ep0 maxpacket: 16 [ 1888.910556][ T54] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1888.926236][ T54] usb 3-1: config 0 has no interfaces? [ 1888.935045][ T54] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1888.945204][ T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1888.953239][ T54] usb 3-1: Product: syz [ 1888.966268][ T54] usb 3-1: Manufacturer: syz [ 1888.977276][ T54] usb 3-1: SerialNumber: syz [ 1888.990351][ T54] r8152-cfgselector 3-1: config 0 descriptor?? [ 1889.064221][T22265] tunl0: entered promiscuous mode [ 1889.124666][T22265] netlink: 'syz.4.17084': attribute type 4 has an invalid length. [ 1889.153125][T22265] netlink: 9 bytes leftover after parsing attributes in process `syz.4.17084'. [ 1889.191268][T22250] loop0: detected capacity change from 0 to 32768 [ 1889.255300][ T54] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 1889.274155][T22250] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 1889.332299][T22250] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1889.523491][ T5876] usb 3-1: USB disconnect, device number 73 [ 1889.591618][ T5785] ocfs2: Unmounting device (7,0) on (node local) [ 1890.174697][T22314] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 1890.364289][T22357] tmpfs: User quota inode hardlimit too large. [ 1890.517370][T22364] siw: device registration error -23 [ 1890.615600][T22370] /dev/nullb0: Can't open blockdev [ 1890.697509][T22373] netlink: 'syz.2.17106': attribute type 1 has an invalid length. [ 1890.723227][T22373] netlink: 236 bytes leftover after parsing attributes in process `syz.2.17106'. [ 1891.355799][T22405] netlink: 'syz.2.17116': attribute type 10 has an invalid length. [ 1891.379071][T22405] netlink: 2 bytes leftover after parsing attributes in process `syz.2.17116'. [ 1891.418636][T22405] team0: entered promiscuous mode [ 1891.424116][T22405] bridge0: port 1(team0) entered blocking state [ 1891.467339][T22405] bridge0: port 1(team0) entered disabled state [ 1891.495825][T22405] team0: entered allmulticast mode [ 1891.546271][T22418] overlayfs: cannot append lower layer [ 1892.066496][ T54] usb 3-1: new high-speed USB device number 74 using dummy_hcd [ 1892.197004][T22457] netlink: 'syz.5.17131': attribute type 10 has an invalid length. [ 1892.213382][T22457] bridge0: port 3(team0) entered blocking state [ 1892.220919][T22457] bridge0: port 3(team0) entered disabled state [ 1892.234774][T22457] team0: entered allmulticast mode [ 1892.240697][T22457] team_slave_1: entered allmulticast mode [ 1892.259640][T22457] team0: entered promiscuous mode [ 1892.264847][ T5876] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 1892.279327][T22457] team_slave_1: entered promiscuous mode [ 1892.288513][ T54] usb 3-1: config 0 has an invalid interface number: 117 but max is 0 [ 1892.298238][T22457] bridge0: port 3(team0) entered blocking state [ 1892.304774][T22457] bridge0: port 3(team0) entered forwarding state [ 1892.319777][ T54] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1892.331506][ T54] usb 3-1: config 0 has no interface number 0 [ 1892.345579][ T54] usb 3-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1892.360437][ T54] usb 3-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1892.394382][ T54] usb 3-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 1892.419053][ T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1892.427175][ T54] usb 3-1: Product: syz [ 1892.437855][ T54] usb 3-1: Manufacturer: syz [ 1892.452043][ T54] usb 3-1: SerialNumber: syz [ 1892.461609][ T54] usb 3-1: config 0 descriptor?? [ 1892.526852][ T5876] usb 5-1: Using ep0 maxpacket: 16 [ 1892.562870][ T5876] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1892.586951][ T5876] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1892.604009][ T5876] usb 5-1: Product: syz [ 1892.608360][ T5876] usb 5-1: Manufacturer: syz [ 1892.620828][ T5876] usb 5-1: SerialNumber: syz [ 1892.631837][ T5876] r8152-cfgselector 5-1: config 0 descriptor?? [ 1892.830509][T22483] batadv2: entered promiscuous mode [ 1892.912380][ T54] usbtouchscreen: probe of 3-1:0.117 failed with error -71 [ 1892.938434][ T54] usb 3-1: USB disconnect, device number 74 [ 1893.121161][ T5876] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1893.134542][ T5876] r8152-cfgselector 5-1: USB disconnect, device number 32 [ 1894.152016][ T5876] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 1894.344031][ T5876] usb 5-1: Using ep0 maxpacket: 16 [ 1894.354219][ T5876] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1894.365804][ T5876] usb 5-1: config 1 has an invalid interface number: 231 but max is 0 [ 1894.374068][ T5876] usb 5-1: config 1 has no interface number 0 [ 1894.386819][ T5876] usb 5-1: config 1 interface 231 has no altsetting 0 [ 1894.398002][ T5876] usb 5-1: string descriptor 0 read error: -22 [ 1894.404385][ T5876] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=5c.f5 [ 1894.426757][ T5876] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1894.502880][T22574] erofs: (device nbd5): erofs_read_superblock: cannot find valid erofs superblock [ 1894.705812][ T5876] usbtest 5-1:1.231: Linux gadget zero [ 1894.726378][ T5876] usbtest 5-1:1.231: high-speed {control in/out int-out} tests (+alt) [ 1894.937080][ T1802] usb 5-1: USB disconnect, device number 33 [ 1895.141056][T22607] loop5: detected capacity change from 0 to 64 [ 1896.545670][ T1802] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 1896.759202][ T1802] usb 5-1: Using ep0 maxpacket: 8 [ 1896.766809][ T1802] usb 5-1: config 0 has an invalid interface number: 56 but max is 0 [ 1896.786556][ T1802] usb 5-1: config 0 has no interface number 0 [ 1896.803307][ T1802] usb 5-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76 [ 1896.823391][ T1802] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1896.831549][ T1802] usb 5-1: Product: syz [ 1896.844121][ T1802] usb 5-1: Manufacturer: syz [ 1896.857229][ T1802] usb 5-1: SerialNumber: syz [ 1896.874054][ T1802] usb 5-1: config 0 descriptor?? [ 1897.126699][ T1802] peak_usb 5-1:0.56: PEAK-System PCAN-USB X6 v134 fw v24.0.0 (2 channels) [ 1897.292505][T22721] kAFS: unable to lookup cell '.,' [ 1897.353701][ T1802] peak_usb 5-1:0.56 can0: unable to request usb[type=2 value=5] err=-71 [ 1897.389993][ T1802] peak_usb 5-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71) [ 1897.528863][ T1802] peak_usb: probe of 5-1:0.56 failed with error -71 [ 1897.567370][ T1802] usb 5-1: USB disconnect, device number 34 [ 1898.039727][T22764] netlink: 4 bytes leftover after parsing attributes in process `syz.5.17212'. [ 1898.535036][T22788] netlink: 136 bytes leftover after parsing attributes in process `syz.4.17226'. [ 1899.798374][T22843] loop0: detected capacity change from 0 to 64 [ 1900.875298][ T5876] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1900.986467][T22898] netlink: 16 bytes leftover after parsing attributes in process `syz.2.17255'. [ 1901.428788][ T4219] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1901.627933][T22935] netlink: 448 bytes leftover after parsing attributes in process `syz.2.17266'. [ 1901.872305][T22944] tmpfs: Bad value for 'mpol' [ 1902.267438][ T28] audit: type=1326 audit(1756098436.730:1594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22958 comm="syz.2.17275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1902.374105][ T28] audit: type=1326 audit(1756098436.730:1595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22958 comm="syz.2.17275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1902.421110][ T28] audit: type=1326 audit(1756098436.740:1596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22958 comm="syz.2.17275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1902.469717][ T28] audit: type=1326 audit(1756098436.740:1597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22958 comm="syz.2.17275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1902.510612][ T28] audit: type=1326 audit(1756098436.740:1598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22958 comm="syz.2.17275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1902.802249][ T5876] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 1903.010840][T22988] netlink: 'syz.4.17283': attribute type 6 has an invalid length. [ 1903.034796][ T5876] usb 6-1: Using ep0 maxpacket: 16 [ 1903.052834][ T5876] usb 6-1: config 0 has an invalid interface number: 105 but max is 0 [ 1903.065082][ T5876] usb 6-1: config 0 has an invalid descriptor of length 214, skipping remainder of the config [ 1903.079187][ T5876] usb 6-1: config 0 has no interface number 0 [ 1903.092326][ T5876] usb 6-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28 [ 1903.102152][ T5876] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1903.123516][ T5876] usb 6-1: Product: syz [ 1903.127746][ T5876] usb 6-1: Manufacturer: syz [ 1903.151808][ T5876] usb 6-1: SerialNumber: syz [ 1903.168926][ T5876] usb 6-1: config 0 descriptor?? [ 1903.422692][ T5876] usb 6-1: USB disconnect, device number 4 [ 1903.583621][ T1802] usb 5-1: new full-speed USB device number 35 using dummy_hcd [ 1903.795225][ T1802] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1903.806402][ T1802] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1903.818919][ T1802] usb 5-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice= 1.00 [ 1903.828096][ T1802] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1903.839389][ T1802] usb 5-1: config 0 descriptor?? [ 1903.848318][ T1802] xbox_remote_probe: endpoint_in message size==0? [ 1903.975067][T10017] usb 3-1: new high-speed USB device number 75 using dummy_hcd [ 1904.070506][ T1802] usbhid 5-1:0.0: can't add hid device: -71 [ 1904.088890][ T1802] usbhid: probe of 5-1:0.0 failed with error -71 [ 1904.100694][ T1802] usb 5-1: USB disconnect, device number 35 [ 1904.167648][T10017] usb 3-1: Using ep0 maxpacket: 8 [ 1904.182139][T10017] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1904.199646][T10017] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 1904.224349][T10017] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 1904.234878][T10017] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1904.243687][T10017] usb 3-1: Product: syz [ 1904.248067][T10017] usb 3-1: Manufacturer: syz [ 1904.252778][T10017] usb 3-1: SerialNumber: syz [ 1904.272222][T10017] usb 3-1: config 0 descriptor?? [ 1904.418566][T23050] netlink: 'syz.5.17295': attribute type 11 has an invalid length. [ 1904.744526][T23067] netlink: 40 bytes leftover after parsing attributes in process `syz.5.17299'. [ 1904.778861][T10017] usb 3-1: USB disconnect, device number 75 [ 1904.965511][T23086] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1905.067441][T23089] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17304'. [ 1905.824779][T10014] usb 6-1: new low-speed USB device number 5 using dummy_hcd [ 1905.887071][T23135] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17317'. [ 1906.005207][T23140] netlink: 56 bytes leftover after parsing attributes in process `syz.2.17318'. [ 1906.049736][T23140] netlink: 'syz.2.17318': attribute type 3 has an invalid length. [ 1906.056079][T10014] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 1906.065483][T23140] netlink: 20 bytes leftover after parsing attributes in process `syz.2.17318'. [ 1906.117545][T10014] usb 6-1: config 0 has no interface number 0 [ 1906.128033][T10014] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 1906.142893][T10014] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8 [ 1906.179247][T10014] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 1906.209346][T10014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1906.251419][T10014] usb 6-1: config 0 descriptor?? [ 1906.272522][T23112] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 1906.305114][T10014] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0 [ 1906.600182][ C1] iowarrior 6-1:0.1: iowarrior_callback - usb_submit_urb failed with result -1 [ 1906.613821][ T5876] usb 6-1: USB disconnect, device number 5 [ 1906.717634][T23167] loop0: detected capacity change from 0 to 4096 [ 1906.739975][T23167] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 1906.893023][T23167] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 1908.262165][T23255] netlink: 'syz.5.17351': attribute type 1 has an invalid length. [ 1908.518533][T23269] libceph: resolve 'c' (ret=-3): failed [ 1908.926246][T23285] __vm_enough_memory: pid: 23285, comm: syz.5.17360, not enough memory for the allocation [ 1910.685384][T23375] QAT: Device 208 not found [ 1910.833663][ T28] audit: type=1326 audit(1756098444.738:1599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23383 comm="syz.2.17392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1910.934436][ T28] audit: type=1326 audit(1756098444.738:1600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23383 comm="syz.2.17392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1911.014231][ T28] audit: type=1326 audit(1756098444.747:1601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23383 comm="syz.2.17392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1911.084869][ T28] audit: type=1326 audit(1756098444.747:1602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23383 comm="syz.2.17392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1911.193027][ T28] audit: type=1326 audit(1756098444.747:1603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23383 comm="syz.2.17392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1911.492737][T23413] loop0: detected capacity change from 0 to 64 [ 1911.638662][ T28] audit: type=1800 audit(1756098445.486:1604): pid=23413 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.17402" name="file1" dev="loop0" ino=18 res=0 errno=0 [ 1911.965837][T23439] (null): rxe_set_mtu: Set mtu to 1024 [ 1912.322074][T23457] C: renamed from lo (while UP) [ 1912.339510][T23457] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 1912.640799][T23439] infiniband syz1: set down [ 1912.651106][T23439] infiniband syz1: added bond_slave_0 [ 1912.785623][T23439] RDS/IB: syz1: added [ 1912.805135][T23439] smc: adding ib device syz1 with port count 1 [ 1912.837122][T23439] smc: ib device syz1 port 1 has pnetid [ 1914.450068][T23556] netlink: 168 bytes leftover after parsing attributes in process `syz.5.17446'. [ 1914.601829][ T4219] usb 3-1: new high-speed USB device number 76 using dummy_hcd [ 1914.657530][T23562] netlink: 'syz.5.17448': attribute type 1 has an invalid length. [ 1914.802068][ T4219] usb 3-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 1914.805349][T23568] netlink: 256 bytes leftover after parsing attributes in process `syz.5.17450'. [ 1914.838339][ T4219] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1914.857608][ T4219] usb 3-1: Product: syz [ 1914.861859][ T4219] usb 3-1: Manufacturer: syz [ 1914.866500][ T4219] usb 3-1: SerialNumber: syz [ 1914.883349][ T4219] usb 3-1: config 0 descriptor?? [ 1914.904059][ T4219] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 1915.058885][T23578] loop5: detected capacity change from 0 to 1024 [ 1915.096957][T23578] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1915.113323][T23578] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 1915.122686][T23578] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1915.148107][T23578] EXT4-fs error (device loop5): __ext4_get_inode_loc:4483: comm syz.5.17452: Invalid inode table block 0 in block_group 0 [ 1915.170705][T23578] EXT4-fs (loop5): Remounting filesystem read-only [ 1915.199580][T23578] Quota error (device loop5): write_blk: dquota write failed [ 1915.207200][T23578] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 1915.253482][T23578] EXT4-fs (loop5): 1 truncate cleaned up [ 1915.282176][T23578] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1915.366250][ T4219] gspca_sunplus: reg_r err -71 [ 1915.381354][ T4219] sunplus: probe of 3-1:0.0 failed with error -71 [ 1915.415920][ T4219] usb 3-1: USB disconnect, device number 76 [ 1915.532714][T18599] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1915.966736][T23624] netlink: 12 bytes leftover after parsing attributes in process `syz.4.17463'. [ 1916.088175][T23629] netlink: 200 bytes leftover after parsing attributes in process `syz.2.17465'. [ 1916.168974][ T28] audit: type=1326 audit(1756098449.714:1605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23633 comm="syz.4.17467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1916.279843][ T28] audit: type=1326 audit(1756098449.714:1606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23633 comm="syz.4.17467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1916.343392][ T28] audit: type=1326 audit(1756098449.761:1607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23633 comm="syz.4.17467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1916.379975][ T28] audit: type=1326 audit(1756098449.761:1608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23633 comm="syz.4.17467" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1916.413214][T23644] cgroup: Unexpected value for 'cpuset_v2_mode' [ 1917.048042][T23672] loop5: detected capacity change from 0 to 1024 [ 1917.165946][ T28] audit: type=1326 audit(1756098450.659:1609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23677 comm="syz.0.17481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1917.168144][ T3244] hfsplus: b-tree write err: -5, ino 4 [ 1917.291630][ T28] audit: type=1326 audit(1756098450.696:1610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23677 comm="syz.0.17481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1917.424550][ T28] audit: type=1326 audit(1756098450.706:1611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23677 comm="syz.0.17481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1917.475284][ T28] audit: type=1326 audit(1756098450.706:1612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23677 comm="syz.0.17481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1917.585502][ T28] audit: type=1326 audit(1756098450.706:1613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23677 comm="syz.0.17481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f945138ebe9 code=0x7ffc0000 [ 1918.125938][T23726] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17496'. [ 1918.135243][ T28] audit: type=1326 audit(1756098451.566:1614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23721 comm="syz.2.17495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1918.135304][ T28] audit: type=1326 audit(1756098451.566:1615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23721 comm="syz.2.17495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1919.327053][T23786] binder: 23785:23786 ioctl c018620c 200000000380 returned -1 [ 1920.101844][T23831] syz.4.17529: attempt to access beyond end of device [ 1920.101844][T23831] nbd4: rw=0, sector=2, nr_sectors = 2 limit=0 [ 1920.161272][T23831] syz.4.17529: attempt to access beyond end of device [ 1920.161272][T23831] nbd4: rw=0, sector=16, nr_sectors = 2 limit=0 [ 1920.532390][T23848] netlink: 20 bytes leftover after parsing attributes in process `syz.4.17534'. [ 1920.557226][T23848] veth2: entered promiscuous mode [ 1920.562341][T23848] veth2: entered allmulticast mode [ 1920.577207][T23850] loop0: detected capacity change from 0 to 16 [ 1920.584535][T23850] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1920.638164][T23850] cramfs: Error -3 while decompressing! [ 1920.707610][T23850] cramfs: ffffffff96fd8188(453)->ffff88804383f000(4096) [ 1920.814019][T23868] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17538'. [ 1920.839706][T23868] batadv_slave_0: entered promiscuous mode [ 1920.860326][T23868] batadv_slave_0: entered allmulticast mode [ 1920.863811][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1920.872663][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1920.940341][T23877] x_tables: unsorted entry at hook 2 [ 1921.065291][T23881] netlink: 60 bytes leftover after parsing attributes in process `syz.5.17543'. [ 1921.369622][T23898] loop5: detected capacity change from 0 to 8 [ 1923.356605][T23985] netlink: 52 bytes leftover after parsing attributes in process `syz.2.17574'. [ 1923.477405][T23992] tmpfs: Bad value for 'mpol' [ 1923.610662][T23996] netlink: 'syz.2.17578': attribute type 32 has an invalid length. [ 1924.053905][T24021] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709510581) [ 1924.113772][T24021] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647 [ 1925.919760][T24103] loop0: detected capacity change from 0 to 4096 [ 1925.937229][T24103] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 1926.317851][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1926.692911][T24141] loop0: detected capacity change from 0 to 8 [ 1927.239825][T24174] netlink: 460 bytes leftover after parsing attributes in process `syz.0.17638'. [ 1927.376702][T17310] usb 3-1: new high-speed USB device number 77 using dummy_hcd [ 1927.438883][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1927.438900][ T28] audit: type=1326 audit(1756098460.266:1622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24186 comm="syz.4.17643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1927.485133][ T28] audit: type=1326 audit(1756098460.304:1623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24186 comm="syz.4.17643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1927.518662][ T28] audit: type=1326 audit(1756098460.304:1624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24186 comm="syz.4.17643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1927.584830][ T28] audit: type=1326 audit(1756098460.304:1625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24186 comm="syz.4.17643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1927.633051][T17310] usb 3-1: config index 0 descriptor too short (expected 39, got 27) [ 1927.641258][T17310] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 1927.672782][ T28] audit: type=1326 audit(1756098460.304:1626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24186 comm="syz.4.17643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c64d8ebe9 code=0x7ffc0000 [ 1927.695123][T17310] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1927.731400][T17310] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1927.749869][T17310] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1927.782273][T17310] usb 3-1: Product: syz [ 1927.787101][T17310] usb 3-1: Manufacturer: syz [ 1927.814892][T17310] usb 3-1: SerialNumber: syz [ 1927.829533][T17310] usb 3-1: config 0 descriptor?? [ 1927.856763][T17083] Bluetooth: hci2: command tx timeout [ 1927.862920][T24202] netlink: 268 bytes leftover after parsing attributes in process `syz.5.17647'. [ 1927.871116][T17310] hub 3-1:0.0: bad descriptor, ignoring hub [ 1927.884815][T17310] hub: probe of 3-1:0.0 failed with error -5 [ 1927.895287][T17310] usb 3-1: selecting invalid altsetting 0 [ 1927.904351][T24202] unsupported nla_type 65024 [ 1928.353354][T24233] netlink: 40 bytes leftover after parsing attributes in process `syz.0.17654'. [ 1928.554018][ T4219] usb 3-1: USB disconnect, device number 77 [ 1928.897021][T24269] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17662'. [ 1929.055724][T24276] netlink: 'syz.5.17664': attribute type 32 has an invalid length. [ 1929.091383][T24276] netlink: 12 bytes leftover after parsing attributes in process `syz.5.17664'. [ 1930.027047][T10017] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 1930.124279][T24336] UBIFS error (pid: 24336): cannot open "./file0", error -22 [ 1930.297336][T10017] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1930.322137][T10017] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1930.343521][T10017] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1930.381448][T10017] usb 5-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 1930.406405][T10017] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1930.422402][T10017] usb 5-1: Product: syz [ 1930.426731][T10017] usb 5-1: Manufacturer: syz [ 1930.431357][T10017] usb 5-1: SerialNumber: syz [ 1930.453927][T10017] usb 5-1: config 0 descriptor?? [ 1930.467399][T10017] usb 5-1: Found UVC 34.00 device syz (8086:0b5b) [ 1930.473999][T10017] usb 5-1: No valid video chain found. [ 1930.597714][T24361] xt_policy: neither incoming nor outgoing policy selected [ 1930.749984][T10017] usb 5-1: USB disconnect, device number 36 [ 1932.221006][T24446] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17715'. [ 1932.990018][T24467] loop5: detected capacity change from 0 to 4096 [ 1933.009273][T24467] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 1933.246773][T24467] ntfs3: loop5: failed to convert "c46c" to cp863 [ 1933.914551][T24511] 8021q: VLANs not supported on ipvlan1 [ 1933.971167][T24513] netlink: 'syz.4.17735': attribute type 9 has an invalid length. [ 1934.004082][T24513] netlink: 'syz.4.17735': attribute type 9 has an invalid length. [ 1934.014297][T17083] Bluetooth: hci2: command tx timeout [ 1934.089410][T24516] netlink: 16 bytes leftover after parsing attributes in process `syz.2.17736'. [ 1934.309759][T24504] loop5: detected capacity change from 0 to 32768 [ 1934.400245][T24504] ERROR: (device loop5): xtTruncate_pmap: XT_GETPAGE: xtree page corrupt [ 1934.400245][T24504] [ 1934.473233][T24504] ERROR: (device loop5): remounting filesystem as read-only [ 1934.511395][T24504] ERROR: (device loop5): jfs_unlink: [ 1934.511395][T24504] [ 1934.638395][T18599] ERROR: (device loop5): xtTruncate: XT_GETPAGE: xtree page corrupt [ 1934.638395][T18599] [ 1934.947241][T24546] netlink: 'syz.2.17745': attribute type 9 has an invalid length. [ 1935.008600][T24546] netlink: 'syz.2.17745': attribute type 9 has an invalid length. [ 1935.596864][T24571] loop5: detected capacity change from 0 to 8 [ 1935.673151][T24571] SQUASHFS error: Failed to read block 0x4de: -5 [ 1935.723102][T24571] SQUASHFS error: Failed to read block 0x4de: -5 [ 1935.752311][T24571] SQUASHFS error: Failed to read block 0x4de: -5 [ 1935.773496][T24571] SQUASHFS error: Failed to read block 0x4de: -5 [ 1935.802313][T24571] SQUASHFS error: Failed to read block 0x4de: -5 [ 1936.016282][T24593] netlink: 8 bytes leftover after parsing attributes in process `syz.5.17758'. [ 1936.400542][T24614] ip6erspan0: entered promiscuous mode [ 1936.558595][T24622] netlink: 'syz.5.17766': attribute type 3 has an invalid length. [ 1936.596912][T24622] netlink: 156 bytes leftover after parsing attributes in process `syz.5.17766'. [ 1936.675124][T24626] loop0: detected capacity change from 0 to 8 [ 1936.696457][T24626] squashfs: Unknown parameter '00000000000000000000' [ 1936.882940][T24635] loop0: detected capacity change from 0 to 256 [ 1936.892459][T24635] exfat: Deprecated parameter 'utf8' [ 1936.920658][T24635] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 1937.158254][T24648] netlink: 9 bytes leftover after parsing attributes in process `syz.4.17773'. [ 1937.169363][T24648] gretap0: entered promiscuous mode [ 1937.338979][ T5876] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 1937.542062][ T5876] usb 6-1: Using ep0 maxpacket: 32 [ 1937.552036][ T5876] usb 6-1: config 0 has an invalid interface number: 66 but max is 1 [ 1937.574002][ T5876] usb 6-1: config 0 has no interface number 1 [ 1937.584794][T24664] netlink: 240 bytes leftover after parsing attributes in process `syz.4.17778'. [ 1937.605204][ T5876] usb 6-1: too many endpoints for config 0 interface 0 altsetting 5: 69, using maximum allowed: 30 [ 1937.640311][ T5876] usb 6-1: config 0 interface 0 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 69 [ 1937.699631][ T5876] usb 6-1: too many endpoints for config 0 interface 66 altsetting 107: 137, using maximum allowed: 30 [ 1937.735216][ T5876] usb 6-1: config 0 interface 66 altsetting 107 has 0 endpoint descriptors, different from the interface descriptor's value: 137 [ 1937.794728][ T5876] usb 6-1: config 0 interface 0 has no altsetting 0 [ 1937.825654][ T5876] usb 6-1: config 0 interface 66 has no altsetting 0 [ 1937.867579][ T5876] usb 6-1: New USB device found, idVendor=152d, idProduct=0539, bcdDevice= 0.00 [ 1937.900388][ T5876] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1937.929329][ T5876] usb 6-1: SerialNumber: syz [ 1937.966874][ T5876] usb 6-1: config 0 descriptor?? [ 1938.000494][ T5876] usb-storage 6-1:0.0: USB Mass Storage device detected [ 1938.045051][ T5876] usb-storage 6-1:0.0: Quirks match for vid 152d pid 0539: 4000000 [ 1938.223556][ T5876] usb-storage 6-1:0.66: USB Mass Storage device detected [ 1938.261808][ T5876] usb-storage 6-1:0.66: Quirks match for vid 152d pid 0539: 4000000 [ 1938.374323][T24705] loop0: detected capacity change from 0 to 1024 [ 1938.422573][ T5876] usb 6-1: USB disconnect, device number 6 [ 1938.499504][T24705] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1938.557587][T24705] ext4 filesystem being mounted at /4206/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1938.655048][T24705] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 1938.848208][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1939.224625][T24743] netlink: 'syz.5.17796': attribute type 1 has an invalid length. [ 1939.242899][T24743] netlink: 'syz.5.17796': attribute type 3 has an invalid length. [ 1939.266869][T24743] netlink: 224 bytes leftover after parsing attributes in process `syz.5.17796'. [ 1939.734596][T24765] loop0: detected capacity change from 0 to 1024 [ 1939.798971][T24765] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1940.089336][T24788] program syz.2.17810 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1940.119167][ T5785] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1940.413947][T24807] netlink: 24 bytes leftover after parsing attributes in process `syz.5.17817'. [ 1941.171657][ T28] audit: type=1326 audit(1756098473.119:1627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.2.17829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1941.215054][ T28] audit: type=1326 audit(1756098473.119:1628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.2.17829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1941.272868][ T28] audit: type=1326 audit(1756098473.147:1629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.2.17829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=67 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1941.411998][ T28] audit: type=1326 audit(1756098473.147:1630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.2.17829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1941.493087][ T28] audit: type=1326 audit(1756098473.147:1631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24841 comm="syz.2.17829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1941.927268][T24882] loop0: detected capacity change from 0 to 256 [ 1942.077274][T24882] FAT-fs (loop0): Directory bread(block 64) failed [ 1942.095486][T24882] FAT-fs (loop0): Directory bread(block 65) failed [ 1942.117597][T24882] FAT-fs (loop0): Directory bread(block 66) failed [ 1942.134140][T24882] FAT-fs (loop0): Directory bread(block 67) failed [ 1942.151168][T24882] FAT-fs (loop0): Directory bread(block 68) failed [ 1942.151208][T24882] FAT-fs (loop0): Directory bread(block 69) failed [ 1942.151311][T24882] FAT-fs (loop0): Directory bread(block 70) failed [ 1942.151342][T24882] FAT-fs (loop0): Directory bread(block 71) failed [ 1942.151444][T24882] FAT-fs (loop0): Directory bread(block 72) failed [ 1942.151472][T24882] FAT-fs (loop0): Directory bread(block 73) failed [ 1942.202777][ T4219] usb 5-1: new high-speed USB device number 37 using dummy_hcd [ 1942.395256][ T4219] usb 5-1: Using ep0 maxpacket: 8 [ 1942.412482][ T4219] usb 5-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 1942.445221][ T4219] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1942.454008][ T4219] usb 5-1: Product: syz [ 1942.458236][ T4219] usb 5-1: Manufacturer: syz [ 1942.472526][ T4219] usb 5-1: SerialNumber: syz [ 1942.482506][ T4219] usb 5-1: config 0 descriptor?? [ 1942.509451][ T4219] radio-usb-si4713 5-1:0.0: Si4713 development board discovered: (10C4:8244) [ 1942.577365][T24909] netlink: 8 bytes leftover after parsing attributes in process `syz.0.17847'. [ 1942.617016][T24911] netlink: 'syz.2.17848': attribute type 29 has an invalid length. [ 1942.988703][ T4219] radio-usb-si4713: probe of 5-1:0.0 failed with error -71 [ 1943.028626][ T4219] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 1943.054733][ T4219] usb 5-1: USB disconnect, device number 37 [ 1943.238429][T24943] netlink: 'syz.5.17856': attribute type 2 has an invalid length. [ 1943.247693][T24943] netlink: 'syz.5.17856': attribute type 1 has an invalid length. [ 1943.684414][T24962] loop0: detected capacity change from 0 to 2048 [ 1943.742861][T24962] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1943.785285][T24975] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1943.860214][T24962] /dev/loop0: Can't open blockdev [ 1944.328510][T25002] usb usb8: usbfs: process 25002 (syz.0.17874) did not claim interface 0 before use [ 1944.354332][T24999] ax25_connect(): syz.5.17873 uses autobind, please contact jreuter@yaina.de [ 1944.537189][ T28] audit: type=1326 audit(1756098476.244:1632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25008 comm="syz.2.17876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1944.639712][ T28] audit: type=1326 audit(1756098476.244:1633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25008 comm="syz.2.17876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1944.710825][ T28] audit: type=1326 audit(1756098476.272:1634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25008 comm="syz.2.17876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1944.843283][T25020] vim2m vim2m.0: Fourcc format (0x31384142) invalid. [ 1944.853939][ T28] audit: type=1326 audit(1756098476.272:1635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25008 comm="syz.2.17876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1944.876466][ C0] vkms_vblank_simulate: vblank timer overrun [ 1944.922821][T25028] netlink: 648 bytes leftover after parsing attributes in process `syz.2.17883'. [ 1944.961902][ T28] audit: type=1326 audit(1756098476.272:1636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25008 comm="syz.2.17876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd89df8ebe9 code=0x7ffc0000 [ 1945.731146][T25065] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17894'. [ 1945.773066][T25065] netlink: 56 bytes leftover after parsing attributes in process `syz.2.17894'. [ 1945.900156][T25070] netlink: 'syz.5.17895': attribute type 5 has an invalid length. [ 1946.483115][T25099] xt_hashlimit: max too large, truncated to 1048576 [ 1946.882255][T25117] loop5: detected capacity change from 0 to 16 [ 1946.949869][T25117] erofs: (device loop5): mounted with root inode @ nid 36. [ 1947.589114][T25157] netlink: 172 bytes leftover after parsing attributes in process `syz.2.17923'. [ 1947.615204][T25157] netlink: 8 bytes leftover after parsing attributes in process `syz.2.17923'. [ 1947.648671][T25157] netlink: 172 bytes leftover after parsing attributes in process `syz.2.17923'. [ 1947.688159][T25157] netlink: 100 bytes leftover after parsing attributes in process `syz.2.17923'. [ 1947.711900][T25157] netlink: 32 bytes leftover after parsing attributes in process `syz.2.17923'. [ 1949.120455][T25238] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17944'. [ 1949.778040][T25276] netlink: 'syz.5.17957': attribute type 21 has an invalid length. [ 1949.805287][T25276] netlink: 152 bytes leftover after parsing attributes in process `syz.5.17957'. [ 1950.436344][T25309] 8021q: adding VLAN 0 to HW filter on device bond6 [ 1950.891180][T25357] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 1950.936660][T25357] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 1950.944047][T25357] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1951.178471][T25375] netlink: 'syz.0.17978': attribute type 21 has an invalid length. [ 1951.187240][T25375] netlink: 128 bytes leftover after parsing attributes in process `syz.0.17978'. [ 1951.197456][T25375] netlink: 'syz.0.17978': attribute type 4 has an invalid length. [ 1951.206989][T25375] netlink: 'syz.0.17978': attribute type 3 has an invalid length. [ 1951.215467][T25375] netlink: 3 bytes leftover after parsing attributes in process `syz.0.17978'. [ 1951.497464][T25393] netlink: 24 bytes leftover after parsing attributes in process `syz.2.17982'. [ 1951.998188][T25415] netlink: 'syz.2.17989': attribute type 21 has an invalid length. [ 1952.037896][T25415] netlink: 128 bytes leftover after parsing attributes in process `syz.2.17989'. [ 1952.067102][T25415] netlink: 'syz.2.17989': attribute type 4 has an invalid length. [ 1952.087491][T25423] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1952.096501][T25415] netlink: 'syz.2.17989': attribute type 3 has an invalid length. [ 1952.117920][T25415] netlink: 3 bytes leftover after parsing attributes in process `syz.2.17989'. [ 1952.145279][T25421] (unnamed net_device) (uninitialized): peer notification delay (9) is not a multiple of miimon (5), value rounded to 5 ms [ 1952.166123][T25421] (unnamed net_device) (uninitialized): option use_carrier: invalid value (6) [ 1952.282674][T25420] loop5: detected capacity change from 0 to 8192 [ 1952.336299][T25420] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1952.402447][T25420] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 1952.458481][T25436] nft_compat: unsupported protocol 1 [ 1952.461381][T25420] REISERFS (device loop5): using ordered data mode [ 1952.518898][T25420] reiserfs: using flush barriers [ 1952.555790][T25420] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1952.561788][T25442] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1952.627275][T25420] REISERFS (device loop5): checking transaction log (loop5) [ 1952.911951][T25420] REISERFS (device loop5): Using tea hash to sort names [ 1952.959593][T25420] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 1953.101853][T25462] netlink: 'syz.4.18002': attribute type 21 has an invalid length. [ 1953.142182][T25462] netlink: 128 bytes leftover after parsing attributes in process `syz.4.18002'. [ 1953.220288][T25462] netlink: 'syz.4.18002': attribute type 4 has an invalid length. [ 1953.235355][T25462] netlink: 'syz.4.18002': attribute type 3 has an invalid length. [ 1953.257918][T25462] netlink: 3 bytes leftover after parsing attributes in process `syz.4.18002'. [ 1953.279757][T25465] geneve5: entered promiscuous mode [ 1953.766847][T25494] xt_policy: output policy not valid in PREROUTING and INPUT [ 1953.982556][T25504] loop0: detected capacity change from 0 to 1024 [ 1954.063642][T25504] syz.0.18016: attempt to access beyond end of device [ 1954.063642][T25504] loop0: rw=0, sector=1835012, nr_sectors = 4 limit=1024 [ 1954.114337][T25504] Buffer I/O error on dev loop0, logical block 458753, async page read [ 1954.155659][T25504] hfsplus: unable to mark blocks free: error -5 [ 1954.170849][T25504] hfsplus: can't free extent [ 1954.485751][T10014] usb 3-1: new high-speed USB device number 78 using dummy_hcd [ 1954.738067][T10014] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1954.752296][T10014] usb 3-1: config 3 has an invalid interface number: 8 but max is 3 [ 1954.770482][T10014] usb 3-1: config 3 has an invalid descriptor of length 70, skipping remainder of the config [ 1954.805899][T10014] usb 3-1: config 3 has 1 interface, different from the descriptor's value: 4 [ 1954.822519][T10014] usb 3-1: config 3 has no interface number 0 [ 1954.831515][T10014] usb 3-1: config 3 interface 8 altsetting 6 endpoint 0x82 has an invalid bInterval 248, changing to 11 [ 1954.891790][T10014] usb 3-1: config 3 interface 8 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 1954.908977][T10014] usb 3-1: config 3 interface 8 has no altsetting 0 [ 1954.926814][T10014] usb 3-1: New USB device found, idVendor=05ac, idProduct=921d, bcdDevice=c2.be [ 1954.953653][T10014] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1954.966928][T10014] usb 3-1: Product: syz [ 1954.971162][T10014] usb 3-1: Manufacturer: syz [ 1954.975991][T25557] netlink: 28 bytes leftover after parsing attributes in process `syz.4.18031'. [ 1954.995317][T10014] usb 3-1: SerialNumber: syz [ 1955.125250][T25562] netlink: 224 bytes leftover after parsing attributes in process `syz.0.18033'. [ 1955.267733][T10014] appledisplay 3-1:3.8: Error while getting initial brightness: -71 [ 1955.279989][T10014] appledisplay: probe of 3-1:3.8 failed with error -71 [ 1955.301547][T10014] usbhid 3-1:3.8: can't add hid device: -22 [ 1955.307612][T10014] usbhid: probe of 3-1:3.8 failed with error -22 [ 1955.332839][T10014] usb 3-1: USB disconnect, device number 78 [ 1955.563371][T25589] IPVS: set_ctl: invalid protocol: 100 224.0.0.2:20004 [ 1955.621647][T25592] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1955.731077][T25552] loop5: detected capacity change from 0 to 32768 [ 1955.749517][T25552] XFS: attr2 mount option is deprecated. [ 1955.783538][T25552] XFS (loop5): DAX unsupported by block device. Turning off DAX. [ 1955.809275][T25552] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1955.952119][T25552] XFS (loop5): Ending clean mount [ 1955.977064][T25552] XFS (loop5): Quotacheck needed: Please wait. [ 1956.094095][T25552] XFS (loop5): Quotacheck: Done. [ 1956.502900][T18599] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1956.974856][T25659] trusted_key: encrypted_key: insufficient parameters specified [ 1957.020201][T25660] validate_nla: 1 callbacks suppressed [ 1957.020219][T25660] netlink: 'syz.2.18055': attribute type 11 has an invalid length. [ 1957.069675][T25660] netlink: 440 bytes leftover after parsing attributes in process `syz.2.18055'. [ 1957.401955][T25680] netlink: 'syz.5.18059': attribute type 1 has an invalid length. [ 1957.428649][T25680] netlink: 224 bytes leftover after parsing attributes in process `syz.5.18059'. [ 1957.576752][T25694] netlink: 772 bytes leftover after parsing attributes in process `syz.4.18065'. [ 1959.126385][T25767] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18087'. [ 1959.824043][T25806] netlink: 28 bytes leftover after parsing attributes in process `syz.4.18099'. [ 1960.103114][T25825] loop5: detected capacity change from 0 to 256 [ 1960.142653][T25825] exfat: Deprecated parameter 'namecase' [ 1960.219469][T25825] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e0d861, utbl_chksum : 0xe619d30d) [ 1961.101016][T25900] loop5: detected capacity change from 0 to 1764 [ 1961.216244][T25900] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1961.315192][T25913] loop0: detected capacity change from 0 to 64 [ 1962.301167][T25958] loop0: detected capacity change from 0 to 512 [ 1962.326795][T25958] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1962.370849][T25958] UDF-fs: Scanning with blocksize 512 failed [ 1962.400084][T25958] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1962.442858][T25958] UDF-fs: Scanning with blocksize 1024 failed [ 1962.472706][T25958] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1962.491086][T25958] UDF-fs: Scanning with blocksize 2048 failed [ 1962.518860][T25958] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1962.556210][T25958] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1962.628925][T25958] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 30) has entry where CRC length (792) does not match entry length (24) [ 1963.585248][T26014] loop0: detected capacity change from 0 to 8 [ 1963.906112][T26029] netlink: 16 bytes leftover after parsing attributes in process `syz.5.18156'. [ 1964.456780][ T28] audit: type=1800 audit(1756098494.896:1637): pid=26014 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.18152" name="file2" dev="loop0" ino=6 res=0 errno=0 [ 1965.559072][T26097] sctp: [Deprecated]: syz.5.18179 (pid 26097) Use of int in maxseg socket option. [ 1965.559072][T26097] Use struct sctp_assoc_value instead [ 1966.772365][T26154] loop5: detected capacity change from 0 to 2048 [ 1966.824983][T26154] UDF-fs: error (device loop5): udf_process_sequence: Primary Volume Descriptor not found! [ 1966.891053][T26154] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1966.958629][T26166] tmpfs: Bad value for 'mpol' [ 1967.751347][T26206] netlink: 20 bytes leftover after parsing attributes in process `syz.4.18215'. [ 1967.765241][T26206] netlink: 112 bytes leftover after parsing attributes in process `syz.4.18215'. [ 1967.935329][T26215] vivid-000: disconnect [ 1967.940109][T26213] vivid-000: reconnect [ 1968.741591][T26243] netlink: 40 bytes leftover after parsing attributes in process `syz.5.18227'. [ 1969.019006][T26253] kernel profiling enabled (shift: 17) [ 1969.393932][T26274] netlink: 'syz.4.18238': attribute type 2 has an invalid length. [ 1969.581334][T26284] program syz.2.18241 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1969.922345][ T5876] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 1970.099404][T26313] netlink: 'syz.4.18249': attribute type 1 has an invalid length. [ 1970.113367][T26313] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18249'. [ 1970.125723][ T5876] usb 6-1: Using ep0 maxpacket: 32 [ 1970.136822][ T5876] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1970.157705][ T5876] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1970.167511][ T5876] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1970.192514][ T5876] usb 6-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 1970.212116][ T5876] usb 6-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 1970.242954][ T5876] usb 6-1: Product: syz [ 1970.247183][ T5876] usb 6-1: Manufacturer: syz [ 1970.251802][ T5876] usb 6-1: SerialNumber: syz [ 1970.308093][ T5876] input: appletouch as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/input/input103 [ 1970.602203][ T5876] usb 6-1: USB disconnect, device number 7 [ 1970.621320][ T5876] appletouch 6-1:1.0: input: appletouch disconnected [ 1970.922615][T26360] xt_limit: Overflow, try lower: 65536/2147483648 [ 1971.289389][T26376] tmpfs: Bad value for 'mpol' [ 1972.852615][T26414] loop5: detected capacity change from 0 to 32768 [ 1973.567474][T10014] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 1973.772936][T10014] usb 6-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1973.793970][T10014] usb 6-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1973.810752][T10014] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1973.828994][T10014] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1974.985726][T10014] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 1975.001117][T10014] stv0680 6-1:4.0: STV(e): camera ping failed!! [ 1975.008711][T10014] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1975.017420][T10014] stv0680 6-1:4.0: last error: 0, command = 0x0 [ 1975.037997][T10014] usb 6-1: USB disconnect, device number 8 [ 1975.618536][T26559] netlink: 12 bytes leftover after parsing attributes in process `syz.5.18317'. [ 1975.627907][T26559] netlink: 16 bytes leftover after parsing attributes in process `syz.5.18317'. [ 1975.716459][ T54] usb 5-1: new low-speed USB device number 38 using dummy_hcd [ 1975.932485][ T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 1975.942453][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1975.965625][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1975.997404][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1976.036941][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1976.053331][ T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 1976.069008][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1976.079187][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1976.090701][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1976.103421][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1976.115443][ T54] usb 5-1: config 168 descriptor has 1 excess byte, ignoring [ 1976.135293][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1976.165154][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1976.198458][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1976.213665][ T54] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1976.228238][ T54] usb 5-1: string descriptor 0 read error: -22 [ 1976.252424][ T54] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 1976.254898][T26584] netlink: 'syz.5.18325': attribute type 5 has an invalid length. [ 1976.269695][ T54] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1976.304451][ T54] adutux 5-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 1976.602837][ T5876] usb 5-1: USB disconnect, device number 38 [ 1976.678662][T26614] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18330'. [ 1976.696084][T26614] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18330'. [ 1976.706202][T26614] netlink: 'syz.2.18330': attribute type 1 has an invalid length. [ 1976.878871][T26623] netlink: 'syz.5.18333': attribute type 7 has an invalid length. [ 1976.887091][T26623] netlink: 140 bytes leftover after parsing attributes in process `syz.5.18333'. [ 1977.132986][T26634] loop5: detected capacity change from 0 to 256 [ 1977.155339][T26634] exfat: Deprecated parameter 'namecase' [ 1977.191611][T26634] exfat: Deprecated parameter 'utf8' [ 1977.282010][T26634] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 1977.361558][T26643] netlink: 'syz.2.18338': attribute type 4 has an invalid length. [ 1977.796710][T26663] loop5: detected capacity change from 0 to 2048 [ 1977.864100][T26671] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1978.010366][T26671] NILFS (loop5): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 1978.045697][T26671] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=4) [ 1978.108776][T26671] Remounting filesystem read-only [ 1978.213103][T18599] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer [ 1978.232775][T18599] NILFS (loop5): discard dirty page: offset=0, ino=12 [ 1978.244378][T18599] NILFS (loop5): discard dirty block: blocknr=17, size=1024 [ 1978.264837][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.281937][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.292150][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.309110][T18599] NILFS (loop5): discard dirty page: offset=0, ino=6 [ 1978.317325][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.356802][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.379389][T18599] NILFS (loop5): discard dirty block: blocknr=37, size=1024 [ 1978.386754][T18599] NILFS (loop5): discard dirty block: blocknr=38, size=1024 [ 1978.404368][T18599] NILFS (loop5): discard dirty page: offset=0, ino=5 [ 1978.411224][T18599] NILFS (loop5): discard dirty block: blocknr=41, size=1024 [ 1978.418551][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.441040][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.456203][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.490810][T18599] NILFS (loop5): discard dirty page: offset=0, ino=4 [ 1978.498471][T18599] NILFS (loop5): discard dirty block: blocknr=40, size=1024 [ 1978.517202][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.526125][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.580498][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.600321][T18599] NILFS (loop5): discard dirty page: offset=0, ino=3 [ 1978.607272][T18599] NILFS (loop5): discard dirty block: blocknr=42, size=1024 [ 1978.621772][T18599] NILFS (loop5): discard dirty block: blocknr=43, size=1024 [ 1978.631152][T18599] NILFS (loop5): discard dirty block: blocknr=44, size=1024 [ 1978.656121][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.665070][T18599] NILFS (loop5): discard dirty page: offset=131072, ino=3 [ 1978.693961][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.707602][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1978.727918][T18599] NILFS (loop5): discard dirty block: blocknr=46, size=1024 [ 1978.751874][T18599] NILFS (loop5): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1979.456629][T26740] nftables ruleset with unbound chain [ 1979.468632][ T54] usb 3-1: new full-speed USB device number 79 using dummy_hcd [ 1979.705140][ T54] usb 3-1: not running at top speed; connect to a high speed hub [ 1979.726562][ T54] usb 3-1: config 5 has an invalid interface number: 218 but max is 0 [ 1979.734801][ T54] usb 3-1: config 5 has no interface number 0 [ 1979.759193][ T54] usb 3-1: config 5 interface 218 altsetting 2 endpoint 0x8 has invalid maxpacket 1056, setting to 64 [ 1979.810468][ T54] usb 3-1: config 5 interface 218 altsetting 2 endpoint 0x4 has invalid maxpacket 512, setting to 64 [ 1979.829078][ T54] usb 3-1: config 5 interface 218 has no altsetting 0 [ 1979.845422][ T54] usb 3-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=3a.bc [ 1979.864008][ T54] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1979.881593][ T54] usb 3-1: Product: syz [ 1979.893229][ T54] usb 3-1: Manufacturer: syz [ 1979.900505][ T54] usb 3-1: SerialNumber: syz [ 1979.928434][T26720] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1980.202851][ T54] ir_toy 3-1:5.218: required endpoints not found [ 1980.243338][ T54] usb 3-1: USB disconnect, device number 79 [ 1980.527804][T26794] netlink: 'syz.5.18382': attribute type 22 has an invalid length. [ 1980.643728][T26799] netlink: 12 bytes leftover after parsing attributes in process `syz.5.18384'. [ 1980.653131][T26799] netlink: 'syz.5.18384': attribute type 1 has an invalid length. [ 1980.661456][T26799] netlink: 'syz.5.18384': attribute type 2 has an invalid length. [ 1980.676273][T26799] netlink: 4 bytes leftover after parsing attributes in process `syz.5.18384'. [ 1981.747558][T18605] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1981.761478][T18605] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1981.770870][T18605] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1981.785879][T18605] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1981.848927][T18605] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1981.857836][T18605] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1982.132483][T26864] loop5: detected capacity change from 0 to 256 [ 1982.256087][T26864] FAT-fs (loop5): Directory bread(block 64) failed [ 1982.275089][T26864] FAT-fs (loop5): Directory bread(block 65) failed [ 1982.299251][T26864] FAT-fs (loop5): Directory bread(block 66) failed [ 1982.316602][T26864] FAT-fs (loop5): Directory bread(block 67) failed [ 1982.333599][T26864] FAT-fs (loop5): Directory bread(block 68) failed [ 1982.348561][T26864] FAT-fs (loop5): Directory bread(block 69) failed [ 1982.364029][T26864] FAT-fs (loop5): Directory bread(block 70) failed [ 1982.379110][T26864] FAT-fs (loop5): Directory bread(block 71) failed [ 1982.394179][T26864] FAT-fs (loop5): Directory bread(block 72) failed [ 1982.405749][T26839] wg1 speed is unknown, defaulting to 1000 [ 1982.407959][T26864] FAT-fs (loop5): Directory bread(block 73) failed [ 1983.139598][T26942] netlink: 48 bytes leftover after parsing attributes in process `syz.5.18407'. [ 1983.293904][T26839] chnl_net:caif_netlink_parms(): no params data found [ 1983.511460][T26839] bridge0: port 1(bridge_slave_0) entered blocking state [ 1983.525211][T26839] bridge0: port 1(bridge_slave_0) entered disabled state [ 1983.541436][T26839] bridge_slave_0: entered allmulticast mode [ 1983.549010][T26839] bridge_slave_0: entered promiscuous mode [ 1983.564637][T26839] bridge0: port 2(bridge_slave_1) entered blocking state [ 1983.571820][T26839] bridge0: port 2(bridge_slave_1) entered disabled state [ 1983.580159][T26839] bridge_slave_1: entered allmulticast mode [ 1983.588000][T26839] bridge_slave_1: entered promiscuous mode [ 1983.643269][T26839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1983.659499][T26839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1983.722791][T26839] team0: Port device team_slave_0 added [ 1983.736976][T26839] team0: Port device team_slave_1 added [ 1983.789642][T26839] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1983.796896][T26839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1983.826450][T26839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1983.839974][T26839] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1983.847541][T26839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1983.874725][T26839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1983.940160][T26839] hsr_slave_0: entered promiscuous mode [ 1983.946906][T26839] hsr_slave_1: entered promiscuous mode [ 1983.955667][T26839] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1983.964065][T26839] Cannot create hsr debugfs directory [ 1984.045481][T18605] Bluetooth: hci4: command tx timeout [ 1984.220988][T26839] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1984.233191][T26839] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1984.244538][T26839] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1984.254498][T26839] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1984.288023][T26839] bridge0: port 2(bridge_slave_1) entered blocking state [ 1984.295247][T26839] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1984.302938][T26839] bridge0: port 1(bridge_slave_0) entered blocking state [ 1984.310133][T26839] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1984.323067][ T59] bridge0: port 1(bridge_slave_0) entered disabled state [ 1984.336161][ T59] bridge0: port 2(bridge_slave_1) entered disabled state [ 1984.415098][T26839] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1984.436995][T26839] 8021q: adding VLAN 0 to HW filter on device team0 [ 1984.457195][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 1984.464403][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1984.478357][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 1984.485545][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1984.708416][T26839] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1984.971629][T26839] veth0_vlan: entered promiscuous mode [ 1984.993888][T26839] veth1_vlan: entered promiscuous mode [ 1985.027036][T26839] veth0_macvtap: entered promiscuous mode [ 1985.036990][T26839] veth1_macvtap: entered promiscuous mode [ 1985.060123][T26839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1985.071641][T26839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1985.083962][T26839] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1985.096107][T26839] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1985.106978][T26839] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1985.118443][T26839] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1985.134585][T26839] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1985.143323][T26839] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1985.152372][T26839] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1985.161477][T26839] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1985.279578][ T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1985.296992][ T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1985.345829][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1985.355282][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1986.267412][T18605] Bluetooth: hci4: command tx timeout [ 1986.530099][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1986.537371][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1988.491063][T18605] Bluetooth: hci4: command tx timeout [ 1990.714333][T18605] Bluetooth: hci4: command tx timeout [ 2052.209282][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 2052.215886][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 2065.375980][T17083] Bluetooth: hci2: command 0x0406 tx timeout [ 2068.624091][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 2114.633949][T18605] Bluetooth: hci4: command 0x0406 tx timeout [ 2117.889164][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 2117.896390][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 2128.157365][ T29] INFO: task syz-executor:5785 blocked for more than 143 seconds. [ 2128.165261][ T29] Not tainted 6.6.102-syzkaller #0 [ 2128.172853][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2128.185152][ T29] task:syz-executor state:D stack:21736 pid:5785 ppid:1 flags:0x00004004 [ 2128.194769][ T29] Call Trace: [ 2128.198176][ T29] [ 2128.201266][ T29] __schedule+0x14d2/0x44d0 [ 2128.205849][ T29] ? asan.module_dtor+0x20/0x20 [ 2128.210950][ T29] ? mark_lock+0x94/0x320 [ 2128.215331][ T29] ? lock_chain_count+0x20/0x20 [ 2128.220199][ T29] ? _raw_spin_lock_irq+0xaf/0xe0 [ 2128.225403][ T29] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 2128.230911][ T29] schedule+0xbd/0x170 [ 2128.235251][ T29] io_schedule+0x80/0xd0 [ 2128.239548][ T29] folio_wait_bit_common+0x6eb/0xf70 [ 2128.244985][ T29] ? folio_wait_bit+0x30/0x30 [ 2128.249721][ T29] ? filemap_get_entry+0x35c/0x3c0 [ 2128.255097][ T29] ? _compound_head+0x120/0x120 [ 2128.260008][ T29] ? find_lock_entries+0xc38/0xfe0 [ 2128.265253][ T29] __filemap_get_folio+0xbc/0xbc0 [ 2128.270328][ T29] truncate_inode_pages_range+0x40a/0xf00 [ 2128.276282][ T29] ? mapping_evict_folio+0x510/0x510 [ 2128.281632][ T29] ? _raw_spin_lock_irq+0xaf/0xe0 [ 2128.286965][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 2128.292372][ T29] ? lockdep_hardirqs_on+0x98/0x150 [ 2128.297742][ T29] evict+0x499/0x870 [ 2128.301711][ T29] ? proc_nr_inodes+0x230/0x230 [ 2128.306719][ T29] ? do_raw_spin_unlock+0x121/0x230 [ 2128.311981][ T29] ? do_raw_spin_unlock+0x121/0x230 [ 2128.317363][ T29] evict_inodes+0x5fe/0x690 [ 2128.321919][ T29] ? clear_inode+0x150/0x150 [ 2128.326544][ T29] generic_shutdown_super+0x97/0x2b0 [ 2128.331935][ T29] kill_block_super+0x44/0x90 [ 2128.336686][ T29] deactivate_locked_super+0x97/0x100 [ 2128.342220][ T29] cleanup_mnt+0x429/0x4c0 [ 2128.346684][ T29] task_work_run+0x1ce/0x250 [ 2128.351400][ T29] ? task_work_cancel+0x240/0x240 [ 2128.356477][ T29] ? exit_to_user_mode_loop+0x3b/0x110 [ 2128.362185][ T29] exit_to_user_mode_loop+0xe6/0x110 [ 2128.367512][ T29] exit_to_user_mode_prepare+0xb1/0x140 [ 2128.373192][ T29] syscall_exit_to_user_mode+0x1a/0x50 [ 2128.378694][ T29] do_syscall_64+0x61/0xb0 [ 2128.383279][ T29] ? clear_bhb_loop+0x40/0x90 [ 2128.387996][ T29] ? clear_bhb_loop+0x40/0x90 [ 2128.392771][ T29] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 2128.398847][ T29] RIP: 0033:0x7f945138ff17 [ 2128.403594][ T29] RSP: 002b:00007fff797d5e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 2128.412058][ T29] RAX: 0000000000000000 RBX: 00007f9451411c05 RCX: 00007f945138ff17 [ 2128.420118][ T29] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff797d5f20 [ 2128.428225][ T29] RBP: 00007fff797d5f20 R08: 0000000000000000 R09: 0000000000000000 [ 2128.436339][ T29] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff797d6fb0 [ 2128.444351][ T29] R13: 00007f9451411c05 R14: 00000000001ce7b7 R15: 00007fff797d6ff0 [ 2128.452431][ T29] [ 2128.455564][ T29] [ 2128.455564][ T29] Showing all locks held in the system: [ 2128.463476][ T29] 1 lock held by khungtaskd/29: [ 2128.468445][ T29] #0: ffffffff8cd2fbe0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x290 [ 2128.478516][ T29] 2 locks held by getty/5548: [ 2128.483230][ T29] #0: ffff88814dd180a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 2128.493216][ T29] #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x425/0x1380 [ 2128.503467][ T29] 1 lock held by syz-executor/5785: [ 2128.508845][ T29] #0: ffff88807e76a0e0 (&type->s_umount_key#61){+.+.}-{3:3}, at: deactivate_super+0xa4/0xe0 [ 2128.519325][ T29] [ 2128.522008][ T29] ============================================= [ 2128.522008][ T29] [ 2128.530476][ T29] NMI backtrace for cpu 0 [ 2128.534816][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.102-syzkaller #0 [ 2128.542726][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 2128.552815][ T29] Call Trace: [ 2128.556128][ T29] [ 2128.559133][ T29] dump_stack_lvl+0x16c/0x230 [ 2128.563866][ T29] ? show_regs_print_info+0x20/0x20 [ 2128.569113][ T29] ? load_image+0x3b0/0x3b0 [ 2128.573669][ T29] nmi_cpu_backtrace+0x39b/0x3d0 [ 2128.578640][ T29] ? nmi_trigger_cpumask_backtrace+0x2f0/0x2f0 [ 2128.584818][ T29] ? _printk+0xd0/0x110 [ 2128.589004][ T29] ? load_image+0x3b0/0x3b0 [ 2128.593554][ T29] ? load_image+0x3b0/0x3b0 [ 2128.598128][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 2128.604222][ T29] nmi_trigger_cpumask_backtrace+0x17a/0x2f0 [ 2128.610229][ T29] watchdog+0xf41/0xf80 [ 2128.614405][ T29] ? watchdog+0x1e1/0xf80 [ 2128.618761][ T29] kthread+0x2fa/0x390 [ 2128.622848][ T29] ? hungtask_pm_notify+0x90/0x90 [ 2128.627896][ T29] ? kthread_blkcg+0xd0/0xd0 [ 2128.632507][ T29] ret_from_fork+0x48/0x80 [ 2128.636951][ T29] ? kthread_blkcg+0xd0/0xd0 [ 2128.641562][ T29] ret_from_fork_asm+0x11/0x20 [ 2128.646390][ T29] [ 2128.649906][ T29] Sending NMI from CPU 0 to CPUs 1: [ 2128.655182][ C1] NMI backtrace for cpu 1 [ 2128.655199][ C1] CPU: 1 PID: 18083 Comm: kworker/u4:1 Not tainted 6.6.102-syzkaller #0 [ 2128.655217][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 2128.655229][ C1] Workqueue: events_unbound nsim_dev_trap_report_work [ 2128.655254][ C1] RIP: 0010:kasan_check_range+0x73/0x290 [ 2128.655277][ C1] Code: ff df 4f 8d 1c 17 49 ff c8 4d 89 c1 49 c1 e9 03 48 bb 01 00 00 00 00 fc ff df 4d 8d 34 19 4d 89 f4 4d 29 dc 49 83 fc 10 7f 29 <4d> 85 e4 0f 84 41 01 00 00 4c 89 cb 48 f7 d3 4c 01 fb 41 80 3b 00 [ 2128.655292][ C1] RSP: 0018:ffffc90003297688 EFLAGS: 00000083 [ 2128.655306][ C1] RAX: 0000000000000001 RBX: dffffc0000000001 RCX: ffffffff8167bb34 [ 2128.655318][ C1] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff90da35e8 [ 2128.655330][ C1] RBP: 0000000000000008 R08: ffffffff90da35ef R09: 1ffffffff21b46bd [ 2128.655342][ C1] R10: dffffc0000000000 R11: fffffbfff21b46bd R12: 0000000000000001 [ 2128.655354][ C1] R13: dffffc0000000000 R14: fffffbfff21b46be R15: 1ffffffff21b46bd [ 2128.655367][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 2128.655381][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 2128.655393][ C1] CR2: 00007f91ba2b1700 CR3: 000000000cb30000 CR4: 00000000003506e0 [ 2128.655409][ C1] Call Trace: [ 2128.655415][ C1] [ 2128.655424][ C1] mark_lock+0x94/0x320 [ 2128.655446][ C1] __lock_acquire+0xd49/0x7c80 [ 2128.655476][ C1] ? verify_lock_unused+0x140/0x140 [ 2128.655494][ C1] ? crng_make_state+0x349/0x700 [ 2128.655517][ C1] ? lockdep_hardirqs_on+0x98/0x150 [ 2128.655542][ C1] ? crng_make_state+0x3f9/0x700 [ 2128.655566][ C1] ? crng_make_state+0x13b/0x700 [ 2128.655588][ C1] ? urandom_read_iter+0x150/0x150 [ 2128.655615][ C1] lock_acquire+0x197/0x410 [ 2128.655633][ C1] ? nsim_dev_trap_report_work+0x6cc/0xb00 [ 2128.655652][ C1] ? get_random_bytes+0x20/0x20 [ 2128.655677][ C1] ? read_lock_is_recursive+0x20/0x20 [ 2128.655696][ C1] ? __bpf_trace_tasklet+0x140/0x140 [ 2128.655716][ C1] ? nsim_dev_trap_report_work+0x6cc/0xb00 [ 2128.655734][ C1] _raw_spin_lock_bh+0x36/0x50 [ 2128.655759][ C1] ? nsim_dev_trap_report_work+0x6cc/0xb00 [ 2128.655778][ C1] nsim_dev_trap_report_work+0x6cc/0xb00 [ 2128.655804][ C1] ? process_scheduled_works+0x957/0x15b0 [ 2128.655825][ C1] process_scheduled_works+0xa45/0x15b0 [ 2128.655858][ C1] ? assign_work+0x400/0x400 [ 2128.655881][ C1] ? assign_work+0x39e/0x400 [ 2128.655903][ C1] worker_thread+0xa55/0xfc0 [ 2128.655923][ C1] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 2128.655956][ C1] ? _raw_spin_unlock+0x40/0x40 [ 2128.655979][ C1] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 2128.656014][ C1] kthread+0x2fa/0x390 [ 2128.656028][ C1] ? pr_cont_work+0x560/0x560 [ 2128.656048][ C1] ? kthread_blkcg+0xd0/0xd0 [ 2128.656063][ C1] ret_from_fork+0x48/0x80 [ 2128.656082][ C1] ? kthread_blkcg+0xd0/0xd0 [ 2128.656097][ C1] ret_from_fork_asm+0x11/0x20 [ 2128.656127][ C1] [ 2128.667492][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 2128.667510][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.102-syzkaller #0 [ 2128.667534][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 2128.667549][ T29] Call Trace: [ 2128.667557][ T29] [ 2128.667569][ T29] dump_stack_lvl+0x16c/0x230 [ 2128.667604][ T29] ? show_regs_print_info+0x20/0x20 [ 2128.667632][ T29] ? load_image+0x3b0/0x3b0 [ 2128.667679][ T29] panic+0x2c0/0x710 [ 2128.667712][ T29] ? schedule_preempt_disabled+0x20/0x20 [ 2128.667745][ T29] ? bpf_jit_dump+0xd0/0xd0 [ 2128.667775][ T29] ? __irq_work_queue_local+0x13a/0x3b0 [ 2128.667807][ T29] ? nmi_trigger_cpumask_backtrace+0x2a4/0x2f0 [ 2128.667842][ T29] watchdog+0xf80/0xf80 [ 2128.667871][ T29] ? watchdog+0x1e1/0xf80 [ 2128.667906][ T29] kthread+0x2fa/0x390 [ 2128.667925][ T29] ? hungtask_pm_notify+0x90/0x90 [ 2128.667961][ T29] ? kthread_blkcg+0xd0/0xd0 [ 2128.667983][ T29] ret_from_fork+0x48/0x80 [ 2128.668008][ T29] ? kthread_blkcg+0xd0/0xd0 [ 2128.668029][ T29] ret_from_fork_asm+0x11/0x20 [ 2128.668075][ T29] [ 2128.672066][ T29] Kernel Offset: disabled [ 2129.063456][ T29] Rebooting in 86400 seconds..