last executing test programs: 1m28.375220479s ago: executing program 0 (id=1819): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x3, 0xd, &(0x7f0000000a40)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000002a0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000081000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x14, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 1m27.906515217s ago: executing program 0 (id=1823): r0 = socket$inet6(0xa, 0x80003, 0xff) setsockopt$inet6_int(r0, 0x29, 0x49, 0x0, 0x6) 1m27.671891214s ago: executing program 0 (id=1828): r0 = socket$kcm(0xa, 0x5, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x890b, 0x0) 1m27.28305816s ago: executing program 0 (id=1844): syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x1010006, &(0x7f0000000e00)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@noquota}, {}, {@errors_continue}, {@discard_size={'discard', 0x3d, 0x5}}, {@uid}]}, 0x24, 0x6220, &(0x7f0000014680)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 1m25.16702185s ago: executing program 0 (id=1857): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="440000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b0001006970766c616e"], 0x44}}, 0x0) 1m23.737864007s ago: executing program 0 (id=1873): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)={[{@utf8no}, {@rodir}, {@fat=@quiet}, {@fat=@tz_utc}, {@fat=@codepage={'codepage', 0x3d, '932'}}, {@numtail}, {@shortname_mixed}, {@uni_xlate}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}, {@utf8no}, {@uni_xlate}]}, 0x26, 0x346, &(0x7f0000000300)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) 1m23.097104121s ago: executing program 32 (id=1873): syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000240)={[{@utf8no}, {@rodir}, {@fat=@quiet}, {@fat=@tz_utc}, {@fat=@codepage={'codepage', 0x3d, '932'}}, {@numtail}, {@shortname_mixed}, {@uni_xlate}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-2'}}, {@utf8no}, {@utf8no}, {@uni_xlate}]}, 0x26, 0x346, &(0x7f0000000300)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0) 4.061375529s ago: executing program 5 (id=2694): syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000068e04d206f0e2c586831010203010902240001000000000904000002ff47d000090509e700008000040905", @ANYRES64], 0x0) syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0) 2.521495012s ago: executing program 3 (id=2716): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0), 0x3, 0x4c1, &(0x7f0000000b80)="$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") quotactl$Q_GETNEXTQUOTA(0xffffffff80000901, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0xffffffffffffffff) 2.195936467s ago: executing program 2 (id=2718): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@newlink={0x3c, 0x10, 0x40d, 0x70bd29, 0x25dfdbfc, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_VLAN_DEFAULT_PVID={0x6, 0x27, 0x5}]}}}]}, 0x3c}}, 0x0) 2.194336523s ago: executing program 4 (id=2719): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000004580)=[{{&(0x7f0000000a00)={0xa, 0x4e20, 0x7992, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x8}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="2400000000000000290000003200000000000000000000000000ffff00000000", @ANYRES32=0x0, @ANYBLOB="000000002400000000000000290000003200000000000000000000000000ffffac141430cd"], 0x50}}], 0x1, 0x10) 2.121501862s ago: executing program 6 (id=2720): r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VIDIOC_ENUM_FREQ_BANDS(r0, 0xc0405665, &(0x7f0000004000)={0x0, 0x2}) 1.965053879s ago: executing program 3 (id=2721): r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x84, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r0, 0x40045542, &(0x7f0000000b00)) 1.941604769s ago: executing program 1 (id=2722): syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000540)='./file0\x00', 0x1204018, &(0x7f0000000140)=ANY=[@ANYBLOB="6f76657272696465726f636b7065726d2c6e6f636f6d70726573732c686964652c73657373696f6e3d3078303030303030303030303030303032312c756e686964652c696f636861727365743d63703433372c6f76657272696465726f636b7065726d2c626c6f636b3d3078303030303030303030303030303430302c005fb50aab29cf1d32d24be5ab2a6506aa524c8f1cd5781842ee1c86bee627767fee958f25bb6db8e631262ed8a59d337d730b6698271aeb8c31c1902a7e236e5dd878e6c1352c0c799d8e80d7346f8d2870acebe617c694bbb925d3ab4fb01784c564c03d88c81d2f84f58e8c6ba18548f09fa6"], 0x1, 0x56a, &(0x7f0000000580)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x10b091, 0x0) 1.81254894s ago: executing program 6 (id=2723): r0 = socket$inet6_udp(0xa, 0x2, 0x0) getsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000001b80)={@ipv4={'\x00', '\xff\xff', @multicast2}, 0x9, 0x0, 0x2, 0xd, 0x4, 0x3}, &(0x7f0000001bc0)=0x20) 1.776868433s ago: executing program 4 (id=2724): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$HCIINQUIRY(r0, 0x800448d4, &(0x7f0000000100)={0x300, 0x1fe, '\x00', 0x2}) 1.732769379s ago: executing program 2 (id=2725): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000040)={0x1a, 0x1, 0x0, "9611e6d6ffc88885163200000000000000000300000000000000000083df00"}) 1.599356079s ago: executing program 1 (id=2726): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000001440), 0x2, 0x0) ioctl$UI_SET_RELBIT(r0, 0x40045566, 0x0) 1.594893044s ago: executing program 5 (id=2727): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$SNDCTL_SEQ_RESETSAMPLES(r0, 0x40045109, &(0x7f0000000000)=0x6) 1.421269605s ago: executing program 2 (id=2728): madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) madvise(&(0x7f0000f00000/0x2000)=nil, 0x2000, 0x17) 1.40469647s ago: executing program 4 (id=2729): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, 0xfffffffffffffffc) 1.36975192s ago: executing program 6 (id=2730): r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x121040, 0x0) ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x40086603, &(0x7f0000000040)) 1.368816725s ago: executing program 3 (id=2731): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000002c40)={0x0, 0x0, &(0x7f0000002c00)={&(0x7f0000002b40)=@ipv6_delrule={0x24, 0x21, 0x1, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8}]}, 0x24}}, 0x0) 1.166278199s ago: executing program 5 (id=2732): r0 = socket(0x10, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f00000001c0)={'ip6tnl0\x00', &(0x7f00000002c0)={'ip6_vti0\x00', 0x0, 0x29, 0x1, 0xe9, 0x1, 0x10, @remote, @dev={0xfe, 0x80, '\x00', 0x1f}, 0x700, 0x8000, 0xd, 0x6}}) 1.165388046s ago: executing program 1 (id=2733): r0 = memfd_create(&(0x7f00000001c0)='\x00\xac=\x9d\xd2\xdb\xe6\xbf\xb4\xf2\xed\x04\x00\x00\x00\xf7\x00d2*Nha\x97\xd5\f\xde@\xd4N\x12\x9b\x1f\t\xd1Z+\x86T\x16\xf8\x01\x00\x00\x00\x9f+\x8d!\x0fG\xab\xc2\xdc\xa3\xb3\xae8\x9f9?\xefo\xa4k\x01\xb2>\xa1\x9c\x86xm\xe6\x9bZ4\x91\x1a\xdb\xdd\x89\xb9\x91\xeb\xfc_q\xc1jP\x8a\xc6[\xbd\xe7q]\xdd\r\x1a\x81]\x01*\x1b\xfd\xbcMA\xdcq\xa1b\x17\xab\xe4\x14l\x9b$\x13\xa7\x00MO\xb8\xfdX\xaaf*Du\x02z\x89(\xbcu\x9e\xdf\xe7es\xb9\x1e\xb2\x83\xdc\x82\xed\xcf\x1e\xff\x00\x00\x00\x00g\xa2-\xb1\x94\x9b\x04\x899\xf25\xae\xbb[C\x8aH\xa0\xb1\xa4&\xfb\xe4\xae\xf9R[jQ\x92\xc6K\xe6U\xaa3\xeb\x93\x84bIn\xc9\x11e\xf6;\xce\xee\xe2\x84]\x1eF\xee\xaf\x97Md\xbb\xd1}\x91\x12`\x02\xaa\xb2\xe8F7\t\x92\xedO`\xf7jc\x00\x11|]\x13\xaa<)0\x95-\xe7\xc5\xceuB\xba\xd5\x10\x1d4\x8f@\xfd6\xed?\xe5\xb7\x9d\xb7\xc3+m\x94\xf7\x00g\xa8\xd0y\xaa\x86\f?c\x8c.\x05\n\xf1\x9dw8\xbb\xcf\x9a\xfewx\xb7\xea\xb0\xe0\xa2\xa6/u\x18\xb8\x912g\x19\xcauw\xa8\x93\x80h\xad\x04\xf9sCB?b?\x1a\x04\x11U\xac\b\x9b\xd3\x04\xd9\xdb\xa3?qny\x19f{F\xb0\xb2\xc6\xe9\x1f\x13\x14\xbb\xde\x06\x16\b\x95^q\x0f\xc6\x16\xfeG\xf9\xf3D\xe9:\x86\xc8!4\xa0+\xba\x87\xdd\xbc\xbd\x93\xbb\xef*:\x00Ld\x00'/408, 0x4) ftruncate(r0, 0x40000001) 1.049413665s ago: executing program 2 (id=2734): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)={0x14, 0x13, 0x1, 0x0, 0x0, "", [@typed={0x4}]}, 0x14}], 0x1}, 0x0) 1.043404525s ago: executing program 4 (id=2735): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="10000000040000000400000002"], 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20) 1.01259276s ago: executing program 6 (id=2736): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={0x64, 0x2, 0x6, 0x1, 0x6000000, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xe, 0x3, 'bitmap:ip\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0x1c, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP_TO={0x4, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x8, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @empty=0x80ffffff}}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}]}, 0x64}}, 0x0) 889.840049ms ago: executing program 3 (id=2737): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@upd={0xe8, 0x12, 0x1, 0x70bd29, 0x25dfdbfd, {{'sha224-asm\x00'}, '\x00', '\x00', 0x6400, 0x2400}, [{0x8, 0x1, 0x6}]}, 0xe8}, 0x1, 0x0, 0x0, 0x20008011}, 0x8000) 873.202918ms ago: executing program 1 (id=2738): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0xa, &(0x7f0000000100)=[{&(0x7f0000000200)="d800000010008104687da3aa7143a0b8c81d080b25000000e8fe55a1182c1500060014000000001208000a0043000040a80016000400014006000d00036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a9d7c7c0b7a196e6f66112c88ac417898516277ce06bbace80177ccbec4c2ee5a7cef4260000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c0aaa16b8ddc64193071e9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb14feb9f5588a63644caf1ce1bd", 0xd8}], 0x1}, 0x0) 804.037168ms ago: executing program 5 (id=2739): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x33, 0x0, &(0x7f0000000200)=0x2) 691.119905ms ago: executing program 3 (id=2740): syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x3200c02, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x3, 0xa80, &(0x7f0000000180)="$eJzs3U2MW0cBAOCxd73JNilxSkKXJLQJP2356W6zWcJPBE3VXIiailulikuUpiUiDYhUglaVmuTECVpV4QpFnMqhAoTUXlDUE5dKNBKXikPhwIEoSJU4QCExWu+M93nW5tn7Z3v9fdLseN48e+a9fX5+fzMTgLFVbf5dWJiphHD1rVdP/P2+v00vTnm4NUe9+XeykKqFECoxPZl93vsTS/GtD1480ymuhPnm35QOj99svXdHCOFSOBiuhXrYd/X6K+/MP3bq8skrh959/diNjVl6AAAYL9+8dmxh71/+uH/3h2/cczxsa01Px+f1mN4Zj/uPxwP/dPxfDe3pSiEUTWXzTcZQzeab6DBfsZxaNt9kl/Knss+ttfL3t823raT8icK0TssNoyxtx/VQqc62pavV2dmlc/LQPK+fqsxeOHf+6YsDqiiw7v55bwjhoNBvaDQaLzVX4BDURRBWGxq7Br0HAliS3y9c4VJ+ZWFtWp822Vv5Nx+pdn4/rIPN3v7Lyv/xnwdb/gpjXv4vL9vjsH626taUlit9j3bGdH4fIX9+qd/vf/q8/H5Ercd6druPMCr3F7rVc2KT67Fa3eqfbxdb1ddinNbD17P84vcn/5+Oyv8Y6Oxfm3X9/7XpgV/rXAwHh6AOWzrUhqAOQs+hMegdEDC0lp+bW9KIUn7+XF+ev60kf3tJ/nRJ/h0l+TtK8mGc/fa5n4SXK8vn+fk5fb/Xw9J1tjtj/JE+65Nfj+y3/Py5336ttfz8eWIYZm+efuLsl5968vrS8/+V1vZ/O27vB2O6Hr9b1+IM6Xphfl299ex/vb2capf57srqc+eK+RtLJe5pn6+yZ/lzQmE/s6IeM+3v29VtvgPt89Wz+aZj2J7VNz8+uSN7Xzr+SPvVtL4ms+WtZcsxldUj7Vd2xzivB6xG2h67Pf+fts+ZUKs8fe782YdiOm2nf5iobVucfrj4ob/anLoDa9Nr+5+Z0N7+Z2dreq1a2C+0Dr/T/uJw6/Pap88vJWv5/EdiOv3OfXtiujl99sx3zz+13gsPY+7i8y985/T582e/70V6MW21eOFF2Z5jqz45CONj7rlnvzd38fkXHjz37Olnzj5z9sKRo0ePzM8f/cqRhbnmcf1c8awf2EqWf/QHXRMAAAAAAAAAAACgVz84eeL6n97+0ntL7f+X2/+l9v/pyd/U/v9HWfv/vJ18ahWQ2tnv7pDfHHfvzfZ6TGXz1WL4aFbfPVk5e7P3fSzGrXH8Yvv/1N4+79c11efubHref2+aL+tOYEV/KVNZHySt8QJjg/1PxvSVGP8iwABVpjtPjnFZ/9ZpW2/2T/HSRlWSjZb6E0lbQ+rHJLX/7tavU9r/796EOrL+NqM54aCXEejsH8M4/me1mC4ciQ+6Xv8/NBqDr8Paw/CvZ2EdQ6NhFA9gOAx6/M903TPFF37/je2LIc1285H2/WXefymsxbCPP6n8rTX+Z2v8u572fx16V2/r57n30RX+/bMb7xWKDft63f/my5/6gd5TXmbRh7H8tPz3h97Kb7yWlZ/fEOrRf7Ly7+ix/BXLf2B15f83lp9W2wOf6rX8pRpXqu31yK8bp/t/+XXj5Fa2/Klvz76Xf5UDNd6O5cM46z7ObK8j2A6nURn/t5v8OYwvxnTaEabnHPJf5H7rn56vSL8De7PPr5T8vo3KOMXdjPv4v1+Ncdn3IY3/m7bHeod0tZCudVi3o76twFbz/jDe/xvlcGkI6iAMaRiOMbCLodFoDLQjb72ID9ag1/+g7z4PuvxBr/8y+fi/+TF8Pv5vNTuByMf/zd+fj/+b5+fj6+X5+fi/+frMx//N8+/OPje/gj1Tkv/xkvx9Jfn7l/OnO+UfKHn/J0ryD5Xk31OSf29J/l0l+RMl+Z8uyf9MSf59JfkPlOR/tiR/q2u2Ryl8qcZt+WGc5e3zfP9hfKT7P92+/3tK8oHR9dM3Dj/65G++VV9q/z/VOl9L9/GOx3Qtnjv/MKbz+96hkF7Mezum/5rlD/v1Dhgnef8Z+e/7/SX5wOhKz3n5fsMYqmzvPDnGab/Qrd+qbsf5jJbPxfjzMf5CjB+M8WyM52J8OMbzm1Q/Nsajv/7dsZcry+f7u7L8Xp8nz9sD5f1EHemxPvn1gX6fZ8/78evXWstfZXMwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAgak2/y4szFRCuPrWqyeeOHVubnHKw6056s2/k4VUrfW+EB6K8USMfx5f3PrgxTPF+HaMK2E+VEKlNT08frNV0o4QwqVwMFwL9bDv6vVX3pl/7NTlk1cOvfv6sRsbtwYAAABg6/tfAAAA//+tyxzC") mkdir(&(0x7f0000000000)='./file0\x00', 0x0) 671.1513ms ago: executing program 6 (id=2741): r0 = socket(0x2000000000000021, 0x2, 0x10000000000002) getsockopt$WPAN_SECURITY(r0, 0x0, 0x1, 0x0, 0x0) 605.194639ms ago: executing program 2 (id=2742): r0 = syz_open_dev$vim2m(&(0x7f00000002c0), 0x2000000f5, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000400)={0xf0f080, 0x3}) 604.46428ms ago: executing program 4 (id=2743): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHG6RD(r0, 0x89fb, &(0x7f00000000c0)={'sit0\x00', &(0x7f0000000000)={@empty, @empty, 0xb, 0x1c}}) 411.112915ms ago: executing program 5 (id=2744): r0 = add_key(&(0x7f0000000000)='big_key\x00', &(0x7f0000000280)={'syz', 0x1}, &(0x7f00000002c0)="1d", 0xfe3a, 0xfffffffffffffffe) keyctl$revoke(0x3, r0) 367.375107ms ago: executing program 1 (id=2745): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) getsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x7, 0x0, &(0x7f0000001300)) 310.925211ms ago: executing program 4 (id=2746): r0 = syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400) ioctl$LOOP_SET_STATUS(r0, 0x4c02, &(0x7f00000006c0)={0x0, {}, 0x0, {}, 0x400, 0x2, 0xa, 0x1d, "9e959f16b6a5e942c1c58dbb9156a51654c382ec6bcfeef4a3637c7dd8a6078ed98e203f04edc609337f4bb8ac274de9d940bba5e51e92bbd4ce85450d00", "f625c103846a36e0fba6874d865c2fdc458ec58d04fdffff590800", [0x400059, 0x7]}) 259.921637ms ago: executing program 2 (id=2747): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x53}, @call={0x85, 0x0, 0x0, 0xd0}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe80, 0x0, &(0x7f0000000380)="e02742e868bfc0ff9782762f86dd", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 247.102081ms ago: executing program 6 (id=2748): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000008000000000000000000008500000041000000850000002a00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xe, 0x0, &(0x7f0000000680)="8883956359d631539169aa77e133", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9, 0x2}, 0x50) 113.080654ms ago: executing program 5 (id=2749): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000200)='./file0\x00', 0x1008002, &(0x7f0000000a80)=ANY=[], 0xff, 0x251, &(0x7f0000000280)="$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") chmod(&(0x7f0000000200)='./file0\x00', 0x144) 1.471305ms ago: executing program 1 (id=2750): r0 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0) fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f00000005c0)='fd', 0x0, r0) 0s ago: executing program 3 (id=2751): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000001c0), 0x42) kernel console output (not intermixed with test programs): running [ 207.845181][ C1] raw-gadget.0 gadget.5: ignoring, device is not running [ 207.852676][ C1] raw-gadget.0 gadget.5: ignoring, device is not running [ 207.862826][ C1] raw-gadget.0 gadget.5: ignoring, device is not running [ 207.870341][ C1] raw-gadget.0 gadget.5: ignoring, device is not running [ 207.901842][ T5826] garmin_gps 6-1:8.206: Garmin GPS usb/tty converter detected [ 207.983557][ T5826] usb 6-1: Garmin GPS usb/tty converter now attached to ttyUSB0 [ 208.094399][ T5826] usb 6-1: USB disconnect, device number 6 [ 208.264360][ T5826] garmin_gps ttyUSB0: Garmin GPS usb/tty converter now disconnected from ttyUSB0 [ 208.301379][ T5826] garmin_gps 6-1:8.206: device disconnected [ 208.318444][ T30] audit: type=1800 audit(1743853366.636:19): pid=8573 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.1050" name="/newroot/177/file0" dev="tmpfs" ino=913 res=0 errno=0 [ 208.713254][ T30] audit: type=1326 audit(1743853367.006:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.4.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 208.825552][ T30] audit: type=1326 audit(1743853367.006:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.4.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 208.953323][ T30] audit: type=1326 audit(1743853367.036:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.4.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 209.086794][ T30] audit: type=1326 audit(1743853367.036:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.4.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 209.118399][ T30] audit: type=1326 audit(1743853367.036:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8595 comm="syz.4.1058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 209.145391][ T8610] loop4: detected capacity change from 0 to 64 [ 209.553101][ T5846] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 209.603983][ T8628] loop1: detected capacity change from 0 to 128 [ 209.675609][ T8628] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 209.716518][ T5846] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 209.733471][ T5846] usb 6-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=7d.d2 [ 209.736848][ T8628] ext4 filesystem being mounted at /188/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 209.742531][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 209.761418][ T5846] usb 6-1: Product: syz [ 209.766060][ T5846] usb 6-1: Manufacturer: syz [ 209.770687][ T5846] usb 6-1: SerialNumber: syz [ 209.803571][ T8634] netlink: 'syz.4.1072': attribute type 26 has an invalid length. [ 209.840514][ T5846] usb 6-1: config 0 descriptor?? [ 209.941672][ T8628] EXT4-fs warning (device loop1): ext4_group_extend:1891: can't read last block, resize aborted [ 210.305351][ T5838] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 210.432563][ T5846] usb 6-1: USB disconnect, device number 7 [ 210.482196][ T5846] f81534a_ctrl 6-1:0.0: failed to set register 0x116: -19 [ 210.510404][ T5846] f81534a_ctrl 6-1:0.0: failed to enable ports: -19 [ 210.646190][ T8657] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 210.863429][ T8662] loop4: detected capacity change from 0 to 256 [ 210.929906][ T8662] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 210.970665][ T8667] xt_ipcomp: unknown flags 12 [ 211.310343][ T8675] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1088'. [ 212.120642][ T8695] loop2: detected capacity change from 0 to 128 [ 212.187480][ T8695] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 212.328911][ T8695] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 213.128198][ T8674] loop3: detected capacity change from 0 to 32768 [ 213.172073][ T8720] ieee802154 phy0 wpan0: encryption failed: -90 [ 213.256969][ T8725] xt_ipcomp: unknown flags 12 [ 213.288934][ T8674] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 213.592891][ T8674] XFS (loop3): Ending clean mount [ 213.644953][ T8739] loop1: detected capacity change from 0 to 1024 [ 213.650099][ T8674] XFS (loop3): Quotacheck needed: Please wait. [ 213.863383][ T8674] XFS (loop3): Quotacheck: Done. [ 213.889104][ T8697] loop5: detected capacity change from 0 to 32768 [ 213.901961][ T8697] (syz.5.1096,8697,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 213.958009][ T8697] (syz.5.1096,8697,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 214.014752][ T6476] hfsplus: b-tree write err: -5, ino 8 [ 214.083293][ T5837] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 214.106818][ T8697] JBD2: Ignoring recovery information on journal [ 214.299457][ T8697] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 214.878436][ T5835] ocfs2: Unmounting device (7,5) on (node local) [ 215.072721][ T8774] capability: warning: `syz.1.1128' uses deprecated v2 capabilities in a way that may be insecure [ 215.323167][ T8780] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1130'. [ 215.526508][ T8786] loop0: detected capacity change from 0 to 512 [ 215.648707][ T8786] EXT4-fs (loop0): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 216.008359][ T8797] netlink: 'syz.2.1139': attribute type 11 has an invalid length. [ 216.037563][ T5836] EXT4-fs (loop0): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 216.046339][ T8797] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1139'. [ 216.360923][ T8809] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 217.848967][ T8865] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 217.856282][ T8865] IPv6: NLM_F_CREATE should be set when creating new route [ 217.962456][ T8868] netlink: 'syz.4.1167': attribute type 3 has an invalid length. [ 218.008886][ T8868] netlink: 'syz.4.1167': attribute type 1 has an invalid length. [ 218.058499][ T8868] netlink: 220 bytes leftover after parsing attributes in process `syz.4.1167'. [ 218.678601][ T8891] netlink: 'syz.0.1176': attribute type 1 has an invalid length. [ 219.153563][ T8904] netlink: 10 bytes leftover after parsing attributes in process `syz.0.1180'. [ 219.576322][ T8916] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 220.086897][ T8876] loop5: detected capacity change from 0 to 32768 [ 220.260236][ T8876] jfs_lookup: iget failed on inum 32 [ 220.288995][ T8937] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1194'. [ 220.363169][ T8937] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1194'. [ 220.867179][ T8951] netlink: 512 bytes leftover after parsing attributes in process `syz.1.1201'. [ 221.214099][ T8962] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1205'. [ 221.585661][ T8971] loop0: detected capacity change from 0 to 2048 [ 221.627765][ T8971] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 221.677573][ T8973] loop5: detected capacity change from 0 to 2048 [ 221.960697][ T8973] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 222.255493][ T8998] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 222.422299][ T5835] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 223.898645][ T9046] geneve2: entered promiscuous mode [ 223.915023][ T9046] geneve2: entered allmulticast mode [ 224.402451][ T9056] loop5: detected capacity change from 0 to 4096 [ 224.782332][ T9077] netlink: 'syz.0.1250': attribute type 21 has an invalid length. [ 224.824275][ T9075] loop3: detected capacity change from 0 to 512 [ 224.842459][ T9077] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1250'. [ 224.861117][ T9081] netlink: 'syz.1.1251': attribute type 27 has an invalid length. [ 224.881213][ T9077] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1250'. [ 224.930649][ T9075] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 225.088239][ T9075] ext4 filesystem being mounted at /215/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 225.209808][ T9089] netlink: zone id is out of range [ 225.228791][ T9089] netlink: zone id is out of range [ 225.263188][ T9089] netlink: zone id is out of range [ 225.268368][ T9089] netlink: zone id is out of range [ 225.313097][ T9089] netlink: zone id is out of range [ 225.325834][ T9093] netlink: 132 bytes leftover after parsing attributes in process `syz.5.1253'. [ 225.345359][ T9089] netlink: zone id is out of range [ 225.351553][ T9089] netlink: zone id is out of range [ 225.386301][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.403231][ T9089] netlink: zone id is out of range [ 225.423879][ T9089] netlink: zone id is out of range [ 225.459678][ T9089] netlink: zone id is out of range [ 226.156557][ T5900] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 226.185807][ T9121] netlink: 148 bytes leftover after parsing attributes in process `syz.1.1266'. [ 226.279749][ T9125] loop0: detected capacity change from 0 to 1024 [ 226.354295][ T5900] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 226.405572][ T9125] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 226.428478][ T5900] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 226.553743][ T5900] usb 3-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 226.604260][ T9125] EXT4-fs warning (device loop0): ext4_empty_dir:3097: inode #11: comm syz.0.1268: directory missing '..' [ 226.624012][ T5900] usb 3-1: config 1 interface 1 has no altsetting 0 [ 226.693804][ T5900] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 226.720166][ T5900] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 226.763050][ T5900] usb 3-1: Product: syz [ 226.793126][ T5900] usb 3-1: Manufacturer: syz [ 226.798433][ T5900] usb 3-1: SerialNumber: syz [ 226.926426][ T5900] cdc_ncm 3-1:1.0: skipping garbage [ 226.931690][ T5900] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found [ 226.984462][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 226.996551][ T5900] cdc_ncm 3-1:1.0: bind() failure [ 227.113204][ T9151] bond0: option ad_select: unable to set because the bond device is up [ 227.313912][ T9158] No such timeout policy "syz1" [ 227.329178][ T9156] JFS: discard option not supported on device [ 227.363626][ T9156] Mount JFS Failure: -22 [ 227.367934][ T9156] jfs_mount failed w/return code = -22 [ 227.378584][ T9159] netlink: 288 bytes leftover after parsing attributes in process `syz.1.1279'. [ 227.481593][ T5900] usb 3-1: USB disconnect, device number 5 [ 228.406284][ T9188] loop5: detected capacity change from 0 to 1024 [ 228.797810][ T9200] sp0: Synchronizing with TNC [ 229.010157][ T9208] loop0: detected capacity change from 0 to 128 [ 229.146762][ T9208] loop0: detected capacity change from 0 to 256 [ 229.259065][ T9213] loop5: detected capacity change from 0 to 64 [ 229.733220][ T9231] netlink: 'syz.4.1309': attribute type 11 has an invalid length. [ 230.199932][ T9249] loop1: detected capacity change from 0 to 128 [ 230.719611][ T30] audit: type=1326 audit(1743853389.036:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9262 comm="syz.5.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9882b8d169 code=0x7ffc0000 [ 230.856463][ T30] audit: type=1326 audit(1743853389.036:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9262 comm="syz.5.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9882b8d169 code=0x7ffc0000 [ 230.964613][ T30] audit: type=1326 audit(1743853389.066:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9262 comm="syz.5.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=313 compat=0 ip=0x7f9882b8d169 code=0x7ffc0000 [ 231.091866][ T30] audit: type=1326 audit(1743853389.066:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9262 comm="syz.5.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9882b8d169 code=0x7ffc0000 [ 231.114311][ T9272] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1326'. [ 231.242046][ T30] audit: type=1326 audit(1743853389.066:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9262 comm="syz.5.1322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9882b8d169 code=0x7ffc0000 [ 231.617464][ T5858] Bluetooth: hci2: command 0x0406 tx timeout [ 231.617489][ T5854] Bluetooth: hci0: command 0x0406 tx timeout [ 231.617544][ T5854] Bluetooth: hci3: command 0x0406 tx timeout [ 231.624637][ T5858] Bluetooth: hci1: command 0x0406 tx timeout [ 231.629919][ T5840] Bluetooth: hci5: command 0x0406 tx timeout [ 231.636167][ T5857] Bluetooth: hci4: command 0x0406 tx timeout [ 231.792111][ T9290] loop2: detected capacity change from 0 to 256 [ 231.947636][ T9290] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 232.303191][ T9304] netlink: 13 bytes leftover after parsing attributes in process `syz.0.1338'. [ 232.329094][ T9307] loop4: detected capacity change from 0 to 16 [ 232.351655][ T9304] netlink: 1 bytes leftover after parsing attributes in process `syz.0.1338'. [ 232.387304][ T9307] erofs (device loop4): mounted with root inode @ nid 36. [ 232.403631][ T9310] bridge_slave_1: left allmulticast mode [ 232.424215][ T9310] bridge_slave_1: left promiscuous mode [ 232.430054][ T9310] bridge0: port 2(bridge_slave_1) entered disabled state [ 232.461143][ T9307] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 232.494295][ T9253] loop3: detected capacity change from 0 to 32768 [ 232.516274][ T9307] erofs (device loop4): failed to decompress -44 in[46, 4050] out[1851] [ 232.565317][ T9307] erofs (device loop4): read error -117 @ 43 of nid 36 [ 232.574046][ T9310] bridge_slave_0: left allmulticast mode [ 232.581945][ T9310] bridge_slave_0: left promiscuous mode [ 232.609580][ T9310] bridge0: port 1(bridge_slave_0) entered disabled state [ 232.856250][ T9253] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 232.877396][ C0] vkms_vblank_simulate: vblank timer overrun [ 232.974982][ T9253] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 233.037226][ T9253] bcachefs (loop3): Version upgrade required: [ 233.037226][ T9253] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 233.037226][ T9253] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 233.037226][ T9253] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 233.107270][ C0] vkms_vblank_simulate: vblank timer overrun [ 233.214205][ T9253] bcachefs (loop3): dropping and reconstructing all alloc info [ 233.315717][ T9336] loop0: detected capacity change from 0 to 164 [ 233.379044][ T9253] bcachefs (loop3): accounting_read... [ 233.387375][ T9336] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 233.423907][ T9253] done [ 233.426742][ T9253] bcachefs (loop3): alloc_read... done [ 233.473151][ T9253] bcachefs (loop3): snapshots_read... done [ 233.480359][ T9253] bcachefs (loop3): done starting filesystem [ 233.688208][ T9348] loop2: detected capacity change from 0 to 64 [ 233.787830][ T5837] bcachefs (loop3): shutting down [ 234.171878][ T9361] loop2: detected capacity change from 0 to 128 [ 234.171878][ T9353] loop0: detected capacity change from 0 to 4096 [ 234.216899][ T5837] bcachefs (loop3): shutdown complete [ 234.275253][ T9361] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 234.293355][ T9353] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 234.395862][ T9361] ext4 filesystem being mounted at /231/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 234.501953][ T9353] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 234.540592][ T9361] EXT4-fs warning (device loop2): ext4_group_extend:1891: can't read last block, resize aborted [ 234.877488][ T5834] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 235.186913][ T9389] net_ratelimit: 5 callbacks suppressed [ 235.186938][ T9389] netlink: zone id is out of range [ 235.243144][ T9389] netlink: zone id is out of range [ 235.277726][ T9389] netlink: zone id is out of range [ 235.304616][ T9389] netlink: zone id is out of range [ 235.345516][ T9389] netlink: zone id is out of range [ 235.387081][ T9389] netlink: zone id is out of range [ 235.392224][ T9389] netlink: zone id is out of range [ 235.502522][ T9389] netlink: zone id is out of range [ 235.561019][ T9389] netlink: zone id is out of range [ 235.594222][ T9389] netlink: zone id is out of range [ 236.009938][ T9413] nfs: Unknown parameter 'ntext' [ 236.247084][ T970] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 236.463355][ T970] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 236.504160][ T970] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 236.563090][ T970] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 236.683798][ T970] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 236.725700][ T970] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 236.753470][ T970] usb 2-1: Product: syz [ 236.773215][ T970] usb 2-1: Manufacturer: syz [ 236.798902][ T970] usb 2-1: SerialNumber: syz [ 236.822184][ T9429] loop5: detected capacity change from 0 to 2048 [ 236.844951][ T9429] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 236.903411][ T970] cdc_ncm 2-1:1.0: skipping garbage [ 236.908836][ T970] cdc_ncm 2-1:1.0: CDC Union missing and no IAD found [ 236.947708][ T970] cdc_ncm 2-1:1.0: bind() failure [ 237.071982][ T970] usb 2-1: USB disconnect, device number 4 [ 237.615108][ T9444] loop4: detected capacity change from 0 to 4096 [ 237.773308][ T9451] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 237.972183][ T9444] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 238.026219][ T9444] Remounting filesystem read-only [ 238.142226][ T9459] netlink: 'syz.2.1398': attribute type 11 has an invalid length. [ 238.193107][ T9459] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1398'. [ 238.298333][ T9457] loop5: detected capacity change from 0 to 4096 [ 238.335668][ T9457] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 238.451059][ T9457] ntfs3(loop5): ino=19, mi_enum_attr [ 238.488362][ T9457] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 238.571076][ T9435] loop0: detected capacity change from 0 to 32768 [ 238.685547][ T9435] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 239.032070][ T9435] XFS (loop0): Ending clean mount [ 239.074986][ T9435] XFS (loop0): Quotacheck needed: Please wait. [ 239.153179][ T9435] XFS (loop0): Quotacheck: Done. [ 239.238584][ T9493] bridge1: entered promiscuous mode [ 239.525160][ T5836] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 239.675017][ T9507] loop4: detected capacity change from 0 to 8 [ 239.789780][ T9510] xt_l2tp: invalid flags combination: c [ 240.167563][ T9520] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1417'. [ 240.690320][ T9529] xt_CT: You must specify a L4 protocol and not use inversions on it [ 240.712289][ T30] audit: type=1326 audit(1743853399.026:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9534 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f590278d169 code=0x7ffc0000 [ 240.790150][ T30] audit: type=1326 audit(1743853399.026:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9534 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f590278d169 code=0x7ffc0000 [ 240.907379][ T30] audit: type=1326 audit(1743853399.066:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9534 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7f590278d169 code=0x7ffc0000 [ 241.021138][ T30] audit: type=1326 audit(1743853399.066:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9534 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f590278d169 code=0x7ffc0000 [ 241.133228][ T30] audit: type=1326 audit(1743853399.066:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9534 comm="syz.0.1412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f590278d169 code=0x7ffc0000 [ 242.038225][ T9577] loop2: detected capacity change from 0 to 128 [ 242.641380][ T9595] netlink: 'syz.3.1446': attribute type 21 has an invalid length. [ 242.708848][ T9595] IPv6: NLM_F_CREATE should be specified when creating new route [ 243.126699][ T9614] loop2: detected capacity change from 0 to 764 [ 243.221218][ T9614] rock: directory entry would overflow storage [ 243.252438][ T9614] rock: sig=0x4f50, size=4, remaining=3 [ 243.283193][ T9614] iso9660: Corrupted directory entry in block 6 of inode 1792 [ 244.716067][ T9672] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 244.819439][ T9679] loop3: detected capacity change from 0 to 256 [ 245.069335][ T9679] FAT-fs (loop3): Directory bread(block 64) failed [ 245.089049][ T9679] FAT-fs (loop3): Directory bread(block 65) failed [ 245.133429][ T9679] FAT-fs (loop3): Directory bread(block 66) failed [ 245.140060][ T9679] FAT-fs (loop3): Directory bread(block 67) failed [ 245.206595][ T9679] FAT-fs (loop3): Directory bread(block 68) failed [ 245.243873][ T9679] FAT-fs (loop3): Directory bread(block 69) failed [ 245.284205][ T9679] FAT-fs (loop3): Directory bread(block 70) failed [ 245.343109][ T9679] FAT-fs (loop3): Directory bread(block 71) failed [ 245.349815][ T9679] FAT-fs (loop3): Directory bread(block 72) failed [ 245.432524][ T9679] FAT-fs (loop3): Directory bread(block 73) failed [ 245.492421][ T9697] loop0: detected capacity change from 0 to 2048 [ 245.606283][ T9697] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 245.733164][ T30] audit: type=1800 audit(1743853404.036:35): pid=9679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1481" name="file1" dev="loop3" ino=21 res=0 errno=0 [ 245.899236][ T9707] xt_l2tp: v2 sid > 0xffff: 262144 [ 246.175511][ T9716] loop0: detected capacity change from 0 to 256 [ 246.270016][ T9716] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 247.259469][ T9756] loop2: detected capacity change from 0 to 512 [ 247.328226][ T9756] EXT4-fs: Ignoring removed nobh option [ 247.407029][ T9756] fscrypt (loop2, inode 2): Error -61 getting encryption context [ 247.471829][ T9756] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61 [ 247.518331][ T9756] EXT4-fs error (device loop2): ext4_orphan_get:1390: inode #13: comm syz.2.1511: casefold flag without casefold feature [ 247.582107][ T9756] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1511: couldn't read orphan inode 13 (err -117) [ 247.631844][ T9756] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 247.809652][ T9756] fscrypt (loop2, inode 2): Error -61 getting encryption context [ 247.823337][ T970] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 248.067718][ T970] usb 6-1: too many configurations: 55, using maximum allowed: 8 [ 248.119730][ T970] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 248.143051][ T970] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.151120][ T970] usb 6-1: Product: syz [ 248.172398][ T970] usb 6-1: Manufacturer: syz [ 248.243295][ T970] usb 6-1: SerialNumber: syz [ 248.277906][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.331690][ T970] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 248.491225][ T5826] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 249.053235][ T5843] usb 6-1: USB disconnect, device number 8 [ 249.324215][ T9808] loop1: detected capacity change from 0 to 64 [ 249.440501][ T9812] loop2: detected capacity change from 0 to 1024 [ 249.475604][ T9812] EXT4-fs: Ignoring removed orlov option [ 249.481392][ T9812] EXT4-fs: Ignoring removed nomblk_io_submit option [ 249.580157][ T9816] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2 [ 249.614055][ T5826] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 249.656277][ T9816] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db [ 249.658063][ T5826] ath9k_htc: Failed to initialize the device [ 249.671207][ T970] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 249.707108][ T9812] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 249.733473][ T5843] usb 6-1: ath9k_htc: USB layer deinitialized [ 249.879480][ T970] usb 4-1: unable to get BOS descriptor or descriptor too short [ 249.915572][ T970] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 249.946609][ T970] usb 4-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 249.971452][ T9827] tmpfs: Bad value for 'mpol' [ 249.980797][ T970] usb 4-1: config 1 interface 0 has no altsetting 1 [ 249.993749][ T970] usb 4-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75 [ 249.993887][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 250.006400][ T970] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 250.047201][ T970] usb 4-1: Product: syz [ 250.053312][ T970] usb 4-1: Manufacturer: syz [ 250.067018][ T970] usb 4-1: SerialNumber: syz [ 250.116419][ T970] smsusb:smsusb_probe: board id=8, interface number 0 [ 250.124624][ T30] audit: type=1326 audit(1743853408.426:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 250.241754][ T30] audit: type=1326 audit(1743853408.446:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 250.291237][ T30] audit: type=1326 audit(1743853408.476:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 250.320123][ T970] smsusb:smsusb_probe: Device initialized with return code -19 [ 250.349133][ T9832] cgroup: release_agent respecified [ 250.387545][ T9833] loop2: detected capacity change from 0 to 256 [ 250.399138][ T30] audit: type=1326 audit(1743853408.476:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 250.497780][ T30] audit: type=1326 audit(1743853408.476:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.1.1543" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 250.580999][ T970] usb 4-1: USB disconnect, device number 3 [ 250.820154][ T9844] loop5: detected capacity change from 0 to 128 [ 251.068161][ T9848] xt_TCPMSS: Only works on TCP SYN packets [ 251.452082][ T9851] loop1: detected capacity change from 0 to 4096 [ 251.503210][ T9851] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 251.753112][ T9851] ntfs3(loop1): ino=19, mi_enum_attr [ 251.781232][ T9851] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 251.787374][ T9867] loop4: detected capacity change from 0 to 128 [ 251.844069][ T9867] EXT4-fs: Ignoring removed orlov option [ 251.909484][ T9867] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 251.954164][ T9836] loop0: detected capacity change from 0 to 32768 [ 252.058129][ T9836] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 252.091810][ T9867] ext4 filesystem being mounted at /279/control supports timestamps until 2038-01-19 (0x7fffffff) [ 252.194337][ T9867] EXT4-fs error (device loop4): ext4_validate_inode_bitmap:104: comm syz.4.1560: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19 [ 252.306947][ T9888] netlink: 'syz.1.1565': attribute type 1 has an invalid length. [ 252.351438][ T9836] XFS (loop0): Ending clean mount [ 252.549077][ T9894] loop3: detected capacity change from 0 to 64 [ 252.583864][ T970] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 252.597580][ T5839] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 252.678058][ T5836] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 252.821403][ T970] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 252.861096][ T970] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.916671][ T970] usb 6-1: Product: syz [ 252.920946][ T970] usb 6-1: Manufacturer: syz [ 252.963043][ T970] usb 6-1: SerialNumber: syz [ 253.022310][ T970] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 253.118792][ T5826] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 253.696330][ T970] usb 6-1: USB disconnect, device number 9 [ 254.052106][ T9881] loop2: detected capacity change from 0 to 32768 [ 254.130801][ T9881] [ 254.130801][ T9881] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 254.130801][ T9881] [ 254.243620][ T9881] ERROR: (device loop2): diWrite: ixpxd invalid [ 254.243620][ T9881] [ 254.299197][ T9881] ERROR: (device loop2): txAbort: [ 254.299197][ T9881] [ 254.442441][ T9926] loop0: detected capacity change from 0 to 512 [ 254.493521][ T5826] usb 6-1: Service connection timeout for: 256 [ 254.513467][ T9926] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 254.520080][ T5826] ath9k_htc 6-1:1.0: ath9k_htc: Unable to initialize HTC services [ 254.551968][ T9926] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 254.566462][ T9926] EXT4-fs (loop0): orphan cleanup on readonly fs [ 254.574576][ T5834] [ 254.574576][ T5834] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 254.574576][ T5834] [ 254.589071][ T5826] ath9k_htc: Failed to initialize the device [ 254.640854][ T9926] EXT4-fs warning (device loop0): ext4_block_to_path:105: block 3279949761 > max in inode 13 [ 254.659079][ T970] usb 6-1: ath9k_htc: USB layer deinitialized [ 254.659985][ T9902] loop4: detected capacity change from 0 to 32768 [ 254.678013][ T5834] [ 254.678013][ T5834] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 254.678013][ T5834] [ 254.693228][ T9926] EXT4-fs warning (device loop0): ext4_block_to_path:105: block 3279949762 > max in inode 13 [ 254.818597][ T9926] EXT4-fs (loop0): 1 truncate cleaned up [ 254.855236][ T9926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 255.054441][ T9926] EXT4-fs warning (device loop0): dx_probe:861: inode #2: comm syz.0.1580: dx entry: limit 65535 != root limit 120 [ 255.121875][ T9926] EXT4-fs warning (device loop0): dx_probe:935: inode #2: comm syz.0.1580: Corrupt directory, running e2fsck is recommended [ 255.404961][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.577573][ T9950] loop4: detected capacity change from 0 to 512 [ 255.657937][ T9950] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 255.765334][ T9950] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 255.876817][ T9950] EXT4-fs (loop4): 1 truncate cleaned up [ 255.976697][ T9950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 256.077466][ T9968] random: crng reseeded on system resumption [ 256.100065][ T9950] EXT4-fs error (device loop4): ext4_generic_delete_entry:2669: inode #2: block 13: comm syz.4.1590: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 256.120484][ C1] vkms_vblank_simulate: vblank timer overrun [ 256.250685][ T9950] EXT4-fs (loop4): Remounting filesystem read-only [ 256.261894][ T9950] EXT4-fs warning (device loop4): ext4_rename_delete:3726: inode #2: comm syz.4.1590: Deleting old file: nlink 4, error=-117 [ 256.484016][ T5839] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 256.666102][ T9980] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1603'. [ 256.874499][ T9985] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1606'. [ 257.043447][ T9989] ieee802154 phy0 wpan0: encryption failed: -22 [ 257.100618][ T9991] loop4: detected capacity change from 0 to 512 [ 257.663325][T10002] loop5: detected capacity change from 0 to 4096 [ 257.679894][ T5849] Bluetooth: hci4: unexpected event for opcode 0x2003 [ 257.686889][T10002] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 257.767660][T10012] loop3: detected capacity change from 0 to 256 [ 257.992882][T10016] loop2: detected capacity change from 0 to 16 [ 258.031877][T10016] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 258.108632][T10012] FAT-fs (loop3): Directory bread(block 64) failed [ 258.132355][T10012] FAT-fs (loop3): Directory bread(block 65) failed [ 258.163370][T10012] FAT-fs (loop3): Directory bread(block 66) failed [ 258.169960][T10012] FAT-fs (loop3): Directory bread(block 67) failed [ 258.221104][T10012] FAT-fs (loop3): Directory bread(block 68) failed [ 258.258230][T10012] FAT-fs (loop3): Directory bread(block 69) failed [ 258.287584][T10012] FAT-fs (loop3): Directory bread(block 70) failed [ 258.293365][ T5843] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 258.317131][T10012] FAT-fs (loop3): Directory bread(block 71) failed [ 258.337091][T10012] FAT-fs (loop3): Directory bread(block 72) failed [ 258.412135][T10012] FAT-fs (loop3): Directory bread(block 73) failed [ 258.498504][ T5843] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 258.547192][ T5843] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 258.551872][T10032] usb usb1: usbfs: process 10032 (syz.2.1627) did not claim interface 0 before use [ 258.575102][ T5843] usb 2-1: Product: syz [ 258.579323][ T5843] usb 2-1: Manufacturer: syz [ 258.610258][ T5843] usb 2-1: SerialNumber: syz [ 258.686795][ T5843] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 258.720538][ T5900] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 258.873309][T10037] loop0: detected capacity change from 0 to 128 [ 258.925174][T10037] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 258.998813][T10037] ext4 filesystem being mounted at /260/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 259.132688][T10037] EXT4-fs (loop0): resizing filesystem from 64 to 1 blocks [ 259.193073][T10037] EXT4-fs warning (device loop0): ext4_resize_fs:2042: can't shrink FS - resize aborted [ 259.355869][T10048] loop2: detected capacity change from 0 to 512 [ 259.378198][ T5836] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 259.392398][T10048] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 259.418243][ T970] usb 2-1: USB disconnect, device number 5 [ 259.477188][T10048] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 259.520179][T10048] EXT4-fs error (device loop2): ext4_iget_extra_inode:4691: inode #15: comm syz.2.1636: corrupted in-inode xattr: e_value size too large [ 259.583263][T10048] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.1636: couldn't read orphan inode 15 (err -117) [ 259.714919][T10048] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 259.856640][T10048] EXT4-fs error (device loop2): ext4_find_dest_de:2053: inode #2: block 13: comm syz.2.1636: bad entry in directory: directory entry overrun - offset=28, inode=34209812, rec_len=28524, size=1024 fake=0 [ 259.893416][ T5900] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 259.900551][ T5900] ath9k_htc: Failed to initialize the device [ 259.929148][T10056] loop0: detected capacity change from 0 to 4096 [ 259.969870][ T970] usb 2-1: ath9k_htc: USB layer deinitialized [ 259.993134][T10056] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 260.159864][T10063] loop5: detected capacity change from 0 to 2048 [ 260.259964][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.267135][ T5849] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 260.278702][ T5849] Bluetooth: hci2: Injecting HCI hardware error event [ 260.288011][ T5849] Bluetooth: hci2: hardware error 0x00 [ 260.405170][T10070] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 260.543350][T10063] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 260.610413][T10063] Remounting filesystem read-only [ 260.626929][T10063] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 260.960017][T10044] loop3: detected capacity change from 0 to 32768 [ 261.290670][T10100] netlink: 'syz.0.1651': attribute type 2 has an invalid length. [ 261.580235][T10044] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 261.714564][T10044] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 261.763949][T10044] bcachefs (loop3): superblock requires following recovery passes to be run: [ 261.763949][T10044] check_extents,check_indirect_extents [ 261.817034][T10044] bcachefs (loop3): Version upgrade required: [ 261.817034][T10044] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 261.817034][T10044] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 261.817034][T10044] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 262.006403][T10044] bcachefs (loop3): dropping and reconstructing all alloc info [ 262.034392][T10123] netlink: 'syz.0.1660': attribute type 5 has an invalid length. [ 262.042227][T10123] netlink: 'syz.0.1660': attribute type 5 has an invalid length. [ 262.106155][T10044] bcachefs (loop3): accounting_read... done [ 262.180972][T10044] bcachefs (loop3): alloc_read... done [ 262.198049][T10044] bcachefs (loop3): snapshots_read... done [ 262.251690][T10044] bcachefs (loop3): done starting filesystem [ 262.384250][T10135] netlink: 'syz.5.1667': attribute type 13 has an invalid length. [ 262.413183][ T5849] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 262.427250][ T5837] bcachefs (loop3): shutting down [ 262.744402][ T5837] bcachefs (loop3): shutdown complete [ 262.832505][T10146] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1673'. [ 262.926290][T10149] trusted_key: encrypted_key: keylen parameter is missing [ 263.275969][T10155] loop5: detected capacity change from 0 to 2048 [ 263.366944][T10155] UDF-fs: error (device loop5): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 264.366790][ T5900] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 264.523256][ T5900] usb 3-1: Using ep0 maxpacket: 16 [ 264.546972][ T5900] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79 [ 264.567373][ T5900] usb 3-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0 [ 264.598796][ T5900] usb 3-1: Manufacturer: syz [ 264.629580][ T5900] usb 3-1: config 0 descriptor?? [ 264.782436][T10200] loop4: detected capacity change from 0 to 256 [ 264.838881][T10200] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 264.884837][ T5900] usb 3-1: Cannot retrieve CPort count: 0 [ 264.890669][ T5900] usb 3-1: Cannot retrieve CPort count: -5 [ 264.903125][T10200] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 264.941052][ T5900] es2_ap_driver 3-1:0.0: probe with driver es2_ap_driver failed with error -5 [ 264.996550][T10200] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 265.106458][ T970] usb 3-1: USB disconnect, device number 6 [ 265.167043][T10205] loop5: detected capacity change from 0 to 1024 [ 265.331981][T10208] loop1: detected capacity change from 0 to 256 [ 265.383396][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 265.398180][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 265.480959][T10180] loop0: detected capacity change from 0 to 32768 [ 265.575173][T10208] FAT-fs (loop1): Directory bread(block 64) failed [ 265.614363][T10208] FAT-fs (loop1): Directory bread(block 65) failed [ 265.643282][T10208] FAT-fs (loop1): Directory bread(block 66) failed [ 265.654727][T10180] ERROR: (device loop0): dbFindCtl: Corrupt dmapctl page [ 265.654727][T10180] [ 265.690203][T10208] FAT-fs (loop1): Directory bread(block 67) failed [ 265.715364][T10208] FAT-fs (loop1): Directory bread(block 68) failed [ 265.743137][T10180] ERROR: (device loop0): remounting filesystem as read-only [ 265.814119][T10208] FAT-fs (loop1): Directory bread(block 69) failed [ 265.831812][T10208] FAT-fs (loop1): Directory bread(block 70) failed [ 265.845163][T10208] FAT-fs (loop1): Directory bread(block 71) failed [ 265.851876][T10208] FAT-fs (loop1): Directory bread(block 72) failed [ 265.941204][T10208] FAT-fs (loop1): Directory bread(block 73) failed [ 266.115278][T10219] loop4: detected capacity change from 0 to 16 [ 266.122434][T10219] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 266.702695][T10231] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1712'. [ 269.145509][T10254] loop5: detected capacity change from 0 to 32768 [ 269.193228][ T5826] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 269.350034][T10254] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 269.363122][ T5826] usb 1-1: Using ep0 maxpacket: 8 [ 269.379194][ T5826] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 269.397683][ T5826] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 269.408342][ T5826] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 269.417030][ T5826] usb 1-1: Product: syz [ 269.421469][ T5826] usb 1-1: Manufacturer: syz [ 269.426600][ T5826] usb 1-1: SerialNumber: syz [ 269.653615][T10254] XFS (loop5): Ending clean mount [ 269.662016][ T5826] usb 1-1: Invalid connection information received from device [ 269.706816][T10254] XFS (loop5): Quotacheck needed: Please wait. [ 269.848905][T10254] XFS (loop5): Quotacheck: Done. [ 269.867120][ T5826] usb 1-1: USB disconnect, device number 6 [ 270.161032][ T5835] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 270.580321][T10292] loop1: detected capacity change from 0 to 32768 [ 270.650774][T10292] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 270.883308][T10292] XFS (loop1): Ending clean mount [ 271.139208][ T5838] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 271.180296][T10344] loop5: detected capacity change from 0 to 65 [ 271.200165][T10344] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway [ 271.323763][T10347] netlink: 'syz.2.1759': attribute type 4 has an invalid length. [ 271.371996][T10347] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1759'. [ 271.413982][T10319] loop3: detected capacity change from 0 to 32768 [ 271.477055][T10319] [ 271.477055][T10319] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 271.477055][T10319] [ 271.498676][T10347] net_ratelimit: 5 callbacks suppressed [ 271.498699][T10347] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 271.523301][ T5967] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 271.575260][T10319] ERROR: (device loop3): diWrite: ixpxd invalid [ 271.575260][T10319] [ 271.596183][T10319] ERROR: (device loop3): txAbort: [ 271.596183][T10319] [ 271.738691][ T5967] usb 5-1: Using ep0 maxpacket: 8 [ 271.800090][T10351] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1763'. [ 271.800845][ T5967] usb 5-1: unable to get BOS descriptor or descriptor too short [ 271.824523][ T5837] [ 271.824523][ T5837] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 271.824523][ T5837] [ 271.863883][ T5967] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E [ 271.882007][T10353] loop0: detected capacity change from 0 to 1024 [ 271.899699][ T5837] [ 271.899699][ T5837] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 271.899699][ T5837] [ 271.903487][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 271.954918][T10353] EXT4-fs: inline encryption not supported [ 271.981021][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 272.001140][T10353] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 272.048426][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 272.085934][ T5967] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1 [ 272.161724][T10353] EXT4-fs error (device loop0): ext4_map_blocks:708: inode #3: block 1: comm syz.0.1764: lblock 1 mapped to illegal pblock 1 (length 1) [ 272.193738][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 272.243261][ T5967] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xAC, changing to 0x8C [ 272.248384][T10353] EXT4-fs (loop0): Remounting filesystem read-only [ 272.295646][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 7 [ 272.330492][ T5967] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0 [ 272.342188][T10353] Quota error (device loop0): write_blk: dquota write failed [ 272.374910][T10353] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 272.387175][T10361] block device autoloading is deprecated and will be removed. [ 272.416096][ T5967] usb 5-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84 [ 272.427938][T10353] EXT4-fs (loop0): 1 orphan inode deleted [ 272.444272][ T5967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 272.444980][T10361] syz.5.1767: attempt to access beyond end of device [ 272.444980][T10361] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 272.462521][T10353] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 272.483737][ T5967] usb 5-1: Product: syz [ 272.503104][ T5967] usb 5-1: Manufacturer: syz [ 272.511393][ T5967] usb 5-1: SerialNumber: syz [ 272.588569][ T5967] usb 5-1: config 0 descriptor?? [ 272.613870][T10345] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 272.649638][ T5967] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 272.650728][T10370] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 272.709759][T10372] delete_channel: no stack [ 272.822834][ T5836] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 272.888881][T10376] openvswitch: netlink: Message has 736 unknown bytes. [ 273.079451][T10382] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1776'. [ 273.134923][ T5967] usb 5-1: USB disconnect, device number 4 [ 273.259598][T10381] loop0: detected capacity change from 0 to 2048 [ 273.433093][T10391] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 273.493254][T10392] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1780'. [ 273.502898][T10381] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 273.506129][T10394] loop1: detected capacity change from 0 to 64 [ 273.571096][T10381] Remounting filesystem read-only [ 273.625989][ T5860] udevd[5860]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 273.881482][T10401] loop5: detected capacity change from 0 to 256 [ 273.892383][T10399] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1783'. [ 273.922182][T10401] exfat: Deprecated parameter 'namecase' [ 274.013706][T10401] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 274.023291][T10404] netlink: 'syz.4.1787': attribute type 4 has an invalid length. [ 274.073150][T10404] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1787'. [ 274.232854][T10406] loop0: detected capacity change from 0 to 1764 [ 274.386031][T10411] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1790'. [ 274.443237][T10411] openvswitch: netlink: Actions may not be safe on all matching packets [ 275.096826][T10424] loop5: detected capacity change from 0 to 4096 [ 275.150466][T10424] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 275.374767][T10442] xt_TPROXY: Can be used only with -p tcp or -p udp [ 275.677077][T10450] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1807'. [ 275.745314][T10452] loop0: detected capacity change from 0 to 16 [ 275.794545][T10452] erofs (device loop0): mounted with root inode @ nid 36. [ 275.842084][T10452] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 275.931416][T10452] erofs (device loop0): failed to decompress -3 in[47, 4049] out[1851] [ 275.992098][T10452] erofs (device loop0): read error -117 @ 43 of nid 36 [ 276.292530][T10460] loop3: detected capacity change from 0 to 4096 [ 276.373142][T10460] EXT4-fs (loop3): Test dummy encryption mode enabled [ 276.466179][T10460] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 276.689707][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 276.827998][T10482] xt_ecn: cannot match TCP bits for non-tcp packets [ 277.343246][T10496] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 277.742682][T10463] loop1: detected capacity change from 0 to 32768 [ 277.981547][T10510] loop2: detected capacity change from 0 to 4096 [ 278.022297][T10510] EXT4-fs (loop2): Test dummy encryption mode enabled [ 278.063799][T10510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 278.220287][T10463] bcachefs (loop1): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 278.306606][T10463] bcachefs (loop1): recovering from clean shutdown, journal seq 10 [ 278.331960][T10463] bcachefs (loop1): superblock requires following recovery passes to be run: [ 278.331960][T10463] check_extents,check_indirect_extents [ 278.407388][T10463] bcachefs (loop1): Version upgrade required: [ 278.407388][T10463] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 278.407388][T10463] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 278.407388][T10463] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 278.500288][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 278.663586][T10463] bcachefs (loop1): dropping and reconstructing all alloc info [ 278.729331][T10463] bcachefs (loop1): accounting_read... done [ 278.760541][T10463] bcachefs (loop1): alloc_read... done [ 278.814166][T10463] bcachefs (loop1): snapshots_read... done [ 278.820706][T10463] bcachefs (loop1): done starting filesystem [ 279.070436][T10463] syz.1.1814 (10463) used greatest stack depth: 20472 bytes left [ 279.172173][T10550] netlink: 284 bytes leftover after parsing attributes in process `syz.5.1852'. [ 279.195741][T10549] netlink: 'syz.3.1853': attribute type 1 has an invalid length. [ 279.232140][T10502] loop0: detected capacity change from 0 to 32768 [ 279.239992][T10549] netlink: 224 bytes leftover after parsing attributes in process `syz.3.1853'. [ 279.244321][ T5838] bcachefs (loop1): shutting down [ 279.416537][ T5836] read_mapping_page failed! [ 279.454147][ T5836] ERROR: (device loop0): txAbort: [ 279.454147][ T5836] [ 279.507134][ T5836] read_mapping_page failed! [ 279.512361][ T5836] ERROR: (device loop0): txAbort: [ 279.512361][ T5836] [ 279.537488][ T5838] bcachefs (loop1): shutdown complete [ 279.633349][T10539] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 279.652815][T10539] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 279.730052][T10539] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 279.739529][T10539] Bluetooth: hci4: Opcode 0x0406 failed: -4 [ 279.779239][T10539] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 279.801840][T10539] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 279.885568][T10539] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 279.899609][T10539] Bluetooth: hci5: Opcode 0x0406 failed: -4 [ 280.175061][ T5900] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 280.355348][ T5900] usb 6-1: New USB device found, idVendor=0f11, idProduct=1000, bcdDevice= 0.7f [ 280.364762][ T5900] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.389138][ T5900] usb 6-1: config 0 descriptor?? [ 280.442602][T10576] tmpfs: Bad value for 'mpol' [ 280.627697][ T6476] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.635133][ T5900] usb 6-1: string descriptor 0 read error: -71 [ 280.678928][ T5900] ldusb 6-1:0.0: Interrupt in endpoint not found [ 280.713081][ T5900] usb 6-1: USB disconnect, device number 10 [ 280.900511][ T5849] Bluetooth: hci0: command 0x0406 tx timeout [ 280.916543][ T6476] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 280.978546][T10585] loop4: detected capacity change from 0 to 256 [ 281.145554][T10585] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 281.173673][T10585] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 281.197257][ T6476] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 281.506961][ T6476] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 281.613944][T10592] xt_TCPMSS: Only works on TCP SYN packets [ 281.786478][ T5849] Bluetooth: hci4: command 0x0406 tx timeout [ 281.854503][ T5849] Bluetooth: hci3: command 0x0406 tx timeout [ 281.933150][ T5849] Bluetooth: hci5: command 0x0406 tx timeout [ 282.000025][T10596] loop5: detected capacity change from 0 to 512 [ 282.065286][T10596] EXT4-fs (loop5): Test dummy encryption mode enabled [ 282.223996][T10596] EXT4-fs error (device loop5): ext4_iget_extra_inode:4691: inode #12: comm syz.5.1879: corrupted in-inode xattr: invalid ea_ino [ 282.274946][T10596] EXT4-fs (loop5): Remounting filesystem read-only [ 282.335455][ T6476] bridge_slave_1: left allmulticast mode [ 282.341340][ T6476] bridge_slave_1: left promiscuous mode [ 282.377704][T10596] EXT4-fs (loop5): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 282.414495][ T6476] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.539879][ T6476] bridge_slave_0: left allmulticast mode [ 282.589502][ T6476] bridge_slave_0: left promiscuous mode [ 282.646967][ T6476] bridge0: port 1(bridge_slave_0) entered disabled state [ 282.676909][ T5835] EXT4-fs (loop5): unmounting filesystem 00000005-0000-0000-0000-000000000000. [ 282.787293][ T5145] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 282.804570][ T5145] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 282.814255][ T5145] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 282.830105][ T5145] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 282.831592][T10614] loop2: detected capacity change from 0 to 8 [ 282.883382][ T5145] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 282.983283][ T5145] Bluetooth: hci0: command 0x0406 tx timeout [ 283.102741][T10618] netlink: 'syz.5.1887': attribute type 1 has an invalid length. [ 283.158188][T10618] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1887'. [ 283.767921][T10632] netlink: ct family unspecified [ 283.796340][T10632] openvswitch: netlink: Actions may not be safe on all matching packets [ 283.863093][ T5145] Bluetooth: hci4: command 0x0406 tx timeout [ 283.884136][ T5900] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 283.938997][ T5145] Bluetooth: hci3: command 0x0406 tx timeout [ 284.023671][ T5145] Bluetooth: hci5: command 0x0406 tx timeout [ 284.053166][ T5900] usb 2-1: Using ep0 maxpacket: 16 [ 284.068901][ T5900] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice= 7.79 [ 284.086358][ T5900] usb 2-1: New USB device strings: Mfr=1, Product=0, SerialNumber=0 [ 284.113374][ T5900] usb 2-1: Manufacturer: syz [ 284.124125][ T5900] usb 2-1: config 0 descriptor?? [ 284.287442][ T6476] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 284.309999][ T6476] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 284.324623][ T6476] bond0 (unregistering): Released all slaves [ 284.341537][ T5900] usb 2-1: Cannot retrieve CPort count: 0 [ 284.353697][ T5900] usb 2-1: Cannot retrieve CPort count: -5 [ 284.360125][ T5900] es2_ap_driver 2-1:0.0: probe with driver es2_ap_driver failed with error -5 [ 284.381907][ T6476] bond1 (unregistering): Released all slaves [ 284.560283][T10611] lo speed is unknown, defaulting to 1000 [ 284.632085][ T5898] usb 2-1: USB disconnect, device number 6 [ 284.973111][ T5145] Bluetooth: hci1: command tx timeout [ 285.262745][T10658] loop3: detected capacity change from 0 to 8192 [ 285.354828][T10658] syz.3.1905: attempt to access beyond end of device [ 285.354828][T10658] loop3: rw=0, sector=57847, nr_sectors = 1 limit=8192 [ 285.484601][T10658] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 285.493711][T10658] FAT-fs (loop3): Filesystem has been set read-only [ 285.535197][T10658] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 285.555759][T10658] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1) [ 285.755398][T10671] loop2: detected capacity change from 0 to 4096 [ 285.854549][T10671] NILFS (loop2): invalid segment: Checksum error in segment payload [ 285.912126][T10671] NILFS (loop2): trying rollback from an earlier position [ 286.023327][T10671] NILFS (loop2): recovery complete [ 286.120455][T10682] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 286.365583][T10690] netlink: 'syz.1.1914': attribute type 1 has an invalid length. [ 286.472421][ T6476] hsr_slave_0: left promiscuous mode [ 286.540354][T10652] loop4: detected capacity change from 0 to 32768 [ 286.545296][ T6476] hsr_slave_1: left promiscuous mode [ 286.576480][ T6476] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 286.635980][ T6476] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 286.670083][ T6476] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 286.680010][T10702] netlink: 4388 bytes leftover after parsing attributes in process `syz.5.1918'. [ 286.704182][ T6476] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 286.826745][ T6476] veth1_macvtap: left promiscuous mode [ 286.854340][ T6476] veth0_macvtap: left promiscuous mode [ 286.885416][ T6476] veth1_vlan: left promiscuous mode [ 286.890987][ T6476] veth0_vlan: left promiscuous mode [ 286.920711][T10652] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 286.986137][T10652] bcachefs (loop4): recovering from clean shutdown, journal seq 10 [ 287.029723][T10652] bcachefs (loop4): superblock requires following recovery passes to be run: [ 287.029723][T10652] check_extents,check_indirect_extents [ 287.053569][ T5145] Bluetooth: hci1: command tx timeout [ 287.100622][T10652] bcachefs (loop4): Version upgrade required: [ 287.100622][T10652] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 287.100622][T10652] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 287.100622][T10652] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 287.263779][T10652] bcachefs (loop4): dropping and reconstructing all alloc info [ 287.324049][T10652] bcachefs (loop4): accounting_read... done [ 287.368663][T10652] bcachefs (loop4): alloc_read... done [ 287.389770][T10652] bcachefs (loop4): snapshots_read... done [ 287.418881][T10652] bcachefs (loop4): done starting filesystem [ 287.629054][ T5839] bcachefs (loop4): shutting down [ 287.776272][ T5839] bcachefs (loop4): shutdown complete [ 287.869532][T10720] loop1: detected capacity change from 0 to 4096 [ 287.894987][T10720] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 288.043282][T10720] ntfs3: Couldn't remount rw because journal is not replayed. Please umount/remount instead [ 288.043282][T10720] [ 288.309322][T10716] loop2: detected capacity change from 0 to 32768 [ 288.363373][T10716] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 288.530154][T10716] XFS (loop2): Ending clean mount [ 288.541520][T10716] XFS (loop2): Quotacheck needed: Please wait. [ 288.607395][ T6476] team0 (unregistering): Port device team_slave_1 removed [ 288.611199][T10716] XFS (loop2): Quotacheck: Done. [ 288.662243][ T6476] team0 (unregistering): Port device team_slave_0 removed [ 288.738078][ T5834] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 288.804812][T10732] ieee802154 phy0 wpan0: encryption failed: -22 [ 289.133456][ T5145] Bluetooth: hci1: command tx timeout [ 289.163230][T10734] loop1: detected capacity change from 0 to 2048 [ 289.182618][T10734] EXT4-fs: Ignoring removed nomblk_io_submit option [ 289.191637][T10734] EXT4-fs (loop1): unable to read superblock [ 289.502358][T10738] netlink: 'syz.2.1929': attribute type 1 has an invalid length. [ 289.817685][T10742] loop2: detected capacity change from 0 to 8 [ 289.851713][T10742] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 290.024706][T10742] cramfs: Error -3 while decompressing! [ 290.030339][T10742] cramfs: ffffffff9ac30ba8(26)->ffff88804cdf9000(4096) [ 290.107171][T10742] cramfs: Error -5 while decompressing! [ 290.127596][T10742] cramfs: ffffffff9ac30bc2(26)->ffff88804cc4f000(4096) [ 290.178117][T10611] chnl_net:caif_netlink_parms(): no params data found [ 290.217752][T10742] cramfs: Error -3 while decompressing! [ 290.240033][T10751] loop5: detected capacity change from 0 to 1024 [ 290.248683][T10742] cramfs: ffffffff9ac30bdc(16)->ffff88804ce1f000(4096) [ 290.273117][T10742] cramfs: Error -3 while decompressing! [ 290.279318][T10742] cramfs: ffffffff9ac30ba8(26)->ffff88804cdf9000(4096) [ 290.518636][ T30] audit: type=1400 audit(1743853448.826:41): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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hfsplus: b-tree write err: -5, ino 4 [ 290.983363][T10770] netlink: 'syz.3.1941': attribute type 1 has an invalid length. [ 290.991941][T10770] netlink: 228 bytes leftover after parsing attributes in process `syz.3.1941'. [ 291.216154][ T5145] Bluetooth: hci1: command tx timeout [ 291.388957][T10780] netlink: 'syz.4.1944': attribute type 1 has an invalid length. [ 291.450400][T10611] bridge0: port 1(bridge_slave_0) entered blocking state [ 291.493460][T10611] bridge0: port 1(bridge_slave_0) entered disabled state [ 291.537587][T10611] bridge_slave_0: entered allmulticast mode [ 291.567817][T10611] bridge_slave_0: entered promiscuous mode [ 291.614368][T10611] bridge0: port 2(bridge_slave_1) entered blocking state [ 291.636885][T10611] bridge0: port 2(bridge_slave_1) entered disabled state [ 291.735442][T10611] bridge_slave_1: entered allmulticast mode [ 291.763460][T10611] bridge_slave_1: entered promiscuous mode [ 291.983104][ T5900] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 292.043353][T10611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 292.083378][T10801] ieee802154 phy0 wpan0: encryption failed: -22 [ 292.086066][T10611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 292.183206][ T5900] usb 3-1: Using ep0 maxpacket: 8 [ 292.246611][ T5900] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 292.251969][T10806] loop1: detected capacity change from 0 to 512 [ 292.263292][ T5900] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 292.288326][ T5900] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 292.298898][ T5900] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 292.308912][ T5900] usb 3-1: Product: syz [ 292.315009][ T5900] usb 3-1: Manufacturer: syz [ 292.329948][ T5900] usb 3-1: SerialNumber: syz [ 292.368742][T10806] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 292.390845][ T5900] usb 3-1: config 0 descriptor?? [ 292.400068][T10806] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2842c018, mo2=0002] [ 292.494988][T10611] team0: Port device team_slave_0 added [ 292.504376][T10806] System zones: 0-2, 18-18, 34-35 [ 292.505479][T10811] loop4: detected capacity change from 0 to 16 [ 292.512513][T10806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 292.519478][T10611] team0: Port device team_slave_1 added [ 292.555865][T10811] erofs (device loop4): mounted with root inode @ nid 36. [ 292.629200][T10811] erofs (device loop4): readahead error at folio 2 @ nid 89 [ 292.658997][T10811] erofs (device loop4): readahead error at folio 0 @ nid 89 [ 292.676792][T10811] erofs (device loop4): read error -117 @ 0 of nid 89 [ 292.694956][ T30] audit: type=1800 audit(1743853451.016:42): pid=10811 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1957" name="file3" dev="loop4" ino=89 res=0 errno=0 [ 292.703287][T10806] EXT4-fs (loop1): shut down requested (0) [ 292.732108][T10765] loop5: detected capacity change from 0 to 32768 [ 292.886755][T10611] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 292.898200][T10611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 292.975502][ T970] usb 3-1: USB disconnect, device number 7 [ 292.993108][T10611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 293.026455][T10611] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 293.033697][T10611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 293.069249][T10611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 293.205499][ T5838] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.265786][T10765] bcachefs (loop5): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io [ 293.353397][T10765] bcachefs (loop5): recovering from clean shutdown, journal seq 10 [ 293.362687][T10765] bcachefs (loop5): superblock requires following recovery passes to be run: [ 293.362687][T10765] check_extents,check_indirect_extents [ 293.434397][T10765] bcachefs (loop5): Version upgrade required: [ 293.434397][T10765] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 293.434397][T10765] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 293.434397][T10765] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 293.450179][T10611] hsr_slave_0: entered promiscuous mode [ 293.545695][T10765] bcachefs (loop5): dropping and reconstructing all alloc info [ 293.659261][T10765] bcachefs (loop5): accounting_read... done [ 293.714482][T10611] hsr_slave_1: entered promiscuous mode [ 293.724793][T10765] bcachefs (loop5): alloc_read... done [ 293.763164][T10765] bcachefs (loop5): snapshots_read... done [ 293.795846][T10765] bcachefs (loop5): done starting filesystem [ 293.812032][T10611] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 293.853381][T10611] Cannot create hsr debugfs directory [ 293.882887][T10839] ip6erspan0: entered allmulticast mode [ 293.939307][T10842] loop2: detected capacity change from 0 to 64 [ 294.013355][ T5835] bcachefs (loop5): shutting down [ 294.049295][ T30] audit: type=1800 audit(1743853452.356:43): pid=10842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1966" name="file1" dev="loop2" ino=18 res=0 errno=0 [ 294.335748][ T5835] bcachefs (loop5): shutdown complete [ 294.363216][T10850] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1970'. [ 294.411643][T10852] loop3: detected capacity change from 0 to 256 [ 294.461049][T10850] 0·: renamed from hsr0 (while UP) [ 294.535161][T10850] 0·: entered allmulticast mode [ 294.613053][T10850] hsr_slave_0: entered allmulticast mode [ 294.618793][T10850] hsr_slave_1: entered allmulticast mode [ 294.708718][T10850] A link change request failed with some changes committed already. Interface 70· may have been left with an inconsistent configuration, please check. [ 295.091868][T10870] ieee802154 phy0 wpan0: encryption failed: -22 [ 295.452491][T10880] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1981'. [ 295.765362][T10611] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 295.818800][T10611] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 295.880047][T10611] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 295.929762][T10611] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 295.945927][T10896] netlink: 'syz.3.1988': attribute type 5 has an invalid length. [ 296.479771][T10611] 8021q: adding VLAN 0 to HW filter on device bond0 [ 296.560489][T10611] 8021q: adding VLAN 0 to HW filter on device team0 [ 296.647817][ T5924] bridge0: port 1(bridge_slave_0) entered blocking state [ 296.655060][ T5924] bridge0: port 1(bridge_slave_0) entered forwarding state [ 296.752335][ T3986] bridge0: port 2(bridge_slave_1) entered blocking state [ 296.759602][ T3986] bridge0: port 2(bridge_slave_1) entered forwarding state [ 297.683534][T10934] loop1: detected capacity change from 0 to 16 [ 297.763252][T10934] erofs (device loop1): mounted with root inode @ nid 36. [ 297.792173][T10894] loop4: detected capacity change from 0 to 32768 [ 297.812106][T10934] erofs (device loop1): corrupted dir block 0 @ nid 36 [ 297.922250][T10894] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 297.981636][T10611] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 298.178812][T10894] XFS (loop4): Ending clean mount [ 298.216109][T10894] XFS (loop4): Quotacheck needed: Please wait. [ 298.415821][T10894] XFS (loop4): Quotacheck: Done. [ 298.676297][ T5839] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 298.951432][T10964] loop1: detected capacity change from 0 to 4096 [ 299.100487][T10964] NILFS (loop1): invalid segment: Checksum error in segment payload [ 299.126145][T10964] NILFS (loop1): trying rollback from an earlier position [ 299.238519][T10964] NILFS (loop1): recovery complete [ 299.265655][T10976] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 299.542589][T10611] veth0_vlan: entered promiscuous mode [ 299.667769][T10611] veth1_vlan: entered promiscuous mode [ 299.862781][T10611] veth0_macvtap: entered promiscuous mode [ 299.912738][T10985] loop4: detected capacity change from 0 to 2048 [ 299.925618][T10611] veth1_macvtap: entered promiscuous mode [ 299.984627][T10985] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 300.044647][T10985] NILFS (loop4): segment count 8142508126285856831 exceeds upper limit (1152921504606846975 segments) [ 300.073654][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.142896][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.145713][T10952] loop2: detected capacity change from 0 to 32768 [ 300.180200][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.244843][T10985] kAFS: No cell specified [ 300.264782][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.278025][T10996] autofs4:pid:10996:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a) [ 300.319911][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.381504][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.426080][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.483028][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.523065][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.563077][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.610040][T10611] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 300.760405][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.822033][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.863133][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.922101][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.940860][ T30] audit: type=1326 audit(1743853459.256:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.2021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 300.985501][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 301.033099][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.042975][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 301.063108][ T30] audit: type=1326 audit(1743853459.256:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.2021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 301.107248][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.117682][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 301.167179][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.206404][T10611] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 301.245988][ T30] audit: type=1326 audit(1743853459.296:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.2021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 301.385694][T10611] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.409551][ T30] audit: type=1326 audit(1743853459.296:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.2021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 301.455532][T10611] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.495574][ T30] audit: type=1326 audit(1743853459.296:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11005 comm="syz.4.2021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe7b4d8d169 code=0x7ffc0000 [ 301.517885][T10611] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.517985][T10611] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 302.095378][ T6473] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.103858][ T6473] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.350156][ T68] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 302.395568][ T68] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.486587][T11032] loop4: detected capacity change from 0 to 4096 [ 302.560361][T11032] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 302.779638][T11047] loop2: detected capacity change from 0 to 2048 [ 302.856103][T11047] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 302.965644][ T30] audit: type=1800 audit(1743853461.286:49): pid=11032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2031" name="file1" dev="loop4" ino=30 res=0 errno=0 [ 303.695532][T11079] loop1: detected capacity change from 0 to 64 [ 304.067297][T11089] IPv6: NLM_F_CREATE should be specified when creating new route [ 304.263240][T11095] netlink: 'syz.5.2052': attribute type 10 has an invalid length. [ 304.318102][T11095] veth0_macvtap: left promiscuous mode [ 304.366851][T11095] batman_adv: batadv0: Adding interface: macvtap0 [ 304.407552][T11095] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 304.515732][T11095] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active [ 304.542492][T11103] veth1_macvtap: left promiscuous mode [ 304.599720][T11103] macsec0: entered promiscuous mode [ 304.623351][T11103] macsec0: entered allmulticast mode [ 305.318483][T11127] loop5: detected capacity change from 0 to 128 [ 305.354625][T11130] loop6: detected capacity change from 0 to 764 [ 306.006531][T11150] usb usb1: usbfs: process 11150 (syz.5.2073) did not claim interface 0 before use [ 306.571129][T11165] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 306.701651][T11168] unsupported nla_type 52263 [ 307.152200][T11174] loop5: detected capacity change from 0 to 4096 [ 307.223935][T11174] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 307.632821][T11139] loop3: detected capacity change from 0 to 32768 [ 307.805400][ T30] audit: type=1800 audit(1743853466.106:50): pid=11139 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2069" name="file1" dev="loop3" ino=4 res=0 errno=0 [ 308.434831][T11216] loop6: detected capacity change from 0 to 256 [ 308.680138][T11216] FAT-fs (loop6): Directory bread(block 64) failed [ 308.727892][T11216] FAT-fs (loop6): Directory bread(block 65) failed [ 308.763171][T11216] FAT-fs (loop6): Directory bread(block 66) failed [ 308.799572][T11216] FAT-fs (loop6): Directory bread(block 67) failed [ 308.830872][T11216] FAT-fs (loop6): Directory bread(block 68) failed [ 308.890610][T11216] FAT-fs (loop6): Directory bread(block 69) failed [ 308.933578][T11216] FAT-fs (loop6): Directory bread(block 70) failed [ 308.940498][T11216] FAT-fs (loop6): Directory bread(block 71) failed [ 308.993255][T11216] FAT-fs (loop6): Directory bread(block 72) failed [ 308.999825][T11216] FAT-fs (loop6): Directory bread(block 73) failed [ 309.083517][T11229] IPv6: NLM_F_CREATE should be specified when creating new route [ 309.130148][T11229] netlink: 1 bytes leftover after parsing attributes in process `syz.2.2104'. [ 309.250367][T11187] loop4: detected capacity change from 0 to 32768 [ 309.364107][T11187] find_entry called with index = 0 [ 309.369966][T11187] read_mapping_page failed! [ 309.449787][T11187] ERROR: (device loop4): txAbort: [ 309.449787][T11187] [ 309.471841][T11187] ERROR: (device loop4): remounting filesystem as read-only [ 309.514149][T11187] ERROR: (device loop4): diFree: numfree > numinos [ 309.514149][T11187] [ 309.550498][T11240] loop1: detected capacity change from 0 to 1024 [ 309.624043][T11240] hfsplus: bad catalog entry type [ 309.865815][ T5924] hfsplus: b-tree write err: -5, ino 4 [ 310.093432][T11254] cgroup: Invalid name [ 310.539156][T11270] Unsupported ieee802154 address type: 0 [ 310.802366][T11275] PM: Enabling pm_trace changes system date and time during resume. [ 310.802366][T11275] PM: Correct system time has to be restored manually after resume. [ 311.200419][T11288] xfrm1: entered allmulticast mode [ 311.294018][T11297] cgroup: noprefix used incorrectly [ 311.300654][T11298] xt_bpf: check failed: parse error [ 311.998095][T11320] netlink: 'syz.6.2142': attribute type 1 has an invalid length. [ 312.143227][ T5907] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 312.366534][ T5907] usb 2-1: Using ep0 maxpacket: 16 [ 312.396005][ T5907] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 312.415329][ T5907] usb 2-1: config 0 has an invalid descriptor of length 255, skipping remainder of the config [ 312.465733][ T5907] usb 2-1: config 0 has no interface number 0 [ 312.486646][ T5907] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 312.520340][ T5907] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 312.553331][ T5907] usb 2-1: Product: syz [ 312.571361][ T5907] usb 2-1: Manufacturer: syz [ 312.591746][ T5907] usb 2-1: SerialNumber: syz [ 312.637764][ T5907] usb 2-1: config 0 descriptor?? [ 312.743918][T11330] loop4: detected capacity change from 0 to 8192 [ 312.805351][T11340] sctp: [Deprecated]: syz.6.2154 (pid 11340) Use of struct sctp_assoc_value in delayed_ack socket option. [ 312.805351][T11340] Use struct sctp_sack_info instead [ 312.894787][ T5907] usb 2-1: Found UVC 0.00 device syz (046d:08f3) [ 312.901189][ T5907] usb 2-1: No valid video chain found. [ 312.973821][ T5907] usb 2-1: USB disconnect, device number 7 [ 313.214494][T11351] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 313.273126][T11351] bond0: (slave lo): Error: Device can not be enslaved while up [ 313.527365][T11359] xt_l2tp: v2 doesn't support IP mode [ 313.628478][T11361] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2163'. [ 313.766271][T11368] loop1: detected capacity change from 0 to 64 [ 313.924586][ T970] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 314.041722][T11369] loop5: detected capacity change from 0 to 4096 [ 314.107751][ T970] usb 7-1: Using ep0 maxpacket: 8 [ 314.132789][T11378] syz.1.2171 (11378): drop_caches: 0 [ 314.147451][ T970] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 314.183309][ T970] usb 7-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 314.233452][ T970] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 314.278534][ T970] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 314.299747][ T970] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.307921][T11380] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2172'. [ 314.347432][ T970] usb 7-1: Product: syz [ 314.356107][ T970] usb 7-1: Manufacturer: syz [ 314.387608][ T970] usb 7-1: SerialNumber: syz [ 314.842132][ T970] usb 7-1: 0:2 : does not exist [ 314.853970][T11393] loop1: detected capacity change from 0 to 8 [ 314.923469][ T970] usb 7-1: USB disconnect, device number 2 [ 315.278425][ T5827] udevd[5827]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 315.502028][T11407] loop4: detected capacity change from 0 to 1764 [ 315.611411][T11416] netlink: 'syz.2.2188': attribute type 10 has an invalid length. [ 315.683111][T11416] netlink: 55 bytes leftover after parsing attributes in process `syz.2.2188'. [ 315.739870][T11416] team0: Port device virt_wifi0 added [ 316.178122][T11431] loop6: detected capacity change from 0 to 2048 [ 316.308520][T11431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 316.628242][T11445] tmpfs: Bad value for 'mpol' [ 317.153502][T11462] loop3: detected capacity change from 0 to 512 [ 317.315548][T11469] loop6: detected capacity change from 0 to 736 [ 317.344708][T11462] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.388574][T11469] rock: directory entry would overflow storage [ 317.399433][T11469] rock: sig=0x3b10, size=4, remaining=3 [ 317.443240][T11462] ext4 filesystem being mounted at /374/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 317.723113][ T5967] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 317.725598][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 317.905603][ T5967] usb 5-1: config 0 interface 0 has no altsetting 0 [ 317.917539][ T5967] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 317.947312][ T5967] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 318.002637][ T5967] usb 5-1: Product: syz [ 318.024984][ T5967] usb 5-1: Manufacturer: syz [ 318.029786][ T5967] usb 5-1: SerialNumber: syz [ 318.086083][ T5967] usb 5-1: config 0 descriptor?? [ 318.307026][ T5967] hso 5-1:0.0: Failed to find BULK IN ep [ 318.361356][ T5967] usb-storage 5-1:0.0: USB Mass Storage device detected [ 318.592440][ T5967] usb 5-1: USB disconnect, device number 5 [ 318.893181][ T5826] usb 7-1: new low-speed USB device number 3 using dummy_hcd [ 319.085570][ T5826] usb 7-1: config index 0 descriptor too short (expected 1307, got 27) [ 319.116093][ T5826] usb 7-1: config 0 has an invalid interface number: 0 but max is -1 [ 319.148972][ T5826] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 0 [ 319.203157][ T5826] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30 [ 319.243097][ T5826] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt [ 319.283085][ T5826] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 319.292852][ T5826] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246 [ 319.371168][T11529] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2241'. [ 319.382514][ T30] audit: type=1326 audit(1743853477.696:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11530 comm="syz.2.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 319.384449][T11533] mmap: syz.3.2239 (11533): VmData 37466112 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 319.443614][ T5826] usb 7-1: string descriptor 0 read error: -22 [ 319.449950][ T5826] usb 7-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de [ 319.490877][ T30] audit: type=1326 audit(1743853477.696:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11530 comm="syz.2.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 319.491246][ T5826] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 319.621793][ T5826] usb 7-1: config 0 descriptor?? [ 319.625790][ T30] audit: type=1326 audit(1743853477.746:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11530 comm="syz.2.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=315 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 319.656475][ T5826] hub 7-1:0.0: bad descriptor, ignoring hub [ 319.674225][ T5826] hub 7-1:0.0: probe with driver hub failed with error -5 [ 319.699497][T11534] loop4: detected capacity change from 0 to 4096 [ 319.734393][ T5826] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/input/input19 [ 319.738014][ T30] audit: type=1326 audit(1743853477.746:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11530 comm="syz.2.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 319.783099][T11534] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 319.926145][ T30] audit: type=1326 audit(1743853477.746:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11530 comm="syz.2.2240" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 320.116181][T11546] netlink: 696 bytes leftover after parsing attributes in process `syz.3.2247'. [ 320.223238][ T5967] usb 7-1: USB disconnect, device number 3 [ 320.790346][T11564] loop2: detected capacity change from 0 to 1024 [ 320.922634][T11564] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 321.058074][T11564] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.2254: missing EA_INODE flag [ 321.180189][T11564] EXT4-fs (loop2): Remounting filesystem read-only [ 321.371656][T11588] openvswitch: netlink: Actions may not be safe on all matching packets [ 321.450259][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.242256][T11607] loop5: detected capacity change from 0 to 4096 [ 322.371836][T11622] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 322.445949][T11607] NILFS error (device loop5): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 322.530303][T11626] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 322.633202][ T5967] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 322.661157][T11626] CIFS mount error: No usable UNC path provided in device string! [ 322.661157][T11626] [ 322.735639][T11626] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 322.813136][ T5967] usb 2-1: Using ep0 maxpacket: 16 [ 322.833861][ T5967] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 322.873048][ T5967] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 322.915332][ T5967] usb 2-1: config 0 has no interface number 0 [ 322.923415][T11636] netlink: 'syz.6.2282': attribute type 3 has an invalid length. [ 322.950500][ T5967] usb 2-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28 [ 322.985062][ T5967] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 323.026842][ T5967] usb 2-1: Product: syz [ 323.084750][ T5967] usb 2-1: Manufacturer: syz [ 323.089371][ T5967] usb 2-1: SerialNumber: syz [ 323.126082][ T5967] usb 2-1: config 0 descriptor?? [ 323.383199][ T5900] usb 6-1: new high-speed USB device number 11 using dummy_hcd [ 323.454068][ T5826] usb 2-1: USB disconnect, device number 8 [ 323.593081][ T5900] usb 6-1: Using ep0 maxpacket: 8 [ 323.609426][ T5900] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 323.647753][ T5900] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 323.680125][ T5900] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 323.704546][ T5900] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 323.743153][ T5900] usb 6-1: New USB device strings: Mfr=129, Product=2, SerialNumber=3 [ 323.765844][ T5900] usb 6-1: Product: syz [ 323.803036][ T5900] usb 6-1: Manufacturer: syz [ 323.813382][ T5900] usb 6-1: SerialNumber: syz [ 323.862826][ T5900] usb 6-1: config 0 descriptor?? [ 323.907298][ T5900] input: KB Gear Tablet as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input20 [ 324.404695][ T5826] usb 6-1: USB disconnect, device number 11 [ 324.907117][T11649] loop3: detected capacity change from 0 to 32768 [ 325.536695][T11707] loop1: detected capacity change from 0 to 64 [ 325.628319][T11711] 8021q: VLANs not supported on ipvlan0 [ 325.797266][T11714] loop5: detected capacity change from 0 to 1024 [ 325.858909][T11705] loop2: detected capacity change from 0 to 4096 [ 325.896499][T11705] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 326.371178][T11727] loop5: detected capacity change from 0 to 256 [ 326.489509][T11727] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 326.738328][T11736] syz.3.2318 (11736): /proc/11735/oom_adj is deprecated, please use /proc/11735/oom_score_adj instead. [ 326.823728][ T1292] ieee802154 phy0 wpan0: encryption failed: -22 [ 326.831337][ T1292] ieee802154 phy1 wpan1: encryption failed: -22 [ 326.924080][T11743] loop2: detected capacity change from 0 to 64 [ 327.054967][T11747] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2321'. [ 327.569626][T11762] netlink: 'syz.1.2327': attribute type 6 has an invalid length. [ 327.628312][T11762] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.2327'. [ 327.719146][T11717] loop6: detected capacity change from 0 to 32768 [ 327.756709][T11717] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2311 (11717) [ 327.775425][ T5826] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 327.842026][T11717] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 327.928385][T11771] netdevsim netdevsim4: Firmware load for './cgroup/../file0' refused, path contains '..' component [ 327.963463][ T5826] usb 3-1: Using ep0 maxpacket: 8 [ 327.968788][T11717] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm [ 327.991892][ T5826] usb 3-1: unable to get BOS descriptor or descriptor too short [ 328.009886][T11717] BTRFS info (device loop6): using free-space-tree [ 328.050972][ T5826] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E [ 328.122866][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 328.134797][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 328.144954][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 328.155002][ T5826] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1 [ 328.165683][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 328.186019][ T5826] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x46, changing to 0x6 [ 328.213847][ T5826] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 328.227377][ T5826] usb 3-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84 [ 328.236830][ T5826] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 328.245200][ T5826] usb 3-1: Product: syz [ 328.249491][ T5826] usb 3-1: Manufacturer: syz [ 328.254624][ T5826] usb 3-1: SerialNumber: syz [ 328.270850][ T5826] usb 3-1: config 0 descriptor?? [ 328.281633][T11760] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 328.359233][ T5826] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 328.465140][T11798] loop3: detected capacity change from 0 to 256 [ 328.543456][ T30] audit: type=1326 audit(1743853486.856:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.1.2335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 328.566721][T11798] exfat: Deprecated parameter 'namecase' [ 328.613107][T11798] exfat: Deprecated parameter 'utf8' [ 328.619001][T11798] exfat: Deprecated parameter 'namecase' [ 328.676811][ T30] audit: type=1326 audit(1743853486.856:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.1.2335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 328.709345][ T5826] usb 3-1: USB disconnect, device number 8 [ 328.769984][T10611] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 328.830636][T11798] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 328.859247][ T30] audit: type=1326 audit(1743853486.916:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.1.2335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 328.949365][ T30] audit: type=1326 audit(1743853486.916:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.1.2335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 329.001710][ T7593] udevd[7593]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 329.094157][ T30] audit: type=1326 audit(1743853486.916:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11804 comm="syz.1.2335" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f950d38d169 code=0x7ffc0000 [ 329.263210][ T5900] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 329.461304][ T5900] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 329.499635][T11821] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 329.515552][ T5900] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 329.564732][ T5900] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 329.640328][ T5900] usb 6-1: New USB device found, idVendor=05ac, idProduct=030a, bcdDevice=65.8c [ 329.712089][ T5900] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.807406][ T5900] usb 6-1: config 0 descriptor?? [ 329.842418][ T5900] input: appletouch as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input21 [ 330.143370][T11849] netlink: 256 bytes leftover after parsing attributes in process `syz.6.2348'. [ 330.356335][ T970] usb 6-1: USB disconnect, device number 12 [ 330.528335][T11862] loop3: detected capacity change from 0 to 1764 [ 330.555498][ T970] appletouch 6-1:0.0: input: appletouch disconnected [ 330.632919][T11862] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 330.772751][T11869] loop2: detected capacity change from 0 to 4096 [ 330.828684][T11869] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 331.044739][T11869] ntfs3(loop2): ino=19, mi_enum_attr [ 331.064245][ T970] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 331.135779][T11869] ntfs3(loop2): failed to convert "c46c" to macromanian [ 331.179918][T11869] ntfs3(loop2): ino=20, mi_enum_attr [ 331.255641][ T970] usb 2-1: too many configurations: 247, using maximum allowed: 8 [ 331.291596][T11903] loop5: detected capacity change from 0 to 256 [ 331.385102][ T970] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 331.405641][ T970] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 331.454769][T11910] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2362'. [ 331.464802][ T970] usb 2-1: Product: syz [ 331.468992][ T970] usb 2-1: Manufacturer: syz [ 331.500580][T11910] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2362'. [ 331.509671][ T970] usb 2-1: SerialNumber: syz [ 331.520605][ T970] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 331.560183][ T5826] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 331.923265][T11930] loop2: detected capacity change from 0 to 256 [ 332.032358][T11932] netlink: 'syz.5.2366': attribute type 16 has an invalid length. [ 332.099890][T11930] FAT-fs (loop2): Directory bread(block 64) failed [ 332.116949][T11932] netlink: 'syz.5.2366': attribute type 17 has an invalid length. [ 332.135969][T11930] FAT-fs (loop2): Directory bread(block 65) failed [ 332.173935][T11930] FAT-fs (loop2): Directory bread(block 66) failed [ 332.216580][T11930] FAT-fs (loop2): Directory bread(block 67) failed [ 332.272505][T11930] FAT-fs (loop2): Directory bread(block 68) failed [ 332.310112][T11930] FAT-fs (loop2): Directory bread(block 69) failed [ 332.367465][T11930] FAT-fs (loop2): Directory bread(block 70) failed [ 332.442216][T11932] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 332.489750][T11930] FAT-fs (loop2): Directory bread(block 71) failed [ 332.553676][T11930] FAT-fs (loop2): Directory bread(block 72) failed [ 332.632890][T11930] FAT-fs (loop2): Directory bread(block 73) failed [ 333.068702][ T970] usb 2-1: USB disconnect, device number 9 [ 333.090232][ T5826] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 333.097936][ T5826] ath9k_htc: Failed to initialize the device [ 333.104790][ T970] usb 2-1: ath9k_htc: USB layer deinitialized [ 333.264600][T11961] loop6: detected capacity change from 0 to 128 [ 333.352362][T11961] befs: (loop6): invalid magic header [ 334.537768][T12028] loop5: detected capacity change from 0 to 256 [ 334.744853][T12028] FAT-fs (loop5): Directory bread(block 64) failed [ 334.751527][T12028] FAT-fs (loop5): Directory bread(block 65) failed [ 334.773171][T12028] FAT-fs (loop5): Directory bread(block 66) failed [ 334.806943][T12028] FAT-fs (loop5): Directory bread(block 67) failed [ 334.833321][T12028] FAT-fs (loop5): Directory bread(block 68) failed [ 334.839884][T12028] FAT-fs (loop5): Directory bread(block 69) failed [ 334.944622][T12028] FAT-fs (loop5): Directory bread(block 70) failed [ 335.013098][T12028] FAT-fs (loop5): Directory bread(block 71) failed [ 335.019763][T12028] FAT-fs (loop5): Directory bread(block 72) failed [ 335.103107][T12028] FAT-fs (loop5): Directory bread(block 73) failed [ 335.910726][T12098] loop2: detected capacity change from 0 to 128 [ 335.969542][T12101] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 335.996393][T12098] EXT4-fs (loop2): Test dummy encryption mode enabled [ 336.080951][T12106] loop1: detected capacity change from 0 to 256 [ 336.163497][T12098] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 336.202667][T12106] exfat: Deprecated parameter 'namecase' [ 336.274400][T12098] ext4 filesystem being mounted at /423/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 336.293989][T12106] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 336.684522][ T5834] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 337.208019][T12161] loop1: detected capacity change from 0 to 256 [ 337.232420][T12162] program syz.3.2420 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 337.520165][T12161] FAT-fs (loop1): Directory bread(block 64) failed [ 337.556585][T12161] FAT-fs (loop1): Directory bread(block 65) failed [ 337.604193][T12161] FAT-fs (loop1): Directory bread(block 66) failed [ 337.663156][T12161] FAT-fs (loop1): Directory bread(block 67) failed [ 337.669905][T12161] FAT-fs (loop1): Directory bread(block 68) failed [ 337.671373][T12177] delete_channel: no stack [ 337.732861][T12161] FAT-fs (loop1): Directory bread(block 69) failed [ 337.753419][T12161] FAT-fs (loop1): Directory bread(block 70) failed [ 337.773968][T12161] FAT-fs (loop1): Directory bread(block 71) failed [ 337.780641][T12161] FAT-fs (loop1): Directory bread(block 72) failed [ 337.865205][T12161] FAT-fs (loop1): Directory bread(block 73) failed [ 338.085264][T12193] loop5: detected capacity change from 0 to 128 [ 338.160002][T12193] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 338.346208][T12194] loop3: detected capacity change from 0 to 4096 [ 338.415233][T12194] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 338.648674][T12194] ntfs3(loop3): ino=19, mi_enum_attr [ 338.682183][T12194] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 338.853789][T12194] ntfs3(loop3): failed to convert "c46c" to cp860 [ 338.887584][T12194] ntfs3(loop3): ino=20, mi_enum_attr [ 339.009519][T12221] loop4: detected capacity change from 0 to 256 [ 339.036478][T12221] exfat: Deprecated parameter 'namecase' [ 339.070365][T12164] loop6: detected capacity change from 0 to 32768 [ 339.081587][T12221] exfat: Deprecated parameter 'namecase' [ 339.135632][T12221] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 339.164042][T12164] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.2422 (12164) [ 339.267381][T12164] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 339.343161][T12164] BTRFS info (device loop6): using sha256 (sha256-ni) checksum algorithm [ 339.391752][T12164] BTRFS info (device loop6): using free-space-tree [ 339.554933][T12251] ieee802154 phy0 wpan0: encryption failed: -22 [ 340.072943][T12267] openvswitch: netlink: Key 22 has unexpected len 2 expected 4 [ 340.098512][T12201] loop2: detected capacity change from 0 to 32768 [ 340.121894][T10611] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 340.241144][T12201] JBD2: Ignoring recovery information on journal [ 340.453140][T12280] geneve2: entered promiscuous mode [ 340.494540][T12201] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 340.872735][T12227] loop1: detected capacity change from 0 to 32768 [ 341.121775][ T5834] ocfs2: Unmounting device (7,2) on (node local) [ 342.408010][T12352] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 342.651796][T12353] loop4: detected capacity change from 0 to 4096 [ 342.753154][T12368] program syz.2.2472 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 343.287585][T12384] loop2: detected capacity change from 0 to 256 [ 343.568559][T12331] loop6: detected capacity change from 0 to 32768 [ 343.574896][T12394] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2480'. [ 344.726988][T12436] loop2: detected capacity change from 0 to 2048 [ 344.760604][T12436] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 344.887675][T12443] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 345.494983][T12468] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2501'. [ 345.628010][T12477] loop6: detected capacity change from 0 to 128 [ 345.705387][T12477] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 345.730639][T12477] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 345.898596][T10611] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 346.194702][T12496] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 346.225388][T12501] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2507'. [ 346.506003][T12511] netlink: 'syz.3.2514': attribute type 33 has an invalid length. [ 346.521837][T12501] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2507'. [ 346.543090][T12511] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.2514'. [ 346.821563][T12522] loop3: detected capacity change from 0 to 256 [ 346.850844][T12522] exfat: Deprecated parameter 'namecase' [ 346.883280][T12522] exfat: Deprecated parameter 'namecase' [ 346.990712][T12522] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 347.185869][T12543] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2524'. [ 347.485316][T12549] loop2: detected capacity change from 0 to 2048 [ 347.533198][T12549] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 347.541795][T12555] loop6: detected capacity change from 0 to 512 [ 347.573774][T12557] tmpfs: Bad value for 'mpol' [ 347.591472][T12555] EXT4-fs: Ignoring removed nobh option [ 347.629466][T12555] EXT4-fs: Ignoring removed nobh option [ 347.642473][T12549] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 347.701152][T12555] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2 [ 347.751268][T12555] EXT4-fs error (device loop6): ext4_free_branches:1020: inode #13: comm syz.6.2529: invalid indirect mapped block 2683928664 (level 1) [ 347.885141][T12555] EXT4-fs (loop6): 1 truncate cleaned up [ 347.940165][T12555] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 348.315590][T10611] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 348.540834][T12596] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 348.712582][T12533] loop1: detected capacity change from 0 to 32768 [ 348.865304][T12533] ea_get: invalid extended attribute [ 348.874450][T12533] ffff88806d9b3a80: 04 00 00 00 .... [ 349.150883][ T30] audit: type=1326 audit(1743853507.466:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12625 comm="syz.2.2548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 349.275926][ T30] audit: type=1326 audit(1743853507.466:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12625 comm="syz.2.2548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 349.391551][ T30] audit: type=1326 audit(1743853507.466:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12625 comm="syz.2.2548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 349.498295][ T30] audit: type=1326 audit(1743853507.466:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12625 comm="syz.2.2548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 349.597963][T12641] delete_channel: no stack [ 349.643229][ T30] audit: type=1326 audit(1743853507.466:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12625 comm="syz.2.2548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd36b8d169 code=0x7ffc0000 [ 349.704796][T12646] tmpfs: Bad value for 'nr_inodes' [ 351.071824][T12708] loop2: detected capacity change from 0 to 512 [ 351.117414][T12708] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 351.189163][T12708] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz.2.2575: bad orphan inode 458763 [ 351.270275][T12708] EXT4-fs (loop2): Remounting filesystem read-only [ 351.282454][T12708] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 351.340419][T12719] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2577'. [ 351.412027][T12719] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2577'. [ 351.536456][T12662] loop1: detected capacity change from 0 to 32768 [ 351.573498][ T5834] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.617488][T12662] ERROR: (device loop1): dbAlloc: the hint is outside the map [ 351.617488][T12662] [ 351.673078][T12662] ERROR: (device loop1): remounting filesystem as read-only [ 351.838466][T12740] netlink: 'syz.5.2585': attribute type 10 has an invalid length. [ 352.074236][T12740] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 352.182104][T12755] loop2: detected capacity change from 0 to 128 [ 352.189537][T12753] lo: entered promiscuous mode [ 352.247474][T12755] FAT-fs (loop2): Directory bread(block 3236) failed [ 352.251143][T12753] netlink: 124 bytes leftover after parsing attributes in process `syz.4.2588'. [ 352.269736][T12755] FAT-fs (loop2): Directory bread(block 3237) failed [ 352.294894][T12755] FAT-fs (loop2): Directory bread(block 3238) failed [ 352.303106][T12753] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 352.361318][T12755] FAT-fs (loop2): Directory bread(block 3239) failed [ 352.382284][T12755] FAT-fs (loop2): Directory bread(block 3240) failed [ 352.392381][ T30] audit: type=1326 audit(1743853510.716:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.3.2592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9e58d169 code=0x7ffc0000 [ 352.414643][ C0] vkms_vblank_simulate: vblank timer overrun [ 352.446027][T12755] FAT-fs (loop2): Directory bread(block 3241) failed [ 352.453161][ T30] audit: type=1326 audit(1743853510.716:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.3.2592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9e58d169 code=0x7ffc0000 [ 352.475970][ T30] audit: type=1326 audit(1743853510.716:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.3.2592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f2d9e58d169 code=0x7ffc0000 [ 352.498225][ C0] vkms_vblank_simulate: vblank timer overrun [ 352.506274][ T30] audit: type=1326 audit(1743853510.716:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.3.2592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9e58d169 code=0x7ffc0000 [ 352.528525][ C0] vkms_vblank_simulate: vblank timer overrun [ 352.531177][T12755] FAT-fs (loop2): Directory bread(block 3242) failed [ 352.553148][ T30] audit: type=1326 audit(1743853510.716:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12760 comm="syz.3.2592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2d9e58d169 code=0x7ffc0000 [ 352.598717][T12755] FAT-fs (loop2): Directory bread(block 3243) failed [ 352.733878][T12755] FAT-fs (loop2): Directory bread(block 3236) failed [ 352.812819][T12755] FAT-fs (loop2): Directory bread(block 3237) failed [ 353.853846][T12819] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 354.557880][T12856] loop1: detected capacity change from 0 to 1024 [ 354.953138][ T5907] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 355.152489][ T5907] usb 4-1: Using ep0 maxpacket: 16 [ 355.185897][ T5907] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 355.243288][ T5907] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.251379][ T5907] usb 4-1: Product: syz [ 355.292132][ T5907] usb 4-1: Manufacturer: syz [ 355.319836][ T5907] usb 4-1: SerialNumber: syz [ 355.346119][ T5907] r8152-cfgselector 4-1: Unknown version 0x0000 [ 355.387381][ T5907] r8152-cfgselector 4-1: config 0 descriptor?? [ 355.653149][ T5846] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 355.845391][ T5846] usb 2-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 355.877801][ T5846] usb 2-1: config 0 interface 0 has no altsetting 0 [ 355.906015][ T5846] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 355.925663][ T5907] r8152-cfgselector 4-1: USB disconnect, device number 4 [ 355.941586][ T5846] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.979924][ T5846] usb 2-1: Product: syz [ 356.003406][ T5846] usb 2-1: Manufacturer: syz [ 356.008036][ T5846] usb 2-1: SerialNumber: syz [ 356.074301][ T5846] usb 2-1: config 0 descriptor?? [ 356.116134][ T5846] usb 2-1: selecting invalid altsetting 0 [ 356.458552][ T5846] usb 2-1: USB disconnect, device number 10 [ 357.641492][T12938] loop2: detected capacity change from 0 to 32768 [ 357.764478][T12938] ERROR: (device loop2): dtSearch: DT_GETPAGE: dtree page corrupt [ 357.764478][T12938] [ 357.805690][T12938] ERROR: (device loop2): remounting filesystem as read-only [ 357.843119][T12938] jfs_lookup: dtSearch returned -5 [ 358.147436][T13019] tmpfs: Bad value for 'mpol' [ 358.498267][T12978] loop5: detected capacity change from 0 to 32768 [ 358.546072][T12978] XFS: ikeep mount option is deprecated. [ 358.588829][T12978] XFS: noikeep mount option is deprecated. [ 358.689198][T12978] XFS (loop5): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 358.864784][T12978] XFS (loop5): Ending clean mount [ 358.901978][T12978] XFS (loop5): Quotacheck needed: Please wait. [ 359.078228][T12978] XFS (loop5): Quotacheck: Done. [ 359.249841][ T5835] XFS (loop5): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 359.491150][T13085] netlink: 'syz.6.2679': attribute type 10 has an invalid length. [ 359.573710][T13089] xt_CT: You must specify a L4 protocol and not use inversions on it [ 359.715193][T13092] loop3: detected capacity change from 0 to 256 [ 359.760358][T13085] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 359.822381][T13096] loop4: detected capacity change from 0 to 1024 [ 359.973236][T13096] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 360.302535][T13117] netlink: 904 bytes leftover after parsing attributes in process `syz.5.2678'. [ 360.844653][T13147] netlink: 'syz.4.2697': attribute type 1 has an invalid length. [ 360.872493][T13147] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2697'. [ 360.883114][ T5846] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 361.071174][ T5846] usb 6-1: Using ep0 maxpacket: 32 [ 361.103297][ T5846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 361.153143][ T5846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 361.175833][ T5846] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 361.265078][ T5846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 361.305261][ T5846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 361.353862][ T5846] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 361.423192][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 361.431817][ T5846] usb 6-1: Product: syz [ 361.481466][ T5846] usb 6-1: Manufacturer: syz [ 361.496782][ T5846] usb 6-1: SerialNumber: syz [ 361.537189][ T5846] usb 6-1: config 0 descriptor?? [ 361.558015][T13135] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 361.609026][ T5846] input: Generic X-Box pad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input24 [ 361.686643][ T5190] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 361.784294][ T5190] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 361.951984][ T5190] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 362.101132][T13135] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 362.243126][ T5190] xpad 6-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 362.296170][ T5907] usb 6-1: USB disconnect, device number 13 [ 362.296207][ C1] xpad 6-1:0.0: xpad_irq_in - usb_submit_urb failed with result -19 [ 362.337806][T13209] loop3: detected capacity change from 0 to 512 [ 362.452731][T13209] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 362.477860][T13209] ext4 filesystem being mounted at /462/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 362.616671][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 362.704744][T13240] loop1: detected capacity change from 0 to 164 [ 362.714782][T13240] ISOFS: unable to read i-node block [ 362.720142][T13240] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 363.902669][T13293] team0: Port device team_slave_0 removed [ 363.955331][T13293] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 364.127538][T13301] loop3: detected capacity change from 0 to 2048 [ 364.235979][T13311] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 364.313904][T13301] NILFS error (device loop3): nilfs_lookup: deleted inode referenced: 12 [ 364.374342][T13301] Remounting filesystem read-only [ 364.484580][T13319] loop0: detected capacity change from 32768 to 32766 [ 364.525450][T13319] [ 364.527801][T13319] ====================================================== [ 364.534825][T13319] WARNING: possible circular locking dependency detected [ 364.541851][T13319] 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 Not tainted [ 364.548623][T13319] ------------------------------------------------------ [ 364.553112][T13328] loop5: detected capacity change from 0 to 128 [ 364.555624][T13319] syz.4.2746/13319 is trying to acquire lock: [ 364.567939][T13319] ffffffff906990a8 (uevent_sock_mutex){+.+.}-{4:4}, at: kobject_uevent_env+0xb36/0x1870 [ 364.577749][T13319] [ 364.577749][T13319] but task is already holding lock: [ 364.585118][T13319] ffff888142f01de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 364.596405][T13319] [ 364.596405][T13319] which lock already depends on the new lock. [ 364.596405][T13319] [ 364.606804][T13319] [ 364.606804][T13319] the existing dependency chain (in reverse order) is: [ 364.615815][T13319] [ 364.615815][T13319] -> #2 (&q->q_usage_counter(io)#17){++++}-{0:0}: [ 364.624462][T13319] blk_alloc_queue+0x619/0x760 [ 364.629759][T13319] blk_mq_alloc_queue+0x179/0x290 [ 364.635322][T13319] __blk_mq_alloc_disk+0x29/0x120 [ 364.640882][T13319] loop_add+0x496/0xb70 [ 364.645578][T13319] loop_init+0x164/0x270 [ 364.650366][T13319] do_one_initcall+0x123/0x6e0 [ 364.655685][T13319] kernel_init_freeable+0x5c2/0x900 [ 364.661428][T13319] kernel_init+0x1c/0x2b0 [ 364.666287][T13319] ret_from_fork+0x48/0x80 [ 364.671234][T13319] ret_from_fork_asm+0x1a/0x30 [ 364.676551][T13319] [ 364.676551][T13319] -> #1 (fs_reclaim){+.+.}-{0:0}: [ 364.683790][T13319] fs_reclaim_acquire+0x102/0x150 [ 364.689353][T13319] kmem_cache_alloc_node_noprof+0x57/0x3b0 [ 364.695711][T13319] __alloc_skb+0x2b2/0x380 [ 364.700666][T13319] alloc_uevent_skb+0x7d/0x210 [ 364.705961][T13319] kobject_uevent_env+0xca4/0x1870 [ 364.711608][T13319] kobject_synth_uevent+0x7d4/0x8a0 [ 364.717342][T13319] bus_uevent_store+0x3d/0x90 [ 364.722558][T13319] bus_attr_store+0x74/0xb0 [ 364.727599][T13319] sysfs_kf_write+0xf2/0x150 [ 364.732736][T13319] kernfs_fop_write_iter+0x354/0x510 [ 364.738560][T13319] vfs_write+0x5bd/0x1180 [ 364.743434][T13319] ksys_write+0x12a/0x240 [ 364.748307][T13319] do_syscall_64+0xcd/0x260 [ 364.753356][T13319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.759787][T13319] [ 364.759787][T13319] -> #0 (uevent_sock_mutex){+.+.}-{4:4}: [ 364.767635][T13319] __lock_acquire+0x1173/0x1ba0 [ 364.773023][T13319] lock_acquire+0x179/0x350 [ 364.778054][T13319] __mutex_lock+0x199/0xb90 [ 364.783101][T13319] kobject_uevent_env+0xb36/0x1870 [ 364.788744][T13319] set_capacity_and_notify+0x1ca/0x240 [ 364.794732][T13319] loop_set_status+0x94a/0xb90 [ 364.800035][T13319] loop_set_status_old+0x162/0x1d0 [ 364.805685][T13319] lo_ioctl+0x695/0x26d0 [ 364.810460][T13319] blkdev_ioctl+0x277/0x6d0 [ 364.815511][T13319] __x64_sys_ioctl+0x193/0x200 [ 364.820817][T13319] do_syscall_64+0xcd/0x260 [ 364.825869][T13319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.832293][T13319] [ 364.832293][T13319] other info that might help us debug this: [ 364.832293][T13319] [ 364.842517][T13319] Chain exists of: [ 364.842517][T13319] uevent_sock_mutex --> fs_reclaim --> &q->q_usage_counter(io)#17 [ 364.842517][T13319] [ 364.856301][T13319] Possible unsafe locking scenario: [ 364.856301][T13319] [ 364.863745][T13319] CPU0 CPU1 [ 364.869104][T13319] ---- ---- [ 364.874462][T13319] lock(&q->q_usage_counter(io)#17); [ 364.879857][T13319] lock(fs_reclaim); [ 364.886387][T13319] lock(&q->q_usage_counter(io)#17); [ 364.894306][T13319] lock(uevent_sock_mutex); [ 364.898908][T13319] [ 364.898908][T13319] *** DEADLOCK *** [ 364.898908][T13319] [ 364.907043][T13319] 3 locks held by syz.4.2746/13319: [ 364.912239][T13319] #0: ffff88814171fb68 (&lo->lo_mutex){+.+.}-{4:4}, at: loop_set_status+0x2a/0xb90 [ 364.921709][T13319] #1: ffff888142f01de8 (&q->q_usage_counter(io)#17){++++}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 364.933435][T13319] #2: ffff888142f01e20 (&q->q_usage_counter(queue)#20){+.+.}-{0:0}, at: blk_mq_freeze_queue_nomemsave+0x15/0x20 [ 364.945421][T13319] [ 364.945421][T13319] stack backtrace: [ 364.951307][T13319] CPU: 1 UID: 0 PID: 13319 Comm: syz.4.2746 Not tainted 6.14.0-syzkaller-13423-ga8662bcd2ff1 #0 PREEMPT(full) [ 364.951349][T13319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 364.951369][T13319] Call Trace: [ 364.951379][T13319] [ 364.951390][T13319] dump_stack_lvl+0x116/0x1f0 [ 364.951439][T13319] print_circular_bug+0x275/0x350 [ 364.951494][T13319] check_noncircular+0x14c/0x170 [ 364.951551][T13319] __lock_acquire+0x1173/0x1ba0 [ 364.951591][T13319] lock_acquire+0x179/0x350 [ 364.951619][T13319] ? kobject_uevent_env+0xb36/0x1870 [ 364.951657][T13319] ? __pfx___might_resched+0x10/0x10 [ 364.951709][T13319] __mutex_lock+0x199/0xb90 [ 364.951756][T13319] ? kobject_uevent_env+0xb36/0x1870 [ 364.951787][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.951827][T13319] ? kfree+0x252/0x4d0 [ 364.951869][T13319] ? kobject_uevent_env+0xb36/0x1870 [ 364.951904][T13319] ? __pfx___mutex_lock+0x10/0x10 [ 364.951958][T13319] ? __asan_memcpy+0x3c/0x60 [ 364.952001][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952040][T13319] ? kobject_get_path+0x8e/0x2a0 [ 364.952093][T13319] ? kobject_uevent_env+0xb36/0x1870 [ 364.952124][T13319] kobject_uevent_env+0xb36/0x1870 [ 364.952160][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952205][T13319] set_capacity_and_notify+0x1ca/0x240 [ 364.952238][T13319] ? __pfx_set_capacity_and_notify+0x10/0x10 [ 364.952272][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952310][T13319] ? __asan_memcpy+0x3c/0x60 [ 364.952356][T13319] loop_set_status+0x94a/0xb90 [ 364.952399][T13319] loop_set_status_old+0x162/0x1d0 [ 364.952438][T13319] ? __pfx_loop_set_status_old+0x10/0x10 [ 364.952488][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952527][T13319] ? find_held_lock+0x2b/0x80 [ 364.952569][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952636][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952679][T13319] ? apparmor_capable+0x114/0x1d0 [ 364.952714][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952752][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952791][T13319] ? security_capable+0x7e/0x260 [ 364.952824][T13319] lo_ioctl+0x695/0x26d0 [ 364.952864][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.952903][T13319] ? kasan_save_stack+0x42/0x60 [ 364.952951][T13319] ? kasan_save_stack+0x33/0x60 [ 364.952998][T13319] ? kasan_save_track+0x14/0x30 [ 364.953050][T13319] ? kasan_save_free_info+0x3b/0x60 [ 364.953089][T13319] ? __kasan_slab_free+0x51/0x70 [ 364.953137][T13319] ? kfree+0x2b6/0x4d0 [ 364.953176][T13319] ? tomoyo_path_number_perm+0x470/0x580 [ 364.953214][T13319] ? security_file_ioctl+0x9b/0x240 [ 364.953253][T13319] ? __x64_sys_ioctl+0xb7/0x200 [ 364.953291][T13319] ? do_syscall_64+0xcd/0x260 [ 364.953338][T13319] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.953378][T13319] ? __pfx_lo_ioctl+0x10/0x10 [ 364.953431][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953472][T13319] ? kasan_quarantine_put+0x10a/0x240 [ 364.953518][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953557][T13319] ? lockdep_hardirqs_on+0x7c/0x110 [ 364.953600][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953641][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953684][T13319] ? find_held_lock+0x2b/0x80 [ 364.953725][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953768][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953807][T13319] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 364.953843][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.953881][T13319] ? blkdev_common_ioctl+0x1dd/0x2250 [ 364.953933][T13319] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 364.953972][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.954011][T13319] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 364.954046][T13319] ? __pfx_blkdev_common_ioctl+0x10/0x10 [ 364.954100][T13319] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 364.954141][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.954193][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.954232][T13319] ? find_held_lock+0x2b/0x80 [ 364.954272][T13319] ? srso_alias_return_thunk+0x5/0xfbef5 [ 364.954312][T13319] ? __pfx_lo_ioctl+0x10/0x10 [ 364.954349][T13319] blkdev_ioctl+0x277/0x6d0 [ 364.954401][T13319] ? __pfx_blkdev_ioctl+0x10/0x10 [ 364.954451][T13319] ? __entry_text_end+0x1020c5/0x1020c9 [ 364.954494][T13319] ? __pfx_blkdev_ioctl+0x10/0x10 [ 364.954546][T13319] __x64_sys_ioctl+0x193/0x200 [ 364.954588][T13319] do_syscall_64+0xcd/0x260 [ 364.954636][T13319] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 364.954673][T13319] RIP: 0033:0x7fe7b4d8d169 [ 364.954698][T13319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 364.954731][T13319] RSP: 002b:00007fe7b5c2f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 364.954760][T13319] RAX: ffffffffffffffda RBX: 00007fe7b4fa5fa0 RCX: 00007fe7b4d8d169 [ 364.954783][T13319] RDX: 00002000000006c0 RSI: 0000000000004c02 RDI: 0000000000000003 [ 364.954803][T13319] RBP: 00007fe7b4e0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 364.954823][T13319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 364.954844][T13319] R13: 0000000000000000 R14: 00007fe7b4fa5fa0 R15: 00007ffe153e1a48 [ 364.954877][T13319] [ 365.456890][ C1] vkms_vblank_simulate: vblank timer overrun