last executing test programs: 5.755038699s ago: executing program 2 (id=1140): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x6, 0x2cb, &(0x7f0000001040)="$eJzs3T9rJGUYAPBnksnsngq7hZUIDmhhdVyutdkgFxBTeaRQCw3eHcjuItxBwD+4XmVrY2HhJxAEP4iN30CwFew85eCVmZ1hJ5fdNRvciN7v1+Thfd9n3mcmL8mkyLPvvzgd3ynj3sPPfo5+P4udUYziURbD2InWF3HG6KsAAP7LHqUUv6W5lYueOz+URUR/u6UBAFuy+vd/2YnzRfjDlZUGAGzJ7bffefPg6OjWW2XZj8Ppl6fH1V/21df5/MG9+DAmcTduxCAeR9QvCntRvy1U4WFKaZaXlWG8Mp2dHleZ0/d+bK5/8GtEnb8fgxjWQymlvA3S4RtHt/bLuU7+rKrjmWb/UZV/MwbxfLN/87bS5t9ckh/HRbz6cqf+6zGInz6Ij2ISd+q9F/mf75fl6+nr3z99t6qqys9mp8e9et1C2r3SbwwAAAAAAAAAAAAAAAAAAAAAAP9r15veOb0oh3/OewA2/Xd2H1fze1G2hmf788zzs/ZC3f5AKaVZim/b/jo3yrJMzcJFfh4v5N3GggAAAAAAAAAAAAAAAAAAAPD0evDxJ+OTyeTu/UsH12Ix0nYDyCPij9sRl73yqDPyUtRBvqrUXrPnyWSy04Rn1+Tdkdht12QRa8uobuLyj2W8yeJr52pugu++33T3/t+v2Vu+1z8ZtKdrfJItf4a9aEf6zSH5pojOQSrignsVq6ZSbHL8iqVTg43vvXi2DmZr1kS2rrDXfpk/uWYke/IuivqpLk3fa4JO+hNn40LnOfrz9PM/KzLdOgAAAAAAAAAAAAAAAAAAYKsW//27ZPLh2tSd1NtaWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwpRaf/79BMGuSL7C4iPsP/uVbBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4CnwVwAAAP//NnNahw==") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x164) getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8) 5.051730803s ago: executing program 2 (id=1144): r0 = socket(0x1e, 0x4, 0x0) setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000080)=@req3={0x54c, 0x4, 0x3, 0x3, 0xc, 0x6, 0x7}, 0x1c) recvfrom(r0, &(0x7f0000000040)=""/18, 0x12, 0x6667b9fe4a5fca3, 0x0, 0x0) 4.529848674s ago: executing program 1 (id=1148): r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2) ioctl$VIDIOC_S_INPUT(r0, 0xc0045627, &(0x7f00000000c0)=0x2) ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f0000000180)={0x2, "b3bdef8a6c86dd43fd39a0cba9f0d90de0b4dc9fd32607136370bf515fa3ea9e", 0x1, 0xfffffde6, 0x2, 0x1, 0x2000000, 0x8}) 4.31059141s ago: executing program 2 (id=1150): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="180100000100a7d90000000000000000850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x201c448, &(0x7f0000001540)=ANY=[@ANYBLOB='map=acorn,utf8,session=0x0000000000000004,session=0x0000000000000056,map=normal,session=0x000000000000003d,unhide,norock,block=0x0000000000000400,map=off,session=0x0000000000000001,uid=', @ANYRESDEC=0x0, @ANYRES16=0x0, @ANYBLOB="081dc1ee50adc22418c4382aecf30cb42577d8963ef486433d3232a345ad8424a192dbdc2fb08fb5a892d9255b26fb98fc43099f4100a5f185b1e957c4e521ebd9a2d27120b87a5dc6e5c9b291989e69a0460bc548a17c210a2da564f774b9b07bcd94961c9ffc79f7a30e1fc706c6b4d1a1cecfd209c0aebb180ab8037f9499da303f31fc9df5c2569c02b1a8d90df6e54e95a6d650d50c3ab101ec9956727328aa3e3f8ac927ce34c4cf22fac1028f02d4a4955973627f7bca47c3dd852bc231ec49cb9f8ba8ad6e8d7ab90436839f792599d3de3f48c7697e", @ANYRESOCT=0x0], 0x1, 0xa82, &(0x7f0000000180)="$eJzs3c1vHGcZAPBnNrZju1WbtqEtUZtMUqV12+CsbZoo6oEm9jpx8QeyHamRQE3VOCiKRVEDUhshNZUQJyoqhJAACaEeOVUqB3pBORWOnDggQf8DVHFKETBoZnftXWc/Yndtp+X3s9Y7H8877/POzM7rXe/uG3yeZVlW3LY4f/63O5ksd58zUx+/9/47+e3tGzEQe+K55PcRgxGRRvT9pzhX+ienFhfmumzoasTFiLgZkUTE3qjetzHUNHcxkp/EvevzNyP5VTzaotjgJhtHVxn/13b7/AMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgLvS5FS5PJbE7Mz8+ZfS9oohwDusr2/uw2LU7+TDbtUmEUl+i8HB+lDfj+5fX/1w/utIPFade6w68vdgXL/n4X3PP9RXqpfvkNCOuPbm9auvrK6uvF6b35um/V0L7d32tDZvYGvFzlbmZ5YWZuZOn62kM0sL6akTJ8rHz00vpdMzUVm6sLRcmUsnFyunlxcW05HJp9OxU6cm0srohYXz82enRmcr9YUnvzJeLp9IXxz9RuX04tLC/PEXR5cmz83Mzs7Mny1i8tV5zMn8RPz6zHK6XDk9l6aXr6yuTHRLMg8aa7kmaQ4a77al8fL4+NjY+FCceO7UcyfL5b7agvGx+oLyBnFbxO6ftPTar+848nc9v37DZ1Cq9f8xGzMxH+fjpUhb/kzGVCzGQsy1WJesb6/e/x89XulYb2P/X+/lH11ffSCK/v9gFH9YHGzX/7fJtftPllXrabHuo5VNbOdavBnX42q8EquxGivx+pYzWv/5qHn+043r/51l2Ra2m+atPdS4D3qQ69moxHzMxFIsxEzMxeliSVpbksapOBEnohwvx7mYjqVIYzpmYjYqsRQXYimWo1KcUZOxGJU0YjkWYjHSGInJeDrSGItTMRQTkUYlRuNCLMT5mI+zMRWni61cjivFfp/okONa0NidBI13CLqtM/9s/X92N/4lyHbr+TUctiqr9f8DbQOy+tTI5I5lBQAAAPTSl/8U9+1/8I9/i+iPx4vX5adnZivl3U4LAAAA6KHi7XqP5Xf9WUQ8HkmL5/+lXUoOAAAA6IkkDtZeBRiOQ9Wp6ieh9oQ3AQAAAMAXRPH//4P53XA+dSiStW9CubjbuQEAAAC90f079rtGJINR+07L9FL1/lItovY9v8PTM7OV0cmF2efH4sniWwaKTxrctrU9EUl/8fGDZ+JwNerwcPV+uHmLg3nU2OjzY/FMHKk1ZOSJ/O6JkRaR49XIp6qRT3WInMgjAeCL7sjt/fGn2Sb7/2fiWDXi2IG+gYjoO9CiZy2v96x9u9FQAGDNkeL9/53G2GmOeKtWrrH//+r68//+2uqm/v/BuPzffOFKjMar8VqsxqU4VnzaoHjHQVO933y39prB2tsQynGsy6sB9dg/nyzFsS6vBww3DPRyrMsrAtXY+FbExPYeBADYYUfa9MPt+v8iIupvHKz2/8canv/H7c//14YWWvGRQgC4K6yNYN/TiWxP45LdbiMA0EwvDQAAAAAAAAAAAAAAAAAAAAAAAAAAAL3X06/9H9xi8b/XxvWrLsl6Px5B64mh2j6oL3lrU3vj7WtvXv9pRDSuKuWN2J6ci0x7u+VSD7aTRcROHa+dm4h9EVveq9Fq1UBEbHvyQ72o4tPaRPWxUep08TjfcS0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACfA0nEnlbLSxF7I6IcEcd3Pqvtc2O3E9h5X2ucSW7FrXgj7tu9dAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAvphq3/9fiur9PdVF0VeKOBoRFyMi2+0ce+nWbifQI0NbLNfw/f/5MY8sib7qYY+kf3JqcWEuP/zF2A+lj997/51HmovvvdN6isDShsElajVsjP3NvfWpB4pSw1Mr165+77XvplNnohQDcWZ5enZq7uziC+tFHk4+iEijeqvL881vPzj6h3dbtPyDvKWtbax3utg5U7fX+0ir0p3r7eTK6sp4XtNy5aXl73/nyhsNqx6MwxFPjESMNNf07fzWpqbD0d+ptuST5EfJffHzuFgc/3xvJFmSH6L7i/YPXb6yujL66murl9rktC8ORcSliMGuOa3t6kPF9aSl4qwr9ee1loug/Nf+Lm1srXGMi+oWx9q04YHilBmutWGgqQ2lNnWm7dtQ7PCG/V6qTyTJxowmahkNRHNGD8WTLY50tjei/V54svORbi35JPlrci7+Ej9sGP+jlB//o9H+0dm8iSKy4UxpG1mqRhYtH29c8fLGyH/84o6ybzlMDZv146YHb6nh+l87Vj26HmVJx+tRQ40TbWps/bjYUOPGs6LUtuFFj7R/Q4na1adtoWqe+6tRTXmuV/SleDai70Cnq+JtvfWz7a8ozeVfaL16q4//XyYj8c+4YfwfAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg7pdE7Gm1vBRxNCL21efTiGwTm93bbkVpONlsij11Y+3X59z+4nepadnb3Yslt+JW9tZ2JQUAAAAAAADATjsz9fF777+T34r/x++5lWW1/++nEX0RsS/52VBMLS7MddlQf8TFiLiZTw+2C/pXVtW8NC8X967P34zI7t96kwCALv4XAAD//wIIc7g=") 4.263743329s ago: executing program 3 (id=1151): bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @loopback}, 0x10) r0 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13580}, &(0x7f0000000100), &(0x7f0000000280)) io_uring_enter(r0, 0x15f1, 0xff98, 0x69, 0x0, 0x0) 3.513754086s ago: executing program 4 (id=1152): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_NO_ENOBUFS(r0, 0x10e, 0xc, &(0x7f0000000500)=0x80, 0x4) sendmsg$netlink(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000b00)={0x18, 0x5a, 0x30d, 0x0, 0x0, "", [@nested={0x4}, @nested={0x4, 0x3}]}, 0x18}], 0x1}, 0x0) 3.227965504s ago: executing program 0 (id=1153): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r0) sendmsg$TIPC_NL_MEDIA_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x2c, r1, 0x251bdc399c801d71, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_MEDIA={0x18, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x80) 3.076402444s ago: executing program 4 (id=1154): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$l2tp(r0, &(0x7f00000000c0), 0x10) syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2, 0x0, 0x0, 0x0, 0x0, @val=0x1000000}}}}}}}, 0x0) 3.072836652s ago: executing program 1 (id=1155): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'ipvlan0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="ef00000000000000140012800b0001006970766c616e00000400028008000500", @ANYRES32=r1], 0x4c}}, 0x0) 2.910667143s ago: executing program 3 (id=1156): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000dc0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_SET(r0, &(0x7f0000000fc0)={0x0, 0x0, &(0x7f0000000f80)={&(0x7f0000000e00)={0x58, r1, 0x605, 0x0, 0x3, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5}}]}, 0x58}}, 0x0) 2.853854023s ago: executing program 2 (id=1157): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[@ANYBLOB="2c000000040a01040000000000000000020000000900010073797a3000000000090003"], 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x24000000) 2.638179257s ago: executing program 0 (id=1158): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000001640), 0xffffffffffffffff) sendmsg$IPVS_CMD_SET_CONFIG(r0, &(0x7f00000017c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001680)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010400000000000000000c"], 0x24}}, 0x0) 2.437884269s ago: executing program 4 (id=1159): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@newqdisc={0x44, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, 0x0, {0x5, 0x10}, {0x2, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_MPU={0x8, 0xe, 0x40}, @TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x44}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000000) 2.285216197s ago: executing program 3 (id=1160): r0 = socket$inet_sctp(0x2, 0x5, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e22, @local}, 0x10) sendmmsg$inet_sctp(r0, &(0x7f0000004900)=[{&(0x7f00000000c0)=@in={0x2, 0x4e22, @local}, 0x10, &(0x7f0000000180)=[{&(0x7f0000000100)="f4", 0x1}], 0x1, &(0x7f00000001c0)=[@dstaddrv4={0x18, 0x84, 0x7, @initdev={0xac, 0x1e, 0x1, 0x0}}], 0x18}], 0x1, 0x0) 2.245581494s ago: executing program 1 (id=1161): r0 = socket$packet(0x11, 0x3, 0x300) munmap(&(0x7f0000002000/0x2000)=nil, 0x2000) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c) 2.21018896s ago: executing program 2 (id=1162): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x401, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) 1.921756865s ago: executing program 0 (id=1163): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10) sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="2c0000001a0001fc80000000000000050a000000000000000000000006001d000000400008001e"], 0x2c}}, 0x0) 1.630436789s ago: executing program 3 (id=1164): syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000300)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[], 0x1, 0xab4, &(0x7f0000000340)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0) truncate(&(0x7f0000000080)='./file2\x00', 0x2000) 1.534068127s ago: executing program 4 (id=1165): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x5, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r0, &(0x7f00000002c0), &(0x7f0000000340)=@tcp}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r0, &(0x7f0000000140)="1d", &(0x7f0000000300)=@tcp, 0x2}, 0x20) 1.512045205s ago: executing program 2 (id=1166): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb05, 0x17e0, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x2, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x97d, 0x7, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x20}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$printer(r0, &(0x7f0000000d40)={0x14, &(0x7f0000000c40)={0x20, 0x27, 0x7, {0x7, 0x8, '1Fv~X'}}, 0x0}, 0x0) 1.432096865s ago: executing program 0 (id=1167): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="77ba00000000000000001f000000080001000000000008000300", @ANYRES64=r1], 0x48}}, 0x0) 1.313814311s ago: executing program 1 (id=1168): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000100000ac0000000060a0b0400000000000000000200000094000480900001800a000100696e6e6572000000800002800800024000000084080003400000000a080004400000000f08000140000000005c000580090001006d657461000000004c000280080003400000000808000340000000100800024000000003080001400000001d08000340000000010800024000000010080001400000000b080001400000001208000340000000170900010073797a30000000000900020073797a32"], 0xe8}}, 0x0) 985.835004ms ago: executing program 4 (id=1169): r0 = socket$inet6(0xa, 0x6, 0x0) listen(r0, 0x8957) ppoll(&(0x7f0000000340)=[{r0}], 0x1, &(0x7f00000003c0), 0x0, 0x0) 754.842784ms ago: executing program 0 (id=1170): mq_open(&(0x7f00005a1ffb)='eth0\x00', 0x42, 0x0, 0x0) r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000040)) ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000004c0)={0x60, 0x0, &(0x7f0000165000/0x4000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7a, 0x26}) 725.674771ms ago: executing program 3 (id=1171): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000080)=ANY=[@ANYBLOB="00020201"], 0x18) sendmmsg$inet6(r0, &(0x7f0000000a40)=[{{&(0x7f00000000c0)={0xa, 0x4e22, 0xffffff83, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80000000}, 0x1c, &(0x7f0000000180)=[{&(0x7f0000000200)="11", 0x1}], 0x1, 0x0, 0x0, 0xf5}}], 0x1, 0x4c040) 700.885943ms ago: executing program 1 (id=1172): r0 = socket$kcm(0xa, 0x922000000003, 0x11) setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f00000005c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x9}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000340)="f400000000002b00fe8000000000000000000000000000000100"/40, 0x28}], 0x1}, 0x0) 435.718784ms ago: executing program 4 (id=1173): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000280)='/proc/tty/drivers\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023895) 109.871915ms ago: executing program 1 (id=1174): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="9febffff170000006ec3a510d971"], &(0x7f0000001f80)=""/226, 0x26, 0xe2, 0x2, 0x0, 0x0, @void, @value}, 0x28) 90.755309ms ago: executing program 0 (id=1175): r0 = gettid() r1 = getpgid(0x0) rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000340)={0x0, 0x0, 0x2}) 0s ago: executing program 3 (id=1176): capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000040)) r0 = syz_open_dev$sg(&(0x7f0000000200), 0x0, 0x0) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000300)={0x53, 0xfffffffffffffffd, 0x6, 0x1, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000100)="195be874e48e", 0x0, 0x7, 0x0, 0x0, 0x0}) kernel console output (not intermixed with test programs): kets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 275.193062][ T5795] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 275.210384][ T5795] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 275.218517][ T5795] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 275.245267][ T5795] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 275.258255][ T5791] Bluetooth: hci1: command tx timeout [ 275.258903][ T5796] Bluetooth: hci0: command tx timeout [ 275.314936][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 275.325162][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 275.333242][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 275.341231][ T5786] bridge_slave_0: entered allmulticast mode [ 275.350667][ T5786] bridge_slave_0: entered promiscuous mode [ 275.367420][ T5796] Bluetooth: hci2: command tx timeout [ 275.373125][ T5796] Bluetooth: hci4: command tx timeout [ 275.373551][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 275.393981][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 275.397582][ T5791] Bluetooth: hci3: command tx timeout [ 275.401801][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.414536][ T5786] bridge_slave_1: entered allmulticast mode [ 275.423891][ T5786] bridge_slave_1: entered promiscuous mode [ 275.576136][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state [ 275.583959][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state [ 275.592399][ T5793] bridge_slave_0: entered allmulticast mode [ 275.602038][ T5793] bridge_slave_0: entered promiscuous mode [ 275.729479][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state [ 275.737455][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state [ 275.745580][ T5794] bridge_slave_0: entered allmulticast mode [ 275.755130][ T5794] bridge_slave_0: entered promiscuous mode [ 275.774284][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state [ 275.782169][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.790237][ T5793] bridge_slave_1: entered allmulticast mode [ 275.799852][ T5793] bridge_slave_1: entered promiscuous mode [ 275.856405][ T5785] team0: Port device team_slave_0 added [ 275.874820][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 275.885961][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state [ 275.893752][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state [ 275.901771][ T5794] bridge_slave_1: entered allmulticast mode [ 275.911172][ T5794] bridge_slave_1: entered promiscuous mode [ 276.001614][ T5785] team0: Port device team_slave_1 added [ 276.020553][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 276.267950][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 276.290487][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 276.311385][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 276.336419][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 276.360134][ T5795] hsr_slave_0: entered promiscuous mode [ 276.369949][ T5795] hsr_slave_1: entered promiscuous mode [ 276.529430][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 276.536841][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 276.564241][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 276.586181][ T5786] team0: Port device team_slave_0 added [ 276.596464][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 276.603654][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 276.630201][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 276.725519][ T5793] team0: Port device team_slave_0 added [ 276.741550][ T5786] team0: Port device team_slave_1 added [ 276.799550][ T5794] team0: Port device team_slave_0 added [ 276.848352][ T5793] team0: Port device team_slave_1 added [ 276.976556][ T5794] team0: Port device team_slave_1 added [ 277.084797][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 277.092260][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.118709][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 277.246613][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 277.253810][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.280881][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 277.295097][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 277.302506][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.328940][ T5796] Bluetooth: hci1: command tx timeout [ 277.336878][ T5796] Bluetooth: hci0: command tx timeout [ 277.342700][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 277.372525][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 277.379878][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.406380][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 277.409505][ T5796] Bluetooth: hci4: command tx timeout [ 277.423251][ T5791] Bluetooth: hci2: command tx timeout [ 277.423807][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 277.436546][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.462997][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 277.503479][ T5796] Bluetooth: hci3: command tx timeout [ 277.515988][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 277.523195][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 277.549496][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 277.692101][ T5785] hsr_slave_0: entered promiscuous mode [ 277.701313][ T5785] hsr_slave_1: entered promiscuous mode [ 277.710372][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 277.718329][ T5785] Cannot create hsr debugfs directory [ 277.825271][ T5793] hsr_slave_0: entered promiscuous mode [ 277.835964][ T5793] hsr_slave_1: entered promiscuous mode [ 277.844654][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 277.852639][ T5793] Cannot create hsr debugfs directory [ 278.282177][ T5794] hsr_slave_0: entered promiscuous mode [ 278.291289][ T5794] hsr_slave_1: entered promiscuous mode [ 278.300533][ T5794] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 278.308514][ T5794] Cannot create hsr debugfs directory [ 278.330143][ T5786] hsr_slave_0: entered promiscuous mode [ 278.340236][ T5786] hsr_slave_1: entered promiscuous mode [ 278.350250][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 278.358257][ T5786] Cannot create hsr debugfs directory [ 279.406953][ T5796] Bluetooth: hci0: command tx timeout [ 279.412656][ T5796] Bluetooth: hci1: command tx timeout [ 279.479042][ T5796] Bluetooth: hci4: command tx timeout [ 279.484763][ T5796] Bluetooth: hci2: command tx timeout [ 279.555578][ T5791] Bluetooth: hci3: command tx timeout [ 279.579811][ T5795] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 279.613602][ T5795] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 279.701366][ T5795] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 279.740925][ T5795] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 279.968670][ T5793] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 279.999165][ T5785] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 280.028187][ T5785] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 280.055178][ T5785] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 280.079262][ T5793] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 280.118025][ T5785] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 280.236011][ T5793] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 280.351242][ T5794] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 280.374209][ T5794] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 280.401615][ T5794] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 280.422251][ T5793] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 280.493783][ T5794] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 280.643408][ T5786] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 280.740044][ T5786] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 280.857486][ T5786] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 280.894765][ T5786] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 281.684424][ T5795] 8021q: adding VLAN 0 to HW filter on device bond0 [ 281.828040][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0 [ 281.913386][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 282.016901][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0 [ 282.084792][ T5795] 8021q: adding VLAN 0 to HW filter on device team0 [ 282.127976][ T5793] 8021q: adding VLAN 0 to HW filter on device team0 [ 282.158005][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 282.198582][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.206678][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 282.294066][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.302004][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 282.318981][ T76] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.327011][ T76] bridge0: port 1(bridge_slave_0) entered forwarding state [ 282.349988][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.357892][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 282.399066][ T76] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.406942][ T76] bridge0: port 2(bridge_slave_1) entered forwarding state [ 282.532035][ T5794] 8021q: adding VLAN 0 to HW filter on device team0 [ 282.644210][ T3876] bridge0: port 1(bridge_slave_0) entered blocking state [ 282.652165][ T3876] bridge0: port 1(bridge_slave_0) entered forwarding state [ 282.719337][ T3876] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.727252][ T3876] bridge0: port 2(bridge_slave_1) entered forwarding state [ 282.751943][ T3876] bridge0: port 2(bridge_slave_1) entered blocking state [ 282.759825][ T3876] bridge0: port 2(bridge_slave_1) entered forwarding state [ 282.798402][ T5793] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 282.932852][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 283.224689][ T5795] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 283.358572][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 283.449046][ T5794] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 283.488211][ T5785] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 283.499799][ T5785] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 283.654189][ T3876] bridge0: port 1(bridge_slave_0) entered blocking state [ 283.662150][ T3876] bridge0: port 1(bridge_slave_0) entered forwarding state [ 283.679522][ T3876] bridge0: port 2(bridge_slave_1) entered blocking state [ 283.687506][ T3876] bridge0: port 2(bridge_slave_1) entered forwarding state [ 285.132264][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 285.641196][ T5795] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 285.869829][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 285.920883][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 285.950426][ T5793] veth0_vlan: entered promiscuous mode [ 286.050908][ T5793] veth1_vlan: entered promiscuous mode [ 286.470690][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 286.519192][ T5793] veth0_macvtap: entered promiscuous mode [ 286.614672][ T5793] veth1_macvtap: entered promiscuous mode [ 286.655161][ T5794] veth0_vlan: entered promiscuous mode [ 286.667035][ T5785] veth0_vlan: entered promiscuous mode [ 286.847540][ T5794] veth1_vlan: entered promiscuous mode [ 286.871328][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 286.906688][ T5785] veth1_vlan: entered promiscuous mode [ 287.023262][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 287.086195][ T5793] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.095517][ T5793] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.104573][ T5793] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.114693][ T5793] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 287.318151][ T5794] veth0_macvtap: entered promiscuous mode [ 287.426697][ T5785] veth0_macvtap: entered promiscuous mode [ 287.444375][ T5786] veth0_vlan: entered promiscuous mode [ 287.454337][ T5794] veth1_macvtap: entered promiscuous mode [ 287.528181][ T5785] veth1_macvtap: entered promiscuous mode [ 287.566916][ T5786] veth1_vlan: entered promiscuous mode [ 287.829357][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.840318][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.855955][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 287.876975][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.887932][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.898159][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 287.908949][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 287.924624][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 288.050964][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 288.062698][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.079630][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 288.111164][ T5786] veth0_macvtap: entered promiscuous mode [ 288.176555][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 288.188896][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.199220][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 288.210067][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.225922][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 288.287262][ T5786] veth1_macvtap: entered promiscuous mode [ 288.320920][ T5785] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.331064][ T5785] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.342264][ T5785] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.353104][ T5785] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.403357][ T5794] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.413025][ T5794] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.422344][ T5794] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.431565][ T5794] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 288.666005][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 288.678854][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.690428][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 288.701544][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.711807][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 288.722951][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 288.738801][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 289.080563][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.091665][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.103007][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.114064][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.124312][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 289.135464][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 289.150733][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 289.224275][ T5795] veth0_vlan: entered promiscuous mode [ 289.359138][ T5786] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.368521][ T5786] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.377929][ T5786] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.387223][ T5786] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 289.443625][ T5795] veth1_vlan: entered promiscuous mode [ 289.793064][ T5795] veth0_macvtap: entered promiscuous mode [ 289.880399][ T5795] veth1_macvtap: entered promiscuous mode [ 290.103004][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.115049][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.127158][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.138042][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.148342][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.159266][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.169494][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 290.180409][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.198566][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 290.339623][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.351459][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.364458][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.376605][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.386918][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.397904][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.408140][ T5795] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 290.418958][ T5795] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 290.434199][ T5795] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 290.768772][ T5795] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.778188][ T5795] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.787529][ T5795] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 290.796846][ T5795] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 295.388257][ T4046] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 295.404636][ T4046] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 295.680236][ T3876] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 295.690027][ T3876] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 296.078910][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 296.085858][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 296.291782][ T3876] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 296.300331][ T3876] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 296.451852][ T4046] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 296.460268][ T4046] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 296.728927][ T5793] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 296.806772][ T4009] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 296.814925][ T4009] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 297.143992][ T3556] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 297.152588][ T3556] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 297.407280][ T3556] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 297.415641][ T3556] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 297.558887][ T3974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 297.571388][ T3974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 298.987356][ T5984] cifs: Unknown parameter 'no9 PG!8E8- ŖEeլ' [ 299.143378][ T3542] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 299.151896][ T3542] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 299.545097][ T4046] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 299.553595][ T4046] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 300.091327][ T5995] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11'. [ 302.634868][ T6027] netlink: 44 bytes leftover after parsing attributes in process `syz.4.26'. [ 302.644728][ T6027] netlink: 12 bytes leftover after parsing attributes in process `syz.4.26'. [ 302.654304][ T6027] netlink: 8 bytes leftover after parsing attributes in process `syz.4.26'. [ 303.648915][ T1650] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 303.887092][ T1650] usb 3-1: unable to get BOS descriptor or descriptor too short [ 303.940855][ T1650] usb 3-1: config 15 has an invalid interface number: 38 but max is 0 [ 303.949558][ T1650] usb 3-1: config 15 has no interface number 0 [ 303.956445][ T1650] usb 3-1: config 15 interface 38 altsetting 5 endpoint 0x9 has invalid wMaxPacketSize 0 [ 303.967481][ T1650] usb 3-1: config 15 interface 38 altsetting 5 endpoint 0x1 has invalid maxpacket 1023, setting to 64 [ 303.979084][ T1650] usb 3-1: config 15 interface 38 has no altsetting 0 [ 304.054800][ T1650] usb 3-1: New USB device found, idVendor=0763, idProduct=1011, bcdDevice=24.c6 [ 304.064681][ T1650] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 304.073291][ T1650] usb 3-1: Product: syz [ 304.077930][ T1650] usb 3-1: Manufacturer: syz [ 304.082831][ T1650] usb 3-1: SerialNumber: syz [ 304.269725][ T6045] loop3: detected capacity change from 0 to 512 [ 304.323486][ T6045] ======================================================= [ 304.323486][ T6045] WARNING: The mand mount option has been deprecated and [ 304.323486][ T6045] and is ignored by this kernel. Remove the mand [ 304.323486][ T6045] option from the mount to silence this warning. [ 304.323486][ T6045] ======================================================= [ 304.358951][ C1] vkms_vblank_simulate: vblank timer overrun [ 304.384797][ T6045] EXT4-fs: Ignoring removed i_version option [ 304.417141][ T6047] netlink: 8 bytes leftover after parsing attributes in process `syz.4.36'. [ 304.514604][ T1650] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 304.546376][ T6045] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 304.602278][ T6045] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002] [ 304.622295][ T6049] loop1: detected capacity change from 0 to 8 [ 304.657001][ T6045] System zones: 1-12 [ 304.704897][ T6045] EXT4-fs (loop3): orphan cleanup on readonly fs [ 304.766900][ T6045] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.35: invalid indirect mapped block 12 (level 1) [ 304.866521][ T6045] EXT4-fs (loop3): Remounting filesystem read-only [ 304.912403][ T6045] EXT4-fs (loop3): 1 truncate cleaned up [ 304.923400][ T6045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 304.936341][ T1650] usb 3-1: USB disconnect, device number 2 [ 305.457373][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 306.014895][ T6064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.43'. [ 307.027420][ T5991] udevd[5991]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:15.38/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 308.038710][ T6082] loop4: detected capacity change from 0 to 4096 [ 308.082238][ T6082] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 308.455785][ T6082] ntfs3(loop4): ino=19, mi_enum_attr [ 308.464170][ T6082] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 308.820644][ T6101] netlink: 8 bytes leftover after parsing attributes in process `syz.2.61'. [ 309.001800][ T6102] netlink: 4 bytes leftover after parsing attributes in process `syz.3.62'. [ 309.843041][ T6109] loop4: detected capacity change from 0 to 2048 [ 310.029412][ T6109] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 310.146890][ T6120] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 310.659187][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.710861][ T6124] bond0: (slave veth1_to_bridge): Error: Device can not be enslaved while up [ 311.677521][ T6136] 9pnet_fd: Insufficient options for proto=fd [ 312.782400][ T6149] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 312.799549][ T6149] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 314.397241][ T6164] loop3: detected capacity change from 0 to 64 [ 315.347029][ T6173] netlink: 'syz.0.95': attribute type 1 has an invalid length. [ 317.419242][ T6202] process 'syz.2.109' launched '/dev/fd/3' with NULL argv: empty string added [ 317.772398][ T6207] loop1: detected capacity change from 0 to 256 [ 319.009977][ T6222] ip6gretap1: entered allmulticast mode [ 319.093767][ T6223] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 319.699780][ T6229] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 321.842402][ T6257] loop3: detected capacity change from 0 to 64 [ 324.757280][ T6295] netlink: 20 bytes leftover after parsing attributes in process `syz.3.155'. [ 325.757202][ T6309] netlink: 84 bytes leftover after parsing attributes in process `syz.0.162'. [ 325.772125][ T6309] netlink: 36 bytes leftover after parsing attributes in process `syz.0.162'. [ 327.355100][ T6326] loop3: detected capacity change from 0 to 2048 [ 327.551097][ T6332] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 328.078777][ T6340] nfs: Unknown parameter '&' [ 328.652459][ T6346] cgroup: Name too long [ 329.532605][ T6358] netlink: 'syz.3.186': attribute type 1 has an invalid length. [ 329.736547][ T6364] capability: warning: `syz.4.188' uses 32-bit capabilities (legacy support in use) [ 330.147401][ T5147] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 330.345096][ T5147] usb 3-1: Using ep0 maxpacket: 16 [ 330.415703][ T5147] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 330.425541][ T5147] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 330.433832][ T5147] usb 3-1: Product: syz [ 330.447728][ T5147] usb 3-1: Manufacturer: syz [ 330.452647][ T5147] usb 3-1: SerialNumber: syz [ 330.517135][ T5147] r8152-cfgselector 3-1: Unknown version 0x0000 [ 330.523966][ T5147] r8152-cfgselector 3-1: config 0 descriptor?? [ 331.033093][ T5147] r8152-cfgselector 3-1: USB disconnect, device number 3 [ 331.714991][ T6385] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 331.724821][ T6385] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 332.522660][ T6392] loop2: detected capacity change from 0 to 16 [ 332.623816][ T6394] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 334.105768][ T30] audit: type=1326 audit(1742936303.783:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.0.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bb718d169 code=0x7ffc0000 [ 334.135925][ T30] audit: type=1326 audit(1742936303.783:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.0.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bb718d169 code=0x7ffc0000 [ 334.318422][ T30] audit: type=1326 audit(1742936303.863:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.0.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f8bb718d169 code=0x7ffc0000 [ 334.348293][ T30] audit: type=1326 audit(1742936303.863:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.0.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bb718d169 code=0x7ffc0000 [ 334.373358][ T30] audit: type=1326 audit(1742936303.863:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6410 comm="syz.0.211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8bb718d169 code=0x7ffc0000 [ 335.158743][ T5147] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 335.408827][ T5147] usb 1-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1 [ 335.418835][ T5147] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 335.427389][ T5147] usb 1-1: Product: syz [ 335.431839][ T5147] usb 1-1: Manufacturer: syz [ 335.436979][ T5147] usb 1-1: SerialNumber: syz [ 335.548822][ T5147] usb 1-1: config 0 descriptor?? [ 335.812909][ T5147] int51x1 1-1:0.0: probe with driver int51x1 failed with error -22 [ 336.065933][ T1650] usb 1-1: USB disconnect, device number 2 [ 337.048920][ T6446] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 337.260550][ T6450] bridge1: entered allmulticast mode [ 338.484883][ T6462] openvswitch: netlink: Key 3 has unexpected len 2 expected 4 [ 338.996679][ T6469] netlink: 'syz.4.238': attribute type 1 has an invalid length. [ 339.004946][ T6469] netlink: 6 bytes leftover after parsing attributes in process `syz.4.238'. [ 342.971895][ T6520] netlink: 'syz.3.263': attribute type 11 has an invalid length. [ 343.381524][ T6525] loop0: detected capacity change from 0 to 64 [ 344.318712][ T6533] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check. [ 344.442409][ T6539] netlink: 64 bytes leftover after parsing attributes in process `syz.3.273'. [ 344.640044][ T6541] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 344.792671][ T6537] loop0: detected capacity change from 0 to 2048 [ 344.870176][ T6537] EXT4-fs: Ignoring removed nobh option [ 345.008513][ T6537] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 345.021621][ T6537] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 345.129496][ T6547] netlink: 'syz.4.277': attribute type 1 has an invalid length. [ 345.505193][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.756859][ T6554] netlink: 132 bytes leftover after parsing attributes in process `syz.4.280'. [ 346.318971][ T1650] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 346.510532][ T1650] usb 2-1: Using ep0 maxpacket: 8 [ 346.567923][ T1650] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 346.576630][ T1650] usb 2-1: config 0 has no interface number 0 [ 346.707846][ T1650] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 346.717521][ T1650] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 346.727721][ T1650] usb 2-1: Product: syz [ 346.732186][ T1650] usb 2-1: Manufacturer: syz [ 346.738596][ T1650] usb 2-1: SerialNumber: syz [ 346.756589][ T5147] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 346.799125][ T6567] netlink: 'syz.3.286': attribute type 9 has an invalid length. [ 346.856552][ T1650] usb 2-1: config 0 descriptor?? [ 346.965917][ T5147] usb 5-1: Using ep0 maxpacket: 32 [ 347.017048][ T5147] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 347.025734][ T5147] usb 5-1: config 0 has no interface number 0 [ 347.136216][ T1650] usb 2-1: Found UVC 0.04 device syz (046d:08c3) [ 347.143128][ T1650] usb 2-1: No valid video chain found. [ 347.152571][ T5147] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 347.162369][ T5147] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 347.170792][ T5147] usb 5-1: Product: syz [ 347.175931][ T5147] usb 5-1: Manufacturer: syz [ 347.180805][ T5147] usb 5-1: SerialNumber: syz [ 347.210049][ T1650] usb 2-1: USB disconnect, device number 2 [ 347.411755][ T5147] usb 5-1: config 0 descriptor?? [ 347.471983][ T5147] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 347.664761][ T5147] usb 5-1: qt2_setup_urbs - submit read urb failed -8 [ 347.672933][ T5147] quatech2 5-1:0.51: probe with driver quatech2 failed with error -8 [ 347.867617][ T5147] usb 5-1: USB disconnect, device number 2 [ 348.349364][ T6580] loop1: detected capacity change from 0 to 64 [ 349.277927][ T6591] syz.1.298: attempt to access beyond end of device [ 349.277927][ T6591] nbd1: rw=0, sector=0, nr_sectors = 2 limit=0 [ 350.335861][ T1650] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 350.566019][ T1650] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 350.657241][ T1650] usb 4-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24 [ 350.667778][ T1650] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 350.676759][ T1650] usb 4-1: Product: syz [ 350.681209][ T1650] usb 4-1: Manufacturer: syz [ 350.686279][ T1650] usb 4-1: SerialNumber: syz [ 350.809701][ T1650] usb 4-1: config 0 descriptor?? [ 350.884590][ T1650] powermate 4-1:0.0: probe with driver powermate failed with error -5 [ 351.086919][ T5147] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 351.145866][ T5850] usb 4-1: USB disconnect, device number 2 [ 351.320686][ T5147] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 351.337196][ T5147] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.411120][ T5147] usb 3-1: config 0 descriptor?? [ 351.916309][ T5147] ath6kl: Failed to submit usb control message: -71 [ 351.923411][ T5147] ath6kl: unable to send the bmi data to the device: -71 [ 351.931073][ T5147] ath6kl: Unable to send get target info: -71 [ 351.940018][ T5147] ath6kl: Failed to init ath6kl core: -71 [ 351.964008][ T5147] ath6kl_usb 3-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 352.035919][ T5147] usb 3-1: USB disconnect, device number 4 [ 352.666929][ T6629] xt_cgroup: xt_cgroup: no path or classid specified [ 353.359244][ T6626] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 354.570472][ T6656] loop0: detected capacity change from 0 to 512 [ 354.651032][ T6656] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 354.664577][ T6655] loop3: detected capacity change from 0 to 1024 [ 355.312964][ T4046] hfsplus: b-tree write err: -5, ino 4 [ 355.907001][ T6669] loop3: detected capacity change from 0 to 512 [ 355.958760][ T6669] EXT4-fs: Ignoring removed i_version option [ 355.965219][ T6669] EXT4-fs: Ignoring removed mblk_io_submit option [ 356.066681][ T6669] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 356.097133][ T6669] EXT4-fs (loop3): orphan cleanup on readonly fs [ 356.176437][ T6669] EXT4-fs error (device loop3): ext4_orphan_get:1389: comm syz.3.331: inode #13: comm syz.3.331: iget: illegal inode # [ 356.277241][ T6669] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.331: couldn't read orphan inode 13 (err -117) [ 356.326688][ T6669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 356.815856][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 357.426540][ T6686] netlink: 'syz.0.340': attribute type 2 has an invalid length. [ 357.503326][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 357.510969][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 358.649598][ T6698] loop1: detected capacity change from 0 to 512 [ 358.745563][ T6698] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 358.759928][ T6698] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 358.991876][ T6698] EXT4-fs (loop1): 1 orphan inode deleted [ 358.998277][ T6698] EXT4-fs (loop1): 1 truncate cleaned up [ 359.006463][ T6698] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.032642][ T6705] loop3: detected capacity change from 0 to 64 [ 359.136640][ T6705] syz.3.349: attempt to access beyond end of device [ 359.136640][ T6705] loop3: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 359.151037][ T6705] Buffer I/O error on dev loop3, logical block 134217734, async page read [ 359.270783][ T6698] EXT4-fs error (device loop1): ext4_inlinedir_to_tree:1404: inode #12: block 7: comm syz.1.345: path /71/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0 [ 359.392771][ T6698] EXT4-fs (loop1): Remounting filesystem read-only [ 359.575972][ T6711] loop2: detected capacity change from 0 to 512 [ 359.750833][ T6711] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.351: bad orphan inode 15 [ 359.764379][ T6713] loop4: detected capacity change from 0 to 512 [ 359.780834][ T6713] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 359.817624][ T6711] ext4_test_bit(bit=14, block=5) = 0 [ 359.825644][ T6711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.909935][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.008366][ T6713] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 360.021996][ T6713] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 360.070732][ T6711] EXT4-fs error (device loop2): __ext4_new_inode:1071: comm syz.2.351: reserved inode found cleared - inode=1 [ 360.538435][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.555803][ T6721] loop3: detected capacity change from 0 to 1024 [ 360.658998][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.137549][ T6726] netlink: 'syz.0.357': attribute type 10 has an invalid length. [ 361.146041][ T6726] netlink: 152 bytes leftover after parsing attributes in process `syz.0.357'. [ 361.249799][ T4046] hfsplus: b-tree write err: -5, ino 4 [ 362.309605][ T6739] loop4: detected capacity change from 0 to 8 [ 362.904209][ T6744] loop2: detected capacity change from 0 to 512 [ 363.151218][ T6744] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.363: bg 0: block 248: padding at end of block bitmap is not set [ 363.203274][ T6744] Quota error (device loop2): write_blk: dquota write failed [ 363.222102][ T6744] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 363.236144][ T6744] EXT4-fs error (device loop2): ext4_acquire_dquot:6927: comm syz.2.363: Failed to acquire dquot type 1 [ 363.296343][ T6744] EXT4-fs (loop2): 1 truncate cleaned up [ 363.304470][ T6744] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 363.320056][ T6744] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 363.919847][ T6744] syz.2.363 (6744) used greatest stack depth: 2560 bytes left [ 363.994623][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 364.037127][ T4046] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5 [ 364.046841][ T4046] EXT4-fs error (device loop2): ext4_release_dquot:6950: comm kworker/u8:19: Failed to release dquot type 1 [ 364.404972][ T5147] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 364.478352][ T6765] loop1: detected capacity change from 0 to 64 [ 364.657436][ T5147] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 364.737169][ T5147] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0093, bcdDevice=23.5a [ 364.753937][ T5147] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 364.765152][ T5147] usb 1-1: Product: syz [ 364.769828][ T5147] usb 1-1: Manufacturer: syz [ 364.774723][ T5147] usb 1-1: SerialNumber: syz [ 364.958759][ T5147] usb 1-1: config 0 descriptor?? [ 365.227535][ T5147] usb 1-1: dvb_usb_v2: usb_bulk_msg() failed=-8 [ 365.234406][ T5147] dvb_usb_af9035 1-1:0.0: probe with driver dvb_usb_af9035 failed with error -8 [ 365.291729][ T5147] usb 1-1: USB disconnect, device number 3 [ 366.573751][ T6787] loop1: detected capacity change from 0 to 256 [ 366.628594][ T6787] exfat: Deprecated parameter 'utf8' [ 366.867901][ T6787] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 367.147127][ T6792] netlink: 8 bytes leftover after parsing attributes in process `syz.2.385'. [ 367.157826][ T6792] netlink: 20 bytes leftover after parsing attributes in process `syz.2.385'. [ 367.545856][ T1650] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 367.630487][ T30] audit: type=1326 audit(1742936337.313:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6797 comm="syz.3.388" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f533858d169 code=0x0 [ 367.758962][ T1650] usb 1-1: Using ep0 maxpacket: 8 [ 367.808204][ T1650] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 367.821756][ T1650] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1455, setting to 1024 [ 367.834391][ T1650] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 128, changing to 11 [ 367.845998][ T1650] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 367.855590][ T1650] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 367.996326][ T30] audit: type=1326 audit(1742936337.663:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2118d169 code=0x7ffc0000 [ 368.029634][ T30] audit: type=1326 audit(1742936337.663:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6802 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2c2118d169 code=0x7ffc0000 [ 368.092552][ T1650] usb 1-1: config 0 descriptor?? [ 368.102035][ T6794] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 368.523679][ T6808] macvlan2: entered promiscuous mode [ 368.541181][ T6808] macvlan2: entered allmulticast mode [ 368.654469][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.662401][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.671698][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.679541][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.687434][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.695040][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.703200][ T1650] prodikeys 0003:041E:2801.0001: unknown main item tag 0x0 [ 368.928807][ T1650] prodikeys 0003:041E:2801.0001: hidraw0: USB HID v1.ff Device [HID 041e:2801] on usb-dummy_hcd.0-1/input0 [ 368.994001][ T6812] loop2: detected capacity change from 0 to 256 [ 369.062450][ T1650] usb 1-1: USB disconnect, device number 4 [ 369.080331][ T6812] exfat: Deprecated parameter 'namecase' [ 369.272575][ T6812] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 369.756144][ T30] audit: type=1326 audit(1742936339.433:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 369.789255][ T30] audit: type=1326 audit(1742936339.433:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.065582][ T30] audit: type=1326 audit(1742936339.543:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.098169][ T30] audit: type=1326 audit(1742936339.543:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.120923][ T30] audit: type=1326 audit(1742936339.543:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.144158][ T30] audit: type=1326 audit(1742936339.603:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.167054][ T30] audit: type=1326 audit(1742936339.603:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6818 comm="syz.4.397" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f884db8d169 code=0x7ffc0000 [ 370.285093][ T6827] loop2: detected capacity change from 0 to 128 [ 370.660424][ T6833] loop1: detected capacity change from 0 to 8 [ 370.980120][ T6835] netlink: 80 bytes leftover after parsing attributes in process `syz.0.405'. [ 370.998963][ T6835] nbd: illegal input index 65508 [ 371.877624][ T6848] bridge0: port 2(bridge_slave_1) entered disabled state [ 371.887761][ T6848] bridge0: port 1(bridge_slave_0) entered disabled state [ 371.920093][ T6850] bridge_slave_1: left allmulticast mode [ 371.926498][ T6850] bridge_slave_1: left promiscuous mode [ 371.933335][ T6850] bridge0: port 2(bridge_slave_1) entered disabled state [ 372.033376][ T6850] bridge_slave_0: left allmulticast mode [ 372.039607][ T6850] bridge_slave_0: left promiscuous mode [ 372.047200][ T6850] bridge0: port 1(bridge_slave_0) entered disabled state [ 372.604427][ T6855] loop1: detected capacity change from 0 to 512 [ 372.688793][ T6855] EXT4-fs (loop1): orphan cleanup on readonly fs [ 372.695872][ T6855] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 372.787955][ T6855] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 372.899630][ T6855] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.414: attempt to clear invalid blocks 2 len 1 [ 372.994068][ T6862] loop0: detected capacity change from 0 to 764 [ 373.004154][ T6855] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.414: invalid indirect mapped block 1819239214 (level 0) [ 373.120533][ T6855] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.414: invalid indirect mapped block 1819239214 (level 1) [ 373.255766][ T6855] EXT4-fs (loop1): 1 truncate cleaned up [ 373.264076][ T6855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 373.286401][ T6862] rock: directory entry would overflow storage [ 373.292942][ T6862] rock: sig=0x4f50, size=4, remaining=3 [ 373.299062][ T6862] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 373.474981][ T6855] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 373.499183][ T6866] loop2: detected capacity change from 0 to 256 [ 373.520006][ T6866] exfat: Deprecated parameter 'namecase' [ 373.526493][ T6866] exfat: Deprecated parameter 'utf8' [ 373.608555][ T6855] EXT4-fs error (device loop1): __ext4_remount:6738: comm syz.1.414: Abort forced by user [ 373.645755][ T6855] EXT4-fs (loop1): Remounting filesystem read-only [ 373.654682][ T6855] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 373.841612][ T6866] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 374.184667][ T5791] Bluetooth: hci3: unexpected event 0x03 length: 17 > 11 [ 374.210835][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.757865][ T6877] netlink: 8 bytes leftover after parsing attributes in process `syz.1.423'. [ 375.388653][ T6885] netlink: 8 bytes leftover after parsing attributes in process `syz.3.427'. [ 376.176850][ T6896] loop3: detected capacity change from 0 to 512 [ 376.195859][ T5791] Bluetooth: hci3: command tx timeout [ 376.237620][ T6896] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 376.326011][ T6896] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a000c019, mo2=0002] [ 376.334752][ T6896] System zones: 1-12 [ 376.353571][ T6896] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 376.374013][ T6902] loop0: detected capacity change from 0 to 512 [ 376.399049][ T6896] EXT4-fs (loop3): 1 truncate cleaned up [ 376.408619][ T6896] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 376.423839][ T6902] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 376.470190][ T6902] EXT4-fs (loop0): 1 truncate cleaned up [ 376.478435][ T6902] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 376.643605][ T5147] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 376.865759][ T5147] usb 3-1: Using ep0 maxpacket: 16 [ 376.916191][ T5147] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 376.934803][ T5147] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 376.947421][ T5147] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 376.960913][ T5147] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2e22, bcdDevice= 0.00 [ 376.977764][ T5147] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.090634][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.198856][ T5147] usb 3-1: config 0 descriptor?? [ 377.409152][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 377.723619][ T5147] koneplus 0003:1E7D:2E22.0002: unknown main item tag 0x0 [ 377.731365][ T5147] koneplus 0003:1E7D:2E22.0002: unknown main item tag 0x0 [ 377.925500][ T5147] koneplus 0003:1E7D:2E22.0002: hidraw0: USB HID v0.00 Device [HID 1e7d:2e22] on usb-dummy_hcd.2-1/input0 [ 377.980795][ T5147] koneplus 0003:1E7D:2E22.0002: couldn't init struct koneplus_device [ 377.989702][ T5147] koneplus 0003:1E7D:2E22.0002: couldn't install mouse [ 378.091161][ T5147] koneplus 0003:1E7D:2E22.0002: probe with driver koneplus failed with error -71 [ 378.217698][ T5147] usb 3-1: USB disconnect, device number 5 [ 378.240820][ T6915] loop1: detected capacity change from 0 to 64 [ 378.293166][ T5791] Bluetooth: hci3: command tx timeout [ 379.460205][ T6924] loop2: detected capacity change from 0 to 8 [ 379.557729][ T6924] SQUASHFS error: lzo decompression failed, data probably corrupt [ 379.566185][ T6924] SQUASHFS error: Failed to read block 0x91: -5 [ 379.572702][ T6924] SQUASHFS error: Unable to read metadata cache entry [8f] [ 379.580446][ T6924] SQUASHFS error: Unable to read inode 0x11f [ 380.584534][ T6937] mkiss: ax0: crc mode is auto. [ 381.360265][ T6947] loop1: detected capacity change from 0 to 1024 [ 381.586683][ T6949] netlink: 'syz.2.455': attribute type 1 has an invalid length. [ 381.594778][ T6949] netlink: 120 bytes leftover after parsing attributes in process `syz.2.455'. [ 383.560738][ T6973] loop4: detected capacity change from 0 to 1024 [ 383.598063][ T6973] EXT4-fs: Ignoring removed bh option [ 383.727062][ T6973] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 383.741656][ T6973] ext4 filesystem being mounted at /90/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 383.933273][ T30] audit: type=1800 audit(1742936353.613:17): pid=6973 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.466" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 384.315203][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 385.577665][ T6999] loop3: detected capacity change from 0 to 1024 [ 385.691614][ T6999] hfsplus: bad catalog entry type [ 385.720716][ T7002] loop1: detected capacity change from 0 to 2048 [ 385.844346][ T7002] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 386.180758][ T7007] loop2: detected capacity change from 0 to 2048 [ 386.264510][ T7007] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 386.384577][ T7007] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 386.408417][ T7005] loop4: detected capacity change from 0 to 4096 [ 386.590844][ T7012] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 386.696311][ T30] audit: type=1800 audit(1742936356.343:18): pid=7005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.480" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 388.714804][ T7034] loop3: detected capacity change from 0 to 2048 [ 388.866338][ T7034] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 389.183500][ T7044] loop4: detected capacity change from 0 to 1024 [ 389.476015][ T7048] loop2: detected capacity change from 0 to 1024 [ 389.478873][ T7039] loop0: detected capacity change from 0 to 4096 [ 389.551967][ T7046] loop1: detected capacity change from 0 to 1024 [ 389.623956][ T3556] hfsplus: b-tree write err: -5, ino 4 [ 389.706512][ T7046] hfsplus: bad catalog entry type [ 389.928471][ T3876] hfsplus: b-tree write err: -5, ino 4 [ 389.954041][ T3556] hfsplus: b-tree write err: -5, ino 4 [ 390.482450][ T7056] netlink: 12 bytes leftover after parsing attributes in process `syz.4.507'. [ 391.153365][ T7070] loop4: detected capacity change from 0 to 256 [ 391.267863][ T7064] loop0: detected capacity change from 0 to 4096 [ 392.077420][ T7079] loop1: detected capacity change from 0 to 1024 [ 392.356618][ T7082] loop0: detected capacity change from 0 to 256 [ 392.694513][ T7082] FAT-fs (loop0): Directory bread(block 64) failed [ 392.704219][ T7082] FAT-fs (loop0): Directory bread(block 65) failed [ 392.712326][ T7082] FAT-fs (loop0): Directory bread(block 66) failed [ 392.719358][ T7082] FAT-fs (loop0): Directory bread(block 67) failed [ 392.726646][ T7082] FAT-fs (loop0): Directory bread(block 68) failed [ 392.733457][ T7082] FAT-fs (loop0): Directory bread(block 69) failed [ 392.740668][ T7082] FAT-fs (loop0): Directory bread(block 70) failed [ 392.747704][ T7082] FAT-fs (loop0): Directory bread(block 71) failed [ 392.754676][ T7082] FAT-fs (loop0): Directory bread(block 72) failed [ 392.761745][ T7082] FAT-fs (loop0): Directory bread(block 73) failed [ 392.793078][ T1650] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 393.021148][ T1650] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 393.033169][ T1650] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 393.043640][ T1650] usb 3-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00 [ 393.053205][ T1650] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.162545][ T1650] usb 3-1: config 0 descriptor?? [ 393.532948][ T7094] loop4: detected capacity change from 0 to 128 [ 393.576569][ T7094] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 393.627021][ T1650] steelseries 0003:1038:12B6.0003: unknown main item tag 0x1 [ 393.634936][ T1650] steelseries 0003:1038:12B6.0003: unknown main item tag 0x3 [ 393.693626][ T7094] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 393.772134][ T1650] steelseries 0003:1038:12B6.0003: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.2-1/input0 [ 393.902711][ T7094] EXT4-fs warning (device loop4): ext4_dirblock_csum_verify:406: inode #2: comm syz.4.521: No space for directory leaf checksum. Please run e2fsck -D. [ 393.918988][ T7094] EXT4-fs error (device loop4): htree_dirblock_to_tree:1083: inode #2: comm syz.4.521: Directory block failed checksum [ 393.944612][ T1650] steelseries 0003:1038:12B6.0003: hid_hw_raw_request() failed with -71 [ 394.022455][ T1650] usb 3-1: USB disconnect, device number 6 [ 394.095839][ T7099] loop0: detected capacity change from 0 to 2048 [ 394.179167][ T5795] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 394.248623][ T7099] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 394.966018][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.997495][ T7116] Bluetooth: MGMT ver 1.23 [ 395.397923][ T5788] Bluetooth: hci0: command 0x0406 tx timeout [ 395.404418][ T5788] Bluetooth: hci2: command 0x0406 tx timeout [ 395.407889][ T52] Bluetooth: hci4: command 0x0406 tx timeout [ 395.411553][ T5086] Bluetooth: hci3: command 0x0406 tx timeout [ 395.424901][ T52] Bluetooth: hci1: command 0x0406 tx timeout [ 395.609769][ T7126] netlink: 8 bytes leftover after parsing attributes in process `syz.1.534'. [ 395.805660][ T1650] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 396.016756][ T1650] usb 3-1: Using ep0 maxpacket: 8 [ 396.042098][ T1650] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 16 [ 396.057082][ T1650] usb 3-1: New USB device found, idVendor=04d8, idProduct=00df, bcdDevice= 0.00 [ 396.066778][ T1650] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.139739][ T1650] usb 3-1: config 0 descriptor?? [ 396.596173][ T7138] netlink: 16 bytes leftover after parsing attributes in process `syz.4.539'. [ 396.674885][ T1650] mcp2200 0003:04D8:00DF.0004: USB HID v1.ff Device [HID 04d8:00df] on usb-dummy_hcd.2-1/input0 [ 396.926453][ T1650] usb 3-1: USB disconnect, device number 7 [ 397.552510][ T7140] loop0: detected capacity change from 0 to 32768 [ 397.861998][ T7140] bcachefs (loop0): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,very_degraded,norecovery,noexcl,reconstruct_alloc,no_data_io [ 397.885583][ T7140] bcachefs (loop0): recovering from clean shutdown, journal seq 10 [ 397.894478][ T7140] bcachefs (loop0): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete [ 397.894478][ T7140] Doing compatible version upgrade from 1.19: autofix_errors to 1.20: directory_size [ 397.894478][ T7140] [ 397.928462][ T7140] bcachefs (loop0): dropping and reconstructing all alloc info [ 398.060237][ T7140] bcachefs (loop0): accounting_read... done [ 398.068745][ T7140] bcachefs (loop0): alloc_read... done [ 398.074752][ T7140] bcachefs (loop0): stripes_read... done [ 398.081076][ T7140] bcachefs (loop0): snapshots_read... done [ 398.091113][ T7140] bcachefs (loop0): done starting filesystem [ 398.268863][ T5794] bcachefs (loop0): shutting down [ 398.399334][ T5794] bcachefs (loop0): shutdown complete [ 398.720320][ T7161] loop2: detected capacity change from 0 to 4096 [ 398.766586][ T7161] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 399.072556][ T7161] ntfs3(loop2): ino=1d, mi_enum_attr [ 399.078630][ T7161] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 399.097212][ T7161] ntfs3(loop2): ino=1d, mi_enum_attr [ 399.103737][ T7161] ntfs3(loop2): ino=1d, mi_enum_attr [ 399.109551][ T7161] ntfs3(loop2): ino=1d, mi_enum_attr [ 400.170917][ T7182] loop2: detected capacity change from 0 to 512 [ 400.260399][ T7182] EXT4-fs: Ignoring removed orlov option [ 400.390684][ T7182] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #15: comm syz.2.555: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964) [ 400.448406][ T7182] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.555: couldn't read orphan inode 15 (err -117) [ 400.548074][ T7182] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 400.574727][ T7184] loop4: detected capacity change from 0 to 4096 [ 400.714376][ T7184] NILFS (loop4): invalid segment: Checksum error in segment payload [ 400.723214][ T7184] NILFS (loop4): trying rollback from an earlier position [ 400.755496][ T7184] NILFS (loop4): recovery complete [ 400.788980][ T7192] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 401.116408][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 402.217944][ T7210] loop4: detected capacity change from 0 to 64 [ 402.343293][ T7210] hfs: keylen 94 too large [ 402.421350][ T7216] loop1: detected capacity change from 0 to 22 [ 402.554659][ T7216] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 403.230434][ T7224] loop3: detected capacity change from 0 to 128 [ 403.378123][ T7230] loop2: detected capacity change from 0 to 64 [ 403.400837][ T7229] loop0: detected capacity change from 0 to 256 [ 403.414456][ T7229] exfat: Deprecated parameter 'utf8' [ 403.547781][ T7229] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 403.902966][ T7234] loop1: detected capacity change from 0 to 64 [ 403.910715][ T7233] loop3: detected capacity change from 0 to 256 [ 404.196588][ T30] audit: type=1800 audit(1742936373.853:19): pid=7233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.578" name="file1" dev="loop3" ino=7 res=0 errno=0 [ 404.221904][ T7233] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 404.235585][ T7238] netlink: 'syz.2.580': attribute type 2 has an invalid length. [ 404.326951][ T7233] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 404.466815][ T7233] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 405.048068][ T7236] loop4: detected capacity change from 0 to 40427 [ 405.107494][ T7236] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x1fffff [ 405.132664][ T7236] F2FS-fs (loop4): invalid crc_offset: 9 [ 405.151287][ T7236] F2FS-fs (loop4): invalid crc value [ 405.157142][ T7236] F2FS-fs (loop4): Failed to get valid F2FS checkpoint [ 406.177411][ T5147] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 406.427450][ T5147] usb 1-1: Using ep0 maxpacket: 32 [ 406.444436][ T7246] loop1: detected capacity change from 0 to 32768 [ 406.468867][ T5147] usb 1-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7 [ 406.478569][ T5147] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 406.508648][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.586'. [ 406.549482][ T5147] usb 1-1: config 0 descriptor?? [ 406.572867][ T5147] gspca_main: sq930x-2.14.0 probing 041e:403c [ 406.602923][ T7247] loop3: detected capacity change from 0 to 4096 [ 406.714330][ T7246] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,noinodes_use_key_cache,journal_flush_delay=1001,fix_errors=no,norecovery,recovery_pass_last=check_extents,nojournal_transaction_names,allocator_stuck_timeout=1,no_data_io [ 406.746784][ T7246] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 406.852805][ T7246] bcachefs (loop1): error validating btree node at btree alloc level 0/0 [ 406.852926][ T7246] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 406.853055][ T7246] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 406.895717][ T7246] bcachefs (loop1): btree_node_read_work: rewriting btree node at due to error [ 406.895717][ T7246] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 407.023369][ T7246] bcachefs (loop1): accounting_read... done [ 407.043018][ T7246] bcachefs (loop1): alloc_read... done [ 407.049311][ T7246] bcachefs (loop1): stripes_read... done [ 407.055577][ T7246] bcachefs (loop1): snapshots_read... done [ 407.062134][ T7246] bcachefs (loop1): Fixed errors, running fsck a second time to verify fs is clean [ 407.074976][ T7246] bcachefs (loop1): done starting filesystem [ 407.289438][ T5785] bcachefs (loop1): shutting down [ 407.383775][ T5147] gspca_sq930x: reg_w 0305 fd00 failed -71 [ 407.390734][ T5147] sq930x 1-1:0.0: probe with driver sq930x failed with error -71 [ 407.432725][ T5785] bcachefs (loop1): shutdown complete [ 407.461455][ T5147] usb 1-1: USB disconnect, device number 5 [ 407.664345][ T7263] loop2: detected capacity change from 0 to 736 [ 408.090418][ T7263] Symlink component flag not implemented [ 408.378385][ T7271] xt_recent: Unsupported userspace flags (000000da) [ 408.622023][ T7273] loop3: detected capacity change from 0 to 128 [ 409.692953][ T7287] loop0: detected capacity change from 0 to 1024 [ 409.763454][ T7289] netlink: 56 bytes leftover after parsing attributes in process `syz.4.602'. [ 409.773630][ T7289] netlink: 8 bytes leftover after parsing attributes in process `syz.4.602'. [ 409.962734][ T7287] netlink: 8 bytes leftover after parsing attributes in process `syz.0.601'. [ 409.972223][ T7287] netlink: 12 bytes leftover after parsing attributes in process `syz.0.601'. [ 410.957599][ T7301] loop0: detected capacity change from 0 to 64 [ 411.417411][ T7297] loop4: detected capacity change from 0 to 40427 [ 411.431578][ T7297] F2FS-fs (loop4): build fault injection attr: rate: 332, type: 0x1fffff [ 411.443494][ T7297] F2FS-fs (loop4): Image doesn't support compression [ 411.451077][ T7297] F2FS-fs (loop4): heap/no_heap options were deprecated [ 411.513789][ T7297] F2FS-fs (loop4): invalid crc value [ 411.568916][ T7297] F2FS-fs (loop4): Found nat_bits in checkpoint [ 411.577648][ T7297] F2FS-fs (loop4): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x730a/0x9e90 [ 411.587968][ T7297] F2FS-fs (loop4): Failed to initialize F2FS node manager (-12) [ 412.818391][ T7311] loop2: detected capacity change from 0 to 2048 [ 412.911887][ T7311] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 413.142675][ T7321] loop0: detected capacity change from 0 to 256 [ 413.289948][ T7323] netlink: 16 bytes leftover after parsing attributes in process `syz.3.616'. [ 413.299642][ T7323] netlink: 4 bytes leftover after parsing attributes in process `syz.3.616'. [ 414.094962][ T7335] loop3: detected capacity change from 0 to 1024 [ 414.605772][ T14] hfsplus: b-tree write err: -5, ino 8 [ 415.252472][ T7348] loop3: detected capacity change from 0 to 2048 [ 415.396915][ T7355] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 415.407747][ T7354] loop1: detected capacity change from 0 to 128 [ 415.762273][ T7351] loop4: detected capacity change from 0 to 4096 [ 415.826003][ T7351] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 416.138812][ T7363] loop3: detected capacity change from 0 to 256 [ 416.153725][ T7351] ntfs3(loop4): Failed to initialize $Secure (-22). [ 416.167751][ T7363] exfat: Deprecated parameter 'utf8' [ 416.369032][ T7363] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 418.881461][ T7398] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 418.950145][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 418.957058][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 420.635891][ T5147] usb 2-1: new full-speed USB device number 3 using dummy_hcd [ 420.815185][ T7421] loop3: detected capacity change from 0 to 1024 [ 420.886809][ T5147] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 420.897458][ T5147] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 420.954233][ T5147] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 420.970911][ T5147] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 420.981881][ T5147] usb 2-1: Product: syz [ 420.986431][ T5147] usb 2-1: Manufacturer: syz [ 420.991305][ T5147] usb 2-1: SerialNumber: syz [ 421.337098][ T5147] usb 2-1: 0:2 : does not exist [ 421.427142][ T5147] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 421.603180][ T5147] usb 2-1: USB disconnect, device number 3 [ 423.777526][ T7430] loop4: detected capacity change from 0 to 4096 [ 424.357242][ T7442] tipc: Started in network mode [ 424.362561][ T7442] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 424.377523][ T7442] tipc: Enabled bearer , priority 10 [ 424.518699][ T7443] ntfs3(loop4): ino=22, The size of extended attributes must not exceed 64KiB [ 424.716014][ T7447] loop3: detected capacity change from 0 to 512 [ 424.822243][ T7447] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 424.988624][ T7447] EXT4-fs (loop3): 1 truncate cleaned up [ 424.996956][ T7447] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 425.411459][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.486418][ T5147] tipc: Node number set to 4269801488 [ 426.356847][ T7470] loop4: detected capacity change from 0 to 128 [ 426.399529][ T7470] FAT-fs (loop4): Directory bread(block 162) failed [ 426.406822][ T7470] FAT-fs (loop4): Directory bread(block 163) failed [ 426.413922][ T7470] FAT-fs (loop4): Directory bread(block 164) failed [ 426.421620][ T7470] FAT-fs (loop4): Directory bread(block 165) failed [ 426.428741][ T7470] FAT-fs (loop4): Directory bread(block 166) failed [ 426.436002][ T7470] FAT-fs (loop4): Directory bread(block 167) failed [ 426.442942][ T7470] FAT-fs (loop4): Directory bread(block 168) failed [ 426.450244][ T7470] FAT-fs (loop4): Directory bread(block 169) failed [ 426.548786][ T7470] FAT-fs (loop4): Directory bread(block 162) failed [ 426.557462][ T7470] FAT-fs (loop4): Directory bread(block 163) failed [ 426.726293][ T5872] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 426.756499][ T7475] loop3: detected capacity change from 0 to 128 [ 426.905796][ T5872] usb 3-1: Using ep0 maxpacket: 32 [ 426.948746][ T5872] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 426.957438][ T5872] usb 3-1: config 0 has no interface number 0 [ 427.044385][ T5872] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 427.054535][ T5872] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 427.063117][ T5872] usb 3-1: Product: syz [ 427.067858][ T5872] usb 3-1: Manufacturer: syz [ 427.072738][ T5872] usb 3-1: SerialNumber: syz [ 427.090775][ T7479] mmap: syz.1.688 (7479) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 427.150251][ T5872] usb 3-1: config 0 descriptor?? [ 427.175975][ T5872] smsc95xx v2.0.0 [ 427.832984][ T5872] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 427.844352][ T5872] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 427.895635][ T1650] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 427.914310][ T5872] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 427.929467][ T5872] smsc95xx 3-1:0.67: probe with driver smsc95xx failed with error -71 [ 428.017052][ T5872] usb 3-1: USB disconnect, device number 8 [ 428.091687][ T7493] loop1: detected capacity change from 0 to 16 [ 428.134764][ T1650] usb 1-1: Using ep0 maxpacket: 16 [ 428.159313][ T1650] usb 1-1: config 0 has an invalid interface number: 8 but max is 0 [ 428.167924][ T1650] usb 1-1: config 0 has no interface number 0 [ 428.174318][ T1650] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 428.186035][ T1650] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 428.292652][ T1650] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 428.302393][ T1650] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 428.311413][ T1650] usb 1-1: Product: syz [ 428.316078][ T1650] usb 1-1: SerialNumber: syz [ 428.427218][ T1650] usb 1-1: config 0 descriptor?? [ 428.427828][ T7495] loop3: detected capacity change from 0 to 1024 [ 428.449222][ T1650] cm109 1-1:0.8: invalid payload size 0, expected 4 [ 428.459953][ T1650] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input5 [ 428.708486][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.717571][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.725236][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.734379][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.745475][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.753769][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.761632][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.769437][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.777719][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.785442][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 428.795020][ T1650] usb 1-1: USB disconnect, device number 6 [ 428.795277][ C0] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 428.830348][ T1650] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 428.982907][ T1137] hfsplus: b-tree write err: -5, ino 4 [ 430.067958][ T7514] loop3: detected capacity change from 0 to 1024 [ 430.219006][ T7518] netlink: 8 bytes leftover after parsing attributes in process `syz.2.706'. [ 430.257129][ T30] audit: type=1800 audit(1742936399.943:20): pid=7514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.704" name="file1" dev="loop3" ino=20 res=0 errno=0 [ 430.356870][ T7516] loop4: detected capacity change from 0 to 4096 [ 430.523973][ T7523] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 430.648409][ T7516] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 430.649437][ T1137] hfsplus: b-tree write err: -5, ino 4 [ 430.683469][ T7516] Remounting filesystem read-only [ 431.413924][ T5147] usb 4-1: new full-speed USB device number 3 using dummy_hcd [ 431.625515][ T5147] usb 4-1: config 0 has an invalid interface number: 172 but max is 0 [ 431.634072][ T5147] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 431.648816][ T5147] usb 4-1: config 0 has no interface number 0 [ 431.655527][ T5147] usb 4-1: config 0 interface 172 altsetting 0 endpoint 0x9 has invalid maxpacket 1024, setting to 64 [ 431.667078][ T5147] usb 4-1: config 0 interface 172 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 431.678498][ T5147] usb 4-1: config 0 interface 172 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 15 [ 431.804711][ T5147] usb 4-1: New USB device found, idVendor=07c4, idProduct=a002, bcdDevice=c3.c0 [ 431.821568][ T5147] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 431.832655][ T5147] usb 4-1: Product: syz [ 431.837344][ T5147] usb 4-1: Manufacturer: syz [ 431.842246][ T5147] usb 4-1: SerialNumber: syz [ 431.912011][ T5147] usb 4-1: config 0 descriptor?? [ 431.914451][ T7541] Zero length message leads to an empty skb [ 431.969722][ T5147] ums-datafab 4-1:0.172: USB Mass Storage device detected [ 432.054685][ T5147] ums-datafab 4-1:0.172: Quirks match for vid 07c4 pid a002: 1 [ 432.214342][ T5147] usb 4-1: USB disconnect, device number 3 [ 432.851239][ T7556] loop1: detected capacity change from 0 to 256 [ 432.865744][ T7556] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 432.877041][ T7556] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 432.972476][ T7556] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 433.374443][ T7562] loop3: detected capacity change from 0 to 16 [ 433.417562][ T7562] erofs (device loop3): mounted with root inode @ nid 36. [ 433.495631][ T7562] Invalid ELF header len 10 [ 434.046940][ T7572] loop3: detected capacity change from 0 to 64 [ 434.706996][ T7580] loop4: detected capacity change from 0 to 64 [ 435.087386][ T7576] loop1: detected capacity change from 0 to 4096 [ 435.623101][ T7591] loop3: detected capacity change from 0 to 64 [ 435.869026][ T30] audit: type=1800 audit(1742936405.543:21): pid=7591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.739" name="file1" dev="loop3" ino=18 res=0 errno=0 [ 435.993178][ T30] audit: type=1800 audit(1742936405.623:22): pid=7576 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.733" name="file1" dev="loop1" ino=33 res=0 errno=0 [ 436.047691][ T7596] sp0: Synchronizing with TNC [ 436.404372][ T7596] [U] [ 436.749030][ T7602] netlink: 20 bytes leftover after parsing attributes in process `syz.4.746'. [ 437.089918][ T7610] netlink: 40 bytes leftover after parsing attributes in process `syz.3.749'. [ 437.309892][ T7612] loop4: detected capacity change from 0 to 512 [ 437.437600][ T7612] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 438.239728][ T7625] loop4: detected capacity change from 0 to 256 [ 438.383694][ T7628] loop3: detected capacity change from 0 to 2048 [ 438.425937][ T7625] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 438.521885][ T7628] NILFS (loop3): bad btree root (ino=6): level = 3, flags = 0xff, nchildren = 2048 [ 438.531821][ T7628] NILFS (loop3): ifile inode (checkpoint number=2) corrupted [ 438.539976][ T7628] NILFS (loop3): error -5 while loading last checkpoint (checkpoint number=2) [ 438.906676][ T7634] capability: warning: `syz.2.760' uses deprecated v2 capabilities in a way that may be insecure [ 439.291930][ T7638] loop0: detected capacity change from 0 to 8 [ 439.567152][ T7636] loop4: detected capacity change from 0 to 4096 [ 439.615880][ T7636] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 439.882220][ T7636] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 439.993991][ T7648] loop3: detected capacity change from 0 to 1024 [ 440.475746][ T1137] hfsplus: b-tree write err: -5, ino 4 [ 441.635829][ T5147] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 441.840215][ T7679] loop1: detected capacity change from 0 to 256 [ 441.885594][ T7678] loop0: detected capacity change from 0 to 512 [ 441.920379][ T7678] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 441.922089][ T5147] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 441.940100][ T5147] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 441.948556][ T5147] usb 5-1: Product: syz [ 441.959979][ T5147] usb 5-1: Manufacturer: syz [ 441.964894][ T5147] usb 5-1: SerialNumber: syz [ 442.066026][ T7678] EXT4-fs error (device loop0): ext4_orphan_get:1415: comm syz.0.780: bad orphan inode 131083 [ 442.103273][ T7678] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 442.108213][ T5147] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 442.328319][ T5846] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 442.618497][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 443.116331][ T5147] usb 5-1: USB disconnect, device number 3 [ 443.403817][ T5846] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 443.411935][ T5846] ath9k_htc: Failed to initialize the device [ 443.454427][ T5147] usb 5-1: ath9k_htc: USB layer deinitialized [ 443.789992][ T7692] loop1: detected capacity change from 0 to 4096 [ 443.917916][ T7692] NILFS (loop1): invalid segment: Checksum error in segment payload [ 443.928428][ T7692] NILFS (loop1): trying rollback from an earlier position [ 444.086220][ T7692] NILFS (loop1): recovery complete [ 444.131055][ T7699] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 445.053455][ T7714] loop0: detected capacity change from 0 to 256 [ 445.090209][ T7714] exfat: Deprecated parameter 'namecase' [ 445.216462][ T7714] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 446.437129][ T7730] fuse: Invalid rootmode [ 447.927680][ T7749] loop4: detected capacity change from 0 to 4096 [ 447.976594][ T7757] loop2: detected capacity change from 0 to 16 [ 448.023513][ T7757] erofs (device loop2): mounted with root inode @ nid 36. [ 448.040100][ T7749] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 448.896321][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 448.943652][ T7760] loop1: detected capacity change from 0 to 32768 [ 449.128938][ T7760] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,very_degraded,norecovery,noexcl,reconstruct_alloc,no_data_io [ 449.154126][ T7760] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 449.163353][ T7760] bcachefs (loop1): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete [ 449.163353][ T7760] Doing compatible version upgrade from 1.19: autofix_errors to 1.20: directory_size [ 449.163353][ T7760] [ 449.187564][ T7760] bcachefs (loop1): dropping and reconstructing all alloc info [ 449.348463][ T7760] bcachefs (loop1): accounting_read... done [ 449.356159][ T7760] bcachefs (loop1): alloc_read... done [ 449.362158][ T7760] bcachefs (loop1): stripes_read... done [ 449.368568][ T7760] bcachefs (loop1): snapshots_read... done [ 449.378393][ T7760] bcachefs (loop1): done starting filesystem [ 449.570765][ T5785] bcachefs (loop1): shutting down [ 449.708520][ T5785] bcachefs (loop1): shutdown complete [ 450.853093][ T7792] loop0: detected capacity change from 0 to 64 [ 451.195665][ T7794] loop2: detected capacity change from 0 to 164 [ 451.965872][ T5846] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 452.168754][ T5846] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 452.180565][ T5846] usb 1-1: New USB device found, idVendor=046d, idProduct=c50c, bcdDevice= 0.00 [ 452.201099][ T5846] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 452.276151][ T5846] usb 1-1: config 0 descriptor?? [ 452.883759][ T5846] logitech 0003:046D:C50C.0005: hidraw0: USB HID v0.00 Device [HID 046d:c50c] on usb-dummy_hcd.0-1/input0 [ 453.023087][ T5846] usb 1-1: USB disconnect, device number 7 [ 453.161348][ T7806] loop4: detected capacity change from 0 to 32768 [ 453.240706][ T7812] loop3: detected capacity change from 0 to 22 [ 453.276436][ T7812] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 453.378469][ T7806] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=xxhash,data_checksum=xxhash,compression=lz4,str_hash=crc64,very_degraded,norecovery,noexcl,reconstruct_alloc,no_data_io [ 453.401953][ T7806] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 453.411051][ T7806] bcachefs (loop4): Version upgrade from 1.19: autofix_errors to 1.7: mi_btree_bitmap incomplete [ 453.411051][ T7806] Doing compatible version upgrade from 1.19: autofix_errors to 1.20: directory_size [ 453.411051][ T7806] [ 453.437909][ T7806] bcachefs (loop4): dropping and reconstructing all alloc info [ 453.593684][ T7806] bcachefs (loop4): accounting_read... done [ 453.620928][ T7806] bcachefs (loop4): alloc_read... done [ 453.629939][ T7806] bcachefs (loop4): stripes_read... done [ 453.636228][ T7806] bcachefs (loop4): snapshots_read... done [ 453.648317][ T7806] bcachefs (loop4): done starting filesystem [ 453.760815][ T5795] bcachefs (loop4): shutting down [ 453.930794][ T5795] bcachefs (loop4): shutdown complete [ 454.199070][ T5846] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 454.377503][ T5846] usb 4-1: Using ep0 maxpacket: 32 [ 454.436240][ T5846] usb 4-1: New USB device found, idVendor=04f1, idProduct=1001, bcdDevice=19.63 [ 454.452783][ T5846] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 454.463586][ T5846] usb 4-1: Product: syz [ 454.468175][ T5846] usb 4-1: Manufacturer: syz [ 454.473041][ T5846] usb 4-1: SerialNumber: syz [ 454.531396][ T5846] usb 4-1: config 0 descriptor?? [ 454.584835][ T5846] gspca_main: sunplus-2.14.0 probing 04f1:1001 [ 455.214782][ T5846] gspca_sunplus: reg_w_riv err -71 [ 455.220880][ T5846] sunplus 4-1:0.0: probe with driver sunplus failed with error -71 [ 455.467165][ T5846] usb 4-1: USB disconnect, device number 4 [ 455.853798][ T7831] loop0: detected capacity change from 0 to 40427 [ 455.872279][ T7831] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 455.883375][ T7831] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 455.945021][ T7831] F2FS-fs (loop0): invalid crc value [ 455.952522][ T7831] F2FS-fs (loop0): invalid crc value [ 455.958568][ T7831] F2FS-fs (loop0): Failed to get valid F2FS checkpoint [ 456.632797][ T7839] loop1: detected capacity change from 0 to 1024 [ 456.858564][ T7839] hfsplus: bad catalog entry type [ 456.920002][ T7841] pimreg: entered allmulticast mode [ 457.014433][ T7843] netlink: 12 bytes leftover after parsing attributes in process `syz.2.848'. [ 457.239287][ T3974] hfsplus: b-tree write err: -5, ino 4 [ 457.622197][ T7850] netlink: 24 bytes leftover after parsing attributes in process `syz.2.853'. [ 458.116800][ T5846] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 458.325755][ T5846] usb 4-1: Using ep0 maxpacket: 32 [ 458.368758][ T5846] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 458.379191][ T5846] usb 4-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 458.388764][ T5846] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 458.475544][ T7861] loop1: detected capacity change from 0 to 1024 [ 458.478192][ T5846] usb 4-1: config 0 descriptor?? [ 458.500364][ T7861] EXT4-fs: Ignoring removed oldalloc option [ 458.617406][ T7861] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 458.982311][ T5846] stadia 0003:18D1:9400.0006: unknown main item tag 0x0 [ 458.987454][ T7857] loop2: detected capacity change from 0 to 4096 [ 458.989956][ T5846] stadia 0003:18D1:9400.0006: unknown main item tag 0x0 [ 459.003630][ T5846] stadia 0003:18D1:9400.0006: unknown main item tag 0x0 [ 459.011148][ T5846] stadia 0003:18D1:9400.0006: unknown main item tag 0x0 [ 459.059734][ T7857] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 459.116423][ T5846] stadia 0003:18D1:9400.0006: hidraw0: USB HID v0.01 Device [HID 18d1:9400] on usb-dummy_hcd.3-1/input0 [ 459.116617][ T5846] stadia 0003:18D1:9400.0006: no inputs found [ 459.116744][ T5846] stadia 0003:18D1:9400.0006: force feedback init failed [ 459.246458][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 459.331777][ T5846] usb 4-1: USB disconnect, device number 5 [ 459.910731][ T7872] loop1: detected capacity change from 0 to 256 [ 461.022144][ T7889] loop3: detected capacity change from 0 to 256 [ 461.125842][ T7889] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 461.977915][ T7900] loop2: detected capacity change from 0 to 512 [ 462.036043][ T7900] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 462.084182][ T7903] sg_write: data in/out 4348/14 bytes for SCSI command 0x0-- guessing data in; [ 462.084182][ T7903] program syz.3.870 not setting count and/or reply_len properly [ 462.218248][ T7900] EXT4-fs (loop2): 1 truncate cleaned up [ 462.238565][ T7900] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 462.412584][ T30] audit: type=1800 audit(1742936432.083:23): pid=7900 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.873" name="bus" dev="loop2" ino=18 res=0 errno=0 [ 463.300079][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 463.695013][ T7915] loop3: detected capacity change from 0 to 40427 [ 463.708764][ T7915] F2FS-fs (loop3): Invalid log sectorsize (131081) [ 463.715877][ T7915] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 463.789169][ T7915] F2FS-fs (loop3): invalid crc value [ 463.806410][ T7921] loop0: detected capacity change from 0 to 256 [ 463.819768][ T7921] exfat: Deprecated parameter 'namecase' [ 463.839569][ T7915] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 464.180134][ T7921] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 464.225100][ T7915] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 464.233169][ T7915] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 464.998406][ T1650] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 465.049415][ T7938] program syz.1.888 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 465.185801][ T1650] usb 5-1: Using ep0 maxpacket: 16 [ 465.243735][ T1650] usb 5-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 465.257516][ T1650] usb 5-1: config 0 interface 0 has no altsetting 0 [ 465.264579][ T1650] usb 5-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00 [ 465.274294][ T1650] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 465.389144][ T1650] usb 5-1: config 0 descriptor?? [ 465.921665][ T1650] hid-rmi 0003:0461:4E72.0007: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.4-1/input0 [ 466.056983][ T7941] loop0: detected capacity change from 0 to 4096 [ 466.096043][ T5846] usb 5-1: USB disconnect, device number 4 [ 466.977165][ T7952] loop3: detected capacity change from 0 to 128 [ 467.628214][ T7963] loop0: detected capacity change from 0 to 64 [ 468.054391][ T7952] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 468.144251][ T7952] ext4 filesystem being mounted at /180/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 468.200547][ T7957] loop4: detected capacity change from 0 to 40427 [ 468.284490][ T7957] F2FS-fs (loop4): invalid crc value [ 468.315848][ T7957] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10240907051000858085) [ 468.333653][ T7957] F2FS-fs (loop4): NAT is corrupt, run fsck to fix it [ 468.347164][ T7957] F2FS-fs (loop4): Failed to initialize F2FS node manager (-117) [ 468.527322][ T5793] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 468.703517][ T7970] loop2: detected capacity change from 0 to 1024 [ 468.809213][ T7972] loop0: detected capacity change from 0 to 2048 [ 468.978242][ T7973] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 469.204284][ T7972] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #12: rec_len is too small for name_len - offset=0, inode=12, rec_len=16, name_len=39 [ 469.290778][ T3556] hfsplus: b-tree write err: -5, ino 4 [ 469.335902][ T7972] Remounting filesystem read-only [ 469.341434][ T7972] NILFS error (device loop0): nilfs_readdir: bad page in #12 [ 469.472523][ T7977] loop1: detected capacity change from 0 to 256 [ 469.555213][ T7977] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 469.787285][ T5846] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 470.025206][ T5846] usb 5-1: Using ep0 maxpacket: 32 [ 470.064652][ T5846] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 470.076211][ T5846] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 470.086584][ T5846] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 470.096260][ T5846] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 470.207224][ T5846] usb 5-1: config 0 descriptor?? [ 470.452491][ T7991] loop2: detected capacity change from 0 to 512 [ 470.533366][ T7991] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 470.645947][ T7991] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.910: bad orphan inode 131083 [ 470.715761][ T7991] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 470.737927][ T5846] kone 0003:1E7D:2CED.0008: unknown main item tag 0x0 [ 470.745098][ T5846] kone 0003:1E7D:2CED.0008: item fetching failed at offset 2/5 [ 470.800863][ T5846] kone 0003:1E7D:2CED.0008: parse failed [ 470.808640][ T5846] kone 0003:1E7D:2CED.0008: probe with driver kone failed with error -22 [ 470.897502][ T5846] usb 5-1: USB disconnect, device number 5 [ 471.053602][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.496499][ T8005] loop1: detected capacity change from 0 to 512 [ 471.577435][ T8007] loop3: detected capacity change from 0 to 64 [ 471.725933][ T8005] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.916: bg 0: block 248: padding at end of block bitmap is not set [ 471.776081][ T8013] netlink: 24 bytes leftover after parsing attributes in process `syz.4.919'. [ 471.786885][ T8014] syz.3.917: attempt to access beyond end of device [ 471.786885][ T8014] loop3: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 471.826977][ T8005] Quota error (device loop1): write_blk: dquota write failed [ 471.835565][ T8005] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 471.847301][ T8005] EXT4-fs error (device loop1): ext4_acquire_dquot:6927: comm syz.1.916: Failed to acquire dquot type 1 [ 471.881153][ T8014] minix_free_block (loop3:21): bit already cleared [ 471.911914][ T8005] EXT4-fs (loop1): 1 truncate cleaned up [ 471.920458][ T8005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 471.935099][ T8005] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 472.611391][ T5785] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 473.039023][ T8028] netlink: 304 bytes leftover after parsing attributes in process `syz.1.924'. [ 473.670727][ T8032] loop3: detected capacity change from 0 to 1764 [ 473.808794][ T8032] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 473.917898][ T1650] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 474.022884][ T8042] loop2: detected capacity change from 0 to 256 [ 474.138042][ T1650] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 474.149694][ T1650] usb 2-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 474.160284][ T1650] usb 2-1: config 0 interface 0 has no altsetting 0 [ 474.167457][ T1650] usb 2-1: New USB device found, idVendor=06a3, idProduct=0621, bcdDevice= 0.00 [ 474.177009][ T1650] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 474.268623][ T1650] usb 2-1: config 0 descriptor?? [ 474.343398][ T8042] FAT-fs (loop2): Directory bread(block 64) failed [ 474.350984][ T8042] FAT-fs (loop2): Directory bread(block 65) failed [ 474.358453][ T8042] FAT-fs (loop2): Directory bread(block 66) failed [ 474.368854][ T8042] FAT-fs (loop2): Directory bread(block 67) failed [ 474.379059][ T8042] FAT-fs (loop2): Directory bread(block 68) failed [ 474.386161][ T8042] FAT-fs (loop2): Directory bread(block 69) failed [ 474.393326][ T8042] FAT-fs (loop2): Directory bread(block 70) failed [ 474.400314][ T8042] FAT-fs (loop2): Directory bread(block 71) failed [ 474.407545][ T8042] FAT-fs (loop2): Directory bread(block 72) failed [ 474.423024][ T8042] FAT-fs (loop2): Directory bread(block 73) failed [ 474.529364][ T8046] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 474.789161][ T1650] saitek 0003:06A3:0621.0009: unbalanced delimiter at end of report description [ 474.843672][ T1650] saitek 0003:06A3:0621.0009: parse failed [ 474.850698][ T1650] saitek 0003:06A3:0621.0009: probe with driver saitek failed with error -22 [ 475.007512][ T1650] usb 2-1: USB disconnect, device number 4 [ 475.292220][ T8055] netlink: 32 bytes leftover after parsing attributes in process `syz.2.938'. [ 475.526583][ T5846] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 475.630558][ T1650] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 475.765780][ T5846] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 475.775384][ T5846] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 475.809009][ T5846] usb 4-1: config 0 descriptor?? [ 475.834468][ T1650] usb 5-1: too many configurations: 33, using maximum allowed: 8 [ 475.835451][ T5846] cp210x 4-1:0.0: cp210x converter detected [ 475.868471][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 476.622819][ T5846] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 476.631588][ T5846] cp210x 4-1:0.0: GPIO initialisation failed: -71 [ 476.708852][ T5846] usb 4-1: cp210x converter now attached to ttyUSB0 [ 476.759617][ T5846] usb 4-1: USB disconnect, device number 6 [ 476.831952][ T5846] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 476.841470][ T5846] cp210x 4-1:0.0: device disconnected [ 477.138813][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.155167][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.170808][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.203414][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.268404][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.310144][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.354964][ T1650] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 477.404338][ T1650] usb 5-1: New USB device found, idVendor=1c9e, idProduct=9801, bcdDevice=25.d8 [ 477.414096][ T1650] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 477.422736][ T1650] usb 5-1: Product: syz [ 477.427362][ T1650] usb 5-1: Manufacturer: syz [ 477.432228][ T1650] usb 5-1: SerialNumber: syz [ 477.528073][ T1650] usb 5-1: config 0 descriptor?? [ 477.560635][ T1650] rndis_host 5-1:0.0: skipping garbage [ 477.566763][ T1650] usb 5-1: bad CDC descriptors [ 477.771270][ T1650] usb 5-1: USB disconnect, device number 6 [ 477.796565][ T8074] loop3: detected capacity change from 0 to 1764 [ 477.884883][ T8078] loop1: detected capacity change from 0 to 1024 [ 478.076603][ T5846] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 478.255568][ T5846] usb 3-1: Using ep0 maxpacket: 8 [ 478.284337][ T5846] usb 3-1: config index 0 descriptor too short (expected 6427, got 27) [ 478.293212][ T5846] usb 3-1: config 0 has an invalid interface number: 21 but max is 0 [ 478.311046][ T5846] usb 3-1: config 0 has no interface number 0 [ 478.319964][ T5846] usb 3-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 478.331964][ T5846] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 478.343425][ T5846] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 478.398047][ T5846] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 478.415050][ T5846] usb 3-1: New USB device strings: Mfr=31, Product=1, SerialNumber=0 [ 478.426273][ T5846] usb 3-1: Product: syz [ 478.430711][ T5846] usb 3-1: Manufacturer: syz [ 478.457914][ T8084] loop3: detected capacity change from 0 to 256 [ 478.468084][ T5846] usb 3-1: config 0 descriptor?? [ 478.477536][ T8076] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 478.540455][ T8084] exfat: Deprecated parameter 'namecase' [ 478.547130][ T8084] exfat: Deprecated parameter 'utf8' [ 478.710256][ T8084] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 479.211456][ T8090] loop0: detected capacity change from 0 to 8 [ 479.237863][ T5846] usb 3-1: USB disconnect, device number 9 [ 479.294722][ T8090] SQUASHFS error: zlib decompression failed, data probably corrupt [ 479.303164][ T8090] SQUASHFS error: Failed to read block 0x9b: -5 [ 479.310017][ T8090] SQUASHFS error: Unable to read metadata cache entry [99] [ 479.317631][ T8090] SQUASHFS error: Unable to read inode 0x127 [ 479.356675][ T8092] netlink: 32 bytes leftover after parsing attributes in process `syz.1.955'. [ 479.392864][ T8092] netlink: 32 bytes leftover after parsing attributes in process `syz.1.955'. [ 479.726766][ T1650] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 479.925671][ T1650] usb 4-1: Using ep0 maxpacket: 32 [ 479.966663][ T1650] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 479.977609][ T1650] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 479.987373][ T1650] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 480.050699][ T8102] loop4: detected capacity change from 0 to 512 [ 480.069137][ T1650] usb 4-1: config 0 descriptor?? [ 480.094242][ T8102] EXT4-fs: Ignoring removed mblk_io_submit option [ 480.118237][ T1650] hub 4-1:0.0: bad descriptor, ignoring hub [ 480.124486][ T1650] hub 4-1:0.0: probe with driver hub failed with error -5 [ 480.243265][ T8102] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 480.339471][ T8102] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.960: attempt to clear invalid blocks 2 len 1 [ 480.392131][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 480.399313][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 480.435088][ T8110] loop1: detected capacity change from 0 to 164 [ 480.442521][ T8102] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 480.462342][ T8102] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.960: invalid indirect mapped block 1819239214 (level 0) [ 480.489520][ T8102] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.960: invalid indirect mapped block 1819239214 (level 1) [ 480.500041][ T8110] Unable to read rock-ridge attributes [ 480.537092][ T8102] EXT4-fs (loop4): 1 truncate cleaned up [ 480.543880][ T8110] Unable to read rock-ridge attributes [ 480.545729][ T8102] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 480.666705][ T1650] usb 4-1: reset high-speed USB device number 7 using dummy_hcd [ 480.725761][ T8102] EXT4-fs (loop4): Quota file not on filesystem root. Journaled quota will not work [ 481.238089][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 481.709217][ T8112] loop2: detected capacity change from 0 to 32768 [ 481.724452][ T1650] usb 4-1: USB disconnect, device number 7 [ 481.734704][ T8112] bcachefs (/dev/loop2): error validating superblock: Invalid option invalid compression opt 240 [ 481.746385][ T8112] bcachefs: bch2_fs_get_tree() error: invalid_sb_opt_compression [ 482.577054][ T8125] netlink: 12 bytes leftover after parsing attributes in process `syz.3.970'. [ 482.587138][ T8125] netlink: 20 bytes leftover after parsing attributes in process `syz.3.970'. [ 482.693715][ T8130] netlink: 24 bytes leftover after parsing attributes in process `syz.1.971'. [ 483.703251][ T8143] loop0: detected capacity change from 0 to 1024 [ 483.761512][ T8143] EXT4-fs: Ignoring removed orlov option [ 483.769024][ T8143] EXT4-fs: Ignoring removed nomblk_io_submit option [ 483.931972][ T8143] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 484.191413][ T8150] loop1: detected capacity change from 0 to 4096 [ 484.285136][ T8150] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 484.567292][ T8150] ntfs3(loop1): ino=b, mi_enum_attr [ 484.567331][ T8161] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 484.592305][ T8150] ntfs3(loop1): Failed to load $Extend (-22). [ 484.599115][ T8150] ntfs3(loop1): Failed to initialize $Extend. [ 484.622483][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 484.701239][ T8150] ntfs3(loop1): ino=5, "/" indx_read [ 484.707574][ T8150] ntfs3(loop1): ino=5, ntfs_readdir [ 487.119084][ T8186] loop4: detected capacity change from 0 to 32768 [ 487.255509][ T8186] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io [ 487.278290][ T8186] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 487.287133][ T8186] bcachefs (loop4): dropping and reconstructing all alloc info [ 487.477707][ T8186] bcachefs (loop4): accounting_read... done [ 487.486809][ T8186] bcachefs (loop4): alloc_read... done [ 487.493080][ T8186] bcachefs (loop4): stripes_read... done [ 487.499603][ T8186] bcachefs (loop4): snapshots_read... done [ 487.506356][ T8186] bcachefs (loop4): check_allocations... [ 487.531256][ T8186] btree ptr not marked in member info btree allocated bitmap [ 487.531387][ T8186] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 7589ab5e0c11cc7a written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, fixing [ 487.574016][ T8186] btree ptr not marked in member info btree allocated bitmap [ 487.574123][ T8186] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 24 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0, fixing [ 487.610793][ T8186] btree ptr not marked in member info btree allocated bitmap [ 487.610906][ T8186] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq c0bef60d07ceb940 written 16 min_key POS_MIN durability: 1 ptr: 0:35:0 gen 0, fixing [ 487.645148][ T8186] btree ptr not marked in member info btree allocated bitmap [ 487.645411][ T8186] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ebb8d5a9e3463bdb written 16 min_key POS_MIN durability: 1 ptr: 0:32:0 gen 0, fixing [ 487.733246][ T8186] done [ 487.745543][ T8186] bcachefs (loop4): going read-write [ 487.789130][ T8186] bcachefs (loop4): Fixed errors, running fsck a second time to verify fs is clean [ 487.892283][ T8186] bcachefs (loop4): done starting filesystem [ 487.920685][ T8205] loop0: detected capacity change from 0 to 1024 [ 488.077353][ T8205] hfsplus: bad catalog entry type [ 488.167522][ T5795] bcachefs (loop4): shutting down [ 488.174112][ T5795] bcachefs (loop4): going read-only [ 488.179902][ T5795] bcachefs (loop4): finished waiting for writes to stop [ 488.271338][ T5795] bcachefs (loop4): flushing journal and stopping allocators, journal seq 11 [ 488.296794][ T5795] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 11 [ 488.369263][ T5795] bcachefs (loop4): unclean shutdown complete, journal seq 12 [ 488.379400][ T5795] bcachefs (loop4): done going read-only, filesystem not clean [ 488.524532][ T5795] bcachefs (loop4): shutdown complete [ 488.554127][ T14] hfsplus: b-tree write err: -5, ino 4 [ 488.571660][ T8217] loop2: detected capacity change from 0 to 64 [ 490.367767][ T8240] sp0: Synchronizing with TNC [ 490.441972][ T8239] [U] [ 490.582243][ T8245] loop2: detected capacity change from 0 to 128 [ 490.705902][ T8245] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 490.847834][ T8245] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 490.856380][ T8245] FAT-fs (loop2): Filesystem has been set read-only [ 491.224643][ T5786] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100) [ 491.272403][ T8249] loop0: detected capacity change from 0 to 2048 [ 491.465978][ T8252] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 491.475770][ T8253] loop2: detected capacity change from 0 to 128 [ 492.705782][ T8269] loop4: detected capacity change from 0 to 64 [ 492.827104][ T30] audit: type=1800 audit(1742936462.503:24): pid=8269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1004" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 493.046162][ T8277] loop2: detected capacity change from 0 to 22 [ 493.103008][ T8277] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 493.689101][ T8283] loop3: detected capacity change from 0 to 1024 [ 493.728742][ T8281] loop0: detected capacity change from 0 to 2048 [ 493.759074][ T8281] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=3932051, location=3932051 [ 493.956728][ T8283] hfsplus: bad catalog entry type [ 494.027458][ T8281] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 494.220035][ T8281] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry at pos 144 with incorrect tag 0 [ 494.534354][ T4009] hfsplus: b-tree write err: -5, ino 4 [ 494.705674][ T8287] loop1: detected capacity change from 0 to 32768 [ 494.744892][ T8291] loop2: detected capacity change from 0 to 512 [ 494.765393][ T8287] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 494.782726][ T8287] OCFS2: ERROR (device loop1): int ocfs2_get_clusters_nocache(struct inode *, struct buffer_head *, u32, unsigned int *, struct ocfs2_extent_rec *, unsigned int *): Inode 75 has an invalid extent (next_free_rec 64010, count 19) [ 494.815595][ T8287] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 494.854314][ T8287] (syz.1.1037,8287,1):ocfs2_get_clusters:634 ERROR: status = -30 [ 494.869414][ T8287] (syz.1.1037,8287,1):ocfs2_extent_map_get_blocks:681 ERROR: status = -30 [ 494.878499][ T8287] (syz.1.1037,8287,1):ocfs2_bmap:476 ERROR: get_blocks() failed, block = 0 [ 494.887623][ T8287] (syz.1.1037,8287,1):ocfs2_bmap:477 ERROR: status = -30 [ 494.903701][ T8287] jbd2_journal_init_inode: Cannot locate journal superblock [ 494.914071][ T8287] (syz.1.1037,8287,1):ocfs2_journal_init:951 ERROR: Linux journal layer error [ 494.923403][ T8287] (syz.1.1037,8287,1):ocfs2_check_volume:2344 ERROR: Could not initialize journal! [ 494.933163][ T8287] (syz.1.1037,8287,1):ocfs2_check_volume:2429 ERROR: status = -22 [ 494.941458][ T8287] (syz.1.1037,8287,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 494.958096][ T8291] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.972507][ T8287] (syz.1.1037,8287,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 495.552533][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 496.206091][ T8305] loop1: detected capacity change from 0 to 47 [ 496.352887][ T8305] MINIX-fs: deleted inode referenced: 9 [ 496.406901][ T8305] MINIX-fs: deleted inode referenced: 9 [ 498.039932][ T8317] loop3: detected capacity change from 0 to 40427 [ 498.079621][ T8317] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1fffff [ 498.090550][ T8317] F2FS-fs (loop3): Image doesn't support compression [ 498.098354][ T8317] F2FS-fs (loop3): Image doesn't support compression [ 498.105794][ T8317] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x4 [ 498.118535][ T8317] F2FS-fs (loop3): invalid crc value [ 498.156538][ T8317] F2FS-fs (loop3): Found nat_bits in checkpoint [ 498.474289][ T8317] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 498.721303][ T8334] loop2: detected capacity change from 0 to 8 [ 498.794858][ T8334] squashfs image failed sanity check [ 499.521443][ T8340] loop0: detected capacity change from 0 to 1024 [ 499.530047][ T1650] IPVS: starting estimator thread 0... [ 499.545855][ T8346] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1065'. [ 499.556454][ T8346] nbd: socks must be embedded in a SOCK_ITEM attr [ 499.569960][ T8340] EXT4-fs: Ignoring removed orlov option [ 499.576546][ T8340] EXT4-fs: Ignoring removed orlov option [ 499.628088][ T8347] IPVS: using max 192 ests per chain, 9600 per kthread [ 499.760901][ T8340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 500.018459][ T30] audit: type=1326 audit(1742936469.683:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8351 comm="syz.2.1066" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2c2118d169 code=0x0 [ 500.127571][ T5797] Bluetooth: hci4: command 0x0406 tx timeout [ 500.156344][ T8355] loop4: detected capacity change from 0 to 512 [ 500.252193][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 500.332068][ T8355] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1068: bg 0: block 248: padding at end of block bitmap is not set [ 500.384245][ T8355] Quota error (device loop4): write_blk: dquota write failed [ 500.392708][ T8355] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 500.403597][ T8355] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1068: Failed to acquire dquot type 1 [ 500.454871][ T8355] EXT4-fs (loop4): 1 truncate cleaned up [ 500.463106][ T8355] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 500.476908][ T8355] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 500.590111][ T8355] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 500.601161][ T8355] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 500.611740][ T8355] EXT4-fs error (device loop4): ext4_acquire_dquot:6927: comm syz.4.1068: Failed to acquire dquot type 1 [ 500.763739][ T8361] loop1: detected capacity change from 0 to 128 [ 500.834029][ T8361] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 500.864198][ T8365] CUSE: unknown device info "KJ H+ۤ2LhnL1`Ccn80(3նi>f_ٮ,<_eF" [ 500.876845][ T8365] CUSE: unknown device info "3ܟ,̘" [ 500.882991][ T8365] CUSE: unknown device info "J2S Z !e/J+-na4D|G$5O~q [ 500.882991][ T8365] fzXSAxjTǔw xRɐQ(hҏj pVdY0|M?2JIv^R@" [ 500.902426][ T8365] CUSE: unknown device info "!To}ݝ&|L+Uoϲ"FstV:׌E gJ<@c4TMM|" [ 500.914119][ T8365] CUSE: DEVNAME unspecified [ 500.920298][ T8364] loop3: detected capacity change from 0 to 128 [ 500.977732][ T8361] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 500.978936][ T5795] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.007191][ T4009] Quota error (device loop4): do_check_range: Getting block 0 out of range 1-5 [ 501.016959][ T4009] EXT4-fs error (device loop4): ext4_release_dquot:6950: comm kworker/u8:18: Failed to release dquot type 1 [ 501.917369][ T8370] loop3: detected capacity change from 0 to 4096 [ 502.758764][ T8389] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1081'. [ 502.867352][ T8391] netlink: 'syz.3.1082': attribute type 3 has an invalid length. [ 503.252260][ T8383] sctp: failed to load transform for md5: -2 [ 503.433668][ T8397] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1083'. [ 504.479133][ T8418] loop1: detected capacity change from 0 to 256 [ 504.582629][ T8418] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 504.689695][ T8418] exFAT-fs (loop1): start_clu is invalid cluster(0xffffffff) [ 504.698220][ T8418] exFAT-fs (loop1): valid_size(150994954) is greater than size(10) [ 504.935934][ T8421] warning: `syz.0.1094' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 505.113156][ T8424] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1096'. [ 505.144947][ T8424] gretap0: entered promiscuous mode [ 505.876071][ T8434] loop4: detected capacity change from 0 to 2048 [ 505.954486][ T8438] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 506.894358][ T8450] loop0: detected capacity change from 0 to 256 [ 507.606193][ T1650] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 507.789290][ T1650] usb 3-1: Using ep0 maxpacket: 16 [ 507.842151][ T1650] usb 3-1: config 0 interface 0 altsetting 96 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 507.854941][ T1650] usb 3-1: config 0 interface 0 has no altsetting 0 [ 507.863315][ T1650] usb 3-1: New USB device found, idVendor=056a, idProduct=0044, bcdDevice= 0.00 [ 507.874011][ T1650] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 508.005099][ T1650] usb 3-1: config 0 descriptor?? [ 508.492728][ T1650] wacom 0003:056A:0044.000A: Unknown device_type for 'HID 056a:0044'. Assuming pen. [ 508.537561][ T1650] wacom 0003:056A:0044.000A: hidraw0: USB HID v0.05 Device [HID 056a:0044] on usb-dummy_hcd.2-1/input0 [ 508.553136][ T1650] input: Wacom Intuos2 12x12 Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0044.000A/input/input9 [ 508.736203][ T1650] usb 3-1: USB disconnect, device number 10 [ 509.700787][ T8489] loop0: detected capacity change from 0 to 1024 [ 509.867773][ T8489] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 510.011410][ T8489] overlayfs: upper fs needs to support d_type. [ 510.087353][ T8489] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 510.094911][ T8489] overlayfs: failed to set xattr on upper [ 510.101206][ T8489] overlayfs: ...falling back to redirect_dir=nofollow. [ 510.108647][ T8489] overlayfs: ...falling back to index=off. [ 510.114691][ T8489] overlayfs: ...falling back to uuid=null. [ 510.451953][ T8499] loop2: detected capacity change from 0 to 512 [ 510.511666][ T8499] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 510.707581][ T8499] EXT4-fs (loop2): 1 truncate cleaned up [ 510.715941][ T8499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 511.298746][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 511.833973][ T8518] loop0: detected capacity change from 0 to 1024 [ 512.045654][ T8520] loop4: detected capacity change from 0 to 256 [ 512.063752][ T8520] exfat: Deprecated parameter 'namecase' [ 512.215634][ T8524] loop2: detected capacity change from 0 to 256 [ 512.231310][ T8520] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 512.689645][ T8530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1143'. [ 512.731133][ T8528] loop1: detected capacity change from 0 to 1024 [ 514.129397][ T8549] loop2: detected capacity change from 0 to 1764 [ 514.317660][ T8549] ISOFS: unable to read i-node block [ 514.323249][ T8549] isofs_fill_super: get root inode failed [ 514.371966][ T8554] netlink: 'syz.4.1152': attribute type 3 has an invalid length. [ 514.947220][ T8558] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1155'. [ 515.337206][ T8566] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1158'. [ 515.616720][ T8568] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1159'. [ 515.626388][ T8568] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1159'. [ 515.635913][ T8568] netlink: 'syz.4.1159': attribute type 14 has an invalid length. [ 515.643982][ T8568] netlink: 'syz.4.1159': attribute type 11 has an invalid length. [ 516.564665][ T8583] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1167'. [ 516.584713][ T8579] loop3: detected capacity change from 0 to 2048 [ 516.646904][ T8586] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 516.776337][ T5846] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 516.952022][ T8586] NILFS (loop3): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 516.964362][ T8586] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=16) [ 517.006068][ T5846] usb 3-1: Using ep0 maxpacket: 16 [ 517.016290][ T8586] Remounting filesystem read-only [ 517.017865][ T5793] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer [ 517.134735][ T5846] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 517.146433][ T5846] usb 3-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00 [ 517.155967][ T5846] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 517.237863][ T5846] usb 3-1: config 0 descriptor?? [ 517.776028][ T5846] asus 0003:0B05:17E0.000B: item fetching failed at offset 5/7 [ 517.784464][ T1137] ===================================================== [ 517.792694][ T1137] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x539/0xb40 [ 517.801188][ T1137] n_tty_receive_buf_closing+0x539/0xb40 [ 517.807230][ T1137] n_tty_receive_buf_common+0x1a8b/0x25b0 [ 517.813235][ T1137] n_tty_receive_buf2+0x4c/0x60 [ 517.818840][ T1137] tty_ldisc_receive_buf+0xd0/0x290 [ 517.824279][ T1137] tty_port_default_receive_buf+0xdf/0x190 [ 517.838330][ T1137] flush_to_ldisc+0x475/0xdb0 [ 517.843272][ T1137] process_scheduled_works+0xc1d/0x1e80 [ 517.852223][ T1137] worker_thread+0xea7/0x14f0 [ 517.857401][ T1137] kthread+0x6b9/0xef0 [ 517.861670][ T1137] ret_from_fork+0x6d/0x90 [ 517.866455][ T1137] ret_from_fork_asm+0x1a/0x30 [ 517.871601][ T1137] [ 517.874049][ T1137] Uninit was created at: [ 517.878733][ T1137] __kmalloc_noprof+0x946/0x1260 [ 517.883935][ T1137] __tty_buffer_request_room+0x36e/0x6d0 [ 517.889935][ T1137] __tty_insert_flip_string_flags+0x14c/0x680 [ 517.897778][ T1137] uart_insert_char+0x3a1/0xa10 [ 517.902911][ T1137] serial8250_read_char+0x1a7/0x5d0 [ 517.908897][ T1137] serial8250_handle_irq+0x971/0x1130 [ 517.914500][ T1137] serial8250_default_handle_irq+0x120/0x2b0 [ 517.920878][ T1137] serial8250_interrupt+0xc5/0x360 [ 517.926363][ T1137] __handle_irq_event_percpu+0x118/0xca0 [ 517.940342][ T1137] handle_irq_event+0xef/0x2c0 [ 517.948001][ T1137] handle_edge_irq+0x340/0xfb0 [ 517.953056][ T1137] __common_interrupt+0x97/0x1f0 [ 517.960745][ T1137] common_interrupt+0x92/0xb0 [ 517.966615][ T1137] asm_common_interrupt+0x2b/0x40 [ 517.971875][ T1137] [ 517.974382][ T1137] CPU: 1 UID: 0 PID: 1137 Comm: kworker/u8:8 Not tainted 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(undef) [ 517.986777][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 517.997260][ T1137] Workqueue: events_unbound flush_to_ldisc [ 518.003345][ T1137] ===================================================== [ 518.010664][ T1137] Disabling lock debugging due to kernel taint [ 518.017085][ T1137] Kernel panic - not syncing: kmsan.panic set ... [ 518.023703][ T1137] CPU: 1 UID: 0 PID: 1137 Comm: kworker/u8:8 Tainted: G B 6.14.0-syzkaller-01103-g2df0c02dab82 #0 PREEMPT(undef) [ 518.037322][ T1137] Tainted: [B]=BAD_PAGE [ 518.041603][ T1137] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 518.051844][ T1137] Workqueue: events_unbound flush_to_ldisc [ 518.057890][ T1137] Call Trace: [ 518.061312][ T1137] [ 518.064373][ T1137] dump_stack_lvl+0x216/0x2d0 [ 518.069284][ T1137] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 518.075369][ T1137] dump_stack+0x1e/0x24 [ 518.079767][ T1137] panic+0x4e5/0xcf0 [ 518.083890][ T1137] ? kmsan_save_stack_with_flags+0x50/0x60 [ 518.089950][ T1137] kmsan_report+0x2ca/0x2d0 [ 518.094707][ T1137] ? __msan_warning+0x95/0x120 [ 518.099691][ T1137] ? n_tty_receive_buf_closing+0x539/0xb40 [ 518.105743][ T1137] ? n_tty_receive_buf_common+0x1a8b/0x25b0 [ 518.111880][ T1137] ? n_tty_receive_buf2+0x4c/0x60 [ 518.117222][ T1137] ? tty_ldisc_receive_buf+0xd0/0x290 [ 518.122818][ T1137] ? tty_port_default_receive_buf+0xdf/0x190 [ 518.129112][ T1137] ? flush_to_ldisc+0x475/0xdb0 [ 518.134165][ T1137] ? process_scheduled_works+0xc1d/0x1e80 [ 518.140120][ T1137] ? worker_thread+0xea7/0x14f0 [ 518.145193][ T1137] ? kthread+0x6b9/0xef0 [ 518.149662][ T1137] ? ret_from_fork+0x6d/0x90 [ 518.154510][ T1137] ? ret_from_fork_asm+0x1a/0x30 [ 518.159690][ T1137] ? __update_load_avg_cfs_rq+0x11e/0x10e0 [ 518.165753][ T1137] ? kmsan_get_metadata+0x13e/0x1c0 [ 518.171205][ T1137] ? kmsan_internal_set_shadow_origin+0x6c/0x100 [ 518.177781][ T1137] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 518.184083][ T1137] ? kmsan_get_metadata+0x13e/0x1c0 [ 518.189531][ T1137] ? kmsan_get_metadata+0x13e/0x1c0 [ 518.194994][ T1137] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 518.201092][ T1137] ? kmsan_get_metadata+0x13e/0x1c0 [ 518.206588][ T1137] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 518.212668][ T1137] __msan_warning+0x95/0x120 [ 518.217507][ T1137] n_tty_receive_buf_closing+0x539/0xb40 [ 518.223458][ T1137] n_tty_receive_buf_common+0x1a8b/0x25b0 [ 518.229433][ T1137] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 518.235616][ T1137] n_tty_receive_buf2+0x4c/0x60 [ 518.240715][ T1137] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 518.246523][ T1137] tty_ldisc_receive_buf+0xd0/0x290 [ 518.251962][ T1137] tty_port_default_receive_buf+0xdf/0x190 [ 518.258012][ T1137] flush_to_ldisc+0x475/0xdb0 [ 518.262916][ T1137] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 518.269576][ T1137] ? __pfx_flush_to_ldisc+0x10/0x10 [ 518.274990][ T1137] process_scheduled_works+0xc1d/0x1e80 [ 518.280833][ T1137] worker_thread+0xea7/0x14f0 [ 518.285774][ T1137] kthread+0x6b9/0xef0 [ 518.290015][ T1137] ? __pfx_worker_thread+0x10/0x10 [ 518.295387][ T1137] ? __pfx_kthread+0x10/0x10 [ 518.300166][ T1137] ret_from_fork+0x6d/0x90 [ 518.304815][ T1137] ? __pfx_kthread+0x10/0x10 [ 518.309595][ T1137] ret_from_fork_asm+0x1a/0x30 [ 518.314621][ T1137] [ 518.318190][ T1137] Kernel Offset: disabled [ 518.322616][ T1137] Rebooting in 86400 seconds..