last executing test programs: 10m54.91236973s ago: executing program 2 (id=4604): creat(&(0x7f0000000040)='./file0\x00', 0x0) setxattr$incfs_id(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0) setxattr$incfs_id(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, 0x0, 0x0) 10m54.105265964s ago: executing program 2 (id=4608): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001080)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfe7d}, 0x48) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b907ef19edfff007049e0ff0888e", 0x0, 0x6500, 0x18000000, 0x0, 0x0, 0x0, 0x0}, 0x48) 10m52.921038725s ago: executing program 2 (id=4615): r0 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @local}, 0x10) sendmmsg$sock(r0, &(0x7f00000005c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000940)=[@mark={{0x10, 0x1, 0x24, 0x3}}], 0x10}}], 0x1, 0x20000000) 10m52.008726625s ago: executing program 2 (id=4620): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x68, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_SREG_KEY={0x8}, @NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_DYNSET_SET_ID={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x90}, 0x1, 0x0, 0x0, 0x95}, 0x0) 10m51.070970153s ago: executing program 2 (id=4623): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000001c0)=0x10) mknod$loop(&(0x7f0000000640)='./file0\x00', 0x100, 0x1) 10m50.166487221s ago: executing program 2 (id=4628): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x0, 0x4) getdents(r0, 0x0, 0x0) getdents(r0, 0x0, 0x58) 10m34.815913996s ago: executing program 32 (id=4628): r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', 0x0, 0x4) getdents(r0, 0x0, 0x0) getdents(r0, 0x0, 0x58) 8m18.366874573s ago: executing program 5 (id=5171): bpf$PROG_LOAD(0x5, 0x0, 0x0) sync() sync() 8m16.79394644s ago: executing program 5 (id=5189): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000940)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha256\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0) 8m11.617025745s ago: executing program 5 (id=5197): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb1) mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000000240), 0x2000300, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn']) openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file0\x00', 0x800, 0x1) 8m10.94441759s ago: executing program 5 (id=5201): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000b80)='./file0\x00', 0x1008002, &(0x7f0000000d00)={[{@grpjquota}]}, 0x3, 0x5ee, &(0x7f0000000280)="$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") r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) write$binfmt_register(r0, &(0x7f0000000880)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0x1, 0x3a, 'usrjquota=\xb9\xc4\xd7A%S\n\x10i\xcf\x84\x93v\x02\xe4y}\xcbV\xbb\xc1\xd5\x06\v\xdc\xd8\\\xc5\xb3\ag\xa6u\xbe\xf4)\xae\xb6\xfe*\x9d?\xb2C\xf0<\xc9\x820M\x92Tzs\xba\xca\x9d\xad\x17\x1b\x84\xbc\xb3\xd8\xad\f\x17\xbe\x17\xb5}.H\x90\xc7\x0e\xb3y\xd0\xc3\xf0c\x04\xe6\fzZ\x02\xfd_W\x9a\xa7\x81\xfcr\xe9B\x95\x13\x9f\x10\'5\xc0\xf9\xb5\xe1\x15Y\x9b$\xa43\xe7F>\xb7\xa1\xb7zw\xac\xc8\x12\x94\xa7\xe5\xcb\xc0g\x865\\\x9e\xca\x8e\xe2\t\xb7\b\x00\x00\x00\x00\x00\x00\x00i7b\xad\x14oVT\xcb\xea\xd3\xad\xa9\x16\xd5\xb2\xa0 \x13^\xf6>\xd4\x8bZzl\x88\xddn\xab\xd6\x12\x1f\x06', 0x3a, '\x00\x03!\f\xee\x998r~\b\x13\x89\xae\xf1\x06hz\xcc\xd6\xbb\xb8\x19\x90\x9e\xdb\xa2F\xfa_F(\x05\b\x13\x82\x12\xad\x0f^\xdc\xf2\xb5', 0x3a, './file2', 0x3a, [0x46]}, 0x113) 8m9.253992033s ago: executing program 5 (id=5218): unshare(0x22020600) r0 = socket$unix(0x1, 0x1, 0x0) listen(r0, 0x0) 8m8.621272134s ago: executing program 5 (id=5209): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r1, 0xf3, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x19, 0x1, 0x0, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}]) 8m6.057386134s ago: executing program 33 (id=5209): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0) io_setup(0x1, &(0x7f00000004c0)=0x0) io_submit(r1, 0xf3, &(0x7f00000000c0)=[&(0x7f0000000140)={0x3a0012fb, 0x2759, 0x19, 0x1, 0x0, r0, &(0x7f0000000000)="98", 0x3e8000072a, 0x1000000, 0x0, 0x10}]) 1m38.383254497s ago: executing program 0 (id=7276): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x38, r0, 0x10ada85e65c25359, 0xfffffffc, 0x25dfdbfb, {{0x6b}, {@val={0x8}, @val={0xc, 0x99, {0x7431, 0x4e}}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0xfc}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8441}, 0x4000000) 1m37.723920604s ago: executing program 0 (id=7279): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0xa04000, &(0x7f0000000040)=ANY=[], 0x3, 0x258, &(0x7f00000002c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000540)='./file7\x00', 0x1c0) renameat2(0xffffffffffffff9c, &(0x7f0000000780)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file7/file0\x00', 0x0) 1m37.22967243s ago: executing program 0 (id=7284): syz_mount_image$bfs(&(0x7f0000000000), &(0x7f0000000240)='./bus\x00', 0x8008, &(0x7f0000000100)=ANY=[@ANYRES64=0x0], 0xf, 0xab, &(0x7f0000010140)="$eJzs1zGKwkAYBeB/s7CbdptFsLBO4x08ilhqI1aK4A3Ei3gVj5DewiKtiCOYiIidRQT5vmLgzWPgtbM7brubIiKtIlLRme7T3Wy+GA8n9Rl8pCwifiMij4jeX50Pg7r7avqyWo7K6vv58c+69b0AAMDrsug/5nNqLk7NL/Aa/m993vI+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgHe7BAAA//+dfyiL") r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x0) fsync(r0) 1m36.67028681s ago: executing program 0 (id=7287): setuid(0xee00) mq_open(&(0x7f0000000180)='GPL\x00', 0x40, 0x20, 0x0) mq_open(&(0x7f0000000180)='GPL\x00', 0x40, 0x20, 0x0) 1m36.299897597s ago: executing program 0 (id=7290): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002b80)=[{&(0x7f00000004c0)=""/97, 0x61}, {&(0x7f0000000580)=""/244, 0xf4}, {&(0x7f0000000700)=""/66, 0x42}, {&(0x7f0000000140)=""/29, 0x1d}, {&(0x7f0000002c40)=""/4108, 0x100c}, {&(0x7f0000000280)=""/162, 0xa2}, {&(0x7f00000017c0)=""/78, 0x4e}, {&(0x7f0000000400)=""/138, 0x8a}, {&(0x7f0000000680)=""/106, 0x6a}, {&(0x7f00000000c0)=""/30, 0x1e}, {&(0x7f0000000340)=""/154, 0x9a}], 0xb}, 0x0) 1m35.507110763s ago: executing program 0 (id=7297): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2) ppoll(&(0x7f0000000040)=[{r0, 0x2001}], 0x1, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7}) 1m20.135871166s ago: executing program 34 (id=7297): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2) ppoll(&(0x7f0000000040)=[{r0, 0x2001}], 0x1, 0x0, 0x0, 0x0) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0xb, 0x1, 0x4, 0x0, 0x7}) 5.844829876s ago: executing program 1 (id=7745): r0 = syz_genetlink_get_family_id$SEG6(&(0x7f0000003e40), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SEG6_CMD_SETHMAC(r1, &(0x7f0000004440)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)={0x2c, r0, 0x20d, 0x70bd2a, 0x25dfdbfe, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x4}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x6}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40048d1}, 0x4894) 5.265330591s ago: executing program 1 (id=7750): r0 = syz_usb_connect$hid(0x1, 0x3f, &(0x7f0000000040)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x172f, 0x500, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x2d, 0x1, 0x0, 0x0, 0x20, 0x79, "", [{{0x9, 0x4, 0x0, 0x10, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0xfffb, 0x5, 0x1, {0x22, 0x29}}, {{{0x9, 0x5, 0x81, 0x3, 0xc04e65d2e00ae01d, 0x0, 0x19, 0xa}}, [{{0x9, 0x5, 0x2, 0x3, 0x8, 0x87, 0x4, 0xac}}]}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000680)={0x2c, &(0x7f0000000380)=ANY=[@ANYBLOB="000a29000000290e62dcd6291176b167ab2243e9ec5ed38c6e2b4fee4ea74328c31d79b4dca2"], 0x0, 0x0, 0x0, 0x0}, 0x0) 4.484712119s ago: executing program 4 (id=7755): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15) ioctl$TCSETS(r0, 0x40384708, &(0x7f0000000080)={0x8, 0x1, 0x609152b0, 0x2, 0xe, "3eccd2000500"}) 4.383863117s ago: executing program 3 (id=7756): r0 = mq_open(&(0x7f0000000040)='!\x7f\x00\xca\x00\x00\x00\f\x00\x00\x01E!Tnux\x00', 0x6e93ebbbcc0884f2, 0x0, 0x0) mq_timedreceive(r0, 0x0, 0xfffffffffffffee3, 0x0, 0x0) mq_timedsend(r0, &(0x7f0000000780)=',', 0x1, 0x0, 0x0) 4.230590634s ago: executing program 7 (id=7757): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=@ipv6_newrule={0x44, 0x20, 0x1, 0x2000, 0x25dfdbf6, {0xa, 0x80, 0x80, 0x0, 0x0, 0x0, 0x0, 0x8, 0x10002}, [@FRA_SRC={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0xc}}, @FRA_DST={0x14, 0x1, @rand_addr=' \x01\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x40}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}]}}}]}, 0x5c}}, 0x0) 4.165822712s ago: executing program 6 (id=7758): syz_mount_image$ext4(&(0x7f0000000140)='ext2\x00', &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f0000000000), 0x1, 0x478, &(0x7f0000000300)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) lseek(r0, 0x2, 0x3) 3.780068145s ago: executing program 4 (id=7759): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000007, 0x31, 0xffffffffffffffff, 0x0) r0 = socket(0x40000000015, 0x805, 0x0) getsockopt(r0, 0x114, 0x5, &(0x7f0000019100)=""/102399, &(0x7f00000000c0)=0x18fff) 3.73479949s ago: executing program 3 (id=7760): mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000640)=0xcbb9, 0x2, 0x1) set_mempolicy_home_node(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x0) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) 3.399376023s ago: executing program 6 (id=7761): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000140), r0) sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)={0x38, r1, 0x1, 0x70bd27, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_batadv\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0xc, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x80000001}]}]}, 0x38}}, 0x804) 3.231125607s ago: executing program 7 (id=7762): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) io_uring_register$IORING_REGISTER_RESTRICTIONS(0xffffffffffffffff, 0xb, &(0x7f00000004c0)=[@ioring_restriction_register_op={0x0, 0x9}], 0x1) io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x25, &(0x7f00000000c0)={0x1, 0xffffffffffffffff, 0x0, {0x4000000031, 0x100000000}}, 0x1) 2.93407505s ago: executing program 3 (id=7763): openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2800, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}}) 2.909860439s ago: executing program 4 (id=7764): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x7a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x76}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x200}, 0x94) r0 = socket$kcm(0xa, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8936, &(0x7f0000000000)) 2.809841845s ago: executing program 6 (id=7765): bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0600000004000000040000000a00000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00s'], 0x48) r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e02000000000000000000000000000005"], 0x0, 0x37}, 0x28) bpf$PROG_LOAD(0x5, &(0x7f000000d000)={0xa, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="8500000800000000070000000000000095000000000300000767672a39668c826a9f7a4aeeb8cffd43634b3188b7311d93b44a2df956f9bfa0f2481b22e488ed335ca7bc8f8b8efbef5da9db69cc5779e1ca2d51bdc61011ffdb232975df5c80c3f94c2e7402702cb37e2d1873a233ed1fb6e64ddc313ed1b60c6206fa18dbb3c0c66fb03269a67f8d3d5627a2277f04f56e501969b2c4a8bc6fa4370b46446216038f262590262bbb5c3ca0f46c091d2de8644c6d8add7aab3902ec352b68fea9873b37ae1dbddce1ffa91c1fa98c8efc80f61046f2a7"], &(0x7f0000014ff5)='GPL\x00', 0x2, 0x1000, &(0x7f0000014000)=""/4096, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x9, &(0x7f0000000000), 0x1, 0x10, &(0x7f0000000000), 0xa}, 0x70) 2.634564301s ago: executing program 1 (id=7766): prctl$PR_GET_SPECULATION_CTRL(0x35, 0x0, 0x4) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00') read$FUSE(r0, &(0x7f0000003240)={0x2020}, 0x2023) 2.591938823s ago: executing program 7 (id=7767): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000100)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan1\x00'}]}, @ETHTOOL_A_RINGS_RX_MINI={0x8}, @ETHTOOL_A_RINGS_RX_JUMBO={0x8, 0x8, 0x6}]}, 0x3c}}, 0x0) 2.234499196s ago: executing program 4 (id=7768): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_int(r0, 0x29, 0x4b, 0x0, &(0x7f0000000040)) 2.201066065s ago: executing program 3 (id=7769): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0xffffff9b, 0x0, 0x32}, 0x9c) sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) 2.168306235s ago: executing program 6 (id=7770): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/power/wakeup_count', 0x301880, 0x20d) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) mq_timedreceive(r0, 0x0, 0x0, 0x5, 0x0) 1.978473602s ago: executing program 1 (id=7771): set_mempolicy(0x4005, &(0x7f0000000000)=0x7e, 0x8) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xfc, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="700000001000810500"/20, @ANYRES32=0x0, @ANYBLOB="0580040000000000500012800b00010067656e657665000040000280050008000000002005000d000100000005000d000200000008000b4000001e82060005004e210000140007"], 0x70}}, 0x0) 1.863199557s ago: executing program 7 (id=7772): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000000), r0) sendmsg$BATADV_CMD_GET_DAT_CACHE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x303, 0x70bd2b, 0x4, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}}, 0x0) 1.610677889s ago: executing program 6 (id=7773): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0) write$dsp(r0, &(0x7f00000001c0)="5cba91a4", 0xffffffd9) ioctl$SNDCTL_DSP_SYNC(r0, 0x5001, 0x0) 1.36484527s ago: executing program 3 (id=7774): r0 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41) ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f0000000100)={0x2, 0x1, 0x3, 0x14, 0x4}) ioctl$DVB_DEMUX_DMX_SET_FILTER(r0, 0x403c6f2b, &(0x7f00000003c0)={0x8, {"c23b585272aca28d9cad01a3cdd1e3a9", "d40000007dcbfb5d3cf7c2cac100", "b0e953ee24cbee8739aa9f2a423b3429"}, 0x4, 0x6}) 1.356301865s ago: executing program 4 (id=7775): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000000)={0x18, 0x0, {0x7, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x35}, 'macvlan1\x00'}}, 0x1e) writev(r0, &(0x7f0000000400)=[{&(0x7f0000000240)="0281", 0x2}], 0x1) 1.07038143s ago: executing program 1 (id=7776): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) bind$bt_hci(r0, &(0x7f0000000000)={0x1f, 0xffffffffffffffff, 0x3}, 0x6) 1.011876424s ago: executing program 7 (id=7777): syz_mount_image$minix(&(0x7f0000000100), &(0x7f00000066c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1810002, &(0x7f0000028f40)=ANY=[], 0x1, 0x1f4, &(0x7f0000000740)="$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") chdir(&(0x7f0000000240)='./file0\x00') symlinkat(&(0x7f0000001040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') 654.981996ms ago: executing program 4 (id=7778): sendmsg$ETHTOOL_MSG_WOL_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000740)=ANY=[@ANYBLOB="1c000000", @ANYRES16, @ANYBLOB="470d000000000000000000000000080002"], 0x1c}}, 0x0) r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000740)=ANY=[@ANYBLOB="14020000140001002dbd7000000000000a"], 0x214}], 0x1}, 0x0) 298.236419ms ago: executing program 1 (id=7779): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000040)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f0000000380)={&(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0202}}}, 0x14, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x200088c4}, 0x0) 234.095937ms ago: executing program 3 (id=7780): pipe(&(0x7f00000008c0)={0xffffffffffffffff}) unshare(0x20000400) syz_genetlink_get_family_id$smc(&(0x7f0000000340), r0) 25.759912ms ago: executing program 6 (id=7781): prctl$PR_SET_SECUREBITS(0x1c, 0x1d) setuid(0xee01) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) 0s ago: executing program 7 (id=7791): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000001c0), r0) sendmsg$DEVLINK_CMD_RATE_SET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)={0x3c, r1, 0x1, 0x0, 0x0, {0x2a}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x58}, @handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4001}, 0x0) kernel console output (not intermixed with test programs): 0] type 2 family 0 port 6081 - 0 [ 1158.287339][T23936] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 1158.437665][T14384] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1158.859628][T14384] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1159.142097][T14384] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1159.817404][T14384] bridge_slave_1: left allmulticast mode [ 1159.854972][T14384] bridge_slave_1: left promiscuous mode [ 1159.885271][T14384] bridge0: port 2(bridge_slave_1) entered disabled state [ 1159.955528][T14384] bridge_slave_0: left allmulticast mode [ 1159.974825][T14384] bridge_slave_0: left promiscuous mode [ 1159.987112][T14384] bridge0: port 1(bridge_slave_0) entered disabled state [ 1160.864670][ T29] audit: type=1326 audit(1779056944.372:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23981 comm="syz.1.5214" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f9801c code=0x0 [ 1161.249452][T14384] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1161.365821][T14384] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1161.453065][T14384] bond0 (unregistering): Released all slaves [ 1161.663279][ T148] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1161.708538][ T148] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1161.913623][ T4870] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1161.926528][ T4870] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1161.937875][ T4870] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1161.954217][ T4870] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1161.965344][ T4870] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1162.010573][ T148] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1162.044132][ T148] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1162.827028][T14384] hsr_slave_0: left promiscuous mode [ 1162.889407][T14384] hsr_slave_1: left promiscuous mode [ 1162.952664][T14384] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1162.959240][T24013] loop4: detected capacity change from 0 to 1024 [ 1163.012496][T14384] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1163.058906][T24013] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1163.111710][T14384] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1163.153920][T14384] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1163.275400][T24013] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1163.319503][T14384] veth1_macvtap: left promiscuous mode [ 1163.364285][T14384] veth0_macvtap: left promiscuous mode [ 1163.414525][T14384] veth1_vlan: left promiscuous mode [ 1163.455463][T14384] veth0_vlan: left promiscuous mode [ 1163.957314][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1164.060333][ T4870] Bluetooth: hci4: command tx timeout [ 1165.376047][T24037] loop4: detected capacity change from 0 to 4096 [ 1165.804332][T24037] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 1166.147237][ T4870] Bluetooth: hci4: command tx timeout [ 1166.205673][T14384] team0 (unregistering): Port device team_slave_1 removed [ 1166.265934][T24054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5230'. [ 1166.434824][T14384] team0 (unregistering): Port device team_slave_0 removed [ 1167.410411][T24024] tipc: Enabling of bearer rejected, failed to enable media [ 1167.628619][T18544] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1167.695010][T18544] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1167.751083][T18544] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1167.841166][T18544] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1168.224056][ T4870] Bluetooth: hci4: command tx timeout [ 1168.325617][ T5227] 8021q: adding VLAN 0 to HW filter on device eth5 [ 1168.451167][T14384] IPVS: stop unused estimator thread 0... [ 1169.121418][T23989] lo speed is unknown, defaulting to 1000 [ 1170.302913][ T4870] Bluetooth: hci4: command tx timeout [ 1170.431426][T23989] bridge0: port 1(bridge_slave_0) entered blocking state [ 1170.453381][T23989] bridge0: port 1(bridge_slave_0) entered disabled state [ 1170.466130][T23989] bridge_slave_0: entered allmulticast mode [ 1170.485922][T23989] bridge_slave_0: entered promiscuous mode [ 1170.501944][T23989] bridge0: port 2(bridge_slave_1) entered blocking state [ 1170.509601][T23989] bridge0: port 2(bridge_slave_1) entered disabled state [ 1170.527177][T23989] bridge_slave_1: entered allmulticast mode [ 1170.557005][T23989] bridge_slave_1: entered promiscuous mode [ 1170.776906][T23989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1170.805718][T23989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1170.821476][ T5227] 8021q: adding VLAN 0 to HW filter on device eth6 [ 1170.925502][T23989] team0: Port device team_slave_0 added [ 1170.953076][T23989] team0: Port device team_slave_1 added [ 1171.064435][T23989] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1171.072626][T23989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1171.099302][T23989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1171.116241][T23989] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1171.125169][T23989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1171.157232][T23989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1171.322660][T23989] hsr_slave_0: entered promiscuous mode [ 1171.333868][T23989] hsr_slave_1: entered promiscuous mode [ 1171.343447][T23989] debugfs: 'hsr0' already exists in 'hsr' [ 1171.349371][T23989] Cannot create hsr debugfs directory [ 1172.205560][T23989] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 1172.258104][T23989] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1172.272968][T23989] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 1172.326924][T23989] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1172.347853][T23989] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 1172.407126][T23989] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1172.428302][T23989] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 1172.459426][T23989] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1172.969334][T23989] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1173.066827][T23989] 8021q: adding VLAN 0 to HW filter on device team0 [ 1173.113413][ T5810] bridge0: port 1(bridge_slave_0) entered blocking state [ 1173.120961][ T5810] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1173.198075][T18544] bridge0: port 2(bridge_slave_1) entered blocking state [ 1173.205600][T18544] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1173.577531][ T5227] 8021q: adding VLAN 0 to HW filter on device eth7 [ 1175.673396][T23989] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1175.738408][ T5227] 8021q: adding VLAN 0 to HW filter on device eth8 [ 1176.825534][T23989] veth0_vlan: entered promiscuous mode [ 1176.869293][T23989] veth1_vlan: entered promiscuous mode [ 1177.015666][T23989] veth0_macvtap: entered promiscuous mode [ 1177.078151][T23989] veth1_macvtap: entered promiscuous mode [ 1177.154072][T23989] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1177.196667][T23989] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1177.257618][ T13] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.273311][ T13] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.314693][ T13] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1177.341758][ T13] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1179.177916][T14384] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1179.197906][T14384] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1179.294178][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1179.303219][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1179.897388][T24431] loop6: detected capacity change from 0 to 1024 [ 1181.026052][T24447] loop3: detected capacity change from 0 to 1024 [ 1181.107715][T24447] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1181.225149][T24447] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1181.914553][ T5589] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1184.082231][T24503] C: renamed from batadv_slave_0 [ 1184.158335][T24504] xt_time: unknown flags 0xf4 [ 1184.167906][T24503] netlink: 164 bytes leftover after parsing attributes in process `syz.0.5252'. [ 1186.950827][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1187.707264][T24546] loop6: detected capacity change from 0 to 2048 [ 1187.885064][T24546] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1188.992321][T24566] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5270'. [ 1191.269558][T24588] loop0: detected capacity change from 0 to 4096 [ 1191.367924][T24588] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1191.707195][T24588] ntfs3(loop0): ino=19, mi_enum_attr [ 1191.746793][T24588] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1192.945494][T24613] loop3: detected capacity change from 0 to 2048 [ 1193.160570][T24613] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1193.373979][T24627] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5287'. [ 1194.575675][T24640] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5302'. [ 1196.046549][T24656] loop4: detected capacity change from 0 to 2048 [ 1196.278647][T24668] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1196.967116][T24668] NILFS (loop4): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 1197.064414][T24668] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=4) [ 1197.134890][T24668] Remounting filesystem read-only [ 1197.184862][ T5579] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer [ 1197.436767][T24682] loop0: detected capacity change from 0 to 512 [ 1197.558255][T24682] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1197.744783][T24682] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.5299: iget: bad i_size value: 38620345925642 [ 1197.853235][T24682] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1197.859828][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 1197.875938][ C1] EXT4-fs (loop0): initial error at time 1779056981: ext4_orphan_get:1397: inode 15 [ 1197.885655][ C1] EXT4-fs (loop0): last error at time 1779056981: ext4_orphan_get:1397: inode 15 [ 1197.911645][T24682] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.5299: couldn't read orphan inode 15 (err -117) [ 1197.998714][T24682] loop0: lost filesystem error report for type 5 error -117 [ 1198.025882][T24682] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1198.777901][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1199.657614][T24714] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.5309'. [ 1200.947215][T24725] loop3: detected capacity change from 0 to 2048 [ 1201.095965][T24742] netlink: 14 bytes leftover after parsing attributes in process `syz.4.5315'. [ 1201.222631][T24725] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1201.314738][T24725] ext4 filesystem being mounted at /1022/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1201.358840][T24742] bridge0: port 1(1x9) entered disabled state [ 1201.608137][T24742] x9 (unregistering): left allmulticast mode [ 1201.667409][T24742] x9 (unregistering): left promiscuous mode [ 1201.710029][T24742] bridge0: port 1(1x9) entered disabled state [ 1202.059560][T24758] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5317'. [ 1202.377583][ T5589] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1205.438370][T24809] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5331'. [ 1206.066611][T24817] faux_driver vkms: [drm] Unknown color mode 6; guessing buffer size. [ 1207.571115][T24839] loop4: detected capacity change from 0 to 1024 [ 1207.689268][T24839] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 1207.806576][T24839] EXT4-fs (loop4): Errors on filesystem, clearing orphan list. [ 1207.824616][T24842] FAT-fs (loop3): unable to read boot sector [ 1207.894964][T24839] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1208.894209][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1210.633846][T24885] loop6: detected capacity change from 0 to 1024 [ 1210.838442][T24885] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1211.659214][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1213.051587][T24920] netlink: 'syz.1.5360': attribute type 2 has an invalid length. [ 1214.438466][T24932] loop0: detected capacity change from 0 to 2048 [ 1214.482688][T24934] loop4: detected capacity change from 0 to 2048 [ 1214.610427][T24932] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1214.647643][T24934] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1214.737907][T24932] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1214.760128][T24934] NILFS (loop4): mounting unchecked fs [ 1215.028378][T24934] NILFS (loop4): recovery complete [ 1215.117530][T24948] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1216.595147][T24967] loop6: detected capacity change from 0 to 2048 [ 1216.718548][T24967] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1222.174552][ T29] audit: type=1326 audit(1779057005.652:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1222.396284][ T29] audit: type=1326 audit(1779057005.662:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1222.448065][ T29] audit: type=1326 audit(1779057005.682:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1222.496656][T25060] loop3: detected capacity change from 0 to 256 [ 1222.542627][T25060] exfat: Deprecated parameter 'namecase' [ 1222.555445][T25060] exfat: Deprecated parameter 'utf8' [ 1222.637694][T25060] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1222.656290][ T29] audit: type=1326 audit(1779057005.682:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1222.835996][ T29] audit: type=1326 audit(1779057005.852:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71b61ab code=0x7ffc0000 [ 1222.836238][T25060] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5f1fc80d, utbl_chksum : 0xe619d30d) [ 1222.901676][ T29] audit: type=1326 audit(1779057005.852:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71b61ab code=0x7ffc0000 [ 1223.027125][ T29] audit: type=1326 audit(1779057005.862:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1223.167602][ T29] audit: type=1326 audit(1779057005.882:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25058 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf71b61ab code=0x7ffc0000 [ 1223.367114][ T29] audit: type=1326 audit(1779057005.862:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1223.559283][ T29] audit: type=1326 audit(1779057005.902:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25049 comm="syz.0.5398" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1224.377625][T25081] loop6: detected capacity change from 0 to 512 [ 1224.505014][T25081] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.5407: inode has both inline data and extents flags [ 1224.521352][T25081] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1224.529800][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1224.545366][T25081] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.5407: couldn't read orphan inode 15 (err -117) [ 1224.545876][ C1] EXT4-fs (loop6): initial error at time 1779057008: ext4_orphan_get:1397: inode 15 [ 1224.567373][ C1] EXT4-fs (loop6): last error at time 1779057008: ext4_orphan_get:1397: inode 15 [ 1224.660621][T25081] loop6: lost filesystem error report for type 5 error -117 [ 1224.672011][T25081] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1224.824116][T25074] loop4: detected capacity change from 0 to 4096 [ 1224.862141][T25081] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters [ 1224.925295][T25074] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1225.372357][T25074] ntfs3(loop4): ino=1a, mi_enum_attr [ 1225.429387][T25074] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1225.447398][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1226.333720][T25106] netlink: 'syz.3.5413': attribute type 2 has an invalid length. [ 1227.642581][T25121] loop4: detected capacity change from 0 to 256 [ 1227.715962][T25121] exfat: Unknown parameter '01777777777777777777777' [ 1227.737194][T25125] CUSE: unknown device info "" [ 1227.838552][T25125] CUSE: zero length info key specified [ 1228.399929][T25135] loop3: detected capacity change from 0 to 256 [ 1228.455228][T25135] exfat: Deprecated parameter 'utf8' [ 1228.515669][T25135] exfat: Deprecated parameter 'utf8' [ 1228.574927][T25135] exfat: Deprecated parameter 'utf8' [ 1228.776805][T25135] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1230.315340][T25163] netlink: 6 bytes leftover after parsing attributes in process `syz.4.5428'. [ 1230.725273][T25169] usb usb7: usbfs: process 25169 (syz.1.5430) did not claim interface 0 before use [ 1231.874443][T25185] loop0: detected capacity change from 0 to 256 [ 1231.934435][T25185] exfat: Deprecated parameter 'utf8' [ 1231.966562][T25185] exfat: Deprecated parameter 'utf8' [ 1232.029153][T25185] exfat: Deprecated parameter 'utf8' [ 1232.231135][T25185] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1233.445560][T25204] loop3: detected capacity change from 0 to 1024 [ 1233.505138][T25204] EXT4-fs: Ignoring removed mblk_io_submit option [ 1233.568569][T25211] loop0: detected capacity change from 0 to 512 [ 1233.707057][T25204] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1233.789413][T25211] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.5443: inode has both inline data and extents flags [ 1233.863970][T25211] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1233.866878][T25219] loop6: detected capacity change from 0 to 8 [ 1233.876593][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 1233.876679][ C1] EXT4-fs (loop0): initial error at time 1779057017: ext4_orphan_get:1397: inode 15 [ 1233.876840][ C1] EXT4-fs (loop0): last error at time 1779057017: ext4_orphan_get:1397: inode 15 [ 1233.911127][T25211] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.5443: couldn't read orphan inode 15 (err -117) [ 1233.991667][T25211] loop0: lost filesystem error report for type 5 error -117 [ 1234.000520][T25211] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1234.156183][T25219] SQUASHFS error: Failed to read block 0x29b: -5 [ 1234.185523][T25204] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 1234.207531][T25219] SQUASHFS error: Unable to read metadata cache entry [299] [ 1234.240084][T25204] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 1234.327224][T25211] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters [ 1234.367031][T25204] EXT4-fs (loop3): can't enable nombcache during remount [ 1234.882505][ T5589] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1234.932715][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1235.082328][T22124] bridge0: entered promiscuous mode [ 1237.354860][T25260] loop6: detected capacity change from 0 to 512 [ 1237.424736][T25260] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 1237.549392][T25260] EXT4-fs error (device loop6): ext4_iget_extra_inode:5128: inode #15: comm syz.6.5456: corrupted in-inode xattr: e_value out of bounds [ 1237.615789][T25260] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1237.617087][T25260] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.5456: couldn't read orphan inode 15 (err -117) [ 1237.626775][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1237.626860][ C1] EXT4-fs (loop6): initial error at time 1779057021: ext4_iget_extra_inode:5128: inode 15 [ 1237.627007][ C1] EXT4-fs (loop6): last error at time 1779057021: ext4_iget_extra_inode:5128: inode 15 [ 1237.774612][T25260] loop6: lost filesystem error report for type 5 error -117 [ 1237.780871][T25260] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1238.054977][T25260] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1238.140359][ C1] ip6_tunnel: ip6gre2 xmit: Local address not yet configured! [ 1238.674194][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1238.697302][T25275] loop3: detected capacity change from 0 to 1024 [ 1238.880464][T22124] usb 5-1: new full-speed USB device number 22 using dummy_hcd [ 1238.926055][T25275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1239.171785][T22124] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF4, changing to 0x84 [ 1239.239018][T22124] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1239.324908][T22124] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1239.361907][T22124] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1239.394927][T22124] usb 5-1: Product: syz [ 1239.414652][T22124] usb 5-1: Manufacturer: syz [ 1239.445470][T22124] usb 5-1: SerialNumber: syz [ 1239.514056][T22124] usb 5-1: config 0 descriptor?? [ 1239.557879][ T5589] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1240.684001][T22124] usb 5-1: USB disconnect, device number 22 [ 1240.767887][T25322] loop0: detected capacity change from 0 to 256 [ 1240.785937][T25322] exfat: Unknown parameter '01777777777777777777777' [ 1241.298804][T25341] netlink: 65039 bytes leftover after parsing attributes in process `syz.6.5480'. [ 1241.547220][T24414] udevd[24414]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1242.710866][T25354] loop0: detected capacity change from 0 to 2048 [ 1242.904993][T25354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1242.924496][T25354] ext4 filesystem being mounted at /1117/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1243.488264][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1243.851220][T25378] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5478'. [ 1246.364084][T25411] loop0: detected capacity change from 0 to 512 [ 1246.438451][T25411] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1246.482561][T22124] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 1246.509241][T25417] loop4: detected capacity change from 0 to 1024 [ 1246.549286][T25417] EXT4-fs: Ignoring removed mblk_io_submit option [ 1246.572127][T25411] EXT4-fs error (device loop0): ext4_iget_extra_inode:5128: inode #15: comm syz.0.5489: corrupted in-inode xattr: e_value out of bounds [ 1246.654626][T25411] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1246.655825][T25417] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1246.666793][T25411] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.5489: couldn't read orphan inode 15 (err -117) [ 1246.666932][T25411] loop0: lost filesystem error report for type 5 error -117 [ 1246.669773][ C1] EXT4-fs (loop0): error count since last fsck: 2 [ 1246.669908][ C1] EXT4-fs (loop0): initial error at time 1779057030: ext4_iget_extra_inode:5128: inode 15 [ 1246.670085][ C1] EXT4-fs (loop0): last error at time 1779057030: ext4_orphan_get:1402 [ 1246.740427][T22124] usb 4-1: Using ep0 maxpacket: 32 [ 1246.753867][T22124] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 1246.763020][T22124] usb 4-1: config 0 has no interface number 0 [ 1246.774397][T25411] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1246.813567][T22124] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1246.874181][T22124] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1246.942025][T22124] usb 4-1: Product: syz [ 1246.947504][T25411] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1317: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1247.001355][T22124] usb 4-1: Manufacturer: syz [ 1247.031583][T22124] usb 4-1: SerialNumber: syz [ 1247.105334][T22124] usb 4-1: config 0 descriptor?? [ 1247.122294][T25417] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 1247.233042][T25417] EXT4-fs: Remounting fs w/o journal so ignoring data_err option [ 1247.244911][T22124] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1247.378876][T25417] EXT4-fs (loop4): can't enable nombcache during remount [ 1247.689317][T22124] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1247.776149][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1247.888733][T22124] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1247.986723][ C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1248.106431][T22124] usb 4-1: USB disconnect, device number 31 [ 1248.197083][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1248.233658][T22124] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1248.390604][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1248.522448][T22124] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1248.654793][T22124] quatech2 4-1:0.51: device disconnected [ 1251.007594][T25491] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5514'. [ 1251.123374][T25495] loop4: detected capacity change from 0 to 512 [ 1251.242294][T25495] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1251.364698][T25495] EXT4-fs error (device loop4): ext4_iget_extra_inode:5128: inode #15: comm syz.4.5504: corrupted in-inode xattr: e_value out of bounds [ 1251.440480][T25495] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1251.449812][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 1251.465838][ C1] EXT4-fs (loop4): initial error at time 1779057034: ext4_iget_extra_inode:5128: inode 15 [ 1251.476106][ C1] EXT4-fs (loop4): last error at time 1779057034: ext4_iget_extra_inode:5128: inode 15 [ 1251.508606][T25495] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.5504: couldn't read orphan inode 15 (err -117) [ 1251.612621][T25495] loop4: lost filesystem error report for type 5 error -117 [ 1251.639054][T25495] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1251.966606][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 1251.966678][ T29] audit: type=1326 audit(1779057035.462:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25504 comm="syz.0.5508" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1252.105801][ T29] audit: type=1326 audit(1779057035.462:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25504 comm="syz.0.5508" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1252.374754][ T29] audit: type=1326 audit(1779057035.542:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25504 comm="syz.0.5508" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1252.416846][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1252.449483][T25514] loop6: detected capacity change from 0 to 1024 [ 1252.525032][ T29] audit: type=1326 audit(1779057035.552:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25504 comm="syz.0.5508" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf707f01c code=0x7ffc0000 [ 1252.654697][T25514] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 1252.790256][T25514] EXT4-fs (loop6): Errors on filesystem, clearing orphan list. [ 1252.812754][T25514] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1253.400093][ T5684] usb 4-1: new full-speed USB device number 32 using dummy_hcd [ 1253.457803][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1253.649584][ T5684] usb 4-1: config 2 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1253.709501][ T5684] usb 4-1: config 2 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1253.767781][ T5684] usb 4-1: config 2 interface 0 has no altsetting 0 [ 1253.788752][ T5684] usb 4-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00 [ 1253.856246][ T5684] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1254.423356][ T5684] elo 0003:04E7:0009.001A: reserved main item tag 0xd [ 1254.468843][ T5684] elo 0003:04E7:0009.001A: item fetching failed at offset 4/5 [ 1254.546189][ T5684] elo 0003:04E7:0009.001A: parse failed [ 1254.585268][ T5684] elo 0003:04E7:0009.001A: probe with driver elo failed with error -22 [ 1254.684354][ T5684] usb 4-1: USB disconnect, device number 32 [ 1255.586702][T25572] loop6: detected capacity change from 0 to 64 [ 1259.129203][T25626] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5538'. [ 1259.155535][T25626] netlink: 'syz.3.5538': attribute type 6 has an invalid length. [ 1259.167434][T25626] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5538'. [ 1259.650891][T22124] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 1259.847079][T22124] usb 5-1: config 0 has an invalid interface number: 17 but max is 0 [ 1259.874089][T22124] usb 5-1: config 0 has no interface number 0 [ 1259.894590][T22124] usb 5-1: config 0 interface 17 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1259.957723][T22124] usb 5-1: config 0 interface 17 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1259.985757][T22124] usb 5-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00 [ 1260.020729][T22124] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1260.081447][T22124] usb 5-1: config 0 descriptor?? [ 1260.609545][T22124] hid_parser_main: 30 callbacks suppressed [ 1260.648696][T22124] uclogic 0003:5543:0522.001B: unknown main item tag 0x0 [ 1260.685270][T22124] uclogic 0003:5543:0522.001B: unknown main item tag 0x0 [ 1260.718061][T22124] uclogic 0003:5543:0522.001B: unknown main item tag 0x0 [ 1260.753388][T22124] uclogic 0003:5543:0522.001B: unknown main item tag 0x0 [ 1260.797708][T22124] uclogic 0003:5543:0522.001B: unknown main item tag 0x0 [ 1260.901354][T22124] uclogic 0003:5543:0522.001B: hidraw0: USB HID v0.00 Device [HID 5543:0522] on usb-dummy_hcd.4-1/input17 [ 1260.997712][T22124] usb 5-1: USB disconnect, device number 23 [ 1261.663809][T25683] loop6: detected capacity change from 0 to 256 [ 1261.759499][T25678] fido_id[25678]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 1262.010074][T25683] FAT-fs (loop6): Directory bread(block 64) failed [ 1262.053959][T25683] FAT-fs (loop6): Directory bread(block 65) failed [ 1262.091008][T25683] FAT-fs (loop6): Directory bread(block 66) failed [ 1262.130030][T25683] FAT-fs (loop6): Directory bread(block 67) failed [ 1262.139976][T25692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5549'. [ 1262.174903][T25683] FAT-fs (loop6): Directory bread(block 68) failed [ 1262.203348][T25683] FAT-fs (loop6): Directory bread(block 69) failed [ 1262.245237][T25683] FAT-fs (loop6): Directory bread(block 70) failed [ 1262.290690][T25683] FAT-fs (loop6): Directory bread(block 71) failed [ 1262.325645][T25683] FAT-fs (loop6): Directory bread(block 72) failed [ 1262.351863][T25686] loop0: detected capacity change from 0 to 4096 [ 1262.360699][T25683] FAT-fs (loop6): Directory bread(block 73) failed [ 1262.521766][T25686] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1262.739519][T25686] fs-verity (loop0, inode 16): Unknown hash algorithm number: 22 [ 1263.001796][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1263.708455][T25717] loop6: detected capacity change from 0 to 512 [ 1263.776065][T25717] EXT4-fs (loop6): Test dummy encryption mode enabled [ 1263.879341][T25717] EXT4-fs error (device loop6): ext4_iget_extra_inode:5128: inode #15: comm syz.6.5555: corrupted in-inode xattr: invalid ea_ino [ 1263.992101][T25717] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1263.995129][T25717] EXT4-fs error (device loop6): ext4_orphan_get:1402: comm syz.6.5555: couldn't read orphan inode 15 (err -117) [ 1264.004774][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1264.004861][ C1] EXT4-fs (loop6): initial error at time 1779057047: ext4_iget_extra_inode:5128: inode 15 [ 1264.005023][ C1] EXT4-fs (loop6): last error at time 1779057047: ext4_iget_extra_inode:5128: inode 15 [ 1264.156972][T25717] loop6: lost filesystem error report for type 5 error -117 [ 1264.191987][T25717] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1264.490606][T25717] fscrypt (loop6): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 1264.920760][T25740] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5571'. [ 1265.004467][T25740] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5571'. [ 1265.051854][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1266.225159][T25760] loop6: detected capacity change from 0 to 1024 [ 1266.363683][T25760] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1266.448328][T25760] ext4 filesystem being mounted at /64/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1266.648772][T25760] EXT4-fs error (device loop6): ext4_map_blocks:833: inode #15: block 3: comm syz.6.5569: lblock 3 mapped to illegal pblock 3 (length 3) [ 1266.717388][T25760] EXT4-fs (loop6): Remounting filesystem read-only [ 1267.042214][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1267.902987][T25796] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5590'. [ 1269.301034][T25824] netlink: 32 bytes leftover after parsing attributes in process `syz.3.5589'. [ 1269.585351][T25827] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5591'. [ 1269.811499][T25823] loop6: detected capacity change from 0 to 4096 [ 1269.925709][T25823] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1270.055213][T25823] fs-verity (loop6, inode 16): Unknown hash algorithm number: 22 [ 1270.172716][T23989] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1270.560102][T21666] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 1270.751898][T21666] usb 5-1: Using ep0 maxpacket: 32 [ 1270.780945][T21666] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 1270.838237][T21666] usb 5-1: config 0 has no interface number 0 [ 1270.916185][T21666] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1270.939145][T21666] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1270.974023][T21666] usb 5-1: Product: syz [ 1270.985472][T21666] usb 5-1: Manufacturer: syz [ 1271.017006][T21666] usb 5-1: SerialNumber: syz [ 1271.058141][T21666] usb 5-1: config 0 descriptor?? [ 1271.109412][T25855] loop0: detected capacity change from 0 to 256 [ 1271.136003][T21666] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1271.264214][T25860] loop3: detected capacity change from 0 to 256 [ 1271.328776][T25860] exfat: Unknown parameter '01777777777777777777777' [ 1271.446774][T21666] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1271.587187][T21666] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1271.601523][T25855] FAT-fs (loop0): Directory bread(block 64) failed [ 1271.644291][T25855] FAT-fs (loop0): Directory bread(block 65) failed [ 1271.683046][T25855] FAT-fs (loop0): Directory bread(block 66) failed [ 1271.722348][T25855] FAT-fs (loop0): Directory bread(block 67) failed [ 1271.783896][T25855] FAT-fs (loop0): Directory bread(block 68) failed [ 1271.848620][T25855] FAT-fs (loop0): Directory bread(block 69) failed [ 1271.867220][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1271.868936][T22124] usb 5-1: USB disconnect, device number 24 [ 1271.903942][T25855] FAT-fs (loop0): Directory bread(block 70) failed [ 1271.988639][T25855] FAT-fs (loop0): Directory bread(block 71) failed [ 1272.024280][T22124] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1272.032657][T25855] FAT-fs (loop0): Directory bread(block 72) failed [ 1272.102644][T25855] FAT-fs (loop0): Directory bread(block 73) failed [ 1272.148822][T22124] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1272.245922][T22124] quatech2 5-1:0.51: device disconnected [ 1274.626762][T25937] loop3: detected capacity change from 0 to 256 [ 1274.907547][T25937] FAT-fs (loop3): Directory bread(block 64) failed [ 1274.946457][T25937] FAT-fs (loop3): Directory bread(block 65) failed [ 1274.983660][T25937] FAT-fs (loop3): Directory bread(block 66) failed [ 1275.024732][T25937] FAT-fs (loop3): Directory bread(block 67) failed [ 1275.056519][T25937] FAT-fs (loop3): Directory bread(block 68) failed [ 1275.113122][T25937] FAT-fs (loop3): Directory bread(block 69) failed [ 1275.143411][T25937] FAT-fs (loop3): Directory bread(block 70) failed [ 1275.178792][T25937] FAT-fs (loop3): Directory bread(block 71) failed [ 1275.219143][T25937] FAT-fs (loop3): Directory bread(block 72) failed [ 1275.260761][T25937] FAT-fs (loop3): Directory bread(block 73) failed [ 1275.716896][T25956] netlink: 5196 bytes leftover after parsing attributes in process `syz.0.5620'. [ 1275.774465][T25954] loop4: detected capacity change from 0 to 4096 [ 1275.886560][T25954] NILFS (loop4): invalid segment: Checksum error in segment payload [ 1275.942908][T25954] NILFS (loop4): trying rollback from an earlier position [ 1276.078091][T25954] NILFS (loop4): recovery complete [ 1276.105222][T25964] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1276.406759][T25968] NILFS (loop4): the device already has a read-only mount. [ 1276.677531][T25970] loop0: detected capacity change from 0 to 256 [ 1277.480844][T25984] ALSA: mixer_oss: invalid OSS volume 'LIDE' [ 1278.190080][T21666] usb 4-1: new high-speed USB device number 33 using dummy_hcd [ 1278.412010][T21666] usb 4-1: Using ep0 maxpacket: 8 [ 1278.456528][T21666] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 1278.507529][T21666] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1056, setting to 1024 [ 1278.537426][T21666] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254 [ 1278.602988][T21666] usb 4-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00 [ 1278.634789][T26007] loop4: detected capacity change from 0 to 16 [ 1278.644331][T21666] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1278.693694][T21666] usb 4-1: config 0 descriptor?? [ 1278.733356][T25991] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 1279.314067][T21666] samsung 0003:0419:0600.001C: ignoring exceeding usage max [ 1279.470575][T21666] samsung 0003:0419:0600.001C: hidraw0: USB HID v0.01 Device [HID 0419:0600] on usb-dummy_hcd.3-1/input0 [ 1279.582301][T21666] usb 4-1: USB disconnect, device number 33 [ 1279.962617][T26023] loop0: detected capacity change from 0 to 4096 [ 1280.003203][T26023] EXT4-fs: Ignoring removed mblk_io_submit option [ 1280.073051][T26045] loop6: detected capacity change from 0 to 1024 [ 1280.158495][T26023] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1280.533629][T26040] fido_id[26040]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 1280.716658][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1281.419938][T21666] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 1281.642680][T21666] usb 2-1: Using ep0 maxpacket: 8 [ 1281.693112][T21666] usb 2-1: config 218 has an invalid interface number: 213 but max is 1 [ 1281.727939][T21666] usb 2-1: config 218 has an invalid interface number: 191 but max is 1 [ 1281.773870][T21666] usb 2-1: config 218 has no interface number 0 [ 1281.781577][T26059] loop3: detected capacity change from 0 to 4096 [ 1281.809507][T21666] usb 2-1: config 218 has no interface number 1 [ 1281.844891][T21666] usb 2-1: config 218 interface 213 altsetting 4 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 1281.864900][T26059] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 1281.902041][T21666] usb 2-1: config 218 interface 213 altsetting 4 has a duplicate endpoint with address 0x3, skipping [ 1281.937158][T21666] usb 2-1: config 218 interface 213 has no altsetting 0 [ 1281.948730][T21666] usb 2-1: config 218 interface 191 has no altsetting 0 [ 1281.959516][T26075] netlink: 'syz.4.5645': attribute type 10 has an invalid length. [ 1281.998654][T21666] usb 2-1: New USB device found, idVendor=0bdb, idProduct=4b3f, bcdDevice=30.3a [ 1282.024389][T21666] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1282.077008][T21666] usb 2-1: Product: syz [ 1282.105141][T21666] usb 2-1: Manufacturer: syz [ 1282.108949][T26075] veth1_to_bridge: entered promiscuous mode [ 1282.138082][T21666] usb 2-1: SerialNumber: syz [ 1282.156240][T26075] team0: Port device veth1_to_bridge added [ 1282.225125][T26062] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1282.337687][T26059] ntfs3(loop3): ino=1a, mi_enum_attr [ 1282.379569][T26059] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1282.705284][T21666] usb 2-1: USB disconnect, device number 25 [ 1283.993693][T26111] ip6tnl1: entered allmulticast mode [ 1284.680140][T26122] loop4: detected capacity change from 0 to 2048 [ 1284.752994][T26122] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=3932051, location=3932051 [ 1284.854983][T26122] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1285.850508][ T4895] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 1285.961025][T26137] loop6: detected capacity change from 0 to 4096 [ 1285.998586][T26137] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512). [ 1286.050749][ T4895] usb 4-1: Using ep0 maxpacket: 16 [ 1286.101232][ T4895] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1286.166229][ T4895] usb 4-1: New USB device found, idVendor=0b05, idProduct=183d, bcdDevice= 0.00 [ 1286.212096][ T4895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1286.274677][T26137] ntfs3(loop6): ino=1a, mi_enum_attr [ 1286.290903][ T4895] usb 4-1: config 0 descriptor?? [ 1286.300094][T21527] Bluetooth: hci4: command 0x0406 tx timeout [ 1286.320196][T26137] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1286.803446][ T4895] hid (null): bogus close delimiter [ 1286.857505][ T4895] asus 0003:0B05:183D.001D: unknown main item tag 0x2 [ 1286.874935][ T4895] asus 0003:0B05:183D.001D: bogus close delimiter [ 1286.900076][ T4895] asus 0003:0B05:183D.001D: item 0 0 2 10 parsing failed [ 1286.968366][ T4895] asus 0003:0B05:183D.001D: Asus hid parse failed: -22 [ 1287.008131][ T4895] asus 0003:0B05:183D.001D: probe with driver asus failed with error -22 [ 1287.082612][ T4895] usb 4-1: USB disconnect, device number 34 [ 1288.122339][T26193] loop0: detected capacity change from 0 to 512 [ 1288.187198][T26193] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1288.208937][T26193] ext4 filesystem being mounted at /1155/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1288.387510][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1289.006061][T26214] netlink: 5196 bytes leftover after parsing attributes in process `syz.1.5676'. [ 1289.820582][T26229] pimreg9: entered allmulticast mode [ 1290.021914][T26233] usb usb9: usbfs: process 26233 (syz.1.5681) did not claim interface 0 before use [ 1290.556736][T26245] netlink: 52 bytes leftover after parsing attributes in process `syz.1.5685'. [ 1291.576745][T26259] netlink: 5196 bytes leftover after parsing attributes in process `syz.4.5690'. [ 1293.739896][ T4870] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 1293.782036][T26307] loop3: detected capacity change from 0 to 16 [ 1293.853093][T21666] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1294.043385][T21666] usb 5-1: Using ep0 maxpacket: 32 [ 1294.088241][T21666] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 1294.124438][T21666] usb 5-1: config 0 has no interface number 0 [ 1294.193435][T21666] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1294.225673][T21666] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1294.259457][T21666] usb 5-1: Product: syz [ 1294.287377][T21666] usb 5-1: Manufacturer: syz [ 1294.313611][T21666] usb 5-1: SerialNumber: syz [ 1294.356714][T21666] usb 5-1: config 0 descriptor?? [ 1294.469157][T21666] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1294.696652][T26323] loop3: detected capacity change from 0 to 1024 [ 1294.745123][T21666] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1294.883625][T21666] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1295.257387][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1295.292890][T21666] usb 5-1: USB disconnect, device number 25 [ 1295.328900][T21666] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1295.458872][T21666] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1295.558590][T21666] quatech2 5-1:0.51: device disconnected [ 1295.801082][T26354] loop0: detected capacity change from 0 to 1024 [ 1295.899155][T26361] netlink: 52 bytes leftover after parsing attributes in process `syz.3.5712'. [ 1295.967768][T26354] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 1295.996453][T26361] netlink: 'syz.3.5712': attribute type 1 has an invalid length. [ 1296.051770][T26354] ext4 filesystem being mounted at /1165/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1296.106839][T26354] EXT4-fs error (device loop0): ext4_map_blocks:833: inode #15: block 3: comm syz.0.5711: lblock 3 mapped to illegal pblock 3 (length 3) [ 1296.128119][T26354] EXT4-fs (loop0): Remounting filesystem read-only [ 1296.565627][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 1297.101467][T26384] loop0: detected capacity change from 0 to 16 [ 1297.535511][T26389] netlink: 'syz.1.5721': attribute type 1 has an invalid length. [ 1297.576838][T26389] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5721'. [ 1298.130526][T26402] loop0: detected capacity change from 0 to 1024 [ 1298.306529][T26396] loop3: detected capacity change from 0 to 4096 [ 1298.906533][T26396] ntfs3(loop3): ino=1f, mi_enum_attr [ 1298.925619][T26396] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1298.988872][T26417] ntfs3(loop3): ino=9, attr_set_size_ex [ 1300.821252][T26443] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5734'. [ 1301.388474][T26456] loop6: detected capacity change from 0 to 64 [ 1301.503116][T21666] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 1301.725211][T21666] usb 2-1: Using ep0 maxpacket: 16 [ 1301.746920][T21666] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1301.826126][T21666] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1301.879863][T21666] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1301.927412][T21666] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1301.991638][T21666] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1302.066315][T21666] usb 2-1: config 0 descriptor?? [ 1302.814165][T21666] microsoft 0003:045E:07DA.001E: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 1302.868389][T21666] microsoft 0003:045E:07DA.001E: no inputs found [ 1302.889117][T21666] microsoft 0003:045E:07DA.001E: could not initialize ff, continuing anyway [ 1302.957655][T21666] usb 2-1: USB disconnect, device number 26 [ 1303.266726][T26481] loop4: detected capacity change from 0 to 4096 [ 1303.315560][T26481] EXT4-fs: Ignoring removed mblk_io_submit option [ 1303.479389][T26481] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1303.578476][T26501] fido_id[26501]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1304.084874][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1304.129204][T26513] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5749'. [ 1308.292916][T26546] sg_write: data in/out 204756/56 bytes for SCSI command 0x0-- guessing data in; [ 1308.292916][T26546] program syz.3.5758 not setting count and/or reply_len properly [ 1308.766289][T26555] loop0: detected capacity change from 0 to 4096 [ 1308.818023][T26555] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 1309.059267][T26555] ntfs3(loop0): ino=1a, mi_enum_attr [ 1309.092993][T26555] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1309.830470][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1310.614126][T26584] loop0: detected capacity change from 0 to 164 [ 1310.998444][T26581] loop3: detected capacity change from 0 to 4096 [ 1311.114433][T26581] ntfs3(loop3): ino=0, mi_enum_attr [ 1311.304056][T26581] ntfs3(loop3): ino=0, mi_enum_attr [ 1311.328770][T26581] ntfs3(loop3): ino=0, mi_enum_attr [ 1311.722253][T26581] ntfs3(loop3): failed to convert "0080" to cp864 [ 1312.772553][T26622] netlink: 128 bytes leftover after parsing attributes in process `syz.3.5788'. [ 1312.835037][T26622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5788'. [ 1313.485749][T26631] netlink: 4436 bytes leftover after parsing attributes in process `syz.3.5782'. [ 1313.543261][T26631] x_tables: ip_tables: osf.0 match: invalid size 48 (kernel) != (user) 4096 [ 1314.742577][T26647] vivid-007: disconnect [ 1314.772012][T26646] vivid-007: reconnect [ 1315.268135][T26656] loop0: detected capacity change from 0 to 512 [ 1315.291949][T26659] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5793'. [ 1315.479471][T26656] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1315.526986][T26656] ext4 filesystem being mounted at /1181/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1316.018463][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1316.912512][T26686] loop3: detected capacity change from 0 to 2048 [ 1317.046420][T26686] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1318.533729][T26716] loop4: detected capacity change from 0 to 512 [ 1318.677480][T26716] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1318.770794][T26716] ext4 filesystem being mounted at /1158/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1318.969853][T21666] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 1319.269346][T21666] usb 4-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=8f.72 [ 1319.309876][T21666] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1319.348379][T21666] usb 4-1: Product: syz [ 1319.376527][T21666] usb 4-1: Manufacturer: syz [ 1319.406852][T21666] usb 4-1: SerialNumber: syz [ 1319.448086][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1319.462663][T21666] usb 4-1: config 0 descriptor?? [ 1319.866941][T21666] usb 4-1: selecting invalid altsetting 1 [ 1319.897286][T21666] comedi comedi5: could not switch to alternate setting 1 [ 1319.924899][T21666] usbduxfast 4-1:0.0: driver 'usbduxfast' failed to auto-configure device. [ 1320.019176][T21666] usb 4-1: USB disconnect, device number 35 [ 1320.438263][T21666] usb 4-1: new full-speed USB device number 36 using dummy_hcd [ 1320.458569][T26765] vlan3: entered promiscuous mode [ 1320.636224][T21666] usb 4-1: not running at top speed; connect to a high speed hub [ 1320.691253][T21666] usb 4-1: New USB device found, idVendor=13d8, idProduct=0010, bcdDevice=8f.72 [ 1320.718206][T21666] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1320.737035][T21666] usb 4-1: Product: syz [ 1320.751362][T21666] usb 4-1: Manufacturer: syz [ 1320.785973][T21666] usb 4-1: SerialNumber: syz [ 1320.827506][T21666] usb 4-1: config 0 descriptor?? [ 1321.223682][T21666] comedi comedi5: This driver needs USB 2.0 to operate. Aborting... [ 1321.252814][T21666] usbduxfast 4-1:0.0: driver 'usbduxfast' failed to auto-configure device. [ 1321.359092][T26780] netlink: 10 bytes leftover after parsing attributes in process `syz.4.5821'. [ 1321.385604][T21666] usb 4-1: USB disconnect, device number 36 [ 1322.405159][T21666] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1322.599277][T26798] loop0: detected capacity change from 0 to 4096 [ 1322.615579][T21666] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 1322.664338][T21666] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 1322.717923][T21666] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1322.762519][T21666] usb 5-1: config 220 has no interface number 2 [ 1322.781347][T21666] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1322.858445][T21666] usb 5-1: config 220 interface 0 has no altsetting 0 [ 1322.891656][T21666] usb 5-1: config 220 interface 76 has no altsetting 0 [ 1322.935809][T21666] usb 5-1: config 220 interface 1 has no altsetting 0 [ 1322.973720][T26817] netlink: 'syz.3.5829': attribute type 1 has an invalid length. [ 1323.011651][T21666] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1323.063554][T21666] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1323.103599][T21666] usb 5-1: Product: syz [ 1323.131939][T21666] usb 5-1: Manufacturer: syz [ 1323.148980][T26798] ntfs3(loop0): ino=1f, mi_enum_attr [ 1323.158024][T21666] usb 5-1: SerialNumber: syz [ 1323.178036][T26798] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1323.221409][T26819] ntfs3(loop0): ino=9, attr_set_size_ex [ 1323.503724][T21666] usb 5-1: selecting invalid altsetting 0 [ 1323.518732][T21666] uvcvideo 5-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 1323.556319][T21666] uvcvideo 5-1:220.0: No valid video chain found. [ 1323.686686][T21666] usb 5-1: selecting invalid altsetting 0 [ 1323.743384][T21666] usbtest 5-1:220.1: probe with driver usbtest failed with error -22 [ 1323.828017][T21666] usb 5-1: USB disconnect, device number 26 [ 1324.617094][T26851] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5835'. [ 1324.690607][T26851] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5835'. [ 1324.725609][T26851] netlink: 'syz.3.5835': attribute type 19 has an invalid length. [ 1325.265910][T26856] loop4: detected capacity change from 0 to 4096 [ 1325.294923][T26856] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1325.318332][T26856] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1325.365089][T26856] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 1325.400611][T26856] System zones: 0-5 [ 1325.455955][T26856] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1326.169082][T26856] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-lib)))" [ 1326.664128][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1329.111982][T26928] netlink: 452 bytes leftover after parsing attributes in process `syz.4.5857'. [ 1329.166887][T26928] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5857'. [ 1329.478871][T26933] loop6: detected capacity change from 0 to 1024 [ 1330.386802][T26953] netlink: 'syz.6.5861': attribute type 1 has an invalid length. [ 1331.339336][T26964] team0: Port device syz_tun added [ 1331.969316][T26977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5873'. [ 1332.011309][T26977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5873'. [ 1332.044382][T26977] netlink: 'syz.1.5873': attribute type 12 has an invalid length. [ 1333.946696][T27013] loop6: detected capacity change from 0 to 256 [ 1334.003638][T27013] exfat: Deprecated parameter 'namecase' [ 1334.044705][T27013] exfat: Deprecated parameter 'utf8' [ 1334.107729][T27013] exFAT-fs (loop6): Medium has reported failures. Some data may be lost. [ 1334.248381][T27013] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x5f1fc80d, utbl_chksum : 0xe619d30d) [ 1335.661519][T27035] loop6: detected capacity change from 0 to 4096 [ 1336.203209][T27035] ntfs3(loop6): ino=1f, mi_enum_attr [ 1336.255223][T27035] ntfs3(loop6): Mark volume as dirty due to NTFS errors [ 1336.346658][T27053] ntfs3(loop6): ino=9, attr_set_size_ex [ 1337.308547][T27067] loop6: detected capacity change from 0 to 1764 [ 1337.456906][T27067] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1339.493063][T27106] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5911'. [ 1339.703209][T27104] loop4: detected capacity change from 0 to 4096 [ 1340.213750][T27104] ntfs3(loop4): ino=1f, mi_enum_attr [ 1340.246098][T27104] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1340.269951][T27118] ntfs3(loop4): ino=9, attr_set_size_ex [ 1340.339198][T27116] loop0: detected capacity change from 0 to 1024 [ 1340.388309][T27116] EXT4-fs: Ignoring removed orlov option [ 1340.394563][T27116] EXT4-fs: inline encryption not supported [ 1340.443366][T27116] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869) [ 1340.479448][T27116] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1340.507095][T27116] EXT4-fs (loop0): invalid journal inode [ 1340.549486][T27116] EXT4-fs (loop0): can't get journal size [ 1340.601675][T27116] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1341.160951][T27131] loop3: detected capacity change from 0 to 128 [ 1341.176951][ T5578] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1341.291569][T27131] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1341.337320][T27133] loop4: detected capacity change from 0 to 512 [ 1341.357111][T27131] ext4 filesystem being mounted at /1144/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1341.384628][T27133] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 1341.460948][T27131] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:375: inode #2: comm syz.3.5918: No space for directory leaf checksum. Please run e2fsck -D. [ 1341.509464][T27133] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.5917: bg 0: block 104: invalid block bitmap [ 1341.526202][T27131] EXT4-fs error (device loop3): __ext4_find_entry:1626: inode #2: comm syz.3.5918: checksumming directory block 0 [ 1341.560892][T27142] EXT4-fs warning (device loop3): ext4_dirblock_csum_verify:375: inode #2: comm syz.3.5918: No space for directory leaf checksum. Please run e2fsck -D. [ 1341.586177][T27133] loop4: lost filesystem error report for type 5 error -117 [ 1341.588157][T27133] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 1341.595889][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 1341.595975][ C1] EXT4-fs (loop4): initial error at time 1779057125: ext4_validate_block_bitmap:432 [ 1341.596104][ C1] EXT4-fs (loop4): last error at time 1779057125: ext4_validate_block_bitmap:432 [ 1341.660580][T27142] EXT4-fs error (device loop3): __ext4_find_entry:1626: inode #2: comm syz.3.5918: checksumming directory block 0 [ 1341.726660][T27133] loop4: lost filesystem error report for type 5 error -117 [ 1341.729403][T27133] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.5917: invalid indirect mapped block 1 (level 1) [ 1341.809473][T27133] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1341.815948][T27133] EXT4-fs (loop4): 1 truncate cleaned up [ 1341.936607][T27133] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1342.198303][ T5589] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1342.586824][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1343.356391][T27170] loop4: detected capacity change from 0 to 1024 [ 1343.437519][T27170] EXT4-fs: inline encryption not supported [ 1343.485527][T27170] EXT4-fs: Ignoring removed orlov option [ 1343.498938][T27171] ipvlan2: entered promiscuous mode [ 1343.610580][T27170] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1344.129299][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1346.360963][T27212] loop4: detected capacity change from 0 to 4096 [ 1346.432257][T27212] ntfs3(loop4): ino=0, mi_enum_attr [ 1346.541586][T27212] ntfs3(loop4): ino=0, mi_enum_attr [ 1346.581558][T27212] ntfs3(loop4): ino=0, mi_enum_attr [ 1346.894671][T27212] ntfs3(loop4): failed to convert "0080" to cp864 [ 1347.739162][T27248] tipc: Enabling of bearer rejected, failed to enable media [ 1348.419948][T27261] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5950'. [ 1348.444692][T27261] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5950'. [ 1348.557302][T27255] loop3: detected capacity change from 0 to 4096 [ 1348.963148][T27255] ntfs3(loop3): ino=1f, mi_enum_attr [ 1348.988785][T27255] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1349.091274][T27270] ntfs3(loop3): ino=9, attr_set_size_ex [ 1350.250238][ T10] bridge0: entered promiscuous mode [ 1350.719415][T27290] loop3: detected capacity change from 0 to 4096 [ 1350.746141][T27302] netlink: 'syz.6.5962': attribute type 29 has an invalid length. [ 1350.808593][T27302] netlink: 'syz.6.5962': attribute type 29 has an invalid length. [ 1351.865937][ T148] ntfs3(loop3): ino=5, mi_enum_attr [ 1352.350035][T27320] loop6: detected capacity change from 0 to 256 [ 1352.411189][T27320] exfat: Deprecated parameter 'utf8' [ 1352.447499][T27320] exfat: Deprecated parameter 'utf8' [ 1352.580187][T27320] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 1352.746550][ T29] audit: type=1804 audit(1779057136.252:87): pid=27320 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.5969" name="/newroot/138/file0/bus" dev="loop6" ino=1048841 res=1 errno=0 [ 1353.075660][T27322] loop3: detected capacity change from 0 to 4096 [ 1353.654042][T27322] ntfs3(loop3): ino=1f, mi_enum_attr [ 1353.654164][T27322] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1353.751373][T27340] ntfs3(loop3): ino=9, attr_set_size_ex [ 1354.000769][T27341] loop4: detected capacity change from 0 to 2048 [ 1354.040143][T27341] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1354.040264][T27341] NILFS (loop4): mounting unchecked fs [ 1354.193599][T27341] NILFS (loop4): recovery complete [ 1354.217094][T27344] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1355.352409][T27362] netdevsim netdevsim6: Firmware load for '/../file0' refused, path contains '..' component [ 1356.924257][T27387] bridge0: port 3(macvlan2) entered blocking state [ 1356.957934][T27387] bridge0: port 3(macvlan2) entered disabled state [ 1356.996237][T27387] macvlan2: entered allmulticast mode [ 1357.048786][T27387] bridge0: entered allmulticast mode [ 1357.060057][T27387] bridge0: entered promiscuous mode [ 1357.104545][T27387] macvlan2: left allmulticast mode [ 1357.138435][T27387] bridge0: left allmulticast mode [ 1357.188017][T27392] loop3: detected capacity change from 0 to 2048 [ 1357.226080][T27392] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1357.272071][T27392] NILFS (loop3): mounting unchecked fs [ 1357.361655][T12203] bridge0: left promiscuous mode [ 1357.418086][T27392] NILFS (loop3): recovery complete [ 1357.471879][T27406] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1358.045283][T27411] comedi comedi3: 8255: I/O base address not correctly aligned [ 1358.147767][T27416] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5993'. [ 1358.184599][T27416] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5993'. [ 1358.250398][T27416] netlink: 'syz.6.5993': attribute type 12 has an invalid length. [ 1358.305309][T27416] netlink: 'syz.6.5993': attribute type 11 has an invalid length. [ 1358.795945][T27426] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5997'. [ 1358.890609][T27429] tipc: Enabling of bearer rejected, failed to enable media [ 1360.414279][T27454] loop6: detected capacity change from 0 to 2048 [ 1360.441476][T27454] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1360.457952][T27454] NILFS (loop6): mounting unchecked fs [ 1360.594375][T27454] NILFS (loop6): recovery complete [ 1360.655760][T27462] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1360.866898][T27467] netlink: 'syz.0.6008': attribute type 29 has an invalid length. [ 1360.928387][T27470] netlink: 'syz.0.6008': attribute type 29 has an invalid length. [ 1360.988517][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.036879][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.080103][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.119477][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.160497][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.187546][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.220020][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.248795][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.285620][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.318258][ T4895] hid-generic 0006:0004:0009.001F: unknown main item tag 0x0 [ 1361.368232][ T4895] hid-generic 0006:0004:0009.001F: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0 [ 1362.260775][T27482] fido_id[27482]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 1362.384524][T27495] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6016'. [ 1363.067029][T27513] loop3: detected capacity change from 0 to 256 [ 1363.103441][T27513] exfat: Deprecated parameter 'utf8' [ 1363.148406][T27513] exfat: Deprecated parameter 'utf8' [ 1363.284758][T27513] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 1363.502723][ T29] audit: type=1804 audit(1779057147.012:88): pid=27513 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.6020" name="/newroot/1163/file0/bus" dev="loop3" ino=1048842 res=1 errno=0 [ 1363.787896][ T4870] Bluetooth: hci2: unexpected event for opcode 0x0c20 [ 1364.425731][T27535] netlink: 36 bytes leftover after parsing attributes in process `syz.3.6025'. [ 1365.440443][T27558] loop4: detected capacity change from 0 to 1024 [ 1365.481827][T27558] EXT4-fs: Ignoring removed oldalloc option [ 1365.511918][T27558] EXT4-fs: Ignoring removed bh option [ 1365.564288][T27558] EXT4-fs (loop4): bad geometry: bigalloc file system with non-zero first_data_block [ 1365.564288][T27558] [ 1366.501390][T27578] binder: 27576:27578 unknown command 0 [ 1366.530426][T27578] binder: 27576:27578 ioctl c0306201 800002c0 returned -22 [ 1366.674228][T27583] loop3: detected capacity change from 0 to 512 [ 1366.766072][T27583] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1366.968711][T27583] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 1367.066821][T27583] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 1367.135486][T27583] EXT4-fs warning (device loop3): ext4_enable_quotas:7269: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 1367.390285][ T5589] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 1368.128117][T27613] netdevsim netdevsim4: Firmware load for '/../file0' refused, path contains '..' component [ 1369.160220][T27623] loop6: detected capacity change from 0 to 4096 [ 1369.236867][T27636] openvswitch: netlink: Tunnel attr 0 has unexpected len 4 expected 8 [ 1369.678546][T27642] loop4: detected capacity change from 0 to 256 [ 1369.743806][T27642] exfat: Deprecated parameter 'utf8' [ 1369.761712][T27642] exfat: Deprecated parameter 'namecase' [ 1369.790515][T27642] exfat: Deprecated parameter 'namecase' [ 1369.833354][T27642] exfat: Deprecated parameter 'utf8' [ 1369.928868][T27642] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 1369.994716][T27642] exFAT-fs (loop4): failed to test first cluster bit of root dir(5) [ 1370.620976][ T5810] ntfs3(loop6): ino=5, mi_enum_attr [ 1371.276553][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1372.588468][T27695] loop6: detected capacity change from 0 to 16 [ 1372.636583][T27695] erofs (device loop6): mounted with root inode @ nid 36. [ 1373.774678][T27725] netlink: 'syz.1.6079': attribute type 1 has an invalid length. [ 1374.097703][T27717] loop6: detected capacity change from 0 to 4096 [ 1374.172185][T27717] ntfs3(loop6): ino=3, Correct links count -> 2. [ 1374.643803][T27740] netlink: 16255 bytes leftover after parsing attributes in process `syz.4.6083'. [ 1374.643898][T25313] udevd[25313]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory [ 1376.202947][T27768] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6093'. [ 1376.248866][T27768] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6093'. [ 1376.919327][T27784] loop6: detected capacity change from 0 to 1024 [ 1376.970942][T27784] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 1377.846185][T27799] loop4: detected capacity change from 0 to 512 [ 1377.961661][T27799] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #4: comm syz.4.6099: pblk 30 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0) [ 1378.017522][T27799] loop4: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117 [ 1378.019714][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1378.035693][ C0] EXT4-fs (loop4): initial error at time 1779057161: ext4_ext_check_inode:521: inode 4 [ 1378.045736][ C0] EXT4-fs (loop4): last error at time 1779057161: ext4_ext_check_inode:521: inode 4 [ 1378.077478][T27799] EXT4-fs error (device loop4): ext4_quota_enable:7228: comm syz.4.6099: Bad quota inode: 4, type: 1 [ 1378.148956][T27799] loop4: lost filesystem error report for type 5 error -117 [ 1378.151518][T27799] EXT4-fs warning (device loop4): ext4_enable_quotas:7269: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 1378.228769][T27799] EXT4-fs (loop4): mount failed [ 1379.385087][T27829] loop6: detected capacity change from 0 to 256 [ 1379.429967][T27829] exfat: Deprecated parameter 'namecase' [ 1379.457822][T27829] exfat: Deprecated parameter 'namecase' [ 1379.487332][T27829] exfat: Deprecated parameter 'namecase' [ 1379.627174][T27829] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1380.611714][T27858] loop4: detected capacity change from 0 to 512 [ 1380.645961][T27858] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 1380.731050][T27858] EXT4-fs error (device loop4): ext4_orphan_get:1397: inode #15: comm syz.4.6116: iget: bad i_size value: 360287970189639680 [ 1380.799215][T27858] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1380.799775][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 1380.815692][ C1] EXT4-fs (loop4): initial error at time 1779057164: ext4_orphan_get:1397: inode 15 [ 1380.825455][ C1] EXT4-fs (loop4): last error at time 1779057164: ext4_orphan_get:1397: inode 15 [ 1380.857762][T27858] EXT4-fs error (device loop4): ext4_orphan_get:1402: comm syz.4.6116: couldn't read orphan inode 15 (err -117) [ 1380.920382][T27858] loop4: lost filesystem error report for type 5 error -117 [ 1380.926884][T27858] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1381.135364][T27858] EXT4-fs error (device loop4): ext4_readdir:265: inode #12: block 13: comm syz.4.6116: path /1219/file0/file0: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=12, rec_len=4096, size=4096 fake=1 [ 1381.523060][ T5579] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1383.695812][T27921] batman_adv: batadv0: adding TT local entry aa:aa:aa:aa:aa:2a to non-existent VLAN 2621 [ 1385.133467][T27958] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6149'. [ 1386.192495][T27985] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6158'. [ 1387.086993][T28000] netlink: 32 bytes leftover after parsing attributes in process `syz.1.6165'. [ 1389.141016][T28037] netlink: 348 bytes leftover after parsing attributes in process `syz.0.6178'. [ 1391.870245][ T4895] usb 5-1: new full-speed USB device number 27 using dummy_hcd [ 1392.085062][ T4895] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1392.133270][ T4895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1392.183330][ T4895] usb 5-1: config 0 descriptor?? [ 1392.248733][ T4895] cp210x 5-1:0.0: cp210x converter detected [ 1392.376548][T28084] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6197'. [ 1392.717581][ T4895] usb 5-1: cp210x converter now attached to ttyUSB0 [ 1392.873455][ T10] usb 5-1: USB disconnect, device number 27 [ 1392.992182][ T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1393.046141][T28103] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6200'. [ 1393.136407][ T10] cp210x 5-1:0.0: device disconnected [ 1395.973976][ T4870] Bluetooth: hci2: unexpected event for opcode 0x0c6d [ 1397.774731][T28189] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6233'. [ 1398.130604][T28195] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6236'. [ 1398.156941][T28195] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6236'. [ 1398.876871][T28206] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6240'. [ 1398.922650][T28206] netlink: 277 bytes leftover after parsing attributes in process `syz.4.6240'. [ 1398.947283][T28206] netlink: 277 bytes leftover after parsing attributes in process `syz.4.6240'. [ 1404.821391][T28295] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6278'. [ 1404.864676][ T10] IPVS: starting estimator thread 0... [ 1405.000009][T28296] IPVS: using max 240 ests per chain, 12000 per kthread [ 1405.388787][ T4870] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:0' [ 1405.400851][ T4870] CPU: 1 UID: 0 PID: 4870 Comm: kworker/u9:1 Tainted: G L syzkaller #0 PREEMPT(full) [ 1405.401016][ T4870] Tainted: [L]=SOFTLOCKUP [ 1405.401067][ T4870] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1405.401186][ T4870] Workqueue: hci4 hci_rx_work [ 1405.401463][ T4870] Call Trace: [ 1405.401509][ T4870] [ 1405.401558][ T4870] __dump_stack+0x26/0x30 [ 1405.401703][ T4870] dump_stack_lvl+0x14c/0x1c0 [ 1405.401854][ T4870] dump_stack+0x1e/0x25 [ 1405.401988][ T4870] sysfs_create_dir_ns+0x46c/0x540 [ 1405.402160][ T4870] kobject_add_internal+0x1084/0x19b0 [ 1405.402374][ T4870] kobject_add+0x2c1/0x410 [ 1405.402592][ T4870] ? kmsan_get_metadata+0xf1/0x160 [ 1405.402763][ T4870] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1405.402945][ T4870] device_add+0xa70/0x1c90 [ 1405.403126][ T4870] hci_conn_add_sysfs+0x159/0x2e0 [ 1405.403331][ T4870] le_conn_complete_evt+0x1de1/0x2330 [ 1405.403539][ T4870] hci_le_enh_conn_complete_evt+0x158/0x260 [ 1405.403702][ T4870] hci_le_meta_evt+0x6eb/0x960 [ 1405.403906][ T4870] ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10 [ 1405.404073][ T4870] hci_event_packet+0xb8c/0x1820 [ 1405.404230][ T4870] ? __pfx_hci_le_meta_evt+0x10/0x10 [ 1405.404455][ T4870] hci_rx_work+0x8c3/0xfc0 [ 1405.404622][ T4870] ? kmsan_get_metadata+0xf1/0x160 [ 1405.404798][ T4870] ? __pfx_hci_rx_work+0x10/0x10 [ 1405.404964][ T4870] process_scheduled_works+0xb65/0x1e40 [ 1405.405194][ T4870] worker_thread+0xee4/0x1590 [ 1405.405386][ T4870] kthread+0x53a/0x5f0 [ 1405.405561][ T4870] ? __pfx_worker_thread+0x10/0x10 [ 1405.405725][ T4870] ? __pfx_kthread+0x10/0x10 [ 1405.405892][ T4870] ret_from_fork+0x20f/0x8d0 [ 1405.406042][ T4870] ? __switch_to+0x573/0x7a0 [ 1405.406210][ T4870] ? __pfx_kthread+0x10/0x10 [ 1405.406379][ T4870] ret_from_fork_asm+0x1a/0x30 [ 1405.406577][ T4870] [ 1405.406751][ T4870] kobject: kobject_add_internal failed for hci4:0 with -EEXIST, don't try to register things with the same name in the same directory. [ 1405.606846][ T4870] Bluetooth: hci4: failed to register connection device [ 1406.244311][T28318] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6286'. [ 1406.636863][T28318] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6286'. [ 1407.421421][ T4870] Bluetooth: hci4: command 0x0406 tx timeout [ 1409.200760][T12203] usb 2-1: new high-speed USB device number 27 using dummy_hcd [ 1409.370239][T12203] usb 2-1: Using ep0 maxpacket: 8 [ 1409.404741][T12203] usb 2-1: config 0 interface 0 altsetting 144 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1409.464140][T12203] usb 2-1: config 0 interface 0 altsetting 144 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1409.499501][T12203] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1409.506190][T27617] Bluetooth: hci4: command 0x0406 tx timeout [ 1409.535073][T12203] usb 2-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00 [ 1409.560418][T12203] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1409.605603][T12203] usb 2-1: config 0 descriptor?? [ 1409.865596][ T10] usb 4-1: new full-speed USB device number 37 using dummy_hcd [ 1410.074279][ T10] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1410.110127][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1410.166001][T12203] smartjoyplus 0003:6666:8804.0020: hidraw0: USB HID v0.00 Device [HID 6666:8804] on usb-dummy_hcd.1-1/input0 [ 1410.169245][ T10] usb 4-1: config 0 descriptor?? [ 1410.225100][T12203] smartjoyplus 0003:6666:8804.0020: no output reports found [ 1410.276815][ T10] cp210x 4-1:0.0: cp210x converter detected [ 1410.326333][T12203] usb 2-1: USB disconnect, device number 27 [ 1410.767596][ T10] usb 4-1: cp210x converter now attached to ttyUSB0 [ 1410.894954][T28396] fido_id[28396]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1410.967092][ T10] usb 4-1: USB disconnect, device number 37 [ 1411.058887][ T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1411.152496][ T10] cp210x 4-1:0.0: device disconnected [ 1411.405145][T28433] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6313'. [ 1411.439786][T28433] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6313'. [ 1411.580628][T27617] Bluetooth: hci4: command 0x0406 tx timeout [ 1413.661879][ T4870] Bluetooth: hci4: command 0x0406 tx timeout [ 1413.848640][T28464] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6327'. [ 1413.882715][T28464] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6327'. [ 1417.546987][ T10] bridge0: entered promiscuous mode [ 1417.573142][T28522] netlink: 'syz.3.6351': attribute type 4 has an invalid length. [ 1418.695872][T28538] netlink: 'syz.0.6360': attribute type 1 has an invalid length. [ 1419.780866][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.810256][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.838081][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.872674][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.901670][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.925052][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.952166][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1419.982682][T28567] netlink: 'syz.0.6369': attribute type 1 has an invalid length. [ 1421.020389][T28585] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6377'. [ 1421.183841][T28585] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6377'. [ 1421.718196][T28585] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6377'. [ 1425.963674][T28659] sg_write: data in/out 446940/208 bytes for SCSI command 0x0-- guessing data in; [ 1425.963674][T28659] program syz.3.6407 not setting count and/or reply_len properly [ 1428.551621][T28695] validate_nla: 38 callbacks suppressed [ 1428.551768][T28695] netlink: 'syz.3.6423': attribute type 3 has an invalid length. [ 1432.710604][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1437.058451][T28809] sg_write: data in/out 446940/208 bytes for SCSI command 0x0-- guessing data in; [ 1437.058451][T28809] program syz.4.6476 not setting count and/or reply_len properly [ 1439.527578][T28841] sg_write: data in/out 446940/208 bytes for SCSI command 0x0-- guessing data in; [ 1439.527578][T28841] program syz.0.6491 not setting count and/or reply_len properly [ 1440.050613][T12203] usb 2-1: new full-speed USB device number 28 using dummy_hcd [ 1440.234865][T12203] usb 2-1: config 0 has an invalid interface number: 41 but max is 0 [ 1440.259921][T12203] usb 2-1: config 0 has no interface number 0 [ 1440.268779][T12203] usb 2-1: config 0 interface 41 has no altsetting 0 [ 1440.323053][T12203] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 1440.349894][T12203] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1440.369933][T12203] usb 2-1: Product: syz [ 1440.387025][T12203] usb 2-1: Manufacturer: syz [ 1440.408930][T12203] usb 2-1: SerialNumber: syz [ 1440.451382][T12203] usb 2-1: config 0 descriptor?? [ 1441.149051][T12203] CoreChips 2-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71 [ 1441.167293][T12203] CoreChips 2-1:0.41: probe with driver CoreChips failed with error -71 [ 1441.270464][T12203] usb 2-1: USB disconnect, device number 28 [ 1443.064365][T28914] netlink: 160 bytes leftover after parsing attributes in process `syz.0.6515'. [ 1445.778991][T28962] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6537'. [ 1445.795329][T28962] netlink: 11 bytes leftover after parsing attributes in process `syz.3.6537'. [ 1447.368126][T28990] netlink: 152 bytes leftover after parsing attributes in process `syz.3.6548'. [ 1447.447829][T28994] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6551'. [ 1448.447667][ T29] audit: type=1326 audit(1779057231.952:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1448.570081][ T29] audit: type=1326 audit(1779057231.952:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1448.646413][ T29] audit: type=1326 audit(1779057231.972:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=39 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1448.734043][ T29] audit: type=1326 audit(1779057231.972:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1448.830078][ T29] audit: type=1326 audit(1779057231.982:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=40 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1448.935016][ T29] audit: type=1326 audit(1779057231.982:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29009 comm="syz.4.6559" exe="/root/ci-upstream-kmsan-gce-386-root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70af01c code=0x7ffc0000 [ 1450.834415][T29055] option changes via remount are deprecated (pid=29054 comm=syz.3.6576) [ 1451.466724][T29064] can0: slcan on ttynull. [ 1451.602902][T29063] can0 (unregistered): slcan off ttynull. [ 1456.836430][T29157] netlink: 20 bytes leftover after parsing attributes in process `syz.6.6616'. [ 1458.144591][T29182] xt_nfacct: accounting object `\$9ZM#mU|^c\F9YⳈ' does not exist [ 1461.036896][T29229] netlink: 196 bytes leftover after parsing attributes in process `syz.4.6649'. [ 1461.103857][T29233] macvtap1: entered promiscuous mode [ 1463.546370][T29285] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6670'. [ 1465.976954][ T4870] Bluetooth: hci4: unexpected event for opcode 0x0c12 [ 1465.980049][T29321] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1467.798808][T29357] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6699'. [ 1469.026120][T29379] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6707'. [ 1469.049056][T29379] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6707'. [ 1469.049186][T29379] netlink: 'syz.4.6707': attribute type 14 has an invalid length. [ 1470.966596][T29411] [U] V3Fپ"S/4:XTZWTLW= [ 1470.999404][T29410] [U] J"E:" [ 1472.095455][T29430] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6731'. [ 1472.140559][T29430] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6731'. [ 1472.196592][T29430] netlink: 'syz.4.6731': attribute type 19 has an invalid length. [ 1472.246786][T29430] netlink: 'syz.4.6731': attribute type 20 has an invalid length. [ 1474.758966][T29479] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6751'. [ 1477.083435][T29524] macsec3: entered promiscuous mode [ 1477.114605][T29524] dummy0: entered promiscuous mode [ 1477.365303][T12203] dummy0: left promiscuous mode [ 1478.481017][ T5684] IPVS: starting estimator thread 0... [ 1478.612581][T29546] IPVS: using max 240 ests per chain, 12000 per kthread [ 1478.792169][T29551] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6780'. [ 1479.939205][ T29] audit: type=1400 audit(1779057263.442:95): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AAE86AD47AA0D9495E6D80F7BDE2D18FFB36CF152AED2D408FB58E305FC8E2F2F7D91F81B621CC4214D4A27E1614FBEE0BEAC8F4A045070B770212D46D4A2DF096B791F2A4BA218E12CB76AA24945B70A7C9DD5EDEAC52B5A876F73CFBE66371A72F11F3D9544D6B59B4A5541DCEF5CBF11FFFF37DFD147CCA3E5098A207BE806EA7167101F8C1B5C8FE41E170FD0C775DBC5BE0B6DAB702E5B1DC15F9C4B3D09BE812F340E681E0694F5BADF640DA3FDFC2F929B4C2BEB9A592C577287B6021BFEEC24146C7F95608BB60A736207A09D9F47E89C4044EADDE57CDEFD15F25B822D2EAF2205DF0D6B71B63EE0B63CB598F26509AF36FD3578F6F4198A0843CC1B1BD780015007AB9709CC6211E3B5C6111551514C1413C54571515294144E3891201244195146941565453971AB282F6E13154445D1C649515954116D5D5571A7A826AA89EAA286A8296A895AA2B6A82DEA883AA2AEA82BEA897AA2BE78403410BDB13F3E24B22AD3580CC12662283615CD84BCF80ED64A0CC7D6A28D682B9E10237104B617AD5CA2785A741063B0A3F88B188BCF8ACE623C7611CF8BAEA29BE82E5E103D446BD753F41293B1B7E823 [ 1481.248084][T29593] input input28: cannot allocate more than FF_MAX_EFFECTS effects [ 1482.713581][T29621] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6808'. [ 1490.451486][T29753] macsec1: entered promiscuous mode [ 1490.468604][T29753] dummy0: entered promiscuous mode [ 1490.667983][ T5684] dummy0: left promiscuous mode [ 1491.237686][T29771] comedi comedi1: pcmda12: I/O port conflict (0x100,16) [ 1492.354083][T29789] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6882'. [ 1492.953552][ T29] audit: type=1400 audit(1779057276.462:96): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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macsec2: entered promiscuous mode [ 1493.100306][T29795] dummy0: entered promiscuous mode [ 1493.138889][T29799] netlink: 'syz.0.6887': attribute type 1 has an invalid length. [ 1493.302432][ T4895] dummy0: left promiscuous mode [ 1494.161960][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1494.884727][T29831] netlink: 36 bytes leftover after parsing attributes in process `syz.0.6900'. [ 1494.966965][ T29] audit: type=1400 audit(1779057278.472:97): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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macsec2: entered promiscuous mode [ 1495.748777][T29842] dummy0: entered promiscuous mode [ 1495.938724][ T4895] dummy0: left promiscuous mode [ 1498.043567][T29886] netlink: 'syz.6.6922': attribute type 25 has an invalid length. [ 1498.239393][T29890] macsec2: entered promiscuous mode [ 1498.255739][T29890] dummy0: entered promiscuous mode [ 1498.448787][T21666] dummy0: left promiscuous mode [ 1498.980731][T29905] tipc: Enabling not permitted [ 1498.986405][T29905] tipc: Enabling of bearer rejected, failed to enable media [ 1499.523095][ T4895] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 1499.691374][ T4895] usb 4-1: Using ep0 maxpacket: 16 [ 1499.714026][ T4895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1499.746258][ T4895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1499.778892][ T4895] usb 4-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00 [ 1499.813509][ T4895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1499.854209][ T4895] usb 4-1: config 0 descriptor?? [ 1500.208306][T29930] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6939'. [ 1500.356423][ T4895] wacom 0003:056A:0084.0021: item fetching failed at offset 10/11 [ 1500.414175][ T4895] wacom 0003:056A:0084.0021: parse failed [ 1500.431486][ T4895] wacom 0003:056A:0084.0021: probe with driver wacom failed with error -22 [ 1500.573920][ T5684] usb 4-1: USB disconnect, device number 38 [ 1500.637551][T29939] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6942'. [ 1501.820409][ T5684] usb 2-1: new high-speed USB device number 29 using dummy_hcd [ 1502.003563][ T5684] usb 2-1: Using ep0 maxpacket: 16 [ 1502.070107][ T5684] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1502.098114][ T5684] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1502.142919][ T5684] usb 2-1: New USB device found, idVendor=056a, idProduct=0084, bcdDevice= 0.00 [ 1502.182549][ T5684] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1502.240884][ T5684] usb 2-1: config 0 descriptor?? [ 1502.764070][ T5684] wacom 0003:056A:0084.0022: item fetching failed at offset 10/11 [ 1502.819055][ T5684] wacom 0003:056A:0084.0022: parse failed [ 1502.853732][ T5684] wacom 0003:056A:0084.0022: probe with driver wacom failed with error -22 [ 1502.981509][ T4895] usb 2-1: USB disconnect, device number 29 [ 1508.933160][T30093] bridge_slave_1: invalid flags given to default FDB implementation [ 1510.907692][ T5684] kernel read not supported for file /radio0 (pid: 5684 comm: kworker/0:4) [ 1511.481193][T30130] netlink: 256 bytes leftover after parsing attributes in process `syz.6.7019'. [ 1511.501888][T30130] netlink: 72 bytes leftover after parsing attributes in process `syz.6.7019'. [ 1512.565008][T30146] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7027'. [ 1514.251772][T30173] netlink: 56 bytes leftover after parsing attributes in process `syz.3.7040'. [ 1516.486410][T30211] netlink: 'syz.4.7056': attribute type 3 has an invalid length. [ 1517.550891][T30225] netlink: 56 bytes leftover after parsing attributes in process `syz.6.7063'. [ 1518.854695][T30249] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7075'. [ 1519.904636][ T59] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.939044][ T59] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 1519.976049][ T59] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 1520.028339][ T59] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 1521.967173][T30305] netlink: 532 bytes leftover after parsing attributes in process `syz.1.7097'. [ 1522.252745][T30312] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7100'. [ 1523.076483][T30325] bridge_slave_1: invalid flags given to default FDB implementation [ 1524.168885][T30343] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7111'. [ 1524.534467][T30348] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7114'. [ 1524.581748][T30348] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7114'. [ 1530.652363][T30449] ipvlan2: entered promiscuous mode [ 1532.168192][T30474] netlink: 48 bytes leftover after parsing attributes in process `syz.6.7164'. [ 1534.506240][T30509] tipc: Enabling of bearer rejected, failed to enable media [ 1537.600978][T30564] IPVS: Error connecting to the multicast addr [ 1538.200726][T30576] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7205'. [ 1538.200971][T30576] netlink: 7 bytes leftover after parsing attributes in process `syz.4.7205'. [ 1540.702131][T30618] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7224'. [ 1540.757258][T30618] tipc: Enabled bearer , priority 10 [ 1541.496728][T30629] ALSA: mixer_oss: invalid OSS volume 'T`U9u&t3+ݺ' [ 1541.768547][T30641] afs: Unknown parameter 'dy>' [ 1542.316534][ T10] kernel read not supported for file /vcs (pid: 10 comm: kworker/0:1) [ 1542.997358][ T10] kernel write not supported for file /snd/midiC2D0 (pid: 10 comm: kworker/0:1) [ 1544.005403][T30677] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7250'. [ 1546.790429][T30712] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7267'. [ 1547.181561][ T10] usb 2-1: new high-speed USB device number 30 using dummy_hcd [ 1547.380755][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 1547.402527][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1547.439783][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1547.500049][ T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1547.542346][ T10] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 1547.587665][T30729] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7272'. [ 1547.588730][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1547.639281][ T10] usb 2-1: config 0 descriptor?? [ 1548.133175][ T10] hid_parser_main: 7 callbacks suppressed [ 1548.133268][ T10] microsoft 0003:045E:07DA.0023: unknown main item tag 0x0 [ 1548.212325][ T10] microsoft 0003:045E:07DA.0023: ignoring exceeding usage max [ 1548.286560][ T10] microsoft 0003:045E:07DA.0023: ignoring exceeding usage max [ 1548.328862][ T10] microsoft 0003:045E:07DA.0023: item fetching failed at offset 32/34 [ 1548.384766][ T10] microsoft 0003:045E:07DA.0023: parse failed [ 1548.423322][ T10] microsoft 0003:045E:07DA.0023: probe with driver microsoft failed with error -22 [ 1548.488799][ T10] usb 2-1: USB disconnect, device number 30 [ 1549.360453][T30764] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7281'. [ 1550.561374][T30784] netlink: 'syz.0.7290': attribute type 29 has an invalid length. [ 1550.625679][T30786] netlink: 'syz.0.7290': attribute type 29 has an invalid length. [ 1553.772631][T30840] [U]  [ 1555.588328][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1556.112704][T30864] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7328'. [ 1556.242969][T30868] netlink: 36 bytes leftover after parsing attributes in process `syz.4.7329'. [ 1558.925304][T30799] vivid-000: kernel_thread() failed [ 1559.375567][ T10] kernel read not supported for file /rfkill (pid: 10 comm: kworker/0:1) [ 1559.594420][T30912] block device autoloading is deprecated and will be removed. [ 1560.136112][T30927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7352'. [ 1560.157933][T30927] netlink: 'syz.1.7352': attribute type 1 has an invalid length. [ 1560.169391][T30927] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7352'. [ 1561.133804][T30936] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7357'. [ 1561.160409][T30936] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7357'. [ 1561.268174][T30936] vlan5: entered allmulticast mode [ 1561.939268][T30947] syz_tun: refused to change device tx_queue_len [ 1561.966635][T30947] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check. [ 1562.692853][T30956] netlink: 'syz.1.7364': attribute type 1 has an invalid length. [ 1564.391839][ T4895] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 1564.580021][ T4895] usb 4-1: Using ep0 maxpacket: 16 [ 1564.614227][ T4895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1564.658668][ T4895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1564.694153][ T4895] usb 4-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 1564.732900][ T4895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1564.795261][ T4895] usb 4-1: config 0 descriptor?? [ 1565.365215][ T4895] hid-multitouch 0003:1FD2:6007.0024: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.3-1/input0 [ 1565.537984][T12203] usb 4-1: USB disconnect, device number 39 [ 1566.260347][T27394] ip6_tunnel: ip6gre2 xmit: Local address not yet configured! [ 1566.341552][ T4895] ip6_tunnel: ip6gre2 xmit: Local address not yet configured! [ 1567.833979][T31017] fido_id[31017]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 1568.304514][T27617] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 1568.327170][T27617] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 1568.339419][T27617] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 1568.362225][T27617] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 1568.378933][T27617] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 1569.070478][T31041] netlink: 44 bytes leftover after parsing attributes in process `syz.4.7388'. [ 1570.459868][T27617] Bluetooth: hci5: command tx timeout [ 1571.119442][T31026] lo speed is unknown, defaulting to 1000 [ 1572.396763][T31121] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7402'. [ 1572.540031][T27617] Bluetooth: hci5: command tx timeout [ 1572.802141][T31131] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 1574.336006][T31174] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7411'. [ 1574.374323][T31174] netlink: 94 bytes leftover after parsing attributes in process `syz.3.7411'. [ 1574.427195][T31174] netlink: 580 bytes leftover after parsing attributes in process `syz.3.7411'. [ 1574.620787][T27617] Bluetooth: hci5: command tx timeout [ 1574.968559][T31189] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7414'. [ 1576.246652][T31026] bridge0: port 1(bridge_slave_0) entered blocking state [ 1576.293055][T31026] bridge0: port 1(bridge_slave_0) entered disabled state [ 1576.322837][T31026] bridge_slave_0: entered allmulticast mode [ 1576.380724][T31026] bridge_slave_0: entered promiscuous mode [ 1576.436235][T31026] bridge0: port 2(bridge_slave_1) entered blocking state [ 1576.470031][T31026] bridge0: port 2(bridge_slave_1) entered disabled state [ 1576.502265][T31026] bridge_slave_1: entered allmulticast mode [ 1576.554396][T31026] bridge_slave_1: entered promiscuous mode [ 1576.701294][T27617] Bluetooth: hci5: command tx timeout [ 1577.017166][T31026] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1577.116294][T31026] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1577.538981][T31026] team0: Port device team_slave_0 added [ 1577.604785][T31026] team0: Port device team_slave_1 added [ 1578.025296][T31026] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1578.054900][T31026] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1578.178054][T31026] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1578.255809][T31026] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1578.303834][T31026] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1578.344328][T31310] tmpfs: Cannot enable quota on remount [ 1578.412994][T31026] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1578.767722][T31323] Dead loop on virtual device ip6_vti0 (net 36), fix it urgently! [ 1579.029198][T31026] hsr_slave_0: entered promiscuous mode [ 1579.073950][T31026] hsr_slave_1: entered promiscuous mode [ 1579.110615][T31026] debugfs: 'hsr0' already exists in 'hsr' [ 1579.165023][T31026] Cannot create hsr debugfs directory [ 1579.616030][T31368] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1579.660820][T31368] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1579.695227][T31368] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1581.318357][T31026] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 1581.442454][T21666] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 1581.447501][T31026] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 1581.488187][T31026] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 1581.566569][T31026] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 1581.606059][T31026] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 1581.663877][T21666] usb 2-1: config 0 has an invalid interface number: 64 but max is 0 [ 1581.710087][T21666] usb 2-1: config 0 has no interface number 0 [ 1581.718113][T31026] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 1581.760718][T21666] usb 2-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07 [ 1581.776268][T31026] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 1581.800494][T21666] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1581.832183][T21666] usb 2-1: Product: syz [ 1581.843212][T21666] usb 2-1: Manufacturer: syz [ 1581.848055][T21666] usb 2-1: SerialNumber: syz [ 1581.878383][T21666] usb 2-1: config 0 descriptor?? [ 1581.895238][T31026] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 1582.327632][T21666] uvcvideo 2-1:0.64: Found UVC 0.08 device syz (046d:0823) [ 1582.372158][T21666] uvcvideo 2-1:0.64: Entity type for entity Output 32768 was not initialized! [ 1582.434647][T21666] uvcvideo 2-1:0.64: Failed to create links for entity 32768 [ 1582.484570][T21666] uvcvideo 2-1:0.64: Failed to register entities (-22). [ 1582.528601][T21666] usb 2-1: USB disconnect, device number 31 [ 1583.692486][T31026] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1583.962497][T31026] 8021q: adding VLAN 0 to HW filter on device team0 [ 1584.046126][ T59] bridge0: port 1(bridge_slave_0) entered blocking state [ 1584.046437][ T59] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1584.132919][T14384] bridge0: port 2(bridge_slave_1) entered blocking state [ 1584.133274][T14384] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1584.820589][T31499] comedi comedi3: 8255: I/O base address not correctly aligned [ 1588.898023][T31026] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1589.080377][T31556] netlink: 'syz.6.7482': attribute type 4 has an invalid length. [ 1589.127747][T31556] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7482'. [ 1591.560760][T31590] xt_l2tp: invalid flags combination: 8 [ 1591.635593][T31026] veth0_vlan: entered promiscuous mode [ 1591.793394][T31026] veth1_vlan: entered promiscuous mode [ 1592.275685][T31026] veth0_macvtap: entered promiscuous mode [ 1592.357338][T31596] openvswitch: netlink: Actions may not be safe on all matching packets [ 1592.395880][T31026] veth1_macvtap: entered promiscuous mode [ 1592.750346][T31026] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1593.075330][T31026] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1593.347749][ T59] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1593.402221][ T59] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1593.443256][ T59] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1593.523857][ T59] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1598.774103][T27617] Bluetooth: hci4: unexpected event for opcode 0x1004 [ 1600.582837][ T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1600.634305][ T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1600.868979][ T1138] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1600.918263][ T1138] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1602.779906][T27617] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 1602.788550][T27617] Bluetooth: hci4: Injecting HCI hardware error event [ 1602.796289][T27617] Bluetooth: hci4: hardware error 0x00 [ 1604.490112][T31740] netlink: 68 bytes leftover after parsing attributes in process `syz.7.7543'. [ 1604.520740][T31740] netlink: 56 bytes leftover after parsing attributes in process `syz.7.7543'. [ 1604.864043][T27617] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 1605.150781][T29529] usb 2-1: new high-speed USB device number 32 using dummy_hcd [ 1605.335054][T29529] usb 2-1: Using ep0 maxpacket: 16 [ 1605.392488][T29529] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1605.442223][T29529] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1605.481270][T29529] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 1605.532100][T29529] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1605.591154][T29529] usb 2-1: config 0 descriptor?? [ 1606.246262][T29529] hid-multitouch 0003:1FD2:6007.0025: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.1-1/input0 [ 1606.425984][T29529] usb 2-1: USB disconnect, device number 32 [ 1606.687097][T31792] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7553'. [ 1606.932420][ T5810] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1607.213231][ T5810] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1607.246587][T31780] fido_id[31780]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1607.495399][ T5810] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1607.631869][ T5810] tipc: Resetting bearer [ 1607.763059][ T5810] tipc: Disabling bearer [ 1607.850028][ T5810] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1608.688102][ T5810] bridge_slave_1: left allmulticast mode [ 1608.737325][ T5810] bridge_slave_1: left promiscuous mode [ 1608.775437][ T5810] bridge0: port 2(bridge_slave_1) entered disabled state [ 1608.836189][ T5810] bridge_slave_0: left allmulticast mode [ 1608.864469][ T5810] bridge_slave_0: left promiscuous mode [ 1608.900368][ T5810] bridge0: port 1(bridge_slave_0) entered disabled state [ 1609.043826][ T5810] pimreg9: left allmulticast mode [ 1609.102358][T21666] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 1609.300318][T21666] usb 4-1: Using ep0 maxpacket: 8 [ 1609.345713][T21666] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1609.381046][T21666] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1609.398324][T21666] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1609.422142][T21666] usb 4-1: Product: syz [ 1609.450109][T21666] usb 4-1: Manufacturer: syz [ 1609.480327][T21666] usb 4-1: SerialNumber: syz [ 1609.782258][T21666] usb 4-1: Handspring Visor / Palm OS: port 0, is for HotSync use [ 1609.847710][T21666] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 1609.889754][T21666] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1609.986149][T21666] usb 4-1: palm_os_3_probe - error -71 getting bytes available request [ 1610.039149][T21666] visor 4-1:1.0: Handspring Visor / Palm OS converter detected [ 1610.120721][T21666] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1610.193633][T21666] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1610.266216][T21666] usb 4-1: USB disconnect, device number 40 [ 1610.304197][T21666] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1610.366750][T21666] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1610.396373][T21666] visor 4-1:1.0: device disconnected [ 1610.782278][ T5810] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1610.818176][ T5810] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1610.837945][ T5810] bond0 (unregistering): Released all slaves [ 1610.869185][ T5810] bond1 (unregistering): Released all slaves [ 1610.926501][ T5810] bond2 (unregistering): Released all slaves [ 1611.369165][ T5810] tipc: Disabling bearer [ 1611.405711][ T5810] tipc: Disabling bearer [ 1611.456764][ T5810] tipc: Left network mode [ 1612.440122][ T5810] hsr_slave_0: left promiscuous mode [ 1612.491934][ T5810] hsr_slave_1: left promiscuous mode [ 1612.539642][ T5810] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1612.590618][ T5810] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1612.740917][ T5810] veth1_macvtap: left promiscuous mode [ 1612.770925][ T5810] veth0_macvtap: left promiscuous mode [ 1612.796740][ T5810] veth1_vlan: left promiscuous mode [ 1614.998566][T31951] [U]  [ 1615.184298][ T5810] team_slave_1 (unregistering): left promiscuous mode [ 1615.241181][ T5810] team_slave_1 (unregistering): left allmulticast mode [ 1615.291560][ T5810] team0 (unregistering): Port device team_slave_1 removed [ 1615.400520][ T5810] team_slave_0 (unregistering): left promiscuous mode [ 1615.432649][ T5810] team_slave_0 (unregistering): left allmulticast mode [ 1615.457684][ T5810] team0 (unregistering): Port device team_slave_0 removed [ 1616.645721][ T5227] 8021q: adding VLAN 0 to HW filter on device eth9 [ 1616.871983][T31974] netlink: 68 bytes leftover after parsing attributes in process `syz.1.7601'. [ 1616.931638][T31974] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7601'. [ 1616.986237][T31974] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7601'. [ 1617.033379][ T1311] ieee802154 phy1 wpan1: encryption failed: -22 [ 1617.346271][ T5810] IPVS: stop unused estimator thread 0... [ 1617.817183][T12203] kernel read not supported for file /vcs (pid: 12203 comm: kworker/1:1) [ 1618.641048][T32010] netem: change failed [ 1619.914128][T32036] support for the xor transformation has been removed. [ 1620.452812][T32042] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7625'. [ 1620.606232][T32048] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7627'. [ 1620.657237][T32049] netlink: 'syz.3.7628': attribute type 8 has an invalid length. [ 1621.147423][T32055] netlink: 348 bytes leftover after parsing attributes in process `syz.6.7630'. [ 1621.685221][ T5227] 8021q: adding VLAN 0 to HW filter on device eth10 [ 1623.744553][T32102] netlink: 'syz.4.7648': attribute type 14 has an invalid length. [ 1624.453003][T32118] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7662'. [ 1626.004556][T32143] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7663'. [ 1626.211656][T32148] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7673'. [ 1626.364745][ T5227] 8021q: adding VLAN 0 to HW filter on device eth11 [ 1626.393796][T32152] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7664'. [ 1626.430913][T32152] netlink: 36 bytes leftover after parsing attributes in process `syz.7.7664'. [ 1626.574662][T32152] vlan2: entered allmulticast mode [ 1626.594910][T32152] gretap0: entered allmulticast mode [ 1627.024851][T12203] kernel write not supported for file /snd/midiC2D0 (pid: 12203 comm: kworker/1:1) [ 1627.462450][T32170] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7670'. [ 1627.819996][T12203] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 1628.019002][T12203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1628.048722][T12203] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1628.078944][T12203] usb 4-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 1628.088935][T12203] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1628.158536][T12203] usb 4-1: config 0 descriptor?? [ 1628.863386][T12203] razer 0003:1532:010E.0026: failed to enable macro keys: -71 [ 1628.948960][T12203] razer 0003:1532:010E.0026: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.3-1/input0 [ 1629.054003][T12203] usb 4-1: USB disconnect, device number 41 [ 1629.866502][T32211] fido_id[32211]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 1630.195321][T32223] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 1630.240422][T32223] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1630.285432][T32223] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1631.257411][ T5227] 8021q: adding VLAN 0 to HW filter on device eth12 [ 1634.777614][T32297] loop7: detected capacity change from 0 to 512 [ 1634.854393][T32297] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a843c198, mo2=0002] [ 1634.900888][T32297] System zones: 1-12 [ 1634.953446][T32297] EXT4-fs error (device loop7): ext4_iget_extra_inode:5128: inode #15: comm syz.7.7705: corrupted in-inode xattr: e_value size too large [ 1635.035824][T32297] loop7: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1635.037201][T32297] EXT4-fs error (device loop7): ext4_orphan_get:1402: comm syz.7.7705: couldn't read orphan inode 15 (err -117) [ 1635.046895][ C1] EXT4-fs (loop7): error count since last fsck: 1 [ 1635.046984][ C1] EXT4-fs (loop7): initial error at time 1779057418: ext4_iget_extra_inode:5128: inode 15 [ 1635.047149][ C1] EXT4-fs (loop7): last error at time 1779057418: ext4_iget_extra_inode:5128: inode 15 [ 1635.185961][T32297] loop7: lost filesystem error report for type 5 error -117 [ 1635.195055][T32297] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1635.402150][T31133] kernel write not supported for file /sg0 (pid: 31133 comm: kworker/1:5) [ 1635.625409][T31026] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1636.329159][T32320] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7713'. [ 1636.374580][T32320] netlink: 104 bytes leftover after parsing attributes in process `syz.6.7713'. [ 1636.400005][T32320] netlink: 104 bytes leftover after parsing attributes in process `syz.6.7713'. [ 1638.831917][T32354] netlink: 12 bytes leftover after parsing attributes in process `syz.7.7726'. [ 1638.890995][T32356] smc: net device gretap0 applied user defined pnetid SYZ0 [ 1638.935346][T32359] binder: 32358:32359 ioctl c0306201 800003c0 returned -14 [ 1639.139400][T32364] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7730'. [ 1640.673661][T32391] netlink: 16 bytes leftover after parsing attributes in process `syz.7.7742'. [ 1641.118489][T32399] netlink: 24 bytes leftover after parsing attributes in process `syz.4.7747'. [ 1641.239177][T32402] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7746'. [ 1641.595294][T30456] usb 2-1: new low-speed USB device number 33 using dummy_hcd [ 1641.811211][T30456] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1641.846126][T30456] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid maxpacket 57373, setting to 8 [ 1641.877945][T30456] usb 2-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 9 [ 1641.938348][T30456] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1641.963394][T30456] usb 2-1: New USB device found, idVendor=172f, idProduct=0500, bcdDevice= 0.00 [ 1642.005075][T30456] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1642.063631][T30456] usb 2-1: config 0 descriptor?? [ 1642.087669][T32408] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1642.656780][T30456] hid (null): invalid report_size 26545 [ 1642.683742][T30456] hid (null): global environment stack underflow [ 1642.756653][T30456] waltop 0003:172F:0500.0027: unknown main item tag 0x6 [ 1642.801311][T30456] waltop 0003:172F:0500.0027: invalid report_size 26545 [ 1642.831612][T30456] waltop 0003:172F:0500.0027: item 0 2 1 7 parsing failed [ 1642.855208][T30456] waltop 0003:172F:0500.0027: probe with driver waltop failed with error -22 [ 1642.971843][T30456] usb 2-1: USB disconnect, device number 33 [ 1644.911084][ T1138] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20001 - 0 [ 1644.947651][ T1138] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20001 - 0 [ 1645.003619][ T1138] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20001 - 0 [ 1645.028402][ T1138] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20001 - 0 [ 1645.763009][T32502] loop7: detected capacity change from 0 to 64 [ 1646.198117][T32507] netlink: 504 bytes leftover after parsing attributes in process `syz.4.7778'. [ 1646.560525][T32513] ===================================================== [ 1646.567923][T32513] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9a4/0xa30 [ 1646.575839][T32513] ieee802154_hdr_push+0x9a4/0xa30 [ 1646.581395][T32513] ieee802154_header_create+0x854/0xb90 [ 1646.587193][T32513] dgram_sendmsg+0xb55/0x16f0 [ 1646.592284][T32513] ieee802154_sock_sendmsg+0x91/0xe0 [ 1646.597717][T32513] ____sys_sendmsg+0xf37/0xfd0 [ 1646.606110][T32513] ___sys_sendmsg+0x271/0x3b0 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 1646.611870][T32513] __sys_sendmsg+0x1aa/0x300 [ 1646.616622][T32513] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1646.622590][T32513] ia32_sys_call+0x1e4a/0x4360 [ 1646.627596][T32513] __do_fast_syscall_32+0x180/0x460 [ 1646.636676][T32513] do_fast_syscall_32+0x37/0x80 [ 1646.645999][T32513] do_SYSENTER_32+0x1f/0x30 [ 1646.650830][T32513] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1646.657332][T32513] [ 1646.659899][T32513] Uninit was stored to memory at: [ 1646.665123][T32513] ieee802154_hdr_push+0x99d/0xa30 [ 1646.670552][T32513] ieee802154_header_create+0x854/0xb90 [ 1646.676277][T32513] dgram_sendmsg+0xb55/0x16f0 [ 1646.681300][T32513] ieee802154_sock_sendmsg+0x91/0xe0 [ 1646.686730][T32513] ____sys_sendmsg+0xf37/0xfd0 [ 1646.691813][T32513] ___sys_sendmsg+0x271/0x3b0 [ 1646.696647][T32513] __sys_sendmsg+0x1aa/0x300 [ 1646.704547][T32513] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1646.711187][T32513] ia32_sys_call+0x1e4a/0x4360 [ 1646.716146][T32513] __do_fast_syscall_32+0x180/0x460 [ 1646.721659][T32513] do_fast_syscall_32+0x37/0x80 [ 1646.726690][T32513] do_SYSENTER_32+0x1f/0x30 [ 1646.731619][T32513] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1646.738123][T32513] [ 1646.740633][T32513] Local variable hdr created at: [ 1646.745644][T32513] ieee802154_header_create+0x4e/0xb90 [ 1646.751392][T32513] dgram_sendmsg+0xb55/0x16f0 [ 1646.756243][T32513] [ 1646.758661][T32513] CPU: 1 UID: 0 PID: 32513 Comm: syz.1.7779 Tainted: G L syzkaller #0 PREEMPT(full) [ 1646.769936][T32513] Tainted: [L]=SOFTLOCKUP [ 1646.774356][T32513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1646.784696][T32513] ===================================================== [ 1646.792376][T32513] Disabling lock debugging due to kernel taint [ 1646.933487][T32513] Kernel panic - not syncing: kmsan.panic set ... [ 1646.940057][T32513] CPU: 0 UID: 0 PID: 32513 Comm: syz.1.7779 Tainted: G B L syzkaller #0 PREEMPT(full) [ 1646.951175][T32513] Tainted: [B]=BAD_PAGE, [L]=SOFTLOCKUP [ 1646.956794][T32513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1646.966942][T32513] Call Trace: [ 1646.970298][T32513] [ 1646.973307][T32513] __dump_stack+0x26/0x30 [ 1646.977779][T32513] dump_stack_lvl+0x50/0x1c0 [ 1646.982512][T32513] ? dump_stack+0x12/0x25 [ 1646.986984][T32513] dump_stack+0x1e/0x25 [ 1646.991271][T32513] vpanic+0x7b4/0x1430 [ 1646.995524][T32513] panic+0x15d/0x160 [ 1646.999618][T32513] kmsan_report+0x31a/0x320 [ 1647.004299][T32513] ? __msan_warning+0x1b/0x30 [ 1647.009111][T32513] ? ieee802154_hdr_push+0x9a4/0xa30 [ 1647.014544][T32513] ? ieee802154_header_create+0x854/0xb90 [ 1647.020442][T32513] ? dgram_sendmsg+0xb55/0x16f0 [ 1647.025454][T32513] ? ieee802154_sock_sendmsg+0x91/0xe0 [ 1647.031040][T32513] ? ____sys_sendmsg+0xf37/0xfd0 [ 1647.036122][T32513] ? ___sys_sendmsg+0x271/0x3b0 [ 1647.041108][T32513] ? __sys_sendmsg+0x1aa/0x300 [ 1647.046028][T32513] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1647.051924][T32513] ? ia32_sys_call+0x1e4a/0x4360 [ 1647.057026][T32513] ? __do_fast_syscall_32+0x180/0x460 [ 1647.062562][T32513] ? do_fast_syscall_32+0x37/0x80 [ 1647.067746][T32513] ? do_SYSENTER_32+0x1f/0x30 [ 1647.072578][T32513] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1647.079239][T32513] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1647.085889][T32513] ? ___sys_sendmsg+0x271/0x3b0 [ 1647.090882][T32513] ? __sys_sendmsg+0x1aa/0x300 [ 1647.095783][T32513] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1647.101675][T32513] ? ia32_sys_call+0x1e4a/0x4360 [ 1647.106793][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.112069][T32513] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1647.118056][T32513] ? ieee802154_hdr_push+0x41/0xa30 [ 1647.123391][T32513] ? filter_irq_stacks+0x49/0x190 [ 1647.128595][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.133865][T32513] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1647.140269][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.145538][T32513] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 1647.152030][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.157308][T32513] __msan_warning+0x1b/0x30 [ 1647.161948][T32513] ieee802154_hdr_push+0x9a4/0xa30 [ 1647.167217][T32513] ? __msan_memcpy+0x105/0x1c0 [ 1647.172130][T32513] ieee802154_header_create+0x854/0xb90 [ 1647.177869][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.183149][T32513] dgram_sendmsg+0xb55/0x16f0 [ 1647.188000][T32513] ? __pfx_ieee802154_header_create+0x10/0x10 [ 1647.194248][T32513] ? __pfx_dgram_sendmsg+0x10/0x10 [ 1647.199524][T32513] ieee802154_sock_sendmsg+0x91/0xe0 [ 1647.204948][T32513] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 1647.211060][T32513] ____sys_sendmsg+0xf37/0xfd0 [ 1647.216020][T32513] ___sys_sendmsg+0x271/0x3b0 [ 1647.220839][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.226127][T32513] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1647.232106][T32513] ? __rcu_read_unlock+0x6c/0xd0 [ 1647.237162][T32513] ? __fget_files+0x3b4/0x4a0 [ 1647.241995][T32513] ? __fget_files+0x3b9/0x4a0 [ 1647.246802][T32513] ? kmsan_get_metadata+0xf1/0x160 [ 1647.252072][T32513] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1647.258049][T32513] __sys_sendmsg+0x1aa/0x300 [ 1647.262822][T32513] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 1647.268575][T32513] ia32_sys_call+0x1e4a/0x4360 [ 1647.273532][T32513] __do_fast_syscall_32+0x180/0x460 [ 1647.278918][T32513] do_fast_syscall_32+0x37/0x80 [ 1647.283930][T32513] do_SYSENTER_32+0x1f/0x30 [ 1647.288585][T32513] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1647.295072][T32513] RIP: 0023:0xf7f9801c [ 1647.299237][T32513] Code: 90 85 d2 74 0a 89 ce 81 e6 ff 0f 00 00 89 32 85 c0 74 05 c1 e9 0c 89 08 31 c0 5e 5d c3 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 58 b8 [ 1647.318974][T32513] RSP: 002b:00000000f545650c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 1647.327532][T32513] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000380 [ 1647.335611][T32513] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 1647.343670][T32513] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1647.351740][T32513] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1647.359803][T32513] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1647.367901][T32513] [ 1647.371303][T32513] Kernel Offset: disabled [ 1647.375703][T32513] Rebooting in 86400 seconds..