last executing test programs: 9m25.142270204s ago: executing program 2 (id=1091): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000080)=@ipv6_newrule={0x2c, 0x20, 0x2d2c6d60ea1da725, 0x70bd25, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e23, 0x4e23}}, @FIB_RULE_POLICY=@FRA_SUPPRESS_IFGROUP={0x8, 0xd, 0xff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008081}, 0x0) 9m24.897822399s ago: executing program 2 (id=1095): r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt(r0, 0x28, 0x6, &(0x7f0000001680)=""/51, &(0x7f0000000000)=0xfd80) 9m24.721457996s ago: executing program 2 (id=1097): r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x85, &(0x7f00000000c0)={0x0, @in6={{0xa, 0x4e21, 0x1000, @dev={0xfe, 0x80, '\x00', 0x17}, 0x37}}, 0x20, 0x1ff}, &(0x7f0000000040)=0x90) 9m24.593393853s ago: executing program 2 (id=1099): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='iocharset=cp865,uid=', @ANYRESHEX=0x0, @ANYBLOB=',namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1545, &(0x7f0000001a00)="$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") mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 9m24.256273961s ago: executing program 2 (id=1102): socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8924, &(0x7f0000000140)={'bridge0\x00', 0x1}) 9m23.748679577s ago: executing program 2 (id=1107): r0 = socket(0x2, 0x80805, 0x0) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5d}) 9m23.288197792s ago: executing program 32 (id=1107): r0 = socket(0x2, 0x80805, 0x0) ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x5d}) 2.373960568s ago: executing program 4 (id=10009): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_DATA_TYPE={0x8, 0x6, 0x1, 0x0, 0xffffff00}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xc}]}, @NFT_MSG_NEWSETELEM={0x2c, 0xb, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xc0}}, 0x0) 2.231056491s ago: executing program 4 (id=10012): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fcntl$setownex(r0, 0xf, &(0x7f0000000000)={0x5345a07075cb23a}) 2.070519122s ago: executing program 4 (id=10015): r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009e173610ef171e7206de010203010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000680)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="000004000000f82710e0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.614529308s ago: executing program 3 (id=10024): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$VHOST_SET_FEATURES(r0, 0x4008af25, 0x0) 1.523562031s ago: executing program 3 (id=10026): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='sessionid\x00') read$FUSE(r0, 0x0, 0x0) 1.389165146s ago: executing program 3 (id=10028): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x8902, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0x23) 1.306470531s ago: executing program 3 (id=10030): r0 = socket$qrtr(0x2a, 0x2, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'veth1_macvtap\x00', &(0x7f0000000000)=@ethtool_rxfh={0x47, 0x4, 0x7, 0x2, 0xed, "4a9b02", 0x5}}) 1.19467739s ago: executing program 3 (id=10032): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x20, 0xff, 0x0, 0xfffff02c}, {0x6, 0xf0, 0x4, 0x1}]}, 0x10) 1.149561572s ago: executing program 3 (id=10034): r0 = syz_usb_connect(0x0, 0x202, &(0x7f0000000180)=ANY=[@ANYBLOB="1201100152018b401e040740185d000000010902f00101040000030904"], 0x0) syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000640)={0x18, &(0x7f00000000c0)={0x20, 0x18, 0x2, 'Vp'}, 0x0, 0x0, 0x0, 0x0}) 953.551026ms ago: executing program 1 (id=10037): r0 = syz_open_dev$dvb_frontend(&(0x7f0000000000), 0x0, 0x40002) ioctl$FE_SET_PROPERTY(r0, 0x40106f52, &(0x7f00000001c0)={0x3e, &(0x7f0000000200)=[{0x22, '\x00', @st={0x4, [{0x3, @uvalue=0x6}, {0x3, @svalue=0xa000000000000000}, {0x2, @uvalue=0xff2}, {0x3, @svalue=0xfffffffffffffc01}]}, 0x2}]}) 915.059959ms ago: executing program 0 (id=10038): r0 = socket(0x18, 0x5, 0x0) getpeername$netrom(r0, 0x0, &(0x7f0000000080)) 818.731711ms ago: executing program 0 (id=10039): r0 = syz_open_dev$vivid(&(0x7f00000005c0), 0x0, 0x2) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000600)={0x8, @sdr={0x31303553, 0x5}}) 818.494511ms ago: executing program 1 (id=10040): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x1, 0x52d, &(0x7f00000003c0)="$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") renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./file1/file2\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2) 788.447925ms ago: executing program 0 (id=10041): syz_mount_image$vfat(&(0x7f0000000500), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000540)={[{@shortname_lower}, {@shortname_winnt}, {@shortname_mixed}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@uni_xlateno}, {@shortname_win95}, {@numtail}, {@uni_xlateno}, {@fat=@time_offset={'time_offset', 0x3d, 0x4e0}}, {@fat=@codepage={'codepage', 0x3d, '864'}}, {@fat=@check_strict}, {@uni_xlateno}, {@uni_xlate}]}, 0x1, 0x371, &(0x7f0000002980)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0) 510.137204ms ago: executing program 1 (id=10042): r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$inet6(r0, &(0x7f0000006b80)=[{{&(0x7f0000000340)={0xa, 0x4e24, 0xfff, @remote}, 0x1c, 0x0, 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="e80200000000000011"], 0x2e8}}], 0x1, 0x0) 411.379066ms ago: executing program 4 (id=10043): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000110b0008850000007000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="c1188e99b95d02ff4284860188a8", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 411.031436ms ago: executing program 0 (id=10044): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r0, 0x4020565b, &(0x7f0000000000)={0x0, 0x3}) 282.704782ms ago: executing program 4 (id=10045): syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x1a3c82) syz_open_dev$sg(&(0x7f00000001c0), 0x0, 0x101a02) 282.438622ms ago: executing program 1 (id=10046): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc1002}]}) madvise(&(0x7f000034d000/0x3000)=nil, 0x3000, 0xc) 256.321087ms ago: executing program 4 (id=10047): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) 216.42649ms ago: executing program 0 (id=10048): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000a40), 0x2, 0x0) ioctl$VIDIOC_ENUMSTD(r0, 0xc0485619, &(0x7f0000000a80)={0xe, 0x20, "430f1d3908ae0e17c2cd00f89c91ca5e2874f3c01138c702", {0x75, 0x4}, 0x7}) 130.624244ms ago: executing program 1 (id=10049): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000640)=@newtaction={0x90, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x7c, 0x1, [@m_tunnel_key={0x78, 0x1, 0x0, 0x0, {{0xf}, {0x48, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x0, 0x0, 0x9}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @empty}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @remote}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x90}}, 0x0) 24.173184ms ago: executing program 0 (id=10050): r0 = gettid() rt_sigqueueinfo(r0, 0x11, &(0x7f0000000e00)={0xa, 0x4, 0x4}) 0s ago: executing program 1 (id=10051): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'nq\x00', 0x10, 0x5, 0x2e}, 0x2c) kernel console output (not intermixed with test programs): link: 8 bytes leftover after parsing attributes in process `syz.0.8341'. [ 613.807510][T24527] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8341'. [ 613.829253][T24527] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8341'. [ 613.842032][T24527] netlink: 2 bytes leftover after parsing attributes in process `syz.0.8341'. [ 613.855093][T24527] netlink: 32 bytes leftover after parsing attributes in process `syz.0.8341'. [ 613.885827][T24506] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 614.286010][ T5760] ocfs2: Unmounting device (7,3) on (node local) [ 614.389215][T24516] loop4: detected capacity change from 0 to 32768 [ 614.448061][T24516] jfs_lookup: iget failed on inum 32 [ 614.528954][T24542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8349'. [ 614.910089][T24558] loop3: detected capacity change from 0 to 256 [ 614.971913][T24558] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x268716bb, utbl_chksum : 0xe619d30d) [ 614.987325][T24563] xt_policy: output policy not valid in PREROUTING and INPUT [ 615.443001][T24582] netlink: 164 bytes leftover after parsing attributes in process `syz.3.8368'. [ 616.352309][T24620] loop0: detected capacity change from 0 to 256 [ 616.425156][T24620] FAT-fs (loop0): Directory bread(block 64) failed [ 616.455406][T24620] FAT-fs (loop0): Directory bread(block 65) failed [ 616.462090][T24620] FAT-fs (loop0): Directory bread(block 66) failed [ 616.507586][T24620] FAT-fs (loop0): Directory bread(block 67) failed [ 616.514253][T24620] FAT-fs (loop0): Directory bread(block 68) failed [ 616.555528][T24620] FAT-fs (loop0): Directory bread(block 69) failed [ 616.562229][T24620] FAT-fs (loop0): Directory bread(block 70) failed [ 616.579854][T24620] FAT-fs (loop0): Directory bread(block 71) failed [ 616.590143][T24620] FAT-fs (loop0): Directory bread(block 72) failed [ 616.590208][T24630] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8391'. [ 616.597155][T24620] FAT-fs (loop0): Directory bread(block 73) failed [ 616.632966][T24620] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 617.134758][T24647] loop4: detected capacity change from 0 to 4096 [ 617.179893][T24647] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 617.256569][T24647] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 617.345392][T24647] ntfs3: loop4: ino=1e, "file1" failed to parse mft record [ 617.374988][T24647] ntfs3: loop4: ino=1e, "file1" attr_set_size [ 617.470403][T24663] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 617.486953][T24665] xt_hashlimit: max too large, truncated to 1048576 [ 617.499424][T24667] loop0: detected capacity change from 0 to 256 [ 617.557454][T24667] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001843b, chksum : 0x614b4487, utbl_chksum : 0xe619d30d) [ 618.041930][ C1] sd 0:0:1:0: [sda] tag#174 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 618.052345][ C1] sd 0:0:1:0: [sda] tag#174 CDB: Read(6) 08 00 9f d1 fe de [ 618.343177][T24675] loop0: detected capacity change from 0 to 32768 [ 618.375696][T24675] (syz.0.8420,24675,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 618.409227][T24675] (syz.0.8420,24675,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 618.509434][T24675] JBD2: Ignoring recovery information on journal [ 618.662393][T24675] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 618.928430][ T5763] ocfs2: Unmounting device (7,0) on (node local) [ 619.129671][T24732] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8439'. [ 619.341605][T24740] netlink: 5 bytes leftover after parsing attributes in process `syz.1.8446'. [ 619.403217][T24744] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8445'. [ 619.615388][ T27] kauditd_printk_skb: 20 callbacks suppressed [ 619.615402][ T27] audit: type=1326 audit(1773251689.843:2865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24753 comm="syz.0.8452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 619.678642][ T27] audit: type=1326 audit(1773251689.843:2866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24753 comm="syz.0.8452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 619.779879][ T27] audit: type=1326 audit(1773251689.843:2867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24753 comm="syz.0.8452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 619.834153][ T27] audit: type=1326 audit(1773251689.843:2868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24753 comm="syz.0.8452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 619.915799][ T27] audit: type=1326 audit(1773251689.843:2869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24753 comm="syz.0.8452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 620.153863][T24775] xt_CT: No such helper "netbios-ns" [ 620.312485][T24785] loop4: detected capacity change from 0 to 1024 [ 620.330687][T24785] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 620.362204][T24785] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 620.386475][T24785] EXT4-fs (loop4): orphan cleanup on readonly fs [ 620.406510][T24785] Quota error (device loop4): v2_read_file_info: Can't read info structure [ 620.416283][T24785] EXT4-fs warning (device loop4): ext4_enable_quotas:7184: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 620.430925][T24785] EXT4-fs (loop4): Cannot turn on quotas: error -5 [ 620.476908][T24785] EXT4-fs (loop4): 1 truncate cleaned up [ 620.483734][T24785] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 620.604885][T24785] EXT4-fs error (device loop4): ext4_iget_extra_inode:4732: inode #15: comm syz.4.8466: corrupted in-inode xattr: overlapping e_value [ 620.723478][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 620.832145][T24806] bond0: Unable to set up delay as MII monitoring is disabled [ 621.143879][T24813] loop0: detected capacity change from 0 to 8192 [ 621.179753][T24813] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 621.194901][T24813] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 621.204317][T24813] REISERFS (device loop0): using ordered data mode [ 621.211032][T24813] reiserfs: using flush barriers [ 621.219097][T24813] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 621.255998][T24813] REISERFS (device loop0): checking transaction log (loop0) [ 621.308739][T24813] REISERFS (device loop0): Using r5 hash to sort names [ 621.313733][T24801] loop1: detected capacity change from 0 to 32768 [ 621.339427][T24813] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 621.403139][T24801] JBD2: Ignoring recovery information on journal [ 621.513140][T24801] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 621.547678][T24829] loop4: detected capacity change from 0 to 4096 [ 621.579209][T24829] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 621.714576][T24801] (syz.1.8472,24801,1):ocfs2_find_entry:1075 ERROR: status = -117 [ 621.759754][T24801] (syz.1.8472,24801,0):ocfs2_find_entry:1075 ERROR: status = -117 [ 621.801222][T24801] (syz.1.8472,24801,0):ocfs2_mknod:502 ERROR: status = -117 [ 621.824136][T24829] ntfs3: loop4: ino=1e, "file1" attr_set_size [ 621.825834][T24801] (syz.1.8472,24801,0):ocfs2_mkdir:659 ERROR: status = -117 [ 621.844776][T24829] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 621.890669][T24829] ntfs3: loop4: ino=3, ntfs_set_state failed, -22. [ 622.014201][ T416] ntfs3: loop4: ino=3, ntfs3_write_inode failed, -22. [ 622.068049][ T5761] ocfs2: Unmounting device (7,1) on (node local) [ 622.493492][T24860] loop0: detected capacity change from 0 to 256 [ 622.536245][T24860] FAT-fs (loop0): Directory bread(block 64) failed [ 622.542948][T24860] FAT-fs (loop0): Directory bread(block 65) failed [ 622.552691][T24860] FAT-fs (loop0): Directory bread(block 66) failed [ 622.559965][T24860] FAT-fs (loop0): Directory bread(block 67) failed [ 622.593168][T24860] FAT-fs (loop0): Directory bread(block 68) failed [ 622.623629][T24860] FAT-fs (loop0): Directory bread(block 69) failed [ 622.642980][T24860] FAT-fs (loop0): Directory bread(block 70) failed [ 622.657188][T24860] FAT-fs (loop0): Directory bread(block 71) failed [ 622.664057][T24860] FAT-fs (loop0): Directory bread(block 72) failed [ 622.675458][T24860] FAT-fs (loop0): Directory bread(block 73) failed [ 622.794661][T24860] FAT-fs (loop0): error, invalid access to FAT (entry 0x00006a61) [ 622.803525][ T27] audit: type=1800 audit(1773251693.023:2870): pid=24860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8501" name="blkio.bfq.idle_time" dev="loop0" ino=1048683 res=0 errno=0 [ 622.855435][ T788] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 623.050932][ T788] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 623.068273][ T788] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 623.089078][ T788] usb 5-1: Product: syz [ 623.093299][ T788] usb 5-1: Manufacturer: syz [ 623.110533][ T788] usb 5-1: SerialNumber: syz [ 623.129273][ T788] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 623.211415][ T28] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 623.718077][ T9] usb 5-1: USB disconnect, device number 30 [ 623.955962][T24918] loop0: detected capacity change from 0 to 512 [ 623.978514][T24918] EXT4-fs (loop0): Test dummy encryption mode enabled [ 623.988242][T24918] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 624.025843][T24918] EXT4-fs error (device loop0): ext4_orphan_get:1424: comm syz.0.8529: bad orphan inode 131083 [ 624.044698][T24918] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 624.103046][T24920] xt_CT: No such helper "netbios-ns" [ 624.113094][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 624.295639][ T27] audit: type=1326 audit(1773251694.523:2871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24931 comm="syz.3.8533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 624.328174][ T28] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 624.348850][ T28] ath9k_htc: Failed to initialize the device [ 624.370575][ T9] usb 5-1: ath9k_htc: USB layer deinitialized [ 624.384328][ T27] audit: type=1326 audit(1773251694.523:2872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24931 comm="syz.3.8533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 624.496052][ T27] audit: type=1326 audit(1773251694.563:2873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24931 comm="syz.3.8533" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 624.562857][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 624.569408][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 624.619096][T24939] loop1: detected capacity change from 0 to 4096 [ 624.626939][T24939] __ntfs_warning: 2 callbacks suppressed [ 624.626953][T24939] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 624.672413][T24939] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 624.685958][T24939] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 624.743306][T24939] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 624.783238][T24939] ntfs: volume version 3.1. [ 624.929522][ T5761] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 624.985773][ T28] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 625.167131][ T28] usb 4-1: config index 0 descriptor too short (expected 133, got 72) [ 625.205847][ T28] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 625.217515][ T28] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 625.234911][ T28] usb 4-1: Product: syz [ 625.249719][ T28] usb 4-1: Manufacturer: syz [ 625.259851][ T28] usb 4-1: SerialNumber: syz [ 625.278391][ T28] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 625.300790][T24257] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 625.400485][T24969] ip6t_REJECT: ECHOREPLY is not supported [ 625.539820][ C1] usb 4-1: ath9k_htc: over RX MAX_PKT_NUM [ 625.663535][T24981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8556'. [ 625.748849][T24983] tc_dump_action: action bad kind [ 625.765392][ T788] usb 4-1: USB disconnect, device number 51 [ 626.353194][T24991] loop1: detected capacity change from 0 to 32768 [ 626.382641][T24991] (syz.1.8560,24991,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 626.406168][T24257] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 626.434862][T24257] ath9k_htc: Failed to initialize the device [ 626.447797][T24991] (syz.1.8560,24991,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 626.454676][ T788] usb 4-1: ath9k_htc: USB layer deinitialized [ 626.500204][T24991] JBD2: Ignoring recovery information on journal [ 626.602288][T24991] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 626.701406][T25022] comedi: No check for data length of config insn id 32784 is implemented [ 626.720970][T25022] comedi: Add a check to check_insn_config_length in drivers/comedi/comedi_fops.c [ 626.758004][T25022] comedi: Assuming n=15 is correct [ 626.991128][ T5761] ocfs2: Unmounting device (7,1) on (node local) [ 627.265445][T25039] netlink: 'syz.4.8584': attribute type 1 has an invalid length. [ 627.295379][T25039] netlink: 244 bytes leftover after parsing attributes in process `syz.4.8584'. [ 627.383422][T25047] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 627.978160][T25049] loop3: detected capacity change from 0 to 32768 [ 627.997970][T25049] (syz.3.8588,25049,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 628.035702][T25049] (syz.3.8588,25049,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 628.117034][T25049] JBD2: Ignoring recovery information on journal [ 628.248401][T25049] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 628.298726][T25088] loop4: detected capacity change from 0 to 512 [ 628.323493][T25090] loop1: detected capacity change from 0 to 16 [ 628.333239][T25088] EXT4-fs (loop4): Test dummy encryption mode enabled [ 628.353479][T25088] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 628.371536][T25090] erofs: (device loop1): mounted with root inode @ nid 36. [ 628.416256][T25088] EXT4-fs error (device loop4): ext4_orphan_get:1424: comm syz.4.8607: bad orphan inode 131083 [ 628.447324][T25088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 628.553133][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 628.732495][ T5760] ocfs2: Unmounting device (7,3) on (node local) [ 628.891042][T25106] comedi comedi3: Minor 32773 is invalid! [ 629.021587][T25110] netlink: 'syz.0.8618': attribute type 25 has an invalid length. [ 629.424538][T25132] infiniband syz0: set active [ 629.435034][T25132] infiniband syz0: set active [ 629.460741][T25132] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 629.482742][T24257] lo speed is unknown, defaulting to 1000 [ 629.491294][ T788] lo speed is unknown, defaulting to 1000 [ 629.741758][ T9] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 629.956886][ T9] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 629.966173][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 629.984466][ T9] usb 5-1: config 0 descriptor?? [ 630.008134][ T9] cp210x 5-1:0.0: cp210x converter detected [ 630.211649][ T9] cp210x 5-1:0.0: failed to get vendor val 0x370b size 1: -121 [ 630.226211][ T9] cp210x 5-1:0.0: querying part number failed [ 630.236712][T25130] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 630.255737][ T9] usb 5-1: cp210x converter now attached to ttyUSB0 [ 630.335467][T24257] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 630.417659][T16607] usb 5-1: USB disconnect, device number 31 [ 630.431504][T16607] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 630.446175][T16607] cp210x 5-1:0.0: device disconnected [ 630.525956][T24257] usb 4-1: Using ep0 maxpacket: 16 [ 630.539849][T24257] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 630.559507][T24257] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 630.577282][T24257] usb 4-1: Product: syz [ 630.591742][T24257] usb 4-1: Manufacturer: syz [ 630.601329][T24257] usb 4-1: SerialNumber: syz [ 630.612917][T24257] r8152-cfgselector 4-1: config 0 descriptor?? [ 631.040405][T24257] r8152-cfgselector 4-1: Unknown version 0x0000 [ 631.055732][T24257] r8152-cfgselector 4-1: USB disconnect, device number 52 [ 631.078910][T25192] loop4: detected capacity change from 0 to 128 [ 631.099263][T25192] EXT4-fs (loop4): Test dummy encryption mode enabled [ 631.158254][T25192] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 631.177192][T25192] ext4 filesystem being mounted at /1857/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 631.252728][ T27] audit: type=1326 audit(1773251701.473:2876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25199 comm="syz.1.8659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 631.360015][ T27] audit: type=1326 audit(1773251701.473:2877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25199 comm="syz.1.8659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 631.434195][ T27] audit: type=1326 audit(1773251701.473:2878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25199 comm="syz.1.8659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 631.454199][T25192] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 631.456604][ C0] vkms_vblank_simulate: vblank timer overrun [ 631.486607][ T27] audit: type=1326 audit(1773251701.473:2879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25199 comm="syz.1.8659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 631.509068][ C0] vkms_vblank_simulate: vblank timer overrun [ 631.553149][ T8227] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 631.561927][ T27] audit: type=1326 audit(1773251701.473:2880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25199 comm="syz.1.8659" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 631.884893][T25224] sit0: left promiscuous mode [ 632.004088][T25224] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 632.131792][T25235] Cannot find del_set index 3 as target [ 632.836380][T25267] program syz.4.8691 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 633.210282][T25289] cifs: Unknown parameter '[bITH&S)&:"1:ӭ'4,Zz-#F<]%gC [ 633.210282][T25289] SȘȞZ6' [ 633.454443][T25299] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8707'. [ 633.476516][T25295] loop1: detected capacity change from 0 to 4096 [ 633.518578][T25303] gretap0: left promiscuous mode [ 633.532939][T25295] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 633.562742][T25295] ntfs3: loop1: Failed to load $Extend (-22). [ 633.576792][T25295] ntfs3: loop1: Failed to initialize $Extend. [ 633.608296][T25303] 8021q: adding VLAN 0 to HW filter on device team0 [ 633.638079][ T27] audit: type=1800 audit(1773251703.863:2881): pid=25295 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8705" name=2E02 dev="loop1" ino=33 res=0 errno=0 [ 633.644610][T25305] Cannot find set identified by id 3 to match [ 633.675628][T25303] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 633.861254][T25311] loop1: detected capacity change from 0 to 256 [ 634.019539][T25311] FAT-fs (loop1): Directory bread(block 64) failed [ 634.055590][T25311] FAT-fs (loop1): Directory bread(block 65) failed [ 634.062270][T25311] FAT-fs (loop1): Directory bread(block 66) failed [ 634.090355][T25311] FAT-fs (loop1): Directory bread(block 67) failed [ 634.105067][T25311] FAT-fs (loop1): Directory bread(block 68) failed [ 634.120899][T25319] loop0: detected capacity change from 0 to 4096 [ 634.125355][T25311] FAT-fs (loop1): Directory bread(block 69) failed [ 634.133975][T25311] FAT-fs (loop1): Directory bread(block 70) failed [ 634.136158][T25319] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 634.160059][T25311] FAT-fs (loop1): Directory bread(block 71) failed [ 634.188036][T25311] FAT-fs (loop1): Directory bread(block 72) failed [ 634.211982][T25311] FAT-fs (loop1): Directory bread(block 73) failed [ 634.815394][T24257] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 634.917038][T25334] sit0: left promiscuous mode [ 635.005397][T24257] usb 1-1: Using ep0 maxpacket: 32 [ 635.007090][T25334] 8021q: adding VLAN 0 to HW filter on device team0 [ 635.012676][T24257] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 635.030102][T25334] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 635.035901][T24257] usb 1-1: New USB device found, idVendor=0c72, idProduct=0011, bcdDevice= 9.75 [ 635.066360][T24257] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 635.074406][T24257] usb 1-1: Product: syz [ 635.080193][T25342] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 635.085452][T24257] usb 1-1: Manufacturer: syz [ 635.097731][T24257] usb 1-1: SerialNumber: syz [ 635.126610][T24257] usb 1-1: config 0 descriptor?? [ 635.364540][T24257] peak_usb 1-1:0.0: PEAK-System PCAN-USB Pro FD v12 fw v238.0.0 (2 channels) [ 635.565038][T24257] peak_usb 1-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 635.605507][T24257] peak_usb 1-1:0.0: unable to tell PCAN-USB Pro FD driver is loaded (err -71) [ 635.694243][T25362] loop1: detected capacity change from 0 to 4096 [ 635.705927][T25362] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 635.728502][T24257] peak_usb: probe of 1-1:0.0 failed with error -71 [ 635.768589][T24257] usb 1-1: USB disconnect, device number 44 [ 635.813263][T25362] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 635.952743][T25370] loop3: detected capacity change from 0 to 128 [ 635.999163][T25370] EXT4-fs (loop3): Test dummy encryption mode enabled [ 636.068797][T25370] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 636.117702][T25370] ext4 filesystem being mounted at /2194/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 636.244135][T25384] netlink: 'syz.4.8747': attribute type 2 has an invalid length. [ 636.362220][ T5760] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 636.945503][T25416] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8764'. [ 637.008155][ T27] audit: type=1326 audit(1773251707.243:2882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25419 comm="syz.0.8766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.045695][T24257] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 637.049380][ T27] audit: type=1326 audit(1773251707.243:2883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25419 comm="syz.0.8766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.107623][ T27] audit: type=1326 audit(1773251707.263:2884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25419 comm="syz.0.8766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.133071][ T27] audit: type=1326 audit(1773251707.273:2885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25419 comm="syz.0.8766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.155497][ C0] vkms_vblank_simulate: vblank timer overrun [ 637.185669][ T27] audit: type=1326 audit(1773251707.273:2886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25419 comm="syz.0.8766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.212111][T25424] infiniband syz0: set active [ 637.222910][T25424] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 637.241756][ T5800] lo speed is unknown, defaulting to 1000 [ 637.257548][T24257] usb 5-1: Using ep0 maxpacket: 8 [ 637.274427][T24257] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 637.299129][T24257] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 637.310238][T24257] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 637.319062][T24257] usb 5-1: Product: syz [ 637.323337][T24257] usb 5-1: Manufacturer: syz [ 637.333885][T24257] usb 5-1: SerialNumber: syz [ 637.459729][ T27] audit: type=1326 audit(1773251707.693:2887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25436 comm="syz.0.8774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.502865][ T27] audit: type=1326 audit(1773251707.693:2888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25436 comm="syz.0.8774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.565044][ T27] audit: type=1326 audit(1773251707.713:2889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25436 comm="syz.0.8774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.576578][T25441] ieee802154 phy0 wpan0: encryption failed: -22 [ 637.587532][ C0] vkms_vblank_simulate: vblank timer overrun [ 637.600318][T24257] usb 5-1: Handspring Visor / Palm OS: No valid connect info available [ 637.614038][T24257] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 637.631784][T24257] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 637.642648][T24257] usb 5-1: Handspring Visor / Palm OS: Number of ports: 2 [ 637.661263][ T27] audit: type=1326 audit(1773251707.713:2890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25436 comm="syz.0.8774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.733021][ T27] audit: type=1326 audit(1773251707.713:2891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25436 comm="syz.0.8774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 637.755458][ C0] vkms_vblank_simulate: vblank timer overrun [ 637.765640][T25446] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8779'. [ 637.782444][T24257] usb 5-1: palm_os_3_probe - error -71 getting bytes available request [ 637.798713][T24257] visor 5-1:1.0: Handspring Visor / Palm OS converter detected [ 637.816263][T25448] netlink: 'syz.0.8780': attribute type 6 has an invalid length. [ 637.828767][T24257] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 637.860684][T24257] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 637.908394][T24257] usb 5-1: USB disconnect, device number 32 [ 637.933704][T24257] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 637.953459][T24257] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 637.979988][T24257] visor 5-1:1.0: device disconnected [ 638.613050][T25484] netlink: 'syz.3.8799': attribute type 1 has an invalid length. [ 638.646217][T25484] netlink: 'syz.3.8799': attribute type 1 has an invalid length. [ 638.669549][ T9] usb 2-1: new high-speed USB device number 49 using dummy_hcd [ 638.770847][T25492] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 638.856957][T25495] netlink: 'syz.4.8803': attribute type 8 has an invalid length. [ 638.895992][ T9] usb 2-1: Using ep0 maxpacket: 16 [ 638.906422][ T9] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 638.926992][ T9] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 638.956646][ T9] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 638.976886][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 638.985465][ T9] usb 2-1: Product: syz [ 638.989655][ T9] usb 2-1: Manufacturer: syz [ 638.994259][ T9] usb 2-1: SerialNumber: syz [ 639.013626][T25502] loop4: detected capacity change from 0 to 256 [ 639.026899][T25504] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8807'. [ 639.080314][T25502] FAT-fs (loop4): Directory bread(block 64) failed [ 639.088594][T25502] FAT-fs (loop4): Directory bread(block 65) failed [ 639.097120][T25502] FAT-fs (loop4): Directory bread(block 66) failed [ 639.103748][T25502] FAT-fs (loop4): Directory bread(block 67) failed [ 639.110523][T25502] FAT-fs (loop4): Directory bread(block 68) failed [ 639.117446][T19538] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 639.134279][T25502] FAT-fs (loop4): Directory bread(block 69) failed [ 639.141723][T25502] FAT-fs (loop4): Directory bread(block 70) failed [ 639.148416][T25502] FAT-fs (loop4): Directory bread(block 71) failed [ 639.153352][T25506] loop3: detected capacity change from 0 to 128 [ 639.155210][T25502] FAT-fs (loop4): Directory bread(block 72) failed [ 639.170023][T25506] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 639.172259][T25502] FAT-fs (loop4): Directory bread(block 73) failed [ 639.190027][T25506] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 639.230526][ T9] usb 2-1: 0:2 : does not exist [ 639.291796][ T9] usb 2-1: USB disconnect, device number 49 [ 639.328338][ T6119] udevd[6119]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 639.345368][T19538] usb 1-1: Using ep0 maxpacket: 16 [ 639.372527][T19538] usb 1-1: config index 0 descriptor too short (expected 18, got 14) [ 639.396349][T19538] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 639.412771][T19538] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 639.427343][T19538] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 639.437582][T19538] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 639.445873][T19538] usb 1-1: Product: syz [ 639.450213][T19538] usb 1-1: Manufacturer: syz [ 639.454881][T19538] usb 1-1: SerialNumber: syz [ 639.462948][T19538] r8152-cfgselector 1-1: config 0 descriptor?? [ 639.600504][T25514] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8813'. [ 639.610227][T25514] netlink: 28 bytes leftover after parsing attributes in process `syz.3.8813'. [ 639.702812][T19538] usbip-host 1-1: 1-1 is not in match_busid table... skip! [ 639.957742][T19538] usb 1-1: USB disconnect, device number 45 [ 640.089031][T25536] openvswitch: netlink: Actions may not be safe on all matching packets [ 640.111769][T25538] netlink: 209820 bytes leftover after parsing attributes in process `syz.4.8824'. [ 640.435177][T25550] loop4: detected capacity change from 0 to 4096 [ 640.458507][T25550] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 640.545332][T25550] ntfs3: loop4: failed to convert "c46c" to cp852 [ 640.649044][T25558] netlink: 'syz.0.8835': attribute type 5 has an invalid length. [ 640.861978][T25569] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 641.118894][T25582] loop0: detected capacity change from 0 to 764 [ 641.170731][T25582] Symlink component flag not implemented [ 641.218748][T25582] Symlink component flag not implemented (122) [ 641.775677][ T28] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 641.876902][T25619] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8866'. [ 641.967031][T25622] x_tables: duplicate entry at hook 1 [ 641.975652][ T28] usb 5-1: Using ep0 maxpacket: 8 [ 641.992410][ T28] usb 5-1: config 0 interface 0 has no altsetting 0 [ 642.026886][ T28] usb 5-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 642.044794][ T28] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 642.072540][ T28] usb 5-1: Product: syz [ 642.085358][ T28] usb 5-1: Manufacturer: syz [ 642.091792][ T28] usb 5-1: SerialNumber: syz [ 642.109659][ T28] usb 5-1: config 0 descriptor?? [ 642.132106][ T28] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 found [ 642.338355][ T28] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 now disconnected [ 642.371299][ T28] snd_usb_toneport: probe of 5-1:0.0 failed with error -22 [ 642.530790][T25649] netlink: 'syz.0.8880': attribute type 1 has an invalid length. [ 642.538674][T25649] netlink: 'syz.0.8880': attribute type 2 has an invalid length. [ 642.565875][ T28] usb 5-1: USB disconnect, device number 33 [ 642.728965][ T27] kauditd_printk_skb: 9 callbacks suppressed [ 642.728981][ T27] audit: type=1800 audit(1773251712.953:2901): pid=25657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.8884" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 642.779021][T25661] xt_TPROXY: Can be used only with -p tcp or -p udp [ 642.868400][T25663] sg_write: data in/out 262268/45 bytes for SCSI command 0x7a-- guessing data in; [ 642.868400][T25663] program syz.0.8889 not setting count and/or reply_len properly [ 643.050663][T25673] netlink: 'syz.3.8891': attribute type 9 has an invalid length. [ 643.183607][T25678] netlink: 144 bytes leftover after parsing attributes in process `syz.0.8895'. [ 643.449329][T25693] netlink: 240 bytes leftover after parsing attributes in process `syz.4.8901'. [ 643.497472][ T9] usb 4-1: new high-speed USB device number 53 using dummy_hcd [ 643.725387][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 643.733592][ T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 643.767342][ T9] usb 4-1: New USB device found, idVendor=0c72, idProduct=0011, bcdDevice= 9.75 [ 643.785934][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 643.816000][ T9] usb 4-1: Product: syz [ 643.820249][ T9] usb 4-1: Manufacturer: syz [ 643.831981][ T9] usb 4-1: SerialNumber: syz [ 643.842255][ T9] usb 4-1: config 0 descriptor?? [ 644.072013][ T9] peak_usb 4-1:0.0: PEAK-System PCAN-USB Pro FD v12 fw v238.0.0 (2 channels) [ 644.175528][T25725] netlink: 'syz.4.8919': attribute type 2 has an invalid length. [ 644.201338][ T27] audit: type=1326 audit(1773251714.433:2902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.245434][ T27] audit: type=1326 audit(1773251714.433:2903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.283129][ T9] peak_usb 4-1:0.0 can0: unable to request usb[type=2 value=5] err=-71 [ 644.314357][ T9] peak_usb 4-1:0.0: unable to tell PCAN-USB Pro FD driver is loaded (err -71) [ 644.323613][ T27] audit: type=1326 audit(1773251714.433:2904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323659][ T27] audit: type=1326 audit(1773251714.433:2905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323696][ T27] audit: type=1326 audit(1773251714.433:2906): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323754][ T27] audit: type=1326 audit(1773251714.433:2907): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323791][ T27] audit: type=1326 audit(1773251714.433:2908): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323829][ T27] audit: type=1326 audit(1773251714.433:2909): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.323862][ T27] audit: type=1326 audit(1773251714.433:2910): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25728 comm="syz.0.8920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 644.556273][T25737] loop1: detected capacity change from 0 to 1024 [ 644.568921][ T9] peak_usb: probe of 4-1:0.0 failed with error -71 [ 644.603340][ T9] usb 4-1: USB disconnect, device number 53 [ 644.629888][T25741] comedi comedi3: Minor 32773 is invalid! [ 644.652829][T25737] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 644.812512][ T5761] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.224047][T25764] loop3: detected capacity change from 0 to 2048 [ 645.275672][T25764] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 645.404204][T25774] loop0: detected capacity change from 0 to 1024 [ 645.477906][T25776] loop4: detected capacity change from 0 to 64 [ 645.487168][T25774] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 645.654066][T25774] EXT4-fs warning (device loop0): ext4_empty_dir:3147: inode #11: comm syz.0.8940: directory missing '.' [ 645.835489][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.949120][T25798] overlay: Unknown parameter '\' [ 646.311668][T25814] loop1: detected capacity change from 0 to 8 [ 646.377167][T25814] SQUASHFS error: Failed to read block 0x260685: -5 [ 646.383854][T25814] SQUASHFS error: Unable to read metadata cache entry [260685] [ 646.396368][T25814] SQUASHFS error: Unable to read directory block [260685:0] [ 646.434345][T25820] openvswitch: netlink: Missing valid actions attribute. [ 646.444928][T25820] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 647.034725][T25850] netlink: 'syz.0.8986': attribute type 2 has an invalid length. [ 647.388313][T25868] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8987'. [ 647.722527][T25882] loop0: detected capacity change from 0 to 4096 [ 647.739241][T25886] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8996'. [ 647.748188][T25882] __ntfs_warning: 5 callbacks suppressed [ 647.748203][T25882] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 647.768862][T25882] ntfs: volume version 3.1. [ 647.845485][ T28] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 647.972849][T25894] loop0: detected capacity change from 0 to 64 [ 648.045355][ T28] usb 4-1: Using ep0 maxpacket: 16 [ 648.062604][ T28] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 648.081404][ T28] usb 4-1: config 0 has no interface number 0 [ 648.091309][ T28] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 648.128002][ T28] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 648.161345][ T28] usb 4-1: Product: syz [ 648.167348][T25899] program syz.0.9000 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 648.177502][ T28] usb 4-1: Manufacturer: syz [ 648.182148][ T28] usb 4-1: SerialNumber: syz [ 648.210967][ T28] usb 4-1: config 0 descriptor?? [ 648.220591][T25897] loop4: detected capacity change from 0 to 1024 [ 648.248879][ T28] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 648.286621][T25897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 648.422465][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 648.656967][ T28] gspca_spca1528: reg_w err -71 [ 648.689792][ T28] spca1528: probe of 4-1:0.1 failed with error -71 [ 648.713962][ T28] usb 4-1: USB disconnect, device number 54 [ 648.828207][T25921] netlink: 72 bytes leftover after parsing attributes in process `syz.0.9019'. [ 648.994036][T25931] netlink: 76 bytes leftover after parsing attributes in process `syz.0.9016'. [ 649.019156][T25933] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9017'. [ 649.044175][T25933] netlink: 'syz.1.9017': attribute type 1 has an invalid length. [ 649.054539][T25933] netlink: 'syz.1.9017': attribute type 2 has an invalid length. [ 649.077799][T25933] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9017'. [ 649.258256][T25944] tmpfs: Bad value for 'mpol' [ 649.279824][T25946] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9022'. [ 649.401761][ T27] audit: type=1326 audit(1773251719.633:2916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25949 comm="syz.3.9024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 649.497708][ T27] audit: type=1326 audit(1773251719.633:2917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25949 comm="syz.3.9024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 649.559737][ T27] audit: type=1326 audit(1773251719.673:2918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25949 comm="syz.3.9024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 649.613616][T25961] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9029'. [ 649.630236][ T27] audit: type=1326 audit(1773251719.673:2919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25949 comm="syz.3.9024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 649.637446][T25962] netlink: 'syz.4.9030': attribute type 1 has an invalid length. [ 649.709836][ T27] audit: type=1326 audit(1773251719.673:2920): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25949 comm="syz.3.9024" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcad739c799 code=0x7ffc0000 [ 649.814937][T25969] netlink: 'syz.1.9034': attribute type 24 has an invalid length. [ 649.829196][T25969] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9034'. [ 649.919091][T25970] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 650.205118][T25987] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.9042'. [ 650.413740][T25999] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 650.875462][T24257] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 650.948837][T26019] netlink: 'syz.1.9058': attribute type 3 has an invalid length. [ 650.969027][T26019] netlink: 'syz.1.9058': attribute type 1 has an invalid length. [ 651.004642][T26003] loop0: detected capacity change from 0 to 32768 [ 651.019630][T26023] CIFS mount error: No usable UNC path provided in device string! [ 651.019630][T26023] [ 651.031534][T26023] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 651.070706][T26003] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 651.073011][T24257] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 651.089486][T26003] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 651.105302][T24257] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 651.121625][T26003] BTRFS info (device loop0): using free space tree [ 651.127197][T24257] usb 5-1: config 220 has no interface number 2 [ 651.166773][T24257] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 651.191401][T24257] usb 5-1: config 220 interface 0 has no altsetting 0 [ 651.200057][T24257] usb 5-1: config 220 interface 76 has no altsetting 0 [ 651.208358][T24257] usb 5-1: config 220 interface 1 has no altsetting 0 [ 651.210260][T26003] BTRFS info (device loop0): enabling ssd optimizations [ 651.217657][T24257] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 651.231790][T24257] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.239916][T24257] usb 5-1: Product: syz [ 651.244179][T24257] usb 5-1: Manufacturer: syz [ 651.248880][T24257] usb 5-1: SerialNumber: syz [ 651.274546][T26003] BTRFS info (device loop0): auto enabling async discard [ 651.441197][ T5763] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 651.476284][T24257] usb 5-1: selecting invalid altsetting 0 [ 651.490158][T24257] usb 5-1: Found UVC 7.01 device syz (8086:0b07) [ 651.505382][T24257] usb 5-1: No valid video chain found. [ 651.535966][T24257] usb 5-1: selecting invalid altsetting 0 [ 651.568940][T24257] usbtest: probe of 5-1:220.1 failed with error -22 [ 651.599034][T24257] usb 5-1: USB disconnect, device number 34 [ 651.681010][T19538] usb 2-1: new high-speed USB device number 50 using dummy_hcd [ 651.898111][T19538] usb 2-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 651.905909][T26058] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 651.908508][T19538] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.976061][T19538] usb 2-1: Product: syz [ 652.004628][T19538] usb 2-1: Manufacturer: syz [ 652.015765][T19538] usb 2-1: SerialNumber: syz [ 652.038258][T19538] usb 2-1: config 0 descriptor?? [ 652.049589][T19538] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 652.495526][T16607] usb 2-1: USB disconnect, device number 50 [ 652.624260][T26087] __nla_validate_parse: 3 callbacks suppressed [ 652.624276][T26087] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.9083'. [ 652.762656][T26093] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 652.843591][T26097] loop3: detected capacity change from 0 to 1764 [ 652.998183][T26105] loop4: detected capacity change from 0 to 256 [ 653.154304][T26109] bridge0: port 1(bridge_slave_0) entered disabled state [ 653.199444][T26109] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 653.406322][T26121] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized [ 653.495574][T26127] netlink: 'syz.4.9103': attribute type 2 has an invalid length. [ 653.503356][T26127] netlink: 132 bytes leftover after parsing attributes in process `syz.4.9103'. [ 653.639886][T26133] loop4: detected capacity change from 0 to 128 [ 653.693538][T26133] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 653.780569][T26133] ext4 filesystem being mounted at /1965/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 653.839378][T26133] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 3 (only 1 groups) [ 653.909479][ T8227] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 654.114458][ T27] audit: type=1326 audit(1773251724.343:2921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 654.168148][ T27] audit: type=1326 audit(1773251724.343:2922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 654.205344][ T27] audit: type=1326 audit(1773251724.343:2923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 654.233198][T26123] loop3: detected capacity change from 0 to 40427 [ 654.242779][T26153] "syz.0.9115" (26153) uses obsolete ecb(arc4) skcipher [ 654.257348][T26123] F2FS-fs (loop3): Invalid log blocks per segment (4278190089) [ 654.264993][T26123] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 654.279033][ T27] audit: type=1326 audit(1773251724.343:2924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 654.315627][T26123] F2FS-fs (loop3): invalid crc value [ 654.328800][T26123] F2FS-fs (loop3): Found nat_bits in checkpoint [ 654.339668][ T27] audit: type=1326 audit(1773251724.343:2925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 654.366418][T24257] usb 5-1: new high-speed USB device number 35 using dummy_hcd [ 654.411405][ T27] audit: type=1326 audit(1773251724.433:2926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3b1535cfce code=0x7ffc0000 [ 654.446359][ T27] audit: type=1326 audit(1773251724.433:2927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3b1535cfce code=0x7ffc0000 [ 654.469772][ T27] audit: type=1326 audit(1773251724.433:2928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3b1535cfce code=0x7ffc0000 [ 654.492816][T26123] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 654.500090][T26123] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 654.511596][ T27] audit: type=1326 audit(1773251724.433:2929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3b1535cfce code=0x7ffc0000 [ 654.538998][ T27] audit: type=1326 audit(1773251724.443:2930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26150 comm="syz.1.9113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3b1535cfce code=0x7ffc0000 [ 654.601997][T26123] F2FS-fs (loop3): Corrupted max_depth of 3: 255 [ 654.616697][T24257] usb 5-1: Using ep0 maxpacket: 32 [ 654.624279][T24257] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7 [ 654.642988][T24257] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 654.658111][T26123] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 654.666234][T24257] usb 5-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9 [ 654.684902][T24257] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 654.705531][T24257] usb 5-1: Product: syz [ 654.709796][T24257] usb 5-1: Manufacturer: syz [ 654.714402][T24257] usb 5-1: SerialNumber: syz [ 654.745066][T24257] usb 5-1: config 0 descriptor?? [ 654.768810][T24257] input: KB Gear Tablet as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input43 [ 654.968979][T26167] netlink: 'syz.0.9120': attribute type 10 has an invalid length. [ 654.985868][T26167] : entered allmulticast mode [ 654.991721][T16607] usb 5-1: USB disconnect, device number 35 [ 654.993183][T26167] : left promiscuous mode [ 655.008942][T26167] : entered promiscuous mode [ 655.023607][T26167] team0: Device 5 failed to register rx_handler [ 655.695596][T24257] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 655.906195][T24257] usb 1-1: Using ep0 maxpacket: 16 [ 655.923864][T24257] usb 1-1: config 0 has an invalid interface number: 34 but max is 0 [ 655.942450][T24257] usb 1-1: config 0 has no interface number 0 [ 655.964540][T24257] usb 1-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023 [ 655.985372][T24257] usb 1-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80 [ 656.004392][T24257] usb 1-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73 [ 656.023892][T24257] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 656.032626][T24257] usb 1-1: Product: syz [ 656.047771][T24257] usb 1-1: Manufacturer: syz [ 656.052435][T24257] usb 1-1: SerialNumber: syz [ 656.068962][T24257] usb 1-1: config 0 descriptor?? [ 656.074711][T26179] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 656.084502][T26179] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 656.258505][T26209] loop4: detected capacity change from 0 to 4096 [ 656.275768][T26209] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 656.313849][T26179] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 656.322378][T26179] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 656.381295][T26209] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 656.436127][T26209] ntfs3: loop4: ino=5, "/" directory corrupted [ 656.607095][T24257] asix 1-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 656.624134][T24257] asix: probe of 1-1:0.34 failed with error -71 [ 656.657210][T24257] usb 1-1: USB disconnect, device number 46 [ 657.171218][T26239] loop4: detected capacity change from 0 to 4096 [ 657.223481][T26239] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 657.290863][T26239] ntfs3: loop4: Failed to initialize $Secure (-22). [ 657.435567][T26247] netlink: 16 bytes leftover after parsing attributes in process `syz.0.9158'. [ 657.493583][T26250] netlink: 'syz.3.9159': attribute type 3 has an invalid length. [ 657.517998][T26250] netlink: 132 bytes leftover after parsing attributes in process `syz.3.9159'. [ 657.634536][T26237] loop1: detected capacity change from 0 to 32768 [ 657.671686][T26237] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.9154 (26237) [ 657.717580][T26237] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 657.746243][T26237] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 657.773939][T26237] BTRFS info (device loop1): using free space tree [ 657.938638][T26237] BTRFS info (device loop1): enabling ssd optimizations [ 657.976700][T26237] BTRFS info (device loop1): auto enabling async discard [ 658.172746][ T5761] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 658.274816][T26291] loop4: detected capacity change from 0 to 512 [ 658.364628][T26289] loop0: detected capacity change from 0 to 4096 [ 658.372203][ T6119] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (6119) [ 658.415362][T26289] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 658.455756][T26291] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 658.475996][T26291] ext4 filesystem being mounted at /1981/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 658.544446][T26285] loop3: detected capacity change from 0 to 32768 [ 658.559874][T26285] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 658.617152][T26289] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 658.645765][T26291] EXT4-fs error (device loop4): ext4_get_first_dir_block:3584: inode #12: comm syz.4.9173: Attempting to read directory block (0) that is past i_size (3) [ 658.673365][ T6169] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 658.794538][T26301] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 2 [ 658.938982][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.266874][T26311] loop0: detected capacity change from 0 to 1024 [ 659.531730][T26321] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9188'. [ 659.548578][ T11] hfsplus: b-tree write err: -5, ino 25 [ 659.554392][ T11] hfsplus: b-tree write err: -5, ino 4 [ 659.580582][T26323] erspan1: entered promiscuous mode [ 659.595505][ T11] hfsplus: b-tree write err: -5, ino 2 [ 659.690672][T26325] loop3: detected capacity change from 0 to 512 [ 659.724865][T26325] EXT4-fs error (device loop3): ext4_orphan_get:1398: inode #15: comm syz.3.9189: inode has both inline data and extents flags [ 659.750860][T26325] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.9189: couldn't read orphan inode 15 (err -117) [ 659.770743][T26325] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 660.000707][T26340] loop0: detected capacity change from 0 to 512 [ 660.009858][ T5760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.020885][T26340] EXT4-fs: inline encryption not supported [ 660.065637][T26340] EXT4-fs: Ignoring removed mblk_io_submit option [ 660.083642][T26340] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 660.145413][T26340] EXT4-fs (loop0): Test dummy encryption mode enabled [ 660.169142][T26344] loop4: detected capacity change from 0 to 1024 [ 660.188240][T26340] EXT4-fs (loop0): orphan cleanup on readonly fs [ 660.194671][T26340] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.9194: inode #13: comm syz.0.9194: iget: illegal inode # [ 660.241650][T26340] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.9194: couldn't read orphan inode 13 (err -117) [ 660.319672][T26340] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 660.342547][ T1150] hfsplus: b-tree write err: -5, ino 25 [ 660.363468][ T1150] hfsplus: b-tree write err: -5, ino 4 [ 660.370085][T26340] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 660.370975][T26351] EXT4-fs: Ignoring removed bh option [ 660.396663][ T1150] hfsplus: b-tree write err: -5, ino 2 [ 660.439099][T26340] EXT4-fs error (device loop0): __ext4_remount:6752: comm syz.0.9194: Abort forced by user [ 660.450784][T26351] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 660.495998][T26340] EXT4-fs (loop0): Remounting filesystem read-only [ 660.502639][T26351] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 660.518643][T26340] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 660.555768][T26351] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 660.617683][T26351] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 660.645822][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.653559][T26351] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 660.734277][T26351] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #12: block 32: comm syz.3.9200: bad entry in directory: directory entry overrun - offset=24, inode=13, rec_len=2320, size=2048 fake=0 [ 660.871016][ T5760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.887416][T26366] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9207'. [ 660.924739][T26366] netlink: 20 bytes leftover after parsing attributes in process `syz.4.9207'. [ 661.217592][T26379] netlink: 'syz.0.9213': attribute type 2 has an invalid length. [ 661.502842][T26395] x_tables: duplicate underflow at hook 3 [ 661.639072][T26398] set_capacity_and_notify: 1 callbacks suppressed [ 661.639088][T26398] loop0: detected capacity change from 0 to 4096 [ 661.685393][T26398] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 661.778493][T26407] comedi comedi2: aio_aio12_8: I/O port conflict (0xafff,32) [ 661.789727][T26398] ntfs3: loop0: Failed to initialize $Secure (-22). [ 661.923633][T26411] loop4: detected capacity change from 0 to 2048 [ 661.990916][T26411] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 662.216040][ T968] usb 2-1: new high-speed USB device number 51 using dummy_hcd [ 662.246181][T26425] loop4: detected capacity change from 0 to 2048 [ 662.275447][T16607] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 662.291821][T26428] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 662.320042][T26425] NILFS error (device loop4): nilfs_check_page: bad entry in directory #12: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 662.352624][T26425] Remounting filesystem read-only [ 662.368965][T26430] loop3: detected capacity change from 0 to 512 [ 662.392605][T26430] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 662.406265][T26430] ext4 filesystem being mounted at /2320/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 662.427133][ T968] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00 [ 662.445334][ T968] usb 2-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 662.453374][ T968] usb 2-1: Product: syz [ 662.460530][ T968] usb 2-1: SerialNumber: syz [ 662.471903][ T968] usb 2-1: config 0 descriptor?? [ 662.502703][T16607] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 662.511771][T16607] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 662.537464][T16607] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 662.565752][T16607] usb 1-1: config 1 has no interface number 1 [ 662.572972][T16607] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 662.596217][ T5760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 662.609760][T16607] usb 1-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 662.671876][T16607] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 662.689854][ T968] hso 2-1:0.0: Failed to find BULK IN ep [ 662.697914][T16607] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 662.724203][T16607] usb 1-1: Product: syz [ 662.750426][T16607] usb 1-1: Manufacturer: syz [ 662.767221][T16607] usb 1-1: SerialNumber: syz [ 662.892375][ T968] usb 2-1: USB disconnect, device number 51 [ 662.998611][T16607] usb 1-1: No endpoint at altset 1, falling back to MIDI 1.0 [ 663.024292][T16607] usb 1-1: MIDIStreaming interface descriptor not found [ 663.037603][T26450] loop3: detected capacity change from 0 to 256 [ 663.077173][T16607] usb 1-1: USB disconnect, device number 47 [ 663.160516][T26450] FAT-fs (loop3): Directory bread(block 64) failed [ 663.185418][T26450] FAT-fs (loop3): Directory bread(block 65) failed [ 663.202342][T26450] FAT-fs (loop3): Directory bread(block 66) failed [ 663.224900][T26450] FAT-fs (loop3): Directory bread(block 67) failed [ 663.236262][T26450] FAT-fs (loop3): Directory bread(block 68) failed [ 663.255845][T26450] FAT-fs (loop3): Directory bread(block 69) failed [ 663.262489][T26450] FAT-fs (loop3): Directory bread(block 70) failed [ 663.285821][T26450] FAT-fs (loop3): Directory bread(block 71) failed [ 663.292472][T26450] FAT-fs (loop3): Directory bread(block 72) failed [ 663.315358][T26450] FAT-fs (loop3): Directory bread(block 73) failed [ 663.331378][T26450] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 664.035131][T26479] netlink: 'syz.3.9259': attribute type 10 has an invalid length. [ 664.066451][T26479] netlink: 40 bytes leftover after parsing attributes in process `syz.3.9259'. [ 664.086603][T26479] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 664.109403][T26478] loop4: detected capacity change from 0 to 4096 [ 664.135202][T26478] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 664.163683][T26478] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 664.265538][T16607] usb 2-1: new high-speed USB device number 52 using dummy_hcd [ 664.465464][T16607] usb 2-1: Using ep0 maxpacket: 16 [ 664.498522][T16607] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 664.533832][T16607] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 664.550325][T16607] usb 2-1: Product: syz [ 664.554569][T16607] usb 2-1: Manufacturer: syz [ 664.576310][T16607] usb 2-1: SerialNumber: syz [ 664.584121][T16607] r8152-cfgselector 2-1: config 0 descriptor?? [ 665.006322][T16607] r8152-cfgselector 2-1: Unknown version 0x0000 [ 665.036897][T16607] r8152-cfgselector 2-1: USB disconnect, device number 52 [ 665.203346][T26516] loop0: detected capacity change from 0 to 1024 [ 665.296107][ T42] hfsplus: bad catalog file entry [ 665.495711][ T28] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 665.573068][T26532] loop3: detected capacity change from 0 to 16 [ 665.581083][T26532] erofs: (device loop3): mounted with root inode @ nid 36. [ 665.608835][T26532] syz.3.9287: attempt to access beyond end of device [ 665.608835][T26532] loop3: rw=524288, sector=1056, nr_sectors = 16 limit=16 [ 665.631126][T26534] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9286'. [ 665.640640][ T968] usb 1-1: new high-speed USB device number 48 using dummy_hcd [ 665.655334][T26532] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -32 in[46, 4050] out[4096] [ 665.691228][ T27] kauditd_printk_skb: 69 callbacks suppressed [ 665.691244][ T27] audit: type=1800 audit(1773251735.923:3000): pid=26532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.9287" name="file2" dev="loop3" ino=89 res=0 errno=0 [ 665.717768][ T28] usb 5-1: Using ep0 maxpacket: 32 [ 665.728110][ T28] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 665.745960][ T28] usb 5-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c [ 665.764130][ T28] usb 5-1: New USB device strings: Mfr=1, Product=229, SerialNumber=2 [ 665.773322][ T28] usb 5-1: Product: syz [ 665.793054][ T28] usb 5-1: Manufacturer: syz [ 665.803898][ T28] usb 5-1: SerialNumber: syz [ 665.813688][ T28] usb 5-1: config 0 descriptor?? [ 665.828686][ T968] usb 1-1: Using ep0 maxpacket: 8 [ 665.831409][ T28] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input44 [ 665.851479][ T28] usbtouchscreen 5-1:0.0: usbtouch_probe - usb_submit_urb failed with result: -8 [ 665.857284][ T968] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 665.875464][ T968] usb 1-1: config 0 has no interface number 0 [ 665.891909][ T28] usbtouchscreen: probe of 5-1:0.0 failed with error -8 [ 665.903919][ T968] usb 1-1: config 0 interface 1 has no altsetting 0 [ 665.930447][ T968] usb 1-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 665.947181][ T968] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 665.973978][ T968] usb 1-1: Product: syz [ 665.982497][ T968] usb 1-1: Manufacturer: syz [ 665.995311][ T968] usb 1-1: SerialNumber: syz [ 666.008822][ T968] usb 1-1: config 0 descriptor?? [ 666.041440][T24257] usb 5-1: USB disconnect, device number 36 [ 666.225360][ T28] usb 2-1: new high-speed USB device number 53 using dummy_hcd [ 666.230578][ T968] i2c-cp2615: probe of 1-1:0.1 failed with error -22 [ 666.374053][T26556] netlink: 45 bytes leftover after parsing attributes in process `syz.3.9298'. [ 666.405564][ T28] usb 2-1: Using ep0 maxpacket: 32 [ 666.416138][ T28] usb 2-1: config 3 has an invalid interface number: 160 but max is 0 [ 666.432493][ T28] usb 2-1: config 3 has no interface number 0 [ 666.439578][ T28] usb 2-1: config 3 interface 160 altsetting 3 bulk endpoint 0xF has invalid maxpacket 16 [ 666.450294][ T28] usb 2-1: config 3 interface 160 has no altsetting 0 [ 666.452019][ T968] usb 1-1: USB disconnect, device number 48 [ 666.460153][ T28] usb 2-1: New USB device found, idVendor=16c0, idProduct=05df, bcdDevice=7d.bd [ 666.473067][ T28] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 666.493757][ T28] usb 2-1: Product: syz [ 666.500222][ T28] usb 2-1: Manufacturer: syz [ 666.504892][ T28] usb 2-1: SerialNumber: syz [ 666.513260][T26540] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 666.552519][T26560] loop3: detected capacity change from 0 to 1024 [ 666.747672][ T28] usbhid 2-1:3.160: couldn't find an input interrupt endpoint [ 666.784219][ T28] usb 2-1: USB disconnect, device number 53 [ 666.885582][ T27] audit: type=1326 audit(1773251737.113:3001): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 666.908018][ C1] vkms_vblank_simulate: vblank timer overrun [ 666.944425][ T27] audit: type=1326 audit(1773251737.113:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.018924][ T27] audit: type=1326 audit(1773251737.123:3003): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.075401][ T27] audit: type=1326 audit(1773251737.123:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.140541][ T27] audit: type=1326 audit(1773251737.123:3005): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.193735][ T27] audit: type=1326 audit(1773251737.123:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.275962][ T27] audit: type=1326 audit(1773251737.123:3007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.356077][ T27] audit: type=1326 audit(1773251737.123:3008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.455760][ T27] audit: type=1326 audit(1773251737.123:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26570 comm="syz.4.9306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f98b4b9c799 code=0x7ffc0000 [ 667.755601][T26606] netlink: 'syz.4.9323': attribute type 4 has an invalid length. [ 667.787157][T26606] netlink: 152 bytes leftover after parsing attributes in process `syz.4.9323'. [ 668.106256][ T28] usb 2-1: new full-speed USB device number 54 using dummy_hcd [ 668.131345][T26596] loop3: detected capacity change from 0 to 32768 [ 668.160971][T26596] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 668.300046][ T28] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 668.350088][ T28] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 668.383781][T26596] XFS (loop3): Ending clean mount [ 668.415663][ T28] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 668.439603][ T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 668.450224][ T28] usb 2-1: SerialNumber: syz [ 668.461583][ T28] usb 2-1: 0:2 : does not exist [ 668.547566][ T5760] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 668.771318][T26648] netlink: 68 bytes leftover after parsing attributes in process `syz.3.9338'. [ 668.892896][T24257] usb 2-1: USB disconnect, device number 54 [ 669.227256][T26664] loop3: detected capacity change from 0 to 1024 [ 669.259107][ T48] hfsplus: b-tree write err: -5, ino 25 [ 669.286829][ T48] hfsplus: b-tree write err: -5, ino 4 [ 669.292834][ T48] hfsplus: b-tree write err: -5, ino 2 [ 669.295847][T26666] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9349'. [ 669.335966][T26666] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9349'. [ 669.480491][T26670] tmpfs: Bad value for 'mpol' [ 669.886452][T26690] openvswitch: netlink: Flow actions attr not present in new flow. [ 670.164189][T26702] netlink: 80 bytes leftover after parsing attributes in process `syz.0.9367'. [ 670.200944][T26706] loop1: detected capacity change from 0 to 512 [ 670.222787][T26706] EXT4-fs: Ignoring removed bh option [ 670.242331][T26708] loop3: detected capacity change from 0 to 256 [ 670.256504][T26706] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 670.275063][T26706] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 670.277274][T26708] exfat: Deprecated parameter 'utf8' [ 670.304616][T26706] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 670.334866][T26706] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e018, mo2=0006] [ 670.349797][T26708] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 670.355796][T26706] System zones: 0-2, 18-18, 34-35 [ 670.389108][T26706] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 670.432178][T26706] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.9369: bg 0: block 353: padding at end of block bitmap is not set [ 670.571836][ T5761] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 670.688483][T26721] netlink: 'syz.0.9377': attribute type 2 has an invalid length. [ 670.705142][T26721] netlink: 119 bytes leftover after parsing attributes in process `syz.0.9377'. [ 671.057869][T26738] netlink: 128 bytes leftover after parsing attributes in process `syz.0.9384'. [ 671.075052][T26738] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9384'. [ 671.630688][T26762] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9395'. [ 671.706889][T26765] loop3: detected capacity change from 0 to 512 [ 671.816932][T26765] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 671.878072][T26765] ext4 filesystem being mounted at /2369/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 671.998756][T26765] Quota error (device loop3): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 672.043308][T26765] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 672.054645][T26765] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.9397: Failed to acquire dquot type 0 [ 672.168213][ T5760] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 672.228902][T26792] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9411'. [ 672.241185][T26792] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9411'. [ 672.422645][T26799] loop4: detected capacity change from 0 to 512 [ 672.465699][T26799] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 672.555675][T26799] EXT4-fs (loop4): 1 truncate cleaned up [ 672.566336][T26808] netlink: 'syz.0.9419': attribute type 10 has an invalid length. [ 672.574269][T26808] netlink: 212412 bytes leftover after parsing attributes in process `syz.0.9419'. [ 672.583833][T26808] openvswitch: netlink: Flow key attr not present in new flow. [ 672.597778][T26799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 672.740269][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 673.088438][T26833] loop1: detected capacity change from 0 to 1024 [ 673.236309][ T416] hfsplus: b-tree write err: -5, ino 25 [ 673.247547][ T416] hfsplus: b-tree write err: -5, ino 4 [ 673.253140][ T416] hfsplus: b-tree write err: -5, ino 2 [ 673.279667][ T416] hfsplus: b-tree write err: -5, ino 26 [ 673.434381][T26851] loop0: detected capacity change from 0 to 512 [ 673.463979][T26851] EXT4-fs (loop0): orphan cleanup on readonly fs [ 673.492083][T26851] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.0.9438: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 673.608104][T26851] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.0.9438: ea_inode dec ref err=-117 [ 673.621488][T26851] EXT4-fs (loop0): 1 orphan inode deleted [ 673.632335][T26851] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 673.837691][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 674.127316][T26884] netlink: 'syz.0.9452': attribute type 4 has an invalid length. [ 674.144604][T26884] netlink: 204 bytes leftover after parsing attributes in process `syz.0.9452'. [ 674.223483][T26890] netlink: 'syz.0.9456': attribute type 64 has an invalid length. [ 674.237977][T26890] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9456'. [ 674.248810][T26890] netlink: 'syz.0.9456': attribute type 64 has an invalid length. [ 674.263404][T26890] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9456'. [ 674.276128][ T9] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 674.500548][ T9] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 674.519754][ T9] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 674.530227][ T9] usb 4-1: config 220 has no interface number 2 [ 674.537144][ T9] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 674.558099][T26906] netlink: 'syz.1.9463': attribute type 10 has an invalid length. [ 674.566447][ T9] usb 4-1: config 220 interface 0 has no altsetting 0 [ 674.585359][ T9] usb 4-1: config 220 interface 76 has no altsetting 0 [ 674.592395][T26906] : entered allmulticast mode [ 674.597522][ T9] usb 4-1: config 220 interface 1 has no altsetting 0 [ 674.615060][T26906] : left promiscuous mode [ 674.623157][T26906] : entered promiscuous mode [ 674.630572][ T9] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 674.644269][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 674.657910][T26906] team0: Device 5 failed to register rx_handler [ 674.664467][ T9] usb 4-1: Product: syz [ 674.668749][ T9] usb 4-1: Manufacturer: syz [ 674.673391][ T9] usb 4-1: SerialNumber: syz [ 674.758698][T26911] netlink: 'syz.4.9466': attribute type 12 has an invalid length. [ 674.922972][ T9] usb 4-1: selecting invalid altsetting 0 [ 674.942321][ T9] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 674.953817][ T9] usb 4-1: No valid video chain found. [ 674.993890][ T9] usb 4-1: selecting invalid altsetting 0 [ 675.012621][ T9] usbtest: probe of 4-1:220.1 failed with error -22 [ 675.033265][ T9] usb 4-1: USB disconnect, device number 55 [ 675.105461][ T788] usb 1-1: new full-speed USB device number 49 using dummy_hcd [ 675.295578][T24257] usb 5-1: new high-speed USB device number 37 using dummy_hcd [ 675.309073][ T788] usb 1-1: unable to get BOS descriptor or descriptor too short [ 675.326010][ T788] usb 1-1: not running at top speed; connect to a high speed hub [ 675.339750][ T788] usb 1-1: config 1 has an invalid interface number: 138 but max is 0 [ 675.353358][ T788] usb 1-1: config 1 has an invalid descriptor of length 158, skipping remainder of the config [ 675.365296][ T788] usb 1-1: config 1 has no interface number 0 [ 675.371885][ T788] usb 1-1: config 1 interface 138 altsetting 252 endpoint 0xC has invalid maxpacket 52651, setting to 64 [ 675.383437][ T788] usb 1-1: config 1 interface 138 has no altsetting 0 [ 675.392748][ T788] usb 1-1: New USB device found, idVendor=0cb8, idProduct=c90b, bcdDevice= d.ae [ 675.401985][ T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 675.410278][ T788] usb 1-1: Product: syz [ 675.414548][ T788] usb 1-1: Manufacturer: syz [ 675.419306][ T788] usb 1-1: SerialNumber: syz [ 675.429739][T26915] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 675.513114][T24257] usb 5-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 675.524999][T24257] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 675.533994][T24257] usb 5-1: Product: syz [ 675.538676][T24257] usb 5-1: Manufacturer: syz [ 675.543335][T24257] usb 5-1: SerialNumber: syz [ 675.551996][T24257] usb 5-1: config 0 descriptor?? [ 675.564180][T24257] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 675.624611][T26941] loop3: detected capacity change from 0 to 2048 [ 675.635954][ T9] usb 2-1: new high-speed USB device number 55 using dummy_hcd [ 675.671209][T26941] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 675.672505][ T788] usb 1-1: Quirk or no altest; falling back to MIDI 1.0 [ 675.717621][T26941] UDF-fs: error (device loop3): udf_read_inode: (ino 1345) failed !bh [ 675.720340][ T788] usb 1-1: USB disconnect, device number 49 [ 675.828812][ T5751] udevd[5751]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.138/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 675.843605][ T9] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 675.867280][ T9] usb 2-1: config 220 has 1 interface, different from the descriptor's value: 3 [ 675.893200][ T9] usb 2-1: config 220 interface 0 has no altsetting 0 [ 675.914559][ T9] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 675.930946][T26944] loop3: detected capacity change from 0 to 256 [ 675.933066][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 675.947022][ T9] usb 2-1: Product: syz [ 675.952284][ T9] usb 2-1: Manufacturer: syz [ 675.958166][ T9] usb 2-1: SerialNumber: syz [ 676.023526][T24257] usb 5-1: USB disconnect, device number 37 [ 676.191367][ T9] usb 2-1: USB disconnect, device number 55 [ 676.413484][T26958] loop0: detected capacity change from 0 to 512 [ 676.460711][T26960] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9490'. [ 676.473616][T26958] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 676.507009][T26958] ext4 filesystem being mounted at /2372/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 676.589769][T26958] Quota error (device loop0): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 676.615649][T26958] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 676.643867][T26958] EXT4-fs error (device loop0): ext4_acquire_dquot:6949: comm syz.0.9489: Failed to acquire dquot type 0 [ 676.730585][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 676.930622][T26979] loop0: detected capacity change from 0 to 256 [ 676.984106][T26979] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 677.034356][T26985] netlink: 'syz.3.9501': attribute type 1 has an invalid length. [ 677.862675][T27029] loop1: detected capacity change from 0 to 1024 [ 677.869698][T27031] netlink: 'syz.4.9522': attribute type 1 has an invalid length. [ 677.980719][ T1150] hfsplus: b-tree write err: -5, ino 25 [ 677.987589][ T1150] hfsplus: b-tree write err: -5, ino 4 [ 677.993181][ T1150] hfsplus: b-tree write err: -5, ino 2 [ 678.085367][T24257] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 678.164240][T27043] loop1: detected capacity change from 0 to 512 [ 678.187667][T27043] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 678.212570][T27045] loop3: detected capacity change from 0 to 2048 [ 678.271046][T27045] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 678.285345][T24257] usb 1-1: Using ep0 maxpacket: 8 [ 678.301897][T24257] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 678.324060][T24257] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 678.353575][T24257] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 678.368888][T27045] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1408) has entry at pos 0 with incorrect tag 10a [ 678.392285][T24257] usb 1-1: config 0 descriptor?? [ 678.407811][T27045] UDF-fs: error (device loop3): udf_rename: failed to find renamed entry again in directory (ino 1408) [ 678.433173][T24257] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 678.579386][T27055] netlink: 'syz.3.9536': attribute type 24 has an invalid length. [ 678.649331][T27057] netlink: 'syz.4.9537': attribute type 1 has an invalid length. [ 678.784805][T27063] overlayfs: cannot append lower layer [ 678.826283][T27067] netlink: 'syz.3.9542': attribute type 12 has an invalid length. [ 678.838191][T24257] gspca_vc032x: reg_w err -71 [ 678.856029][T24257] vc032x: probe of 1-1:0.0 failed with error -71 [ 678.872321][T24257] usb 1-1: USB disconnect, device number 50 [ 678.989208][T27073] veth1_to_bridge: entered allmulticast mode [ 679.136351][T27083] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9550'. [ 679.216707][T27085] netlink: 9188 bytes leftover after parsing attributes in process `syz.4.9559'. [ 679.251975][T27087] loop3: detected capacity change from 0 to 2048 [ 679.294916][T27087] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 679.325457][ T968] usb 2-1: new high-speed USB device number 56 using dummy_hcd [ 679.515737][ T968] usb 2-1: Using ep0 maxpacket: 16 [ 679.527127][ T968] usb 2-1: config 0 has an invalid interface number: 34 but max is 0 [ 679.545484][ T968] usb 2-1: config 0 has no interface number 0 [ 679.551727][ T968] usb 2-1: config 0 interface 34 altsetting 0 bulk endpoint 0xA has invalid maxpacket 1023 [ 679.589156][ T968] usb 2-1: config 0 interface 34 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 80 [ 679.604269][ T968] usb 2-1: New USB device found, idVendor=0b95, idProduct=772a, bcdDevice=82.73 [ 679.634449][ T968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 679.642833][ T968] usb 2-1: Product: syz [ 679.649337][T27102] loop3: detected capacity change from 0 to 1024 [ 679.655892][ T968] usb 2-1: Manufacturer: syz [ 679.660514][ T968] usb 2-1: SerialNumber: syz [ 679.671167][ T968] usb 2-1: config 0 descriptor?? [ 679.686257][T27079] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 679.702116][T27079] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 679.962968][T27079] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 679.985634][T27079] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 680.065691][T27120] netlink: 'syz.4.9568': attribute type 10 has an invalid length. [ 680.168673][T27123] loop3: detected capacity change from 0 to 2048 [ 680.190233][T27120] team0: Device 5 failed to register rx_handler [ 680.211027][ T968] asix 2-1:0.34 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 680.245889][ T968] asix: probe of 2-1:0.34 failed with error -71 [ 680.254387][T27125] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 680.285810][ T968] usb 2-1: USB disconnect, device number 56 [ 680.366604][T27123] NILFS error (device loop3): nilfs_check_page: bad entry in directory #12: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 680.410417][T27123] Remounting filesystem read-only [ 680.785874][T27146] netlink: 'syz.0.9579': attribute type 1 has an invalid length. [ 680.937175][T27152] netlink: 112 bytes leftover after parsing attributes in process `syz.0.9582'. [ 681.181550][T27166] netlink: 'syz.0.9589': attribute type 1 has an invalid length. [ 681.197213][T27166] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9589'. [ 681.458976][T27176] loop0: detected capacity change from 0 to 512 [ 681.503916][T27176] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 681.733147][T27184] netlink: 'syz.3.9599': attribute type 26 has an invalid length. [ 681.751440][T27162] loop1: detected capacity change from 0 to 32768 [ 681.887267][ T27] audit: type=1400 audit(1773251752.123:3010): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=3A3A0AE10CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A552C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=27185 comm="syz.0.9600" [ 682.119242][T27194] trusted_key: encrypted_key: master key parameter '' is invalid [ 682.149875][T27178] loop4: detected capacity change from 0 to 32768 [ 682.195557][T27178] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 682.397812][ T5755] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 682.490194][T27209] loop0: detected capacity change from 0 to 256 [ 682.521348][T27209] exfat: Deprecated parameter 'utf8' [ 682.538780][T24257] usb 2-1: new high-speed USB device number 57 using dummy_hcd [ 682.545413][T27209] exfat: Deprecated parameter 'namecase' [ 682.564066][T27211] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9612'. [ 682.581878][T27209] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xda15a085, utbl_chksum : 0xe619d30d) [ 682.761840][T24257] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 682.781333][T24257] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 682.808215][T24257] usb 2-1: config 220 has no interface number 2 [ 682.814647][T24257] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 682.829634][T24257] usb 2-1: config 220 interface 0 has no altsetting 0 [ 682.836818][T24257] usb 2-1: config 220 interface 76 has no altsetting 0 [ 682.843798][T24257] usb 2-1: config 220 interface 1 has no altsetting 0 [ 682.857543][T24257] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 682.858603][T27218] loop0: detected capacity change from 0 to 2048 [ 682.869234][T24257] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 682.935488][T27218] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 682.937112][T24257] usb 2-1: Product: syz [ 682.961804][T24257] usb 2-1: Manufacturer: syz [ 682.972887][T24257] usb 2-1: SerialNumber: syz [ 683.010123][T27218] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1408) has entry at pos 0 with incorrect tag 10a [ 683.054689][T27218] UDF-fs: error (device loop0): udf_rename: failed to find renamed entry again in directory (ino 1408) [ 683.175531][T27224] netlink: 'syz.3.9618': attribute type 10 has an invalid length. [ 683.199364][T27224] veth0_vlan: entered allmulticast mode [ 683.209037][T24257] usb 2-1: selecting invalid altsetting 0 [ 683.215909][T27224] veth0_vlan: left promiscuous mode [ 683.225947][T24257] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 683.232334][T24257] usb 2-1: No valid video chain found. [ 683.256955][T27224] veth0_vlan: entered promiscuous mode [ 683.271064][T24257] usb 2-1: selecting invalid altsetting 0 [ 683.288096][T27224] team0: Device veth0_vlan failed to register rx_handler [ 683.295565][T24257] usbtest: probe of 2-1:220.1 failed with error -22 [ 683.323880][T24257] usb 2-1: USB disconnect, device number 57 [ 683.352089][T27231] binder: 27229:27231 ioctl 400c620e ffffffffffffffff returned -14 [ 683.694242][T27240] netlink: 45 bytes leftover after parsing attributes in process `syz.4.9625'. [ 683.792672][T27243] CIFS mount error: No usable UNC path provided in device string! [ 683.792672][T27243] [ 683.820067][T27244] netlink: 60 bytes leftover after parsing attributes in process `syz.4.9628'. [ 683.833657][T27232] loop0: detected capacity change from 0 to 32768 [ 683.842395][T27243] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 683.863900][T27232] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 683.891568][T27244] veth3: entered allmulticast mode [ 684.017974][T27248] netlink: 256 bytes leftover after parsing attributes in process `syz.3.9630'. [ 684.055147][ T6119] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 684.122263][T27252] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 684.767463][T27286] loop4: detected capacity change from 0 to 64 [ 684.868144][T27290] netlink: 'syz.0.9657': attribute type 10 has an invalid length. [ 684.881088][T27290] : left promiscuous mode [ 684.886853][T27290] : entered promiscuous mode [ 684.926996][T27290] team0: Device 5 failed to register rx_handler [ 685.194041][T27304] sctp: [Deprecated]: syz.3.9655 (pid 27304) Use of int in max_burst socket option. [ 685.194041][T27304] Use struct sctp_assoc_value instead [ 685.234702][T27307] netlink: 'syz.1.9658': attribute type 5 has an invalid length. [ 685.539957][T27324] netlink: 'syz.3.9666': attribute type 10 has an invalid length. [ 685.548316][T27324] veth0_vlan: left promiscuous mode [ 685.554446][T27324] veth0_vlan: entered promiscuous mode [ 685.564104][T27324] team0: Device veth0_vlan failed to register rx_handler [ 685.628245][T27322] vlan1: entered allmulticast mode [ 686.000389][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 686.009001][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 686.258655][T27350] loop0: detected capacity change from 0 to 16 [ 686.308868][T27350] erofs: (device loop0): mounted with root inode @ nid 36. [ 686.341808][T27330] loop1: detected capacity change from 0 to 32768 [ 686.412676][T27330] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 686.525124][T27330] XFS (loop1): Ending clean mount [ 686.609645][T27330] XFS (loop1): Quotacheck needed: Please wait. [ 686.743722][T27330] XFS (loop1): Quotacheck: Done. [ 686.768199][ T27] audit: type=1326 audit(1773251757.003:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 686.806495][T27374] loop3: detected capacity change from 0 to 256 [ 686.846696][T27374] exfat: Deprecated parameter 'utf8' [ 686.852137][T27374] exfat: Deprecated parameter 'namecase' [ 686.878439][ T27] audit: type=1326 audit(1773251757.003:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 686.914298][T27374] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xda15a085, utbl_chksum : 0xe619d30d) [ 686.940715][ T5761] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 686.945372][ T27] audit: type=1326 audit(1773251757.023:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.002533][ T27] audit: type=1326 audit(1773251757.023:3014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.110864][ T27] audit: type=1326 audit(1773251757.023:3015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.194111][ T27] audit: type=1326 audit(1773251757.023:3016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.224934][T27348] loop4: detected capacity change from 0 to 32768 [ 687.255320][ T27] audit: type=1326 audit(1773251757.023:3017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.372521][ T27] audit: type=1326 audit(1773251757.023:3018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.458552][T27380] netlink: 'syz.3.9690': attribute type 21 has an invalid length. [ 687.473909][ T27] audit: type=1326 audit(1773251757.023:3019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27372 comm="syz.0.9686" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe2ee99c799 code=0x7ffc0000 [ 687.486554][T27380] netlink: 128 bytes leftover after parsing attributes in process `syz.3.9690'. [ 687.572740][T27380] netlink: 'syz.3.9690': attribute type 4 has an invalid length. [ 687.611168][T27376] loop0: detected capacity change from 0 to 32768 [ 687.663526][T27376] ea_get: invalid extended attribute [ 687.957986][T27388] netlink: 'syz.3.9696': attribute type 9 has an invalid length. [ 687.970978][T27388] netlink: 154020 bytes leftover after parsing attributes in process `syz.3.9696'. [ 688.089146][T27392] ax25_connect(): syz.0.9694 uses autobind, please contact jreuter@yaina.de [ 688.699420][T27421] netlink: 'syz.1.9710': attribute type 32 has an invalid length. [ 689.162012][T27419] loop3: detected capacity change from 0 to 32768 [ 689.181197][T27419] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 689.197946][T27413] loop4: detected capacity change from 0 to 32768 [ 689.283159][T27413] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 689.387161][T27447] ip6gre3: entered promiscuous mode [ 689.392531][T27447] ip6gre3: entered allmulticast mode [ 689.441865][ T6119] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 9 [ 689.469004][T27413] XFS (loop4): Ending clean mount [ 689.577805][ T8227] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 690.363451][T27481] x_tables: duplicate underflow at hook 4 [ 690.414607][T27483] loop0: detected capacity change from 0 to 1024 [ 690.449285][T27483] EXT4-fs: Ignoring removed orlov option [ 690.458834][T27483] EXT4-fs: Ignoring removed bh option [ 690.516091][T27483] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 690.646180][T27483] EXT4-fs error (device loop0): __ext4_remount:6752: comm syz.0.9734: Abort forced by user [ 690.688856][T27483] EXT4-fs (loop0): Remounting filesystem read-only [ 690.710615][T27483] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. [ 690.791888][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 690.895377][T27507] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9745'. [ 690.955904][T27507] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9745'. [ 690.992663][T27513] loop3: detected capacity change from 0 to 256 [ 691.063165][T27515] loop4: detected capacity change from 0 to 512 [ 691.103553][T27513] FAT-fs (loop3): Directory bread(block 64) failed [ 691.125598][T27513] FAT-fs (loop3): Directory bread(block 65) failed [ 691.132286][T27513] FAT-fs (loop3): Directory bread(block 66) failed [ 691.141891][T27513] FAT-fs (loop3): Directory bread(block 67) failed [ 691.149366][T27513] FAT-fs (loop3): Directory bread(block 68) failed [ 691.160397][T27513] FAT-fs (loop3): Directory bread(block 69) failed [ 691.198870][T27515] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 691.220995][T27513] FAT-fs (loop3): Directory bread(block 70) failed [ 691.236531][T27513] FAT-fs (loop3): Directory bread(block 71) failed [ 691.243207][T27513] FAT-fs (loop3): Directory bread(block 72) failed [ 691.256173][T27515] ext4 filesystem being mounted at /2138/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 691.293606][T27513] FAT-fs (loop3): Directory bread(block 73) failed [ 691.500062][ T8227] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 692.021390][T27545] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9763'. [ 692.057516][T27545] (unnamed net_device) (uninitialized): option ad_user_port_key: invalid value (1136) [ 692.069799][T27541] loop3: detected capacity change from 0 to 4096 [ 692.079271][T27545] (unnamed net_device) (uninitialized): option ad_user_port_key: allowed values 0 - 1023 [ 692.100111][T27541] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 692.132763][T27541] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 692.182178][T27541] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 692.208538][T27541] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 692.254926][T27541] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 692.291111][T27541] ntfs: volume version 3.1. [ 692.299043][T27541] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 692.325730][T27541] ntfs: (device loop3): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 692.384499][T27541] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 692.445422][T27541] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 692.475389][T27541] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 692.755385][T27570] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9774'. [ 692.835621][T19538] usb 5-1: new full-speed USB device number 38 using dummy_hcd [ 693.029987][T19538] usb 5-1: unable to get BOS descriptor or descriptor too short [ 693.041706][T19538] usb 5-1: not running at top speed; connect to a high speed hub [ 693.064569][T19538] usb 5-1: New USB device found, idVendor=0763, idProduct=2003, bcdDevice= 0.40 [ 693.075102][T19538] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 693.087647][T19538] usb 5-1: Product: syz [ 693.091832][T19538] usb 5-1: Manufacturer: syz [ 693.097085][T19538] usb 5-1: SerialNumber: syz [ 693.331549][T19538] usb 5-1: parse_audio_format_rates_v2v3(): unable to find clock source (clock -22) [ 693.366302][T19538] usb 5-1: unit 37 not found! [ 693.382395][T19538] usb 5-1: unit 0 not found! [ 693.405608][T27574] loop1: detected capacity change from 0 to 32768 [ 693.487245][T19538] usb 5-1: USB disconnect, device number 38 [ 693.583804][ T5754] udevd[5754]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 693.690623][T27600] loop0: detected capacity change from 0 to 16 [ 693.721483][T27600] erofs: (device loop0): mounted with root inode @ nid 36. [ 693.969695][T27609] loop3: detected capacity change from 0 to 256 [ 694.277750][T27621] comedi comedi0: Minor 3 could not be opened [ 695.112648][T27664] loop3: detected capacity change from 0 to 1024 [ 695.135527][T27664] hfsplus: catalog name length corrupted [ 695.577290][T27686] loop3: detected capacity change from 0 to 256 [ 695.650163][T27686] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 695.957561][T27698] veth9: entered promiscuous mode [ 695.962960][T27698] veth9: entered allmulticast mode [ 696.225416][T27712] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 696.560000][T27700] loop1: detected capacity change from 0 to 32768 [ 696.578322][T27700] XFS: attr2 mount option is deprecated. [ 696.639024][T27700] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 696.652493][T27734] netlink: 'syz.3.9853': attribute type 1 has an invalid length. [ 696.663609][T27734] netlink: 'syz.3.9853': attribute type 3 has an invalid length. [ 696.672560][T27734] netlink: 224 bytes leftover after parsing attributes in process `syz.3.9853'. [ 696.739322][T27700] XFS (loop1): Ending clean mount [ 696.781135][T27700] XFS (loop1): Quotacheck needed: Please wait. [ 696.925102][T27700] XFS (loop1): Quotacheck: Done. [ 696.968936][T27747] netlink: 3 bytes leftover after parsing attributes in process `syz.3.9858'. [ 696.986532][T27747] 0X: renamed from caif0 [ 697.042454][T27749] netlink: 'syz.0.9859': attribute type 1 has an invalid length. [ 697.057294][T27747] 0X: entered allmulticast mode [ 697.067618][ T5761] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 697.083856][T27747] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 697.349705][T27761] netlink: 16 bytes leftover after parsing attributes in process `syz.4.9866'. [ 697.686415][T24257] usb 1-1: new full-speed USB device number 51 using dummy_hcd [ 697.788373][T27783] netlink: 'syz.3.9877': attribute type 32 has an invalid length. [ 697.875817][T24257] usb 1-1: config 0 has an invalid interface number: 3 but max is 2 [ 697.884246][T24257] usb 1-1: config 0 has an invalid interface number: 176 but max is 2 [ 697.897184][T24257] usb 1-1: config 0 has no interface number 1 [ 697.903341][T24257] usb 1-1: config 0 has no interface number 2 [ 697.909953][T24257] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 697.921428][T24257] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 697.946325][T24257] usb 1-1: config 0 descriptor?? [ 698.197011][T24257] qcserial 1-1:0.3: Qualcomm USB modem converter detected [ 698.386847][T27803] netlink: 24 bytes leftover after parsing attributes in process `syz.4.9887'. [ 698.407754][T24257] usb 1-1: USB disconnect, device number 51 [ 698.434831][T24257] qcserial 1-1:0.3: device disconnected [ 698.501640][T27803] veth5: entered allmulticast mode [ 698.691635][T27815] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9892'. [ 698.707036][T27811] loop4: detected capacity change from 0 to 4096 [ 698.747954][T27811] __ntfs_error: 11 callbacks suppressed [ 698.747972][T27811] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 698.797102][T27811] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 698.825872][T27811] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 698.860631][T27811] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 698.886013][T27811] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 698.916109][T27811] ntfs: volume version 3.1. [ 698.966985][T27811] ntfs: (device loop4): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 698.995617][T27811] ntfs: (device loop4): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 699.031347][T27811] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 699.070741][T27811] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 699.102781][T27811] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 699.122028][T27827] loop0: detected capacity change from 0 to 512 [ 699.152844][T27827] EXT4-fs (loop0): orphan cleanup on readonly fs [ 699.175096][T27827] EXT4-fs error (device loop0): ext4_do_update_inode:5248: inode #15: comm syz.0.9898: corrupted inode contents [ 699.178575][T27825] loop3: detected capacity change from 0 to 4096 [ 699.203320][T27827] EXT4-fs (loop0): Remounting filesystem read-only [ 699.235521][T27827] EXT4-fs (loop0): 1 orphan inode deleted [ 699.242488][T27827] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 699.279123][T27825] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 699.330827][ T5763] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.396130][T27825] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 699.456471][T27825] ntfs3: loop3: ino=21, The size of extended attributes must not exceed 64KiB [ 699.507766][T27837] netlink: 'syz.0.9901': attribute type 3 has an invalid length. [ 700.062548][T27857] netlink: 3 bytes leftover after parsing attributes in process `syz.1.9912'. [ 700.074769][T27857] 0X: renamed from caif0 [ 700.095579][T27857] 0X: entered allmulticast mode [ 700.100838][T27857] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 700.262296][T27865] loop1: detected capacity change from 0 to 8 [ 700.268876][T19538] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 700.302122][T27865] SQUASHFS error: Failed to read block 0x2d7: -5 [ 700.309000][T27865] SQUASHFS error: Unable to read metadata cache entry [2d5] [ 700.319516][ T9] usb 5-1: new high-speed USB device number 39 using dummy_hcd [ 700.328892][T27865] SQUASHFS error: Failed to read block 0x85: -5 [ 700.339191][T27865] SQUASHFS error: Failed to read block 0x85: -5 [ 700.457380][T19538] usb 1-1: Using ep0 maxpacket: 32 [ 700.469709][T19538] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 700.491300][T19538] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 700.512813][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 700.527341][T19538] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 700.541323][ T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 700.561536][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 700.582506][ T9] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 700.593275][T19538] usb 1-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 700.603378][T19538] usb 1-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 700.615557][T19538] usb 1-1: Product: syz [ 700.619931][T19538] usb 1-1: Manufacturer: syz [ 700.626786][ T9] usb 5-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 700.636595][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 700.645008][ T9] usb 5-1: Product: syz [ 700.649962][ T9] usb 5-1: Manufacturer: syz [ 700.654592][ T9] usb 5-1: SerialNumber: syz [ 700.659333][T19538] usb 1-1: SerialNumber: syz [ 700.680370][ T9] usb 5-1: config 0 descriptor?? [ 700.692951][T19538] input: appletouch as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/input/input47 [ 700.711460][ T9] ums-isd200 5-1:0.0: USB Mass Storage device detected [ 700.718499][T27877] netlink: 228 bytes leftover after parsing attributes in process `syz.3.9922'. [ 700.931910][ T9] scsi host1: usb-storage 5-1:0.0 [ 700.956216][ T9] usb 5-1: USB disconnect, device number 39 [ 700.976460][ T5800] usb 1-1: USB disconnect, device number 52 [ 701.106899][ T5800] appletouch 1-1:1.0: input: appletouch disconnected [ 701.855341][ T5800] usb 2-1: new high-speed USB device number 58 using dummy_hcd [ 701.925148][T27918] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 702.061123][ T5800] usb 2-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 702.085674][ T5800] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 702.093716][ T5800] usb 2-1: Product: syz [ 702.099528][T27925] loop3: detected capacity change from 0 to 256 [ 702.109012][ T5800] usb 2-1: Manufacturer: syz [ 702.118573][ T5800] usb 2-1: SerialNumber: syz [ 702.134086][ T5800] usb 2-1: config 0 descriptor?? [ 702.185420][T16607] usb 5-1: new high-speed USB device number 40 using dummy_hcd [ 702.252291][T27927] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9944'. [ 702.257651][T19538] usb 1-1: new full-speed USB device number 53 using dummy_hcd [ 702.261696][T27927] netlink: 660 bytes leftover after parsing attributes in process `syz.3.9944'. [ 702.358431][ T5800] usb 2-1: f81604_read: reg: 105 failed: -EPIPE [ 702.364762][ T5800] f81604 2-1:0.0: Setting termination of CH#0 failed: -EPIPE [ 702.381356][T16607] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 702.382655][ T5800] f81604: probe of 2-1:0.0 failed with error -32 [ 702.390812][T16607] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 702.411477][T16607] usb 5-1: config 0 descriptor?? [ 702.412465][ T5800] usb 2-1: USB disconnect, device number 58 [ 702.438267][T16607] cp210x 5-1:0.0: cp210x converter detected [ 702.449090][T19538] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10 [ 702.471166][T19538] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 127, setting to 64 [ 702.499027][T19538] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 702.509015][T19538] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 702.522915][T27921] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 702.531291][T27921] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 702.545133][T19538] usb 1-1: Quirk or no altest; falling back to MIDI 1.0 [ 702.857873][T16607] usb 5-1: cp210x converter now attached to ttyUSB0 [ 702.868594][T16607] usb 5-1: USB disconnect, device number 40 [ 702.902472][T16607] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 702.950219][T24257] usb 1-1: USB disconnect, device number 53 [ 702.962743][T16607] cp210x 5-1:0.0: device disconnected [ 703.073807][T27947] macvtap0: entered allmulticast mode [ 703.083629][T27947] veth0_macvtap: entered allmulticast mode [ 703.240547][T27955] vivid-003: ================= START STATUS ================= [ 703.258018][T27955] vivid-003: RDS Tx I/O Mode: Controls [ 703.273392][T27953] loop3: detected capacity change from 0 to 4096 [ 703.275464][T27955] vivid-003: RDS Program ID: 32904 [ 703.302215][T27955] vivid-003: RDS Program Type: 3 [ 703.303324][T27953] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 703.308448][T27955] vivid-003: RDS PS Name: VIVID-TX [ 703.323043][T27955] vivid-003: RDS Radio Text: This is a VIVID default Radio Text template text, change at will [ 703.334367][T27955] vivid-003: RDS Stereo: true [ 703.340730][T27955] vivid-003: RDS Artificial Head: false [ 703.347401][T27955] vivid-003: RDS Compressed: false [ 703.353386][T27955] vivid-003: RDS Dynamic PTY: false [ 703.363111][T27955] vivid-003: RDS Traffic Announcement: false [ 703.373572][T27955] vivid-003: RDS Traffic Program: true [ 703.380934][T27955] vivid-003: RDS Music: true [ 703.388912][T27953] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 703.399321][T27953] ntfs3: loop3: ino=1f, "file2" failed to open parent directory r=5 to update [ 703.435535][T27955] vivid-003: ================== END STATUS ================== [ 703.477690][ T42] ntfs3: loop3: ino=1f, failed to open parent directory r=5 to update [ 703.787997][T27969] netlink: 'syz.3.9965': attribute type 30 has an invalid length. [ 703.797002][T27969] (unnamed net_device) (uninitialized): option arp_missed_max: mode dependency failed, not supported in mode balance-alb(6) [ 704.212997][T27991] binder: 27990:27991 ioctl c0306201 200000000380 returned -14 [ 704.987617][T28029] binder: 28027:28029 unknown command 0 [ 705.027880][T28023] loop0: detected capacity change from 0 to 4096 [ 705.036366][T28029] binder: 28027:28029 ioctl c0306201 200000000480 returned -22 [ 705.058281][T28023] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 705.114685][T28023] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 705.250149][ T5763] ntfs3: loop0: ino=1a, ntfs_sync_fs failed, -22. [ 705.432789][T28041] loop4: detected capacity change from 0 to 2048 [ 705.514001][T28041] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 705.556923][T28041] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 705.855608][T24257] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 705.954555][T28065] loop3: detected capacity change from 0 to 2048 [ 705.974295][T28065] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 706.065353][T24257] usb 1-1: Using ep0 maxpacket: 16 [ 706.109141][T24257] usb 1-1: config 0 has an invalid interface number: 104 but max is 1 [ 706.129692][T24257] usb 1-1: config 0 has an invalid interface number: 104 but max is 1 [ 706.147334][T24257] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 706.164594][T24257] usb 1-1: config 0 has no interface number 0 [ 706.182656][T24257] usb 1-1: config 0 interface 104 altsetting 0 endpoint 0x8 has an invalid bInterval 0, changing to 7 [ 706.195128][T24257] usb 1-1: config 0 interface 104 has no altsetting 1 [ 706.207216][T24257] usb 1-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00 [ 706.220284][T24257] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 706.229393][T24257] usb 1-1: Product: syz [ 706.233587][T24257] usb 1-1: Manufacturer: syz [ 706.239275][T19538] usb 5-1: new high-speed USB device number 41 using dummy_hcd [ 706.260989][T24257] usb 1-1: SerialNumber: syz [ 706.285659][T24257] usb 1-1: config 0 descriptor?? [ 706.307339][T24257] asix: probe of 1-1:0.104 failed with error -22 [ 706.437453][T19538] usb 5-1: Using ep0 maxpacket: 16 [ 706.463088][T19538] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 706.485334][T19538] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 706.493371][T19538] usb 5-1: Product: syz [ 706.517430][T19538] usb 5-1: Manufacturer: syz [ 706.522104][T19538] usb 5-1: SerialNumber: syz [ 706.544449][T24257] usb 1-1: USB disconnect, device number 54 [ 706.569146][T19538] r8152-cfgselector 5-1: config 0 descriptor?? [ 706.798979][T19538] usbip-host 5-1: 5-1 is not in match_busid table... skip! [ 706.905557][ T42] usb 5-1: config 0 descriptor?? [ 707.018760][ T42] usb 5-1: can't set config #0, error -71 [ 707.021324][ T5800] usb 5-1: USB disconnect, device number 41 [ 707.134123][T28113] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 707.175345][T19538] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 707.242437][T28120] loop1: detected capacity change from 0 to 512 [ 707.280193][T28120] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 707.286759][T28124] loop0: detected capacity change from 0 to 256 [ 707.295730][T28120] ext4 filesystem being mounted at /2508/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 707.345714][T28124] FAT-fs (loop0): Directory bread(block 64) failed [ 707.370918][T28124] FAT-fs (loop0): Directory bread(block 65) failed [ 707.377631][T19538] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 707.377681][T19538] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 707.377703][T19538] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 707.396635][T28120] EXT4-fs error (device loop1): ext4_get_first_dir_block:3592: inode #12: block 32: comm syz.1.10040: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0 [ 707.398874][T28124] FAT-fs (loop0): Directory bread(block 66) failed [ 707.412663][T19538] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 707.436916][T28124] FAT-fs (loop0): Directory bread(block 67) failed [ 707.447520][T28120] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #12: comm syz.1.10040: directory missing '.' [ 707.468439][T28124] FAT-fs (loop0): Directory bread(block 68) failed [ 707.481805][T28124] FAT-fs (loop0): Directory bread(block 69) failed [ 707.489875][T28124] FAT-fs (loop0): Directory bread(block 70) failed [ 707.496803][T28124] FAT-fs (loop0): Directory bread(block 71) failed [ 707.503552][T28124] FAT-fs (loop0): Directory bread(block 72) failed [ 707.510684][T28124] FAT-fs (loop0): Directory bread(block 73) failed [ 707.513162][ T5761] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 707.806527][ T27] kauditd_printk_skb: 16 callbacks suppressed [ 707.806544][ T27] audit: type=1326 audit(1773251778.036:3035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28133 comm="syz.1.10046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 707.857895][T28136] loop4: detected capacity change from 0 to 64 [ 707.885356][ T27] audit: type=1326 audit(1773251778.036:3036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28133 comm="syz.1.10046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 707.891139][T28136] hfs: unable to locate alternate MDB [ 707.937953][T28136] hfs: continuing without an alternate MDB [ 707.952320][ T27] audit: type=1326 audit(1773251778.036:3037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28133 comm="syz.1.10046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 707.992642][ T27] audit: type=1326 audit(1773251778.036:3038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28133 comm="syz.1.10046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 708.062192][ T27] audit: type=1326 audit(1773251778.036:3039): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28133 comm="syz.1.10046" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3b1539c799 code=0x7ffc0000 [ 708.093213][ T1135] [ 708.095569][ T1135] ====================================================== [ 708.102574][ T1135] WARNING: possible circular locking dependency detected [ 708.109590][ T1135] syzkaller #0 Not tainted [ 708.113985][ T1135] ------------------------------------------------------ [ 708.120986][ T1135] kworker/u4:7/1135 is trying to acquire lock: [ 708.127120][ T1135] ffff88807b914878 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1380 [ 708.137908][ T1135] [ 708.137908][ T1135] but task is already holding lock: [ 708.145346][ T1135] ffff888023ce40b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 708.154830][ T1135] [ 708.154830][ T1135] which lock already depends on the new lock. [ 708.154830][ T1135] [ 708.165216][ T1135] [ 708.165216][ T1135] the existing dependency chain (in reverse order) is: [ 708.174215][ T1135] [ 708.174215][ T1135] -> #1 (&tree->tree_lock#2/1){+.+.}-{3:3}: [ 708.182289][ T1135] __mutex_lock+0x136/0xcc0 [ 708.187307][ T1135] hfs_find_init+0x17e/0x1f0 [ 708.192409][ T1135] hfs_extend_file+0x361/0x1380 [ 708.197767][ T1135] hfs_bmap_reserve+0x107/0x430 [ 708.203125][ T1135] hfs_cat_create+0x1fe/0x6b0 [ 708.208347][ T1135] hfs_mkdir+0x6c/0xe0 [ 708.212932][ T1135] vfs_mkdir+0x296/0x440 [ 708.217686][ T1135] do_mkdirat+0x1dc/0x450 [ 708.222523][ T1135] __x64_sys_mkdirat+0x89/0xa0 [ 708.227792][ T1135] do_syscall_64+0x55/0xa0 [ 708.232717][ T1135] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 708.239128][ T1135] [ 708.239128][ T1135] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}: [ 708.248323][ T1135] __lock_acquire+0x2df1/0x7d40 [ 708.253681][ T1135] lock_acquire+0x19e/0x420 [ 708.258689][ T1135] __mutex_lock+0x136/0xcc0 [ 708.263700][ T1135] hfs_extend_file+0xff/0x1380 [ 708.268966][ T1135] hfs_bmap_reserve+0x107/0x430 [ 708.274325][ T1135] __hfs_ext_write_extent+0x1fa/0x470 [ 708.280202][ T1135] hfs_ext_write_extent+0x17f/0x210 [ 708.285906][ T1135] hfs_write_inode+0xdc/0x880 [ 708.291085][ T1135] __writeback_single_inode+0x705/0xec0 [ 708.297141][ T1135] writeback_sb_inodes+0x7cd/0xf50 [ 708.302763][ T1135] wb_writeback+0x46a/0xbf0 [ 708.307788][ T1135] wb_workfn+0x400/0xe60 [ 708.312562][ T1135] process_scheduled_works+0xa5d/0x15d0 [ 708.318629][ T1135] worker_thread+0xa55/0xfc0 [ 708.323829][ T1135] kthread+0x2fa/0x390 [ 708.328427][ T1135] ret_from_fork+0x48/0x80 [ 708.333357][ T1135] ret_from_fork_asm+0x11/0x20 [ 708.338646][ T1135] [ 708.338646][ T1135] other info that might help us debug this: [ 708.338646][ T1135] [ 708.348869][ T1135] Possible unsafe locking scenario: [ 708.348869][ T1135] [ 708.356305][ T1135] CPU0 CPU1 [ 708.361936][ T1135] ---- ---- [ 708.367290][ T1135] lock(&tree->tree_lock#2/1); [ 708.372156][ T1135] lock(&HFS_I(tree->inode)->extents_lock); [ 708.380662][ T1135] lock(&tree->tree_lock#2/1); [ 708.388048][ T1135] lock(&HFS_I(tree->inode)->extents_lock); [ 708.394017][ T1135] [ 708.394017][ T1135] *** DEADLOCK *** [ 708.394017][ T1135] [ 708.402147][ T1135] 3 locks held by kworker/u4:7/1135: [ 708.407418][ T1135] #0: ffff88801ce7b938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 708.418639][ T1135] #1: ffffc90004adfd00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 708.431068][ T1135] #2: ffff888023ce40b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 708.440986][ T1135] [ 708.440986][ T1135] stack backtrace: [ 708.446947][ T1135] CPU: 1 PID: 1135 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 708.454484][ T1135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 708.464529][ T1135] Workqueue: writeback wb_workfn (flush-7:4) [ 708.470511][ T1135] Call Trace: [ 708.473780][ T1135] [ 708.476702][ T1135] dump_stack_lvl+0x18c/0x250 [ 708.481392][ T1135] ? load_image+0x400/0x400 [ 708.485886][ T1135] ? show_regs_print_info+0x20/0x20 [ 708.491082][ T1135] ? print_circular_bug+0x12b/0x1a0 [ 708.496271][ T1135] check_noncircular+0x2fc/0x400 [ 708.501199][ T1135] ? look_up_lock_class+0x75/0x140 [ 708.506301][ T1135] ? print_deadlock_bug+0x5d0/0x5d0 [ 708.511766][ T1135] ? lockdep_lock+0xf5/0x230 [ 708.516364][ T1135] ? _find_first_zero_bit+0xd3/0x100 [ 708.521643][ T1135] __lock_acquire+0x2df1/0x7d40 [ 708.526579][ T1135] ? arch_stack_walk+0x16e/0x190 [ 708.531504][ T1135] ? ret_from_fork_asm+0x11/0x20 [ 708.536437][ T1135] ? verify_lock_unused+0x140/0x140 [ 708.541622][ T1135] ? stack_trace_save+0xaa/0x100 [ 708.546556][ T1135] ? stack_trace_snprint+0xf0/0xf0 [ 708.551654][ T1135] ? check_noncircular+0x18a/0x400 [ 708.556842][ T1135] ? print_deadlock_bug+0x5d0/0x5d0 [ 708.562046][ T1135] lock_acquire+0x19e/0x420 [ 708.566542][ T1135] ? hfs_extend_file+0xff/0x1380 [ 708.571471][ T1135] ? __might_sleep+0xe0/0xe0 [ 708.576051][ T1135] ? read_lock_is_recursive+0x20/0x20 [ 708.581416][ T1135] __mutex_lock+0x136/0xcc0 [ 708.585914][ T1135] ? hfs_extend_file+0xff/0x1380 [ 708.590837][ T1135] ? verify_lock_unused+0x140/0x140 [ 708.596021][ T1135] ? hfs_extend_file+0xff/0x1380 [ 708.600948][ T1135] ? mutex_lock_nested+0x20/0x20 [ 708.605882][ T1135] hfs_extend_file+0xff/0x1380 [ 708.610641][ T1135] ? hfs_ext_write_extent+0x152/0x210 [ 708.616004][ T1135] ? hfs_write_inode+0xdc/0x880 [ 708.620848][ T1135] ? hfs_get_block+0xc50/0xc50 [ 708.625598][ T1135] ? trace_raw_output_contention_end+0xd0/0xd0 [ 708.631740][ T1135] ? rcu_is_watching+0x15/0xb0 [ 708.636498][ T1135] ? trace_contention_end+0x39/0xe0 [ 708.641687][ T1135] ? __asan_memset+0x22/0x40 [ 708.646269][ T1135] ? hfs_brec_find+0x19b/0x500 [ 708.651022][ T1135] ? hfs_find_init+0x17e/0x1f0 [ 708.655777][ T1135] hfs_bmap_reserve+0x107/0x430 [ 708.660626][ T1135] __hfs_ext_write_extent+0x1fa/0x470 [ 708.665995][ T1135] hfs_ext_write_extent+0x17f/0x210 [ 708.671179][ T1135] ? verify_lock_unused+0x140/0x140 [ 708.676369][ T1135] ? hfs_ext_find_block+0x190/0x190 [ 708.681560][ T1135] ? blk_start_plug+0x51/0x1a0 [ 708.686317][ T1135] hfs_write_inode+0xdc/0x880 [ 708.690986][ T1135] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 708.696351][ T1135] ? __writeback_single_inode+0x48d/0xec0 [ 708.702071][ T1135] ? __lock_acquire+0x7d40/0x7d40 [ 708.707084][ T1135] ? do_raw_spin_lock+0x11f/0x2c0 [ 708.712096][ T1135] ? __rwlock_init+0x150/0x150 [ 708.716853][ T1135] __writeback_single_inode+0x705/0xec0 [ 708.722393][ T1135] writeback_sb_inodes+0x7cd/0xf50 [ 708.727512][ T1135] ? queue_io+0x550/0x550 [ 708.731839][ T1135] ? rcu_is_watching+0x15/0xb0 [ 708.736596][ T1135] wb_writeback+0x46a/0xbf0 [ 708.741100][ T1135] ? queue_io+0x3b1/0x550 [ 708.745430][ T1135] ? percpu_ref_tryget+0x250/0x250 [ 708.750549][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 708.756528][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 708.761719][ T1135] wb_workfn+0x400/0xe60 [ 708.765963][ T1135] ? inode_wait_for_writeback+0x230/0x230 [ 708.771682][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 708.777655][ T1135] ? read_lock_is_recursive+0x20/0x20 [ 708.783018][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 708.788205][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 708.793945][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 708.799655][ T1135] process_scheduled_works+0xa5d/0x15d0 [ 708.805206][ T1135] ? worker_attach_to_pool+0x380/0x380 [ 708.810662][ T1135] ? assign_work+0x3d2/0x5d0 [ 708.815246][ T1135] worker_thread+0xa55/0xfc0 [ 708.819836][ T1135] kthread+0x2fa/0x390 [ 708.823890][ T1135] ? pr_cont_work+0x560/0x560 [ 708.828554][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 708.833137][ T1135] ret_from_fork+0x48/0x80 [ 708.837547][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 708.842127][ T1135] ret_from_fork_asm+0x11/0x20 [ 708.846892][ T1135] [ 708.854956][ T27] audit: type=1800 audit(1773251778.216:3040): pid=28136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.10047" name="bus" dev="loop4" ino=21 res=0 errno=0 [ 708.876191][T19538] stv0680 4-1:4.0: STV(e): camera ping failed!! [ 708.885635][ T1135] hfs: new node 0 already hashed? [ 708.888972][ T788] IPVS: starting estimator thread 0... [ 708.892794][ T1135] ------------[ cut here ]------------ [ 708.901885][ T1135] WARNING: CPU: 0 PID: 1135 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440 [ 708.910893][ T1135] Modules linked in: [ 708.914822][ T1135] CPU: 0 PID: 1135 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 708.922425][ T1135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 708.932560][ T1135] Workqueue: writeback wb_workfn (flush-7:4) [ 708.938605][ T1135] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 708.944274][ T1135] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 708.964176][ T1135] RSP: 0018:ffffc90004adee18 EFLAGS: 00010246 [ 708.970298][ T1135] RAX: 000000000000001f RBX: ffff888023ce4000 RCX: 3c3c43d6a6eac800 [ 708.978421][ T1135] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 708.986493][ T1135] RBP: 0000000000000000 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd [ 708.994503][ T1135] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000 [ 708.995374][T28145] IPVS: using max 41 ests per chain, 98400 per kthread [ 709.002530][ T1135] R13: ffff888023ce40e0 R14: ffff8880261b1700 R15: dffffc0000000000 [ 709.017370][ T1135] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 709.026357][ T1135] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 709.032965][ T1135] CR2: 00007f164165627e CR3: 00000000253bf000 CR4: 00000000003506f0 [ 709.041001][ T1135] Call Trace: [ 709.044295][ T1135] [ 709.047282][ T1135] hfs_bmap_alloc+0x541/0x5d0 [ 709.051980][ T1135] ? hfs_bmap_reserve+0x430/0x430 [ 709.057046][ T1135] ? rcu_is_watching+0x15/0xb0 [ 709.061858][ T1135] hfs_btree_inc_height+0x101/0xac0 [ 709.067131][ T1135] ? __rwlock_init+0x150/0x150 [ 709.071945][ T1135] ? hfs_brec_insert+0xbd0/0xbd0 [ 709.077195][ T1135] ? do_raw_spin_unlock+0x121/0x230 [ 709.082446][ T1135] hfs_brec_insert+0x748/0xbd0 [ 709.087388][ T1135] ? hfs_brec_keylen+0x360/0x360 [ 709.092351][ T1135] __hfs_ext_write_extent+0x2a1/0x470 [ 709.097767][ T1135] hfs_ext_write_extent+0x17f/0x210 [ 709.102979][ T1135] ? verify_lock_unused+0x140/0x140 [ 709.108230][ T1135] ? hfs_ext_find_block+0x190/0x190 [ 709.113437][ T1135] ? blk_start_plug+0x51/0x1a0 [ 709.118265][ T1135] hfs_write_inode+0xdc/0x880 [ 709.122964][ T1135] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 709.128450][ T1135] ? __writeback_single_inode+0x48d/0xec0 [ 709.134231][ T1135] ? __lock_acquire+0x7d40/0x7d40 [ 709.139297][ T1135] ? do_raw_spin_lock+0x11f/0x2c0 [ 709.144315][ T1135] ? __rwlock_init+0x150/0x150 [ 709.149104][ T1135] __writeback_single_inode+0x705/0xec0 [ 709.154659][ T1135] writeback_sb_inodes+0x7cd/0xf50 [ 709.159827][ T1135] ? queue_io+0x550/0x550 [ 709.164188][ T1135] ? rcu_is_watching+0x15/0xb0 [ 709.169005][ T1135] wb_writeback+0x46a/0xbf0 [ 709.173521][ T1135] ? queue_io+0x3b1/0x550 [ 709.177895][ T1135] ? percpu_ref_tryget+0x250/0x250 [ 709.183018][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 709.189043][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 709.194257][ T1135] wb_workfn+0x400/0xe60 [ 709.198572][ T1135] ? inode_wait_for_writeback+0x230/0x230 [ 709.204304][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 709.210336][ T1135] ? read_lock_is_recursive+0x20/0x20 [ 709.215772][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 709.220982][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 709.226738][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 709.232467][ T1135] process_scheduled_works+0xa5d/0x15d0 [ 709.238060][ T1135] ? worker_attach_to_pool+0x380/0x380 [ 709.243525][ T1135] ? assign_work+0x3d2/0x5d0 [ 709.248173][ T1135] worker_thread+0xa55/0xfc0 [ 709.252792][ T1135] kthread+0x2fa/0x390 [ 709.256896][ T1135] ? pr_cont_work+0x560/0x560 [ 709.261574][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 709.266194][ T1135] ret_from_fork+0x48/0x80 [ 709.270611][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 709.275623][ T1135] ret_from_fork_asm+0x11/0x20 [ 709.280429][ T1135] [ 709.283441][ T1135] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 709.290706][ T1135] CPU: 0 PID: 1135 Comm: kworker/u4:7 Not tainted syzkaller #0 [ 709.298242][ T1135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 709.308294][ T1135] Workqueue: writeback wb_workfn (flush-7:4) [ 709.314271][ T1135] Call Trace: [ 709.317537][ T1135] [ 709.320459][ T1135] dump_stack_lvl+0x18c/0x250 [ 709.325129][ T1135] ? show_regs_print_info+0x20/0x20 [ 709.330321][ T1135] ? load_image+0x400/0x400 [ 709.334812][ T1135] panic+0x2dc/0x730 [ 709.338698][ T1135] ? bpf_jit_dump+0xd0/0xd0 [ 709.343188][ T1135] ? ret_from_fork_asm+0x11/0x20 [ 709.348114][ T1135] __warn+0x2e0/0x470 [ 709.352085][ T1135] ? hfs_bnode_create+0x3b9/0x440 [ 709.357106][ T1135] ? hfs_bnode_create+0x3b9/0x440 [ 709.362115][ T1135] report_bug+0x2be/0x4f0 [ 709.366429][ T1135] ? hfs_bnode_create+0x3b9/0x440 [ 709.371434][ T1135] ? hfs_bnode_create+0x3b9/0x440 [ 709.376472][ T1135] ? hfs_bnode_create+0x3bb/0x440 [ 709.381480][ T1135] handle_bug+0xcf/0x120 [ 709.385718][ T1135] exc_invalid_op+0x1a/0x50 [ 709.390228][ T1135] asm_exc_invalid_op+0x1a/0x20 [ 709.395069][ T1135] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 709.400693][ T1135] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 709.420288][ T1135] RSP: 0018:ffffc90004adee18 EFLAGS: 00010246 [ 709.426343][ T1135] RAX: 000000000000001f RBX: ffff888023ce4000 RCX: 3c3c43d6a6eac800 [ 709.434302][ T1135] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 709.442275][ T1135] RBP: 0000000000000000 R08: ffffffff8e8aeeef R09: 1ffffffff1d15ddd [ 709.450250][ T1135] R10: dffffc0000000000 R11: fffffbfff1d15dde R12: 0000000000000000 [ 709.458221][ T1135] R13: ffff888023ce40e0 R14: ffff8880261b1700 R15: dffffc0000000000 [ 709.466193][ T1135] ? hfs_bnode_create+0x3b9/0x440 [ 709.471208][ T1135] hfs_bmap_alloc+0x541/0x5d0 [ 709.475869][ T1135] ? hfs_bmap_reserve+0x430/0x430 [ 709.480879][ T1135] ? rcu_is_watching+0x15/0xb0 [ 709.485635][ T1135] hfs_btree_inc_height+0x101/0xac0 [ 709.490823][ T1135] ? __rwlock_init+0x150/0x150 [ 709.495578][ T1135] ? hfs_brec_insert+0xbd0/0xbd0 [ 709.500505][ T1135] ? do_raw_spin_unlock+0x121/0x230 [ 709.505693][ T1135] hfs_brec_insert+0x748/0xbd0 [ 709.510481][ T1135] ? hfs_brec_keylen+0x360/0x360 [ 709.515405][ T1135] __hfs_ext_write_extent+0x2a1/0x470 [ 709.520768][ T1135] hfs_ext_write_extent+0x17f/0x210 [ 709.525962][ T1135] ? verify_lock_unused+0x140/0x140 [ 709.531156][ T1135] ? hfs_ext_find_block+0x190/0x190 [ 709.536344][ T1135] ? blk_start_plug+0x51/0x1a0 [ 709.541108][ T1135] hfs_write_inode+0xdc/0x880 [ 709.545774][ T1135] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 709.551139][ T1135] ? __writeback_single_inode+0x48d/0xec0 [ 709.556867][ T1135] ? __lock_acquire+0x7d40/0x7d40 [ 709.561896][ T1135] ? do_raw_spin_lock+0x11f/0x2c0 [ 709.566922][ T1135] ? __rwlock_init+0x150/0x150 [ 709.571682][ T1135] __writeback_single_inode+0x705/0xec0 [ 709.577246][ T1135] writeback_sb_inodes+0x7cd/0xf50 [ 709.582363][ T1135] ? queue_io+0x550/0x550 [ 709.586690][ T1135] ? rcu_is_watching+0x15/0xb0 [ 709.591450][ T1135] wb_writeback+0x46a/0xbf0 [ 709.595955][ T1135] ? queue_io+0x3b1/0x550 [ 709.600278][ T1135] ? percpu_ref_tryget+0x250/0x250 [ 709.605380][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 709.611358][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 709.616563][ T1135] wb_workfn+0x400/0xe60 [ 709.620807][ T1135] ? inode_wait_for_writeback+0x230/0x230 [ 709.626527][ T1135] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 709.632500][ T1135] ? read_lock_is_recursive+0x20/0x20 [ 709.637863][ T1135] ? _raw_spin_unlock_irq+0x23/0x50 [ 709.643067][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 709.648780][ T1135] ? process_scheduled_works+0x96f/0x15d0 [ 709.654491][ T1135] process_scheduled_works+0xa5d/0x15d0 [ 709.660039][ T1135] ? worker_attach_to_pool+0x380/0x380 [ 709.665498][ T1135] ? assign_work+0x3d2/0x5d0 [ 709.670076][ T1135] worker_thread+0xa55/0xfc0 [ 709.674663][ T1135] kthread+0x2fa/0x390 [ 709.678722][ T1135] ? pr_cont_work+0x560/0x560 [ 709.683391][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 709.687970][ T1135] ret_from_fork+0x48/0x80 [ 709.692464][ T1135] ? kthread_blkcg+0xd0/0xd0 [ 709.697040][ T1135] ret_from_fork_asm+0x11/0x20 [ 709.701800][ T1135] [ 709.705111][ T1135] Kernel Offset: disabled [ 709.709421][ T1135] Rebooting in 86400 seconds..