last executing test programs: 2.84385488s ago: executing program 1 (id=14712): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@updsa={0xfc, 0x1a, 0x1, 0x0, 0x0, {{@in=@dev, @in=@private}, {@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x3c}, @in=@multicast2, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffff11de}, {0x0, 0x0, 0x0, 0x100000000000000}, {0x0, 0x8}, 0x0, 0x0, 0xa, 0x1, 0x0, 0x20}, [@sec_ctx={0xc, 0x8, {0x8, 0x8, 0x1, 0xd}}]}, 0xfc}}, 0x0) 2.595475365s ago: executing program 1 (id=14717): set_mempolicy(0x4005, &(0x7f0000000000)=0x2, 0x8) madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15) 2.183230521s ago: executing program 1 (id=14721): syz_mount_image$jfs(&(0x7f00000001c0), &(0x7f0000000180)='./file0\x00', 0x802, &(0x7f0000001180)={[{@noquota}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {@nodiscard}, {@usrquota}, {@quota}, {@errors_continue}, {@uid}]}, 0x1, 0x61c1, &(0x7f000000a240)="$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") syz_mount_image$exfat(0x0, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2901842, 0x0, 0x0, 0x0, &(0x7f0000000100)) 2.031074974s ago: executing program 2 (id=14724): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYBLOB="b57c21afedaccccc698fc19496f699a060b74e9baf00c0487414679e3c00a323bc876784b400e070bfd32189f9f9da215e979b1b6670e243aeb8329b101b16aaae80e23fd98d6c35", @ANYBLOB="2c6f624a5f726f6c653d80006173682ca8ea26de004d22080834ec21408c1cbd571f6191519244adb50f367988fb2727cc32238fac4fbdc332b1719e340000000004f23246a8d5ec9c21dd657ad6d91f895438297d5da5a51f2163a3aefc9a13608114683a6be3371b75c707284241970a8159ba2bec7414c90ddbdd8218b3ce593b992196b6a3cd4bc2bb6754b654ba0fa3821193cdf866d2630a60f040d612f358308919f24bccb430ad754832a2402e3b7240e7eec9ad32c333f3dca7ab50db1f0415a70ece849f03e8441be2c1c54491c7428bbfdcea758eb7de27821cbc79a45c11b52ff4b704fefa01987a8fa8be2756414f8d10f022600574c68d130d46301ff52bbd08cf61190205"], 0x25, 0x35c, &(0x7f0000000400)="$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") newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', &(0x7f0000000100), 0x4000) 1.386294258s ago: executing program 0 (id=14730): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000)={0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911040000000000000003c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x16}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62458c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0d", 0x8c}, {&(0x7f00000025c0)="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", 0xcb2}, {&(0x7f00000006c0)="97b13f5cf9f584c87e0e637d2ff483a311bb412cb3b03c3d9e97e435f2fceb58ff0402ed7b96244b43386c222917662028d7a01206a1990722ccef1d", 0x3c}, {0x0}, {&(0x7f0000000b00)="1b080b7a30", 0x5}], 0x8, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0) 1.295644042s ago: executing program 3 (id=14731): poll(&(0x7f0000b2c000)=[{}], 0x1, 0x7e) mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0xf2de1000) 1.213402278s ago: executing program 2 (id=14732): r0 = syz_open_dev$video4linux(&(0x7f00000001c0), 0x0, 0x0) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0205647, &(0x7f00000000c0)={0xf010000, 0x0, "4f2572ce1cedbf10981e10326800000000000000000000000500"}) 1.17210796s ago: executing program 0 (id=14733): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f00000001c0)=@multiplanar_userptr={0x2, 0x9, 0x4, 0x100, 0x6, {0x0, 0xea60}, {0x0, 0x8, 0x1, 0x6, 0x8, 0x7c, "fcb2a611"}, 0x4c27, 0x2, {&(0x7f0000000100)=[{0x1000, 0x0, {0x0}, 0x3000000}, {0x1, 0x9, {0x0}, 0x81}]}, 0x4}) 1.029355565s ago: executing program 2 (id=14734): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_netdev_private(r0, 0x8970, &(0x7f0000000180)="4e86449a78c03a") 1.019200163s ago: executing program 3 (id=14735): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000940), 0x2, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2) 851.509713ms ago: executing program 0 (id=14736): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x0, 0x1}, 0x1}, 0x90) 780.1248ms ago: executing program 3 (id=14737): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x200, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000180)=0xff) 664.677019ms ago: executing program 1 (id=14738): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000fcffffff0000000001000000850000008a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x34, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f0000000040)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xd}, 0x94) 659.386589ms ago: executing program 0 (id=14739): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x3, 0x80602) ioctl$VIDIOC_SUBDEV_G_SELECTION(r0, 0xc040563d, &(0x7f0000000100)={0x1, 0x0, 0x102, 0x5, {0x2c6b, 0xc, 0xe, 0x5}}) 583.714795ms ago: executing program 2 (id=14740): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$sock_int(r0, 0x1, 0x22, &(0x7f0000000040), 0x4) 539.174867ms ago: executing program 0 (id=14741): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) 494.614659ms ago: executing program 3 (id=14742): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4c0000001200010003950000000100000a0900004001000000000000000000000000ffff0000000000000000000000000000ffff"], 0x4c}}, 0x0) 397.842551ms ago: executing program 2 (id=14743): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000240)={0x0, 0x0, 0x20}, 0xc) 336.195321ms ago: executing program 1 (id=14744): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4c0000001800dd8d00000000000000000200000000000005000000000600150001000000280016802400010000000000000000000004010020000020000000000000000000000300000001"], 0x4c}}, 0x0) 326.241239ms ago: executing program 3 (id=14745): r0 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000340)={{{@in=@remote, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x3, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {0x0, 0x10}, 0x0, 0x6e6bb9, 0x1, 0x0, 0x0, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@empty, 0x0, 0x1, 0x2, 0x7, 0x200}}, 0xe8) 131.633194ms ago: executing program 2 (id=14746): r0 = syz_open_dev$dvb_frontend(&(0x7f0000000080), 0x0, 0x2) ioctl$FE_SET_VOLTAGE(r0, 0x6f43, 0x0) 93.632757ms ago: executing program 3 (id=14747): r0 = socket(0x10, 0x803, 0x0) sendmsg$kcm(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)=[{&(0x7f00000005c0)="db43", 0x2}], 0x1, &(0x7f00000009c0)=[{0x10, 0x103, 0x9}, {0x10, 0x6, 0x9b2c}], 0x20}, 0x800) 78.084024ms ago: executing program 1 (id=14748): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000840)=ANY=[@ANYBLOB="bc010000190001000000000000000000fe8000000000000000000000000000bbfc02000000000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000e000000000000000000000000000000000000000000000000000000000000000000000000020000000300000000000000000000000000000000000000000000001100000000000000000000000000000000000000000000000100000000000000040105007f000001000000000000000000000000000000003c00000000000000ac1e00010000000000000000000000000000000000000000000000000000000040000000fc000000000000000000000000000000000000003300000000000000ac1414aa0000000000000000000000000000000000000000000000000000000000000000ac1414bb000000000000000000000000000000002b00000000000000ac1414aa0000000000000000003f0000000000000000000000cd0000000000000000000000ac14140000000000000000000000000000000001330000000a"], 0x1bc}}, 0x0) 0s ago: executing program 0 (id=14749): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x6, 0x1, 0x2, "6041a709020005200000000000000f0000000006ff1000007e98000000000020", 0x42303159}) kernel console output (not intermixed with test programs): 2048 [ 1551.225400][ T23] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1551.265919][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1551.304485][ T23] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 1551.338072][ T23] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 1551.360244][ T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1551.390458][ T3664] NILFS error (device loop3): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=18446736377128157191, rec_len=65535, name_len=255 [ 1551.393045][ T23] usb 2-1: config 0 descriptor?? [ 1551.678444][ T23] hdpvr 2-1:0.0: firmware version 0x8 dated [ 1551.856029][ T23] hdpvr 2-1:0.0: device init failed [ 1551.865985][ T23] hdpvr: probe of 2-1:0.0 failed with error -12 [ 1551.881212][ T3701] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1551.890060][ T3701] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1551.911155][ T23] usb 2-1: USB disconnect, device number 35 [ 1552.066716][ T3711] loop3: detected capacity change from 0 to 256 [ 1552.111817][ T3711] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 1552.137580][ T28] audit: type=1800 audit(2000005686.750:204): pid=3711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.12690" name="file1" dev="loop3" ino=1048704 res=0 errno=0 [ 1552.169208][ T3711] exFAT-fs (loop3): error, invalid access to FAT free cluster (entry 0x00000008) [ 1552.328957][ T5761] usb 1-1: new full-speed USB device number 63 using dummy_hcd [ 1552.518519][ T5761] usb 1-1: config index 0 descriptor too short (expected 35577, got 27) [ 1552.536221][ T5761] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 1552.554603][ T5761] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1552.594933][ T5761] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 1552.618039][ T5761] usb 1-1: config 1 has no interface number 0 [ 1552.636388][ T5761] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 1552.662630][ T5761] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1552.701282][ T5761] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found [ 1552.919840][ T5761] snd_usb_pod 1-1:1.1: endpoint not available, using fallback values [ 1552.960590][ T5761] snd_usb_pod 1-1:1.1: invalid control EP [ 1552.971895][ T5761] snd_usb_pod 1-1:1.1: cannot start listening: -22 [ 1552.978717][ T5761] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected [ 1553.004034][ T5761] snd_usb_pod: probe of 1-1:1.1 failed with error -22 [ 1553.025643][ T28] audit: type=1326 audit(2000005687.694:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3744 comm="syz.2.12700" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f77e9f9c799 code=0x0 [ 1553.134846][ T5859] usb 1-1: USB disconnect, device number 63 [ 1553.509935][ T3738] loop3: detected capacity change from 0 to 32768 [ 1553.528489][ T3768] netlink: 'syz.1.12705': attribute type 9 has an invalid length. [ 1553.557316][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1553.573680][ T3768] netlink: 209836 bytes leftover after parsing attributes in process `syz.1.12705'. [ 1553.586803][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1553.622591][ T3738] JBD2: Ignoring recovery information on journal [ 1553.789183][ T3738] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1553.807019][ T3781] netlink: 'syz.0.12708': attribute type 20 has an invalid length. [ 1553.840462][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC. [ 1554.176669][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC. [ 1554.312731][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xb8c23ae4. Applying ECC. [ 1554.337764][ T3738] (syz.3.12697,3738,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0x2acb7e3c [ 1554.365654][ T3738] (syz.3.12697,3738,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 1554.389185][ T3738] (syz.3.12697,3738,1):ocfs2_quota_read:201 ERROR: status = -5 [ 1554.396839][ T3738] Quota error (device loop3): find_block_dqentry: Can't read quota tree block 6 [ 1554.454794][ T3738] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1554.474848][ T3738] (syz.3.12697,3738,1):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 1554.538915][ T3738] (syz.3.12697,3738,1):ocfs2_mknod:314 ERROR: status = -5 [ 1554.546173][ T3738] (syz.3.12697,3738,1):ocfs2_mknod:502 ERROR: status = -5 [ 1554.560371][ T3738] (syz.3.12697,3738,1):ocfs2_mkdir:659 ERROR: status = -5 [ 1554.666658][ T3818] netlink: 'syz.1.12720': attribute type 1 has an invalid length. [ 1554.773292][ T3738] syz.3.12697 (3738) used greatest stack depth: 18864 bytes left [ 1554.896693][ T5935] ocfs2: Unmounting device (7,3) on (node local) [ 1555.070440][ T3839] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12727'. [ 1555.107449][ T3839] ip6tnl2: entered allmulticast mode [ 1555.346129][ T3852] loop1: detected capacity change from 0 to 1024 [ 1555.401549][ T3847] loop0: detected capacity change from 0 to 4096 [ 1555.491380][ T3847] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1555.594822][ T3847] ntfs3: loop0: Failed to load $Extend (-22). [ 1555.618816][ T3847] ntfs3: loop0: Failed to initialize $Extend. [ 1556.371177][ T3897] loop1: detected capacity change from 0 to 2048 [ 1556.380321][ T3899] netlink: 180 bytes leftover after parsing attributes in process `syz.0.12743'. [ 1556.492582][ T3907] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1557.099906][ T3935] loop0: detected capacity change from 0 to 256 [ 1557.161073][ T3935] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1557.399807][T13752] usb 3-1: new high-speed USB device number 60 using dummy_hcd [ 1557.467501][ T23] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1557.476654][ T5859] usb 4-1: new high-speed USB device number 57 using dummy_hcd [ 1557.631436][T13752] usb 3-1: Using ep0 maxpacket: 8 [ 1557.639238][T13752] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1557.659191][T13752] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1557.661824][ T5859] usb 4-1: Using ep0 maxpacket: 8 [ 1557.675060][T13752] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1557.688605][ T3528] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1557.697965][ T5859] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1557.717727][T13752] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1557.728631][ T5859] usb 4-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 1557.745321][ T5859] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1557.753468][T13752] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1557.753522][T13752] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1557.784402][T13752] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1557.815831][ T5859] usb 4-1: config 0 descriptor?? [ 1557.819877][ T5761] usb 1-1: new full-speed USB device number 64 using dummy_hcd [ 1557.845770][T13752] usb 3-1: config 0 descriptor?? [ 1557.893834][T30956] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1557.913970][ T3986] netlink: 76 bytes leftover after parsing attributes in process `syz.1.12762'. [ 1558.045360][ T9] usb 4-1: USB disconnect, device number 57 [ 1558.054266][ T5761] usb 1-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 1558.079971][ T5761] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1558.102915][ T5761] usb 1-1: config 0 descriptor?? [ 1558.139524][ T5761] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1558.158795][T30956] usb 3-1: USB disconnect, device number 60 [ 1558.316462][ T4012] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12766'. [ 1558.326236][ T4012] bridge_slave_1: left allmulticast mode [ 1558.332110][ T4012] bridge_slave_1: left promiscuous mode [ 1558.338037][ T4012] bridge0: port 2(bridge_slave_1) entered disabled state [ 1558.349772][ T4012] bridge_slave_0: left allmulticast mode [ 1558.356767][ T4012] bridge_slave_0: left promiscuous mode [ 1558.364490][ T4012] bridge0: port 1(bridge_slave_0) entered disabled state [ 1558.559560][ T5761] gp8psk: usb in 137 operation failed. [ 1558.590071][ T5761] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1558.630567][ T5761] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1558.631594][ T2929] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1558.667805][ T2929] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1558.724262][ T5761] usb 1-1: USB disconnect, device number 64 [ 1558.881562][ T4035] netlink: 'syz.2.12770': attribute type 12 has an invalid length. [ 1558.928666][T30956] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1559.210814][ T28] audit: type=1326 audit(2000005694.325:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.273339][ T28] audit: type=1326 audit(2000005694.325:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.299240][ T4051] nfs: Unexpected value for 'lock' [ 1559.375008][ T28] audit: type=1326 audit(2000005694.357:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.407292][ T28] audit: type=1326 audit(2000005694.357:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.478464][ T28] audit: type=1326 audit(2000005694.368:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.552284][ T28] audit: type=1326 audit(2000005694.432:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fab15b5cfce code=0x7ffc0000 [ 1559.612241][ T28] audit: type=1326 audit(2000005694.443:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fab15b5cfce code=0x7ffc0000 [ 1559.705114][ T28] audit: type=1326 audit(2000005694.443:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fab15b5cfce code=0x7ffc0000 [ 1559.813914][ T28] audit: type=1326 audit(2000005694.443:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.821344][ T4069] netlink: 248 bytes leftover after parsing attributes in process `syz.3.12781'. [ 1559.861830][ T4070] loop0: detected capacity change from 0 to 512 [ 1559.878952][ T28] audit: type=1326 audit(2000005694.443:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4047 comm="syz.0.12774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1559.914988][ T4070] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1559.927183][ T4070] UDF-fs: Scanning with blocksize 512 failed [ 1559.959075][ T4070] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1559.977175][ T4070] UDF-fs: Scanning with blocksize 1024 failed [ 1560.019563][ T4070] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1560.027059][ T4070] UDF-fs: Scanning with blocksize 2048 failed [ 1560.114678][ T4030] loop1: detected capacity change from 0 to 40427 [ 1560.127981][ T4070] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1560.163860][ T4030] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1560.173994][ T4030] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1560.179162][ T4070] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1560.212694][ T4030] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1560.487317][ T4030] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1560.533241][ T4030] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1561.131293][ T4126] xt_hashlimit: invalid rate [ 1562.022905][T30956] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 1562.223444][T30956] usb 2-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=5e.ad [ 1562.250043][T30956] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1562.293713][T30956] usb 2-1: config 0 descriptor?? [ 1562.330108][ T4181] loop2: detected capacity change from 0 to 2048 [ 1562.357775][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1562.373752][ T4188] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1562.486602][ T4181] NILFS (loop2): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3) [ 1562.515214][ T4181] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=16) [ 1562.563135][ T4181] Remounting filesystem read-only [ 1562.571149][ T4181] NILFS (loop2): error -5 truncating bmap (ino=16) [ 1562.585897][T30956] snd-usb-hiface: probe of 2-1:0.0 failed with error -22 [ 1562.601556][ T4187] loop3: detected capacity change from 0 to 8192 [ 1562.641044][ T4187] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1562.656021][ T4187] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 1562.665678][ T4187] REISERFS (device loop3): using ordered data mode [ 1562.672242][ T4187] reiserfs: using flush barriers [ 1562.691928][ T4187] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1562.709753][ T4187] REISERFS (device loop3): checking transaction log (loop3) [ 1562.720465][ T4187] REISERFS (device loop3): Using rupasov hash to sort names [ 1562.740918][ T5929] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 1562.758617][ T5929] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 1562.766109][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.776101][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.785154][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.805387][ T5859] usb 2-1: USB disconnect, device number 36 [ 1562.839150][ T5929] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 1562.856182][ T5929] NILFS (loop2): discard dirty page: offset=0, ino=16 [ 1562.863243][ T5929] NILFS (loop2): discard dirty block: blocknr=23, size=1024 [ 1562.872142][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.882750][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.893249][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.923592][ T5929] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 1562.935808][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.973098][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1562.998017][ T5929] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 1563.015488][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1563.073395][ T4207] netlink: 'syz.3.12815': attribute type 6 has an invalid length. [ 1563.479795][ T4232] netlink: 28 bytes leftover after parsing attributes in process `syz.1.12821'. [ 1563.531662][ T4229] loop3: detected capacity change from 0 to 2048 [ 1563.564589][ T4229] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1563.786996][ T4245] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12825'. [ 1564.257598][ T4277] usb usb8: usbfs: process 4277 (syz.0.12835) did not claim interface 0 before use [ 1565.368638][T13752] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 1565.444958][ T23] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 1565.583395][T13752] usb 4-1: Using ep0 maxpacket: 16 [ 1565.618600][T13752] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 1565.641376][T13752] usb 4-1: config 0 descriptor has 1 excess byte, ignoring [ 1565.657474][ T23] usb 2-1: Using ep0 maxpacket: 8 [ 1565.672628][T13752] usb 4-1: config 0 has no interface number 0 [ 1565.680136][ T23] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1565.692960][T13752] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1565.703887][ T23] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1565.712742][T13752] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1565.730664][ T23] usb 2-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 1565.749158][T13752] usb 4-1: Product: syz [ 1565.754776][T13752] usb 4-1: Manufacturer: syz [ 1565.759435][T13752] usb 4-1: SerialNumber: syz [ 1565.760306][ T5859] usb 3-1: new high-speed USB device number 61 using dummy_hcd [ 1565.772179][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1565.787835][ T23] usb 2-1: Product: syz [ 1565.795617][ T23] usb 2-1: Manufacturer: syz [ 1565.811587][ T23] usb 2-1: SerialNumber: syz [ 1565.827480][T13752] usb 4-1: config 0 descriptor?? [ 1565.836566][ T23] usb 2-1: config 0 descriptor?? [ 1565.853177][T13752] usb 4-1: Found UVC 0.00 device syz (046d:08f3) [ 1565.854041][ T23] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 found [ 1565.880636][ T4365] delete_channel: no stack [ 1565.882361][T13752] usb 4-1: No valid video chain found. [ 1565.964676][ T5859] usb 3-1: Using ep0 maxpacket: 16 [ 1565.972347][ T5859] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1566.016613][ T5859] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55 [ 1566.034701][T30956] usb 4-1: USB disconnect, device number 58 [ 1566.053749][ T23] snd_usb_toneport 2-1:0.0: cannot get proper max packet size [ 1566.065949][ T5859] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1566.085520][ T23] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 now disconnected [ 1566.093447][ T5859] usb 3-1: Product: syz [ 1566.098203][ T5859] usb 3-1: Manufacturer: syz [ 1566.103709][ T5859] usb 3-1: SerialNumber: syz [ 1566.113337][ T23] snd_usb_toneport: probe of 2-1:0.0 failed with error -22 [ 1566.124349][ T5859] usb 3-1: config 0 descriptor?? [ 1566.150659][ T5859] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 1566.248655][ T5859] usb 2-1: USB disconnect, device number 37 [ 1566.434645][ T3528] usb 3-1: Failed to submit usb control message: -71 [ 1566.438590][T30956] usb 3-1: USB disconnect, device number 61 [ 1566.476539][ T3528] usb 3-1: unable to send the bmi data to the device: -71 [ 1566.484197][ T4403] netlink: 'syz.0.12855': attribute type 1 has an invalid length. [ 1566.514843][ T3528] usb 3-1: unable to get target info from device [ 1566.521282][ T3528] usb 3-1: could not get target info (-71) [ 1566.537479][ T3528] usb 3-1: could not probe fw (-71) [ 1566.963906][ T4428] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12858'. [ 1567.018581][ T4428] netdevsim netdevsim0 netdevsim2: left allmulticast mode [ 1567.025886][ T4428] netdevsim netdevsim0 netdevsim2: left promiscuous mode [ 1567.065512][ T4428] bridge0: port 3(netdevsim2) entered disabled state [ 1567.101289][ T4428] bridge_slave_1: left allmulticast mode [ 1567.128117][ T4428] bridge_slave_1: left promiscuous mode [ 1567.153471][ T4428] bridge0: port 2(bridge_slave_1) entered disabled state [ 1567.230630][ T4428] bridge_slave_0: left allmulticast mode [ 1567.242374][ T4428] bridge_slave_0: left promiscuous mode [ 1567.248212][ T4428] bridge0: port 1(bridge_slave_0) entered disabled state [ 1568.329671][ T4504] netlink: 72 bytes leftover after parsing attributes in process `syz.3.12879'. [ 1568.571117][ T4515] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.12883'. [ 1568.751959][ T4530] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12885'. [ 1569.216622][ T4556] loop3: detected capacity change from 0 to 512 [ 1569.247161][ T4556] EXT4-fs: Ignoring removed bh option [ 1569.254712][ T4556] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 1569.291765][ T4556] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 1569.358239][ T4556] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 1569.431152][ T4556] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e018, mo2=0006] [ 1569.450707][ T4556] System zones: 0-2, 18-18, 34-35 [ 1569.477531][ T4556] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1569.523645][ T4556] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.12893: bg 0: block 353: padding at end of block bitmap is not set [ 1569.549266][ T4570] loop1: detected capacity change from 0 to 256 [ 1569.636712][ T4575] loop2: detected capacity change from 0 to 64 [ 1569.647740][ T5935] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1569.671721][ T4574] veth5: entered promiscuous mode [ 1569.708364][ T4574] veth5: entered allmulticast mode [ 1569.727462][ T4570] FAT-fs (loop1): Directory bread(block 64) failed [ 1569.739911][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1569.748977][ T4570] FAT-fs (loop1): Directory bread(block 65) failed [ 1569.755651][ T4570] FAT-fs (loop1): Directory bread(block 66) failed [ 1569.813268][ T4570] FAT-fs (loop1): Directory bread(block 67) failed [ 1569.859367][ T4570] FAT-fs (loop1): Directory bread(block 68) failed [ 1569.895446][ T4570] FAT-fs (loop1): Directory bread(block 69) failed [ 1569.919670][ T4570] FAT-fs (loop1): Directory bread(block 70) failed [ 1569.926280][ T4570] FAT-fs (loop1): Directory bread(block 71) failed [ 1569.964027][ T4570] FAT-fs (loop1): Directory bread(block 72) failed [ 1569.970633][ T4570] FAT-fs (loop1): Directory bread(block 73) failed [ 1570.648405][ T4638] binder: 4637:4638 ioctl c0046209 100000000000000 returned -22 [ 1571.257092][ T4673] loop3: detected capacity change from 0 to 512 [ 1571.277745][ T4675] loop0: detected capacity change from 0 to 64 [ 1571.298300][ T4673] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1571.858700][ T4736] netlink: 'syz.2.12930': attribute type 3 has an invalid length. [ 1572.194306][T30956] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 1572.380669][T30956] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1572.392282][T30956] usb 2-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1572.435471][T30956] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1572.520422][T30956] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1572.816571][ T4790] loop2: detected capacity change from 0 to 2048 [ 1572.837857][ T4790] UDF-fs: bad mount option "shortan$uidforget" or missing value [ 1572.881303][ T4790] cifs: Unknown parameter 'anchor' [ 1572.947820][ T4794] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12948'. [ 1573.469789][T30956] stv0680 2-1:4.0: STV(e): camera ping failed!! [ 1573.667049][T30956] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1573.685988][T30956] stv0680 2-1:4.0: last error: 0, command = 0x0 [ 1573.706391][T30956] usb 2-1: USB disconnect, device number 38 [ 1573.874186][ T4838] loop3: detected capacity change from 0 to 764 [ 1573.910756][ T4838] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 1573.923976][ T1282] ieee802154 phy0 wpan0: encryption failed: -22 [ 1573.924036][ T1282] ieee802154 phy1 wpan1: encryption failed: -22 [ 1574.266719][ T4855] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12963'. [ 1574.307470][ T4855] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12963'. [ 1574.823711][ T4885] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 1575.648623][ T4933] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12988'. [ 1576.127419][ T4963] netlink: 40 bytes leftover after parsing attributes in process `syz.1.12999'. [ 1576.149631][ T4963] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 1576.161508][ T4966] netlink: 'syz.0.12998': attribute type 5 has an invalid length. [ 1576.626003][ T4991] vim2m vim2m.0: Fourcc format (0x56595559) invalid. [ 1576.819264][ T5001] loop1: detected capacity change from 0 to 256 [ 1577.327623][ T5033] netlink: 36 bytes leftover after parsing attributes in process `syz.1.13016'. [ 1577.443940][ T5038] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.13019'. [ 1577.462823][ T5036] loop3: detected capacity change from 0 to 1024 [ 1578.239896][ T5761] usb 2-1: new high-speed USB device number 39 using dummy_hcd [ 1578.456343][ T5761] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 1578.480090][ T5107] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13036'. [ 1578.485421][ T5761] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1578.520637][ T5761] usb 2-1: Product: syz [ 1578.524878][ T5761] usb 2-1: Manufacturer: syz [ 1578.539181][ T5761] usb 2-1: SerialNumber: syz [ 1578.550479][ T5761] r8152-cfgselector 2-1: config 0 descriptor?? [ 1578.710918][ T5118] netlink: 5 bytes leftover after parsing attributes in process `syz.3.13039'. [ 1578.728571][ T5118] gretap0: entered promiscuous mode [ 1578.743573][T13752] usb 1-1: new full-speed USB device number 65 using dummy_hcd [ 1578.772367][ T5118] netlink: 'syz.3.13039': attribute type 1 has an invalid length. [ 1578.790690][ T5118] netlink: 3 bytes leftover after parsing attributes in process `syz.3.13039'. [ 1578.972083][ T5761] r8152-cfgselector 2-1: Unknown version 0x0000 [ 1578.984804][T13752] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1579.002983][ T5761] r8152-cfgselector 2-1: USB disconnect, device number 39 [ 1579.026589][T13752] usb 1-1: not running at top speed; connect to a high speed hub [ 1579.046925][T13752] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1579.078785][T13752] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1579.100169][T13752] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1579.112585][T13752] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 8193, setting to 64 [ 1579.129518][T13752] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1579.149173][T13752] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1579.164414][T13752] usb 1-1: Product: syz [ 1579.172007][T13752] usb 1-1: Manufacturer: syz [ 1579.181582][T13752] usb 1-1: SerialNumber: syz [ 1579.461920][T13752] usb 1-1: 0:2 : does not exist [ 1579.559233][T13752] usb 1-1: USB disconnect, device number 65 [ 1579.641818][T10685] udevd[10685]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1580.383061][ T5200] loop1: detected capacity change from 0 to 256 [ 1580.511405][ T5177] loop3: detected capacity change from 0 to 32768 [ 1580.558294][ T5177] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11 [ 1580.778513][ T5874] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11 [ 1580.965549][ T5227] loop1: detected capacity change from 0 to 128 [ 1581.658050][ T5258] netlink: 32 bytes leftover after parsing attributes in process `syz.0.13072'. [ 1581.693308][ T5258] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13072'. [ 1581.716575][ T5258] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13072'. [ 1581.735959][ T5261] netlink: 4 bytes leftover after parsing attributes in process `syz.1.13073'. [ 1581.867885][ T5263] netlink: 'syz.3.13074': attribute type 11 has an invalid length. [ 1583.057629][ T5344] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13093'. [ 1583.261986][ T5356] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13099'. [ 1583.290123][ T5360] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1583.329318][ T5360] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 1583.357918][ T5360] overlayfs: missing 'lowerdir' [ 1583.740121][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 1583.740139][ T28] audit: type=1326 audit(2000005720.654:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5382 comm="syz.3.13107" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f54f1f9c799 code=0x0 [ 1583.882790][ T5388] loop0: detected capacity change from 0 to 64 [ 1584.124440][ T5402] delete_channel: no stack [ 1584.473998][ T5412] loop1: detected capacity change from 0 to 4096 [ 1584.497966][ T5412] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1584.564912][ T5422] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13118'. [ 1584.574710][ T5412] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 1584.607171][ T5412] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1584.652951][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1584.667728][ T5412] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1584.700305][ T5412] ntfs: volume version 3.1. [ 1584.707831][ T5440] loop2: detected capacity change from 0 to 256 [ 1584.747989][ T5412] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 1584.823629][ T5440] FAT-fs (loop2): Directory bread(block 64) failed [ 1584.849719][ T5440] FAT-fs (loop2): Directory bread(block 65) failed [ 1584.856408][ T5440] FAT-fs (loop2): Directory bread(block 66) failed [ 1584.893364][ T5440] FAT-fs (loop2): Directory bread(block 67) failed [ 1584.922855][ T5440] FAT-fs (loop2): Directory bread(block 68) failed [ 1584.960299][ T5440] FAT-fs (loop2): Directory bread(block 69) failed [ 1584.989364][ T5440] FAT-fs (loop2): Directory bread(block 70) failed [ 1584.995980][ T5440] FAT-fs (loop2): Directory bread(block 71) failed [ 1585.035539][ T5440] FAT-fs (loop2): Directory bread(block 72) failed [ 1585.061831][ T5440] FAT-fs (loop2): Directory bread(block 73) failed [ 1585.734030][T30956] usb 2-1: new high-speed USB device number 40 using dummy_hcd [ 1585.739911][ T5505] binder: 5503:5505 ioctl c0046209 0 returned -22 [ 1585.798882][ T5761] usb 3-1: new high-speed USB device number 62 using dummy_hcd [ 1585.872787][ T5513] loop0: detected capacity change from 0 to 164 [ 1585.910849][T30956] usb 2-1: Using ep0 maxpacket: 8 [ 1585.923423][T30956] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 1585.938411][T30956] usb 2-1: config 0 has no interface number 0 [ 1585.948769][T30956] usb 2-1: config 0 interface 1 has no altsetting 0 [ 1585.969131][T30956] usb 2-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 1585.985299][T30956] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1585.993763][ T5761] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 1586.003654][T30956] usb 2-1: Product: syz [ 1586.008620][T30956] usb 2-1: Manufacturer: syz [ 1586.018406][T30956] usb 2-1: SerialNumber: syz [ 1586.023046][ T5761] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1586.033612][ T5761] usb 3-1: config 0 descriptor?? [ 1586.067206][T30956] usb 2-1: config 0 descriptor?? [ 1586.115780][ T5859] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 1586.203090][ T5533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13138'. [ 1586.275225][T30956] i2c-cp2615: probe of 2-1:0.1 failed with error -22 [ 1586.302865][ T5859] usb 4-1: Using ep0 maxpacket: 32 [ 1586.313110][ T5859] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1586.333468][ T5859] usb 4-1: config 1 interface 0 altsetting 254 has 0 endpoint descriptors, different from the interface descriptor's value: 22 [ 1586.357372][ T5859] usb 4-1: config 1 interface 0 has no altsetting 0 [ 1586.376276][ T5859] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1586.394620][ T5859] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1586.403061][ T5859] usb 4-1: SerialNumber: syz [ 1586.416582][ T5859] cdc_acm 4-1:1.0: invalid descriptor buffer length [ 1586.432195][ T5859] cdc_acm 4-1:1.0: Control and data interfaces are not separated! [ 1586.448141][ T5761] ath6kl: Failed to submit usb control message: -71 [ 1586.461024][ T5859] cdc_acm 4-1:1.0: This needs exactly 3 endpoints [ 1586.475215][ T5859] cdc_acm: probe of 4-1:1.0 failed with error -22 [ 1586.480493][ T5761] ath6kl: unable to send the bmi data to the device: -71 [ 1586.505801][ T5761] ath6kl: Unable to send get target info: -71 [ 1586.512863][ T9] usb 2-1: USB disconnect, device number 40 [ 1586.531626][ T5761] ath6kl: Failed to init ath6kl core: -71 [ 1586.543601][ T5761] ath6kl_usb: probe of 3-1:0.0 failed with error -71 [ 1586.559227][ T5761] usb 3-1: USB disconnect, device number 62 [ 1586.636483][T13752] usb 4-1: USB disconnect, device number 59 [ 1586.859063][ T5538] loop0: detected capacity change from 0 to 32768 [ 1586.891197][ T5538] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 1586.915072][ T5538] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1586.982175][ T5538] XFS (loop0): Ending clean mount [ 1586.996589][ T5538] XFS (loop0): Quotacheck needed: Please wait. [ 1587.121923][ T5538] XFS (loop0): Quotacheck: Done. [ 1587.414697][ T5928] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1588.222900][ T5630] netlink: 'syz.2.13156': attribute type 15 has an invalid length. [ 1588.241550][ T5630] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13156'. [ 1588.305944][ T5599] loop3: detected capacity change from 0 to 32768 [ 1588.371845][ T5599] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1588.405489][ T5599] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1588.443828][ T5599] BTRFS info (device loop3): using free space tree [ 1588.599470][ T5637] loop2: detected capacity change from 0 to 4096 [ 1588.675094][ T5599] BTRFS info (device loop3): enabling ssd optimizations [ 1588.686393][ T5599] BTRFS info (device loop3): auto enabling async discard [ 1588.786285][ T5637] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 1588.809825][ T5637] ntfs3: loop2: Failed to load $Extend (-22). [ 1588.841094][ T5637] ntfs3: loop2: Failed to initialize $Extend. [ 1589.005814][ T5935] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1589.194798][ T5859] usb 2-1: new high-speed USB device number 41 using dummy_hcd [ 1589.417188][ T5859] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1589.467135][ T5859] usb 2-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1589.506112][ T5859] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1589.533030][ T5859] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1590.544477][ T5859] stv0680 2-1:4.0: STV(e): camera ping failed!! [ 1590.733763][ T5859] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1590.772985][ T5859] stv0680 2-1:4.0: last error: 179, command = 0x17 [ 1590.787950][ T5727] loop0: detected capacity change from 0 to 8192 [ 1590.814774][ T5859] usb 2-1: USB disconnect, device number 41 [ 1590.842176][ T5727] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1590.913736][ T5727] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 1590.963238][ T5727] REISERFS (device loop0): using ordered data mode [ 1590.969927][ T5727] reiserfs: using flush barriers [ 1591.018322][ T5718] loop3: detected capacity change from 0 to 32768 [ 1591.046972][ T5718] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11 [ 1591.066413][ T5727] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1591.117471][ T5727] REISERFS (device loop0): checking transaction log (loop0) [ 1591.145175][ T5727] REISERFS (device loop0): Using r5 hash to sort names [ 1591.161008][ T5727] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 1591.350917][T10685] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11 [ 1593.125345][T13752] usb 4-1: new high-speed USB device number 60 using dummy_hcd [ 1593.322886][T13752] usb 4-1: Using ep0 maxpacket: 16 [ 1593.339236][T13752] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1593.366922][T13752] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1593.409575][T13752] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1593.442250][T13752] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1593.450411][T13752] usb 4-1: Product: syz [ 1593.471888][T13752] usb 4-1: Manufacturer: syz [ 1593.491068][T13752] usb 4-1: SerialNumber: syz [ 1593.748669][T13752] usb 4-1: 0:2 : does not exist [ 1593.771360][T13752] usb 4-1: unit 9 not found! [ 1593.795125][T13752] usb 4-1: 4:0: cannot get min/max values for control 4 (id 4) [ 1593.850782][T13752] usb 4-1: USB disconnect, device number 60 [ 1594.038712][ T5898] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1594.545185][ T5931] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 1594.760416][ T5959] loop3: detected capacity change from 0 to 764 [ 1594.812581][ T5959] Symlink component flag not implemented [ 1594.812662][ T5959] Symlink component flag not implemented (15) [ 1595.175608][ T5991] loop0: detected capacity change from 0 to 512 [ 1595.211384][ T5991] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 1595.261370][ T5991] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1595.267979][ T5991] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:512: comm syz.0.13239: Block bitmap for bg 0 marked uninitialized [ 1595.310890][ T5991] EXT4-fs (loop0): Remounting filesystem read-only [ 1595.318437][ T5991] EXT4-fs (loop0): 1 orphan inode deleted [ 1595.326020][ T5991] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1595.351466][ T5991] loop0: Can't mount, would change RO state [ 1595.475087][ T5928] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1596.024395][ T6033] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13253'. [ 1596.771343][ T6038] loop2: detected capacity change from 0 to 32768 [ 1596.839011][ T6038] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1596.932981][ T6038] XFS (loop2): Ending clean mount [ 1596.940587][ T6038] XFS (loop2): Quotacheck needed: Please wait. [ 1597.017532][ T6038] XFS (loop2): Quotacheck: Done. [ 1597.269671][ T5929] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1597.297597][ T28] audit: type=1326 audit(2000005735.192:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz.3.13268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54f1f9c799 code=0x7ffc0000 [ 1597.402452][ T28] audit: type=1326 audit(2000005735.202:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz.3.13268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54f1f9c799 code=0x7ffc0000 [ 1597.492060][ T28] audit: type=1326 audit(2000005735.245:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz.3.13268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f54f1f9c799 code=0x7ffc0000 [ 1597.550504][ T28] audit: type=1326 audit(2000005735.245:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz.3.13268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54f1f9c799 code=0x7ffc0000 [ 1597.572924][ C0] vkms_vblank_simulate: vblank timer overrun [ 1597.587462][ T28] audit: type=1326 audit(2000005735.245:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6093 comm="syz.3.13268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f54f1f9c799 code=0x7ffc0000 [ 1597.828419][ T6151] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 1597.999703][ T6191] x_tables: unsorted underflow at hook 3 [ 1598.889199][ T6237] loop2: detected capacity change from 0 to 16 [ 1598.905758][ T6237] erofs: (device loop2): mounted with root inode @ nid 36. [ 1599.522596][ T6274] program syz.3.13301 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1599.676181][ T6282] loop0: detected capacity change from 0 to 16 [ 1599.714676][ T6282] erofs: (device loop0): mounted with root inode @ nid 36. [ 1599.759797][ T6288] netlink: 68 bytes leftover after parsing attributes in process `syz.3.13306'. [ 1600.784076][ T6344] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13323'. [ 1601.320419][ T6368] loop1: detected capacity change from 0 to 16 [ 1601.383323][ T6368] erofs: (device loop1): mounted with root inode @ nid 36. [ 1601.511592][ T6338] loop2: detected capacity change from 0 to 32768 [ 1601.549491][ T6338] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11 [ 1601.787181][T10685] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11 [ 1601.811958][ T5761] usb 4-1: new high-speed USB device number 61 using dummy_hcd [ 1601.902483][ T6390] loop1: detected capacity change from 0 to 4096 [ 1601.954067][ T6390] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 1602.026652][ T5761] usb 4-1: Using ep0 maxpacket: 32 [ 1602.043608][ T5761] usb 4-1: New USB device found, idVendor=0eef, idProduct=0001, bcdDevice= 0.00 [ 1602.071854][ T5761] usb 4-1: New USB device strings: Mfr=0, Product=3, SerialNumber=0 [ 1602.099917][ T5761] usb 4-1: Product: syz [ 1602.129000][ T5761] usb 4-1: config 0 descriptor?? [ 1602.370903][ T5761] input: syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input83 [ 1602.494002][ T6426] netlink: 'syz.2.13344': attribute type 21 has an invalid length. [ 1602.547366][ T6426] netlink: 'syz.2.13344': attribute type 15 has an invalid length. [ 1602.560407][ T6426] netlink: 156 bytes leftover after parsing attributes in process `syz.2.13344'. [ 1602.609113][ T6426] IPv6: NLM_F_CREATE should be specified when creating new route [ 1602.619815][T13752] usb 4-1: USB disconnect, device number 61 [ 1602.650575][ T6426] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1602.657886][ T6426] IPv6: NLM_F_CREATE should be set when creating new route [ 1602.665277][ T6426] IPv6: NLM_F_CREATE should be set when creating new route [ 1602.672605][ T6426] IPv6: NLM_F_CREATE should be set when creating new route [ 1603.135359][ T5761] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 1603.297305][ T6475] loop2: detected capacity change from 0 to 256 [ 1603.313110][ T5761] usb 2-1: Using ep0 maxpacket: 8 [ 1603.315951][ T6475] exfat: Deprecated parameter 'utf8' [ 1603.350604][ T6475] exfat: Deprecated parameter 'utf8' [ 1603.356106][ T5761] usb 2-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77 [ 1603.376567][ T5761] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239 [ 1603.396386][ T5761] usb 2-1: Product: syz [ 1603.406799][ T5761] usb 2-1: Manufacturer: syz [ 1603.424761][ T5761] usb 2-1: SerialNumber: syz [ 1603.454851][ T6475] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1603.470781][ T5761] usb 2-1: config 0 descriptor?? [ 1603.491435][ T5761] gspca_main: sq905-2.14.0 probing 2770:9120 [ 1603.584859][ T6483] loop3: detected capacity change from 0 to 64 [ 1603.892314][ T5761] gspca_sq905: sq905_command: usb_control_msg failed 2 (-71) [ 1603.911693][ T5761] sq905: probe of 2-1:0.0 failed with error -71 [ 1603.935438][ T5761] usb 2-1: USB disconnect, device number 42 [ 1604.250306][ T6525] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13365'. [ 1604.269488][ T6526] netlink: 'syz.3.13367': attribute type 22 has an invalid length. [ 1605.470266][ T6595] loop2: detected capacity change from 0 to 256 [ 1605.600129][ T6595] FAT-fs (loop2): Directory bread(block 64) failed [ 1605.624869][ T6595] FAT-fs (loop2): Directory bread(block 65) failed [ 1605.631663][ T6595] FAT-fs (loop2): Directory bread(block 66) failed [ 1605.669580][ T6595] FAT-fs (loop2): Directory bread(block 67) failed [ 1605.689102][ T6595] FAT-fs (loop2): Directory bread(block 68) failed [ 1605.726648][ T6595] FAT-fs (loop2): Directory bread(block 69) failed [ 1605.733362][ T6595] FAT-fs (loop2): Directory bread(block 70) failed [ 1605.771175][ T6595] FAT-fs (loop2): Directory bread(block 71) failed [ 1605.780939][ T6595] FAT-fs (loop2): Directory bread(block 72) failed [ 1605.798531][ T6595] FAT-fs (loop2): Directory bread(block 73) failed [ 1605.897711][ T6614] loop1: detected capacity change from 0 to 512 [ 1605.924216][ T6614] EXT4-fs: Ignoring removed orlov option [ 1605.940216][ T6614] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1605.997140][ T6614] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1606.029814][ T6614] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.13396: bg 0: block 248: padding at end of block bitmap is not set [ 1606.078319][ T6614] Quota error (device loop1): write_blk: dquota write failed [ 1606.078418][ T6614] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 1606.078458][ T6614] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.13396: Failed to acquire dquot type 1 [ 1606.080966][ T6614] EXT4-fs (loop1): 1 truncate cleaned up [ 1606.164002][ T6614] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1606.212545][ T6614] EXT4-fs: Ignoring removed orlov option [ 1606.212681][ T6614] EXT4-fs: can't change dax mount option while remounting [ 1606.285380][ T5936] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1606.320134][ T6629] ip6gre2: entered promiscuous mode [ 1607.931527][ T6724] loop2: detected capacity change from 0 to 1024 [ 1607.964321][ T6726] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 1608.007247][T27135] hfsplus: b-tree write err: -5, ino 25 [ 1608.048532][T27135] hfsplus: b-tree write err: -5, ino 4 [ 1608.064692][T27135] hfsplus: b-tree write err: -5, ino 2 [ 1608.229676][ T6735] tmpfs: Bad value for 'mpol' [ 1608.273590][ T6740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13432'. [ 1608.990914][ T6779] xt_TCPMSS: Only works on TCP SYN packets [ 1609.070006][ T6783] loop3: detected capacity change from 0 to 256 [ 1609.549245][ T6807] loop2: detected capacity change from 0 to 256 [ 1609.689886][ T6807] FAT-fs (loop2): Directory bread(block 64) failed [ 1609.698174][ T6807] FAT-fs (loop2): Directory bread(block 65) failed [ 1609.704852][ T6807] FAT-fs (loop2): Directory bread(block 66) failed [ 1609.726352][ T6807] FAT-fs (loop2): Directory bread(block 67) failed [ 1609.733041][ T6807] FAT-fs (loop2): Directory bread(block 68) failed [ 1609.749671][ T6807] FAT-fs (loop2): Directory bread(block 69) failed [ 1609.763579][ T6807] FAT-fs (loop2): Directory bread(block 70) failed [ 1609.790733][ T6807] FAT-fs (loop2): Directory bread(block 71) failed [ 1609.797449][ T6807] FAT-fs (loop2): Directory bread(block 72) failed [ 1609.813596][ T6807] FAT-fs (loop2): Directory bread(block 73) failed [ 1609.871982][ T6767] loop0: detected capacity change from 0 to 32768 [ 1609.891812][ T6819] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13456'. [ 1609.914125][ T6767] find_entry called with index = 0 [ 1609.933226][ T6767] read_mapping_page failed! [ 1609.937879][ T6767] ERROR: (device loop0): txCommit: [ 1609.937879][ T6767] [ 1610.004309][ T6767] ERROR: (device loop0): remounting filesystem as read-only [ 1610.167894][ T6827] netlink: 76 bytes leftover after parsing attributes in process `syz.3.13459'. [ 1610.337041][ T6839] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1611.280562][ T6882] loop0: detected capacity change from 0 to 4096 [ 1611.318734][ T6882] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1611.505171][ T6882] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 1611.522878][ T6897] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD [ 1611.603383][ T6902] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.13483'. [ 1611.654241][ T6902] openvswitch: netlink: Tunnel attr 0 has unexpected len 3060 expected 8 [ 1611.827487][ T6911] ieee802154 phy0 wpan0: encryption failed: -22 [ 1611.849360][ T6910] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 1611.889902][ T6910] bridge2: entered promiscuous mode [ 1611.913885][ T6910] bridge2: entered allmulticast mode [ 1612.033138][ T6916] loop0: detected capacity change from 0 to 4096 [ 1612.146615][ T6916] ntfs: volume version 3.1. [ 1612.151728][ T6931] netlink: 14 bytes leftover after parsing attributes in process `syz.1.13489'. [ 1612.182038][ T6929] netlink: 209820 bytes leftover after parsing attributes in process `syz.3.13490'. [ 1612.459078][ T6944] bridge5: entered promiscuous mode [ 1612.474017][ T6944] bridge5: entered allmulticast mode [ 1612.870845][ T6963] loop0: detected capacity change from 0 to 128 [ 1612.927145][ T6963] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1612.949125][ T6963] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1613.053684][ T6963] ext4 filesystem being mounted at /3240/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1613.136523][ T6963] EXT4-fs (loop0): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1613.260628][ T5928] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1613.285388][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1613.473059][ T6996] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13508'. [ 1613.561126][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1613.573377][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1613.588725][ T7004] netlink: 'syz.1.13511': attribute type 3 has an invalid length. [ 1613.608460][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1613.687450][ T7002] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1613.758416][ T7002] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 1613.998251][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1614.034018][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1614.074900][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1614.123279][ T7002] xfrm0 speed is unknown, defaulting to 1000 [ 1614.487682][ T7050] SET target dimension over the limit! [ 1614.707835][ T7062] loop1: detected capacity change from 0 to 64 [ 1614.714703][ T7056] loop3: detected capacity change from 0 to 4096 [ 1614.750335][ T7056] ntfs: volume version 3.1. [ 1614.905520][ T28] audit: type=1800 audit(2000005754.085:225): pid=7062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.13527" name="file1" dev="loop1" ino=5 res=0 errno=0 [ 1615.285025][ T7087] dvmrp0: entered allmulticast mode [ 1615.608423][ T7109] loop0: detected capacity change from 0 to 1024 [ 1615.704025][ T7109] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1615.985428][ T7131] x_tables: ip_tables: osf match: only valid for protocol 6 [ 1616.018062][ T5928] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1616.199175][ T7146] loop3: detected capacity change from 0 to 64 [ 1616.369450][ T7150] loop0: detected capacity change from 0 to 4096 [ 1616.469335][ T7157] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1616.688797][ T7166] netlink: 'syz.3.13556': attribute type 7 has an invalid length. [ 1616.697400][ T7166] netlink: 'syz.3.13556': attribute type 8 has an invalid length. [ 1616.705270][ T7166] netlink: 'syz.3.13556': attribute type 9 has an invalid length. [ 1616.825877][ T7163] loop1: detected capacity change from 0 to 4096 [ 1616.851930][ T7163] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1617.051706][ T7182] loop3: detected capacity change from 0 to 256 [ 1617.061826][ T7163] ntfs3: loop1: failed to convert "c46c" to iso8859-5 [ 1617.080871][ T7182] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1617.166769][ T7182] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d) [ 1617.181299][ T7188] loop0: detected capacity change from 0 to 128 [ 1617.271772][ T7188] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1617.342912][ T7188] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1617.397169][ T9] usb 3-1: new high-speed USB device number 63 using dummy_hcd [ 1617.619721][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 1617.653374][ T9] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1617.722091][ T9] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1617.747287][ T9] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1617.781316][ T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 1617.791641][ T9] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 1617.810992][ T9] usb 3-1: Product: syz [ 1617.820876][ T9] usb 3-1: Manufacturer: syz [ 1617.836633][ T7218] netlink: 'syz.1.13567': attribute type 7 has an invalid length. [ 1617.853762][ T9] usb 3-1: SerialNumber: syz [ 1617.878188][ T7218] netlink: 'syz.1.13567': attribute type 8 has an invalid length. [ 1617.886959][ T9] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input84 [ 1618.090567][ T7235] netlink: 'syz.1.13570': attribute type 1 has an invalid length. [ 1618.122585][ T7235] netlink: 'syz.1.13570': attribute type 2 has an invalid length. [ 1618.201089][ T9] usb 3-1: USB disconnect, device number 63 [ 1618.321655][ T9] appletouch 3-1:1.0: input: appletouch disconnected [ 1618.520365][ T7261] ALSA: mixer_oss: invalid OSS volume '' [ 1618.604107][ T7268] loop1: detected capacity change from 0 to 736 [ 1618.960659][ T28] audit: type=1326 audit(2000005758.441:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1619.059980][ T28] audit: type=1326 audit(2000005758.441:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1619.097111][ T28] audit: type=1326 audit(2000005758.474:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1619.135362][ T28] audit: type=1326 audit(2000005758.474:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7281 comm="syz.0.13582" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1619.212143][ T7296] siw: device registration error -23 [ 1619.862620][ T7325] loop0: detected capacity change from 0 to 4096 [ 1620.015239][ T7325] ntfs: volume version 3.1. [ 1620.071265][ T7325] ntfs: (device loop0): ntfs_truncate(): Truncate would cause the inode 0x43 to exceed the maximum size for its attribute type (0x80). Aborting truncate. [ 1620.432627][ T7344] loop1: detected capacity change from 0 to 8192 [ 1620.488084][ T7344] loop1: p1 < > p2 p3 < p5 p6 > p4 [ 1620.497546][ T7344] loop1: partition table partially beyond EOD, truncated [ 1620.516206][ T7344] loop1: p1 start 100663296 is beyond EOD, truncated [ 1620.530889][ T7344] loop1: p2 size 134217732 extends beyond EOD, truncated [ 1620.574163][ T7344] loop1: p4 size 14876672 extends beyond EOD, truncated [ 1620.595021][ T7364] kcapi: manufacturer command 52776558133248 unknown. [ 1620.599241][ T7344] loop1: p5 size 134217732 extends beyond EOD, truncated [ 1620.658349][ T7344] loop1: p6 size 14876672 extends beyond EOD, truncated [ 1621.024681][T18194] udevd[18194]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory [ 1621.026356][ T5764] udevd[5764]: inotify_add_watch(7, /dev/loop1p6, 10) failed: No such file or directory [ 1621.048430][ T6175] udevd[6175]: inotify_add_watch(7, /dev/loop1p5, 10) failed: No such file or directory [ 1621.059580][T10685] udevd[10685]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory [ 1621.081491][ T5874] udevd[5874]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 1621.611877][ T7420] netlink: 'syz.0.13623': attribute type 6 has an invalid length. [ 1621.967613][ T7439] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13629'. [ 1622.001357][ T7439] openvswitch: netlink: Missing key (keys=40, expected=100) [ 1622.190896][ T7456] loop1: detected capacity change from 0 to 256 [ 1622.297105][ T7462] netlink: 14 bytes leftover after parsing attributes in process `syz.3.13636'. [ 1622.317379][ T7463] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13635'. [ 1622.327280][T30956] usb 3-1: new high-speed USB device number 64 using dummy_hcd [ 1622.494567][ T7462] hsr_slave_1 (unregistering): left promiscuous mode [ 1622.533857][T30956] usb 3-1: Using ep0 maxpacket: 32 [ 1622.566476][T30956] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 1622.595452][T30956] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1622.611825][T30956] usb 3-1: Product: syz [ 1622.618459][T30956] usb 3-1: Manufacturer: syz [ 1622.623201][T30956] usb 3-1: SerialNumber: syz [ 1622.643857][T30956] usb 3-1: config 0 descriptor?? [ 1622.795596][ T7485] loop0: detected capacity change from 0 to 512 [ 1622.813582][ T7485] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 1622.885760][ T7485] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 1622.930463][ T7485] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1622.937690][ T7485] EXT4-fs error (device loop0): ext4_orphan_get:1424: comm syz.0.13639: bad orphan inode 3 [ 1622.953753][ T7485] EXT4-fs (loop0): Remounting filesystem read-only [ 1622.980069][ T7485] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 1623.009086][ T7485] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.13639: dx entry: limit 0 != root limit 125 [ 1623.022352][ T7485] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.13639: Corrupt directory, running e2fsck is recommended [ 1623.057682][T30956] airspy 3-1:0.0: usb_control_msg() failed -71 request 0a [ 1623.072187][T30956] airspy 3-1:0.0: Could not detect board [ 1623.078005][T30956] airspy: probe of 3-1:0.0 failed with error -71 [ 1623.099991][T30956] usb 3-1: USB disconnect, device number 64 [ 1623.155502][ T5928] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 1623.351522][ T7512] loop3: detected capacity change from 0 to 764 [ 1623.456279][ T7512] Symlink component flag not implemented [ 1623.462008][ T7512] Symlink component flag not implemented [ 1623.503140][ T7512] Symlink component flag not implemented (129) [ 1623.515198][ T7512] Symlink component flag not implemented (6) [ 1624.054983][ T7548] loop3: detected capacity change from 0 to 64 [ 1624.870672][ T7596] netlink: 14 bytes leftover after parsing attributes in process `syz.2.13670'. [ 1624.997918][ T7604] loop0: detected capacity change from 0 to 256 [ 1625.019237][ T7604] exfat: Deprecated parameter 'utf8' [ 1625.041580][ T7604] exfat: Deprecated parameter 'utf8' [ 1625.060154][ T7604] exfat: Deprecated parameter 'utf8' [ 1625.074182][ T7605] loop1: detected capacity change from 0 to 2048 [ 1625.145619][ T7604] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 1625.210938][ T7605] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1625.259900][ T7596] hsr_slave_1 (unregistering): left promiscuous mode [ 1625.516070][ T5936] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1625.863068][ T7644] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 1626.063192][ T7613] loop3: detected capacity change from 0 to 32768 [ 1626.112866][ T7613] JBD2: Ignoring recovery information on journal [ 1626.182533][ T7658] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13683'. [ 1626.336688][ T7613] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1626.414832][ T7671] loop1: detected capacity change from 0 to 512 [ 1626.455687][ T7672] netlink: 'syz.2.13686': attribute type 153 has an invalid length. [ 1626.481210][ T7672] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.13686'. [ 1626.550656][ T7671] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 1626.598020][ T7671] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002] [ 1626.629596][ T7671] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1626.653340][ T7677] netlink: 14 bytes leftover after parsing attributes in process `syz.0.13687'. [ 1626.662829][ T7671] EXT4-fs error (device loop1): ext4_orphan_get:1424: comm syz.1.13685: bad orphan inode 3 [ 1626.673322][ T7613] OCFS2: ERROR (device loop3): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has an invalid fs_generation of #3923141632 [ 1626.716145][ T7613] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1626.726443][ T7613] OCFS2: File system is now read-only. [ 1626.731967][ T7613] (syz.3.13673,7613,1):ocfs2_search_chain:1761 ERROR: status = -30 [ 1626.743700][ T7671] EXT4-fs (loop1): Remounting filesystem read-only [ 1626.776817][ T7671] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 1626.799273][ T7613] (syz.3.13673,7613,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 1626.830498][ T7613] (syz.3.13673,7613,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30 [ 1626.841707][ T7671] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.13685: dx entry: limit 0 != root limit 125 [ 1626.881823][ T7613] (syz.3.13673,7613,0):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 1626.894422][ T7671] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.13685: Corrupt directory, running e2fsck is recommended [ 1626.908301][ T7613] (syz.3.13673,7613,1):ocfs2_claim_new_inode:2226 ERROR: status = -30 [ 1626.917111][ T7613] (syz.3.13673,7613,1):ocfs2_claim_new_inode:2241 ERROR: status = -30 [ 1626.930565][ T7613] (syz.3.13673,7613,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 1626.950070][ T7613] (syz.3.13673,7613,1):ocfs2_mknod:385 ERROR: status = -30 [ 1626.957580][ T7677] hsr_slave_1 (unregistering): left promiscuous mode [ 1626.980540][ T5936] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 1626.991658][ T7613] (syz.3.13673,7613,1):ocfs2_mknod:502 ERROR: status = -30 [ 1627.027816][ T7613] (syz.3.13673,7613,1):ocfs2_mkdir:659 ERROR: status = -30 [ 1627.173786][ T5935] ocfs2: Unmounting device (7,3) on (node local) [ 1628.332890][ T7746] netlink: 'syz.1.13707': attribute type 46 has an invalid length. [ 1628.804535][ T7768] SET target dimension over the limit! [ 1628.901457][ T7772] ipt_ECN: cannot use operation on non-tcp rule [ 1628.999457][ T7743] loop0: detected capacity change from 0 to 32768 [ 1629.056437][ T7743] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by syz.0.13705 (7743) [ 1629.112311][ T7743] BTRFS info (device loop0): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1629.136073][ T7743] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 1629.169507][ T7743] BTRFS info (device loop0): turning off barriers [ 1629.195543][ T7743] BTRFS info (device loop0): trying to use backup root at mount time [ 1629.216104][ T7743] BTRFS info (device loop0): force zlib compression, level 3 [ 1629.223574][ T7743] BTRFS info (device loop0): enabling auto defrag [ 1629.230653][ T7743] BTRFS info (device loop0): using free space tree [ 1629.247315][ T7743] workqueue: max_active 2097159 requested for btrfs-worker is out of range, clamping between 1 and 512 [ 1629.297515][ T7743] workqueue: max_active 2097159 requested for btrfs-delalloc is out of range, clamping between 1 and 512 [ 1629.348392][ T7743] workqueue: max_active 2097159 requested for btrfs-endio is out of range, clamping between 1 and 512 [ 1629.428198][ T7743] workqueue: max_active 2097159 requested for btrfs-endio-meta is out of range, clamping between 1 and 512 [ 1629.476308][ T7743] workqueue: max_active 2097159 requested for btrfs-rmw is out of range, clamping between 1 and 512 [ 1629.492082][ T7758] loop3: detected capacity change from 0 to 40427 [ 1629.510025][ T7758] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 1629.517985][ T7758] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1629.526440][ T7743] workqueue: max_active 2097159 requested for btrfs-endio-write is out of range, clamping between 1 and 512 [ 1629.588230][ T7758] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1629.614673][ T7743] workqueue: max_active 2097159 requested for btrfs-compressed-write is out of range, clamping between 1 and 512 [ 1629.751307][ T7743] BTRFS info (device loop0): auto enabling async discard [ 1629.822103][ T7758] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1629.865269][ T7758] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1629.929082][ T7758] fscrypt (loop3, inode 3): Error -61 getting encryption context [ 1629.982858][ T7816] loop1: detected capacity change from 0 to 512 [ 1630.067374][ T7816] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1630.092247][ T5928] BTRFS info (device loop0): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1630.136947][ T7816] ext4 filesystem being mounted at /3441/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1630.264630][ T7816] fs-verity (loop1, inode 15): Unrecognized descriptor size: 0 bytes [ 1630.268157][T10685] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop0 scanned by udevd (10685) [ 1630.443456][ T5936] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1631.194580][ T1282] ieee802154 phy0 wpan0: encryption failed: -22 [ 1631.201602][ T1282] ieee802154 phy1 wpan1: encryption failed: -22 [ 1631.396006][ T7878] netlink: 'syz.1.13737': attribute type 1 has an invalid length. [ 1631.935055][ T7910] loop0: detected capacity change from 0 to 16 [ 1631.949334][ T7910] erofs: (device loop0): mounted with root inode @ nid 36. [ 1632.022385][ T7910] erofs: (device loop0): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 36 [ 1632.105891][ T7920] netlink: 88 bytes leftover after parsing attributes in process `syz.2.13751'. [ 1632.109473][ T7910] erofs: (device loop0): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 36 [ 1632.144706][ T7910] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 1632.969266][ T7960] netlink: 'syz.3.13763': attribute type 2 has an invalid length. [ 1633.381649][ T7978] loop1: detected capacity change from 0 to 16 [ 1633.403661][ T7978] erofs: (device loop1): mounted with root inode @ nid 36. [ 1633.473665][ T7975] loop3: detected capacity change from 0 to 4096 [ 1633.521230][ T7975] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1633.635664][ T7975] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1633.749525][ T7975] ntfs3: loop3: failed to convert "c46c" to cp874 [ 1633.887905][ T7958] loop0: detected capacity change from 0 to 32768 [ 1633.948180][ T7958] (syz.0.13764,7958,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1633.983287][ T7992] loop2: detected capacity change from 0 to 4096 [ 1633.992898][ T7958] (syz.0.13764,7958,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1634.097228][ T7958] JBD2: Ignoring recovery information on journal [ 1634.177894][ T8000] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1634.263785][ T7992] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 1634.274941][ T7992] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=12) [ 1634.309963][ T7992] Remounting filesystem read-only [ 1634.322150][ T7992] NILFS (loop2): error -5 truncating bmap (ino=12) [ 1634.416121][ T7958] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1634.513585][ T5929] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 1634.564399][ T5929] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 1634.592374][ T5929] NILFS (loop2): discard dirty block: blocknr=14, size=4096 [ 1634.600115][ T5929] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 1634.649513][ T7989] loop1: detected capacity change from 0 to 32768 [ 1634.666531][ T5929] NILFS (loop2): discard dirty block: blocknr=23, size=4096 [ 1634.677437][ T5929] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 1634.684462][ T5929] NILFS (loop2): discard dirty block: blocknr=24, size=4096 [ 1634.703132][ T7989] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.13772 (7989) [ 1634.743664][ T5929] NILFS (loop2): discard dirty page: offset=8192, ino=6 [ 1634.757540][ T5929] NILFS (loop2): discard dirty block: blocknr=25, size=4096 [ 1634.768447][ T7989] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1634.798005][ T7989] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 1634.822109][ T7989] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8) [ 1634.847262][ T7989] BTRFS info (device loop1): use lzo compression, level 0 [ 1634.875315][ T7989] BTRFS info (device loop1): max_inline at 0 [ 1634.899322][ T7989] BTRFS info (device loop1): using free space tree [ 1634.979530][ T5928] ocfs2: Unmounting device (7,0) on (node local) [ 1635.191647][ T7989] BTRFS info (device loop1): enabling ssd optimizations [ 1635.226059][ T7989] BTRFS info (device loop1): auto enabling async discard [ 1635.377497][ T7989] BTRFS error (device loop1: state M): unrecognized mount option '0x000000000000000018446744073709551615' [ 1635.541925][ T5936] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1635.715561][ T8060] netlink: 'syz.0.13779': attribute type 1 has an invalid length. [ 1635.774480][ T8060] netlink: 161700 bytes leftover after parsing attributes in process `syz.0.13779'. [ 1636.329400][ T8091] netlink: 'syz.0.13794': attribute type 3 has an invalid length. [ 1636.353694][ T8091] netlink: 3 bytes leftover after parsing attributes in process `syz.0.13794'. [ 1636.513399][ T5859] usb 3-1: new high-speed USB device number 65 using dummy_hcd [ 1636.596995][ T8100] loop1: detected capacity change from 0 to 256 [ 1636.718592][ T5859] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1636.738186][ T5859] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1636.782817][ T5859] usb 3-1: config 1 has an invalid descriptor of length 242, skipping remainder of the config [ 1636.824896][ T5859] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1636.867821][ T5859] usb 3-1: New USB device found, idVendor=04b8, idProduct=1222, bcdDevice= 0.40 [ 1636.904819][ T5859] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1636.912886][ T5859] usb 3-1: Product: syz [ 1636.937024][ T5859] usb 3-1: Manufacturer: syz [ 1636.954057][ T5859] usb 3-1: SerialNumber: syz [ 1637.216979][ T5859] usb 3-1: USB disconnect, device number 65 [ 1637.316897][ T8135] loop1: detected capacity change from 0 to 256 [ 1637.336933][ T8135] exfat: Deprecated parameter 'namecase' [ 1637.399934][ T8135] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 1637.958959][ T8174] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.13816'. [ 1637.997530][ T8177] loop0: detected capacity change from 0 to 16 [ 1638.027116][ T8177] erofs: (device loop0): mounted with root inode @ nid 36. [ 1638.097253][ T5940] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress 4876 in[4096, 0] out[9000] [ 1638.124183][ T8177] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress 4876 in[4096, 0] out[8192] [ 1638.190393][ T28] audit: type=1800 audit(2000005779.073:230): pid=8177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.13817" name="file2" dev="loop0" ino=89 res=0 errno=0 [ 1638.492586][ T8195] loop0: detected capacity change from 0 to 256 [ 1638.942773][ T8220] loop1: detected capacity change from 0 to 8 [ 1638.975098][ T8220] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1639.015746][T10685] udevd[10685]: incorrect cramfs checksum on /dev/loop1 [ 1639.071424][ T8220] cramfs: Error -5 while decompressing! [ 1639.090204][ T8220] cramfs: ffffffff973f6382(26)->ffff88805284a000(4096) [ 1639.107828][ T8220] cramfs: Error -3 while decompressing! [ 1639.112399][T13752] usb 1-1: new high-speed USB device number 66 using dummy_hcd [ 1639.128461][ T8220] cramfs: ffffffff973f639c(16)->ffff88804afa5000(4096) [ 1639.136073][ T8220] cramfs: Error -5 while decompressing! [ 1639.158990][ T8220] cramfs: ffffffff973f6382(26)->ffff88805284a000(4096) [ 1639.176142][ T28] audit: type=1800 audit(2000005780.125:231): pid=8220 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.13829" name="file2" dev="loop1" ino=348 res=0 errno=0 [ 1639.299230][T13752] usb 1-1: Using ep0 maxpacket: 16 [ 1639.332536][T13752] usb 1-1: config 0 has an invalid interface number: 8 but max is 0 [ 1639.341008][T13752] usb 1-1: config 0 has no interface number 0 [ 1639.364663][T13752] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11 [ 1639.401998][T13752] usb 1-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024 [ 1639.434536][ T8242] netlink: 72 bytes leftover after parsing attributes in process `syz.1.13834'. [ 1639.453723][T13752] usb 1-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 1639.473473][T13752] usb 1-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 1639.482964][ T8242] netlink: 'syz.1.13834': attribute type 1 has an invalid length. [ 1639.500193][T13752] usb 1-1: Product: syz [ 1639.503940][ T8242] netlink: 'syz.1.13834': attribute type 2 has an invalid length. [ 1639.522604][T13752] usb 1-1: SerialNumber: syz [ 1639.528423][ T8242] netlink: 116 bytes leftover after parsing attributes in process `syz.1.13834'. [ 1639.551389][T13752] usb 1-1: config 0 descriptor?? [ 1639.561147][T13752] cm109 1-1:0.8: invalid payload size 1024, expected 4 [ 1639.594040][T13752] input: CM109 USB driver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.8/input/input85 [ 1640.055701][ C0] cm109 1-1:0.8: cm109_urb_irq_callback: urb status -71 [ 1640.062971][ C0] cm109_urb_ctl_callback: 86 callbacks suppressed [ 1640.062992][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.077060][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.084458][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.091819][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.099206][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.106487][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.114695][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.121931][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.129262][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.136475][ C0] cm109 1-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1640.156413][T13752] usb 1-1: USB disconnect, device number 66 [ 1640.162418][ C0] cm109 1-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 1640.232590][T13752] cm109 1-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 1640.425264][ T8299] __vm_enough_memory: pid: 8299, comm: syz.2.13848, not enough memory for the allocation [ 1640.538594][ T8305] netlink: 766 bytes leftover after parsing attributes in process `syz.3.13850'. [ 1641.427170][ T8355] ieee802154 phy0 wpan0: encryption failed: -22 [ 1641.743725][ T8370] loop2: detected capacity change from 0 to 4096 [ 1641.813943][ T8370] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1641.857634][ T8370] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x4 as bad. Run chkdsk. [ 1641.919953][ T8370] ntfs: (device loop2): load_and_init_attrdef(): Failed to initialize attribute definition table. [ 1641.974212][ T8370] ntfs: (device loop2): ntfs_fill_super(): Failed to load system files. [ 1642.020421][ T8386] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 50292 out of range (51000000..2150000000) [ 1642.524203][ T5761] usb 1-1: new high-speed USB device number 67 using dummy_hcd [ 1642.722082][ T5761] usb 1-1: Using ep0 maxpacket: 8 [ 1642.733491][ T5761] usb 1-1: config 0 has an invalid interface number: 6 but max is 2 [ 1642.751807][ T5761] usb 1-1: config 0 has an invalid interface number: 176 but max is 2 [ 1642.794023][ T5761] usb 1-1: config 0 has no interface number 1 [ 1642.818753][ T5761] usb 1-1: config 0 has no interface number 2 [ 1642.840274][ T5761] usb 1-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30 [ 1642.887803][ T5761] usb 1-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1642.901608][ T8437] C: renamed from team_slave_0 [ 1642.921027][ T5761] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1642.929752][ T8437] netlink: 'syz.2.13890': attribute type 3 has an invalid length. [ 1642.937943][ T8437] netlink: 152 bytes leftover after parsing attributes in process `syz.2.13890'. [ 1642.952584][ T5761] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 1642.971960][ T8437] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 1642.989612][ T5761] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1643.010476][ T5761] usb 1-1: config 0 descriptor?? [ 1643.207819][ T5761] usb 1-1: Could not set interface, error -71 [ 1643.239935][ T5761] qmi_wwan: probe of 1-1:0.0 failed with error -22 [ 1643.268418][ T5761] usb 1-1: USB disconnect, device number 67 [ 1643.532453][ T8430] loop1: detected capacity change from 0 to 32768 [ 1643.571520][ T8430] JBD2: Ignoring recovery information on journal [ 1643.728800][ T8476] netlink: 'syz.2.13897': attribute type 1 has an invalid length. [ 1643.739698][ T8430] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1643.768424][ T8476] netlink: 'syz.2.13897': attribute type 2 has an invalid length. [ 1643.954102][ T8484] loop2: detected capacity change from 0 to 256 [ 1644.032049][ T28] audit: type=1326 audit(2000005785.339:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.0.13902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1644.130745][ T28] audit: type=1326 audit(2000005785.382:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.0.13902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1644.253849][ T28] audit: type=1326 audit(2000005785.382:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.0.13902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1644.295606][ T5936] ocfs2: Unmounting device (7,1) on (node local) [ 1644.352195][ T28] audit: type=1326 audit(2000005785.382:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8489 comm="syz.0.13902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1644.738448][ T8520] loop3: detected capacity change from 0 to 1024 [ 1644.829018][ T8520] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1645.072440][ T8535] loop2: detected capacity change from 0 to 2048 [ 1645.136034][ T5935] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1645.152576][ T8539] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1645.211536][ T8535] syz.2.13913: attempt to access beyond end of device [ 1645.211536][ T8535] loop2: rw=0, sector=281474976710722, nr_sectors = 2 limit=2048 [ 1645.252259][ T8535] NILFS (loop2): I/O error reading b-tree node block (ino=16, blocknr=15) [ 1645.310595][ T8535] NILFS (loop2): bad btree node (ino=16, blocknr=12): level = 0, flags = 0x0, nchildren = 0 [ 1645.363917][ T8535] NILFS error (device loop2): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1645.405942][ T8535] Remounting filesystem read-only [ 1645.412933][ T8535] NILFS (loop2): error -5 truncating bmap (ino=16) [ 1645.491600][ T5929] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 1645.516071][ T5929] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 1645.523468][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1645.562554][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1645.571494][ T5929] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1645.600215][ T5929] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 1646.241458][ T8573] loop1: detected capacity change from 0 to 4096 [ 1646.316005][ T8584] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1646.351056][ T8573] NILFS (loop1): invalid segment: Checksum error in segment payload [ 1646.393073][ T8573] NILFS (loop1): trying rollback from an earlier position [ 1646.435196][ T8573] NILFS (loop1): norecovery option specified, skipping roll-forward recovery [ 1646.584554][ T8573] NILFS (loop1): couldn't remount because the filesystem is in an incomplete recovery state [ 1646.901896][ T8606] netlink: 52 bytes leftover after parsing attributes in process `syz.1.13933'. [ 1647.132869][ T8612] bond5: entered allmulticast mode [ 1647.430435][ T8656] loop1: detected capacity change from 0 to 4096 [ 1647.508086][ T8656] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1647.592063][ T8671] netlink: 40 bytes leftover after parsing attributes in process `syz.2.13942'. [ 1647.625621][ T5936] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1648.395826][ T8711] netlink: 'syz.2.13955': attribute type 8 has an invalid length. [ 1648.872153][ T8693] loop3: detected capacity change from 0 to 32768 [ 1648.944283][ T8693] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1649.177363][ T8693] XFS (loop3): Ending clean mount [ 1649.194771][ T8693] XFS (loop3): Quotacheck needed: Please wait. [ 1649.409073][ T8693] XFS (loop3): Quotacheck: Done. [ 1649.511591][ T8767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13970'. [ 1649.522203][ T8767] netlink: 312 bytes leftover after parsing attributes in process `syz.0.13970'. [ 1649.535111][ T8767] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13970'. [ 1649.549052][ T5935] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1649.922141][ T8726] loop1: detected capacity change from 0 to 32768 [ 1649.967763][ T8726] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1650.125605][ T8726] XFS (loop1): Ending clean mount [ 1650.158318][ T8726] XFS (loop1): Quotacheck needed: Please wait. [ 1650.369443][ T8726] XFS (loop1): Quotacheck: Done. [ 1650.479487][ T8809] loop0: detected capacity change from 0 to 4096 [ 1650.513387][ T5936] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1650.565789][ T8809] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1650.854406][ T5928] ntfs3: loop0: ino=9, ntfs_sync_fs failed, -22. [ 1651.147517][ T8831] bond0: entered allmulticast mode [ 1651.675067][ T8893] usb usb8: usbfs: process 8893 (syz.2.13995) did not claim interface 0 before use [ 1652.180800][ T8918] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14003'. [ 1652.245804][ T8923] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 1652.413341][ T8955] loop3: detected capacity change from 0 to 64 [ 1652.432366][ T8963] netlink: 'syz.2.14006': attribute type 2 has an invalid length. [ 1652.444379][ T8963] netlink: 'syz.2.14006': attribute type 1 has an invalid length. [ 1653.040473][ T8998] netdevsim netdevsim1 : set [1, 1] type 2 family 0 port 39434 - 0 [ 1653.062853][ T8998] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 39434 - 0 [ 1653.082480][ T8998] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 39434 - 0 [ 1653.110819][ T8998] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 39434 - 0 [ 1653.141766][ T8998] netdevsim netdevsim1 : set [1, 2] type 2 family 0 port 46725 - 0 [ 1653.151729][ T8998] netdevsim netdevsim1 netdevsim1: set [1, 2] type 2 family 0 port 46725 - 0 [ 1653.161143][ T8998] netdevsim netdevsim1 netdevsim2: set [1, 2] type 2 family 0 port 46725 - 0 [ 1653.172402][ T8998] netdevsim netdevsim1 netdevsim3: set [1, 2] type 2 family 0 port 46725 - 0 [ 1653.189755][ T8998] geneve3: entered promiscuous mode [ 1653.199558][ T8998] geneve3: entered allmulticast mode [ 1653.652845][ T9033] binder: 9030:9033 ioctl c00c6211 ffffffffffffffff returned -14 [ 1653.815041][ T9039] netlink: 9 bytes leftover after parsing attributes in process `syz.0.14030'. [ 1653.865979][ T9039] ..0: renamed from hsr0 (while UP) [ 1653.882214][ T9039] ..0: entered allmulticast mode [ 1653.887443][ T9039] hsr_slave_0: entered allmulticast mode [ 1653.893612][ T9046] kernel read not supported for file / N7âW)s!Qfsl{Tr)rO2:">͟v|ղDvc֠6xc: (pid: 9046 comm: syz.3.14033) [ 1653.893805][ T9039] A link change request failed with some changes committed already. Interface ..0 may have been left with an inconsistent configuration, please check. [ 1653.925907][ T9044] netlink: 'syz.2.14032': attribute type 17 has an invalid length. [ 1653.934434][ T9044] netlink: 'syz.2.14032': attribute type 16 has an invalid length. [ 1653.959987][ T28] audit: type=1800 audit(2000005795.982:236): pid=9046 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.14033" name=20019C4EFC1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C03E95CD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=98311 res=0 errno=0 [ 1653.992853][ T9044] netlink: 152 bytes leftover after parsing attributes in process `syz.2.14032'. [ 1654.414016][ T9067] dns_resolver: Unsupported server list version (0) [ 1654.842425][ T9083] loop1: detected capacity change from 0 to 4096 [ 1655.232014][ T9112] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 1655.712013][ T9139] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.14063'. [ 1655.731366][ T9136] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14060'. [ 1655.764640][ T9136] (unnamed net_device) (uninitialized): option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0) [ 1655.866332][ T28] audit: type=1326 audit(2000005798.042:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.14064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1655.992259][ T28] audit: type=1326 audit(2000005798.042:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.14064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1656.076358][ T28] audit: type=1326 audit(2000005798.149:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.14064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=249 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1656.110798][ T28] audit: type=1326 audit(2000005798.149:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.14064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1656.190794][ T28] audit: type=1326 audit(2000005798.149:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9145 comm="syz.0.14064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab15b9c799 code=0x7ffc0000 [ 1656.838879][ T9191] netlink: 'syz.0.14078': attribute type 15 has an invalid length. [ 1656.853857][ T9195] netlink: 'syz.1.14079': attribute type 1 has an invalid length. [ 1656.886161][ T9187] loop2: detected capacity change from 0 to 2048 [ 1656.887523][ T9195] netlink: 224 bytes leftover after parsing attributes in process `syz.1.14079'. [ 1656.950203][ T9187] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1657.155257][ T9203] loop0: detected capacity change from 0 to 1024 [ 1657.189082][ T9187] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1408) has entry at pos 0 with incorrect tag 10a [ 1657.269602][ T9187] UDF-fs: error (device loop2): udf_rename: failed to find renamed entry again in directory (ino 1408) [ 1657.614015][ T9226] netlink: 40 bytes leftover after parsing attributes in process `syz.3.14084'. [ 1657.819946][ T9233] netlink: 'syz.2.14085': attribute type 3 has an invalid length. [ 1658.683086][ T9283] netlink: 'syz.0.14101': attribute type 21 has an invalid length. [ 1659.326880][ T9319] netlink: 228 bytes leftover after parsing attributes in process `syz.0.14112'. [ 1659.722554][ T9320] loop2: detected capacity change from 0 to 8192 [ 1659.768294][ T9338] loop1: detected capacity change from 0 to 1764 [ 1659.925646][ T9320] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1659.974077][ T9349] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14121'. [ 1660.084011][ T9320] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1660.110305][ T9320] FAT-fs (loop2): Filesystem has been set read-only [ 1660.300009][ T9360] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14124'. [ 1660.516906][ T9371] netlink: 'syz.0.14128': attribute type 8 has an invalid length. [ 1661.035260][ T5761] usb 1-1: new high-speed USB device number 68 using dummy_hcd [ 1661.259674][ T5761] usb 1-1: config index 0 descriptor too short (expected 39, got 27) [ 1661.270762][ T5761] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 1661.309104][ T5761] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1661.329421][ T5761] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1661.360264][ T5761] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 1661.378759][ T5761] usb 1-1: Product: syz [ 1661.384298][ T5761] usb 1-1: Manufacturer: syz [ 1661.411171][ T5761] usb 1-1: SerialNumber: syz [ 1661.434335][ T5761] usb 1-1: config 0 descriptor?? [ 1661.450879][ T5761] hub 1-1:0.0: bad descriptor, ignoring hub [ 1661.471782][ T5761] hub: probe of 1-1:0.0 failed with error -5 [ 1661.499014][ T5761] usb 1-1: selecting invalid altsetting 0 [ 1661.690377][ T9446] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14144'. [ 1662.006436][ T5859] usb 1-1: USB disconnect, device number 68 [ 1662.134118][ T28] audit: type=1400 audit(2000005804.758:242): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=9477 comm="syz.1.14150" [ 1662.451400][ T9492] loop2: detected capacity change from 0 to 256 [ 1662.504837][ T9498] netlink: 144316 bytes leftover after parsing attributes in process `syz.3.14156'. [ 1662.526127][ T9498] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14156'. [ 1663.264239][ T9536] Cannot find add_set index 0 as target [ 1663.478847][ T9544] loop0: detected capacity change from 0 to 4096 [ 1664.292680][ T9531] loop3: detected capacity change from 0 to 32768 [ 1664.381040][ T9531] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1664.413590][ T9531] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 1664.450437][ T9531] BTRFS info (device loop3): turning off barriers [ 1664.474490][ T9531] BTRFS info (device loop3): enabling ssd optimizations [ 1664.481758][ T9531] BTRFS info (device loop3): using spread ssd allocation scheme [ 1664.507361][ T9531] BTRFS info (device loop3): enabling auto defrag [ 1664.545234][ T9531] BTRFS warning (device loop3): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 1664.575075][ T9592] netlink: 'syz.2.14185': attribute type 2 has an invalid length. [ 1664.592392][ T9531] BTRFS info (device loop3): trying to use backup root at mount time [ 1664.604441][ T9592] netlink: 'syz.2.14185': attribute type 1 has an invalid length. [ 1664.623172][ T9531] BTRFS info (device loop3): ignoring data csums [ 1664.629618][ T9531] BTRFS info (device loop3): force zlib compression, level 3 [ 1664.680553][ T9531] BTRFS info (device loop3): using free space tree [ 1665.023848][ T9531] BTRFS error (device loop3: state MC): ignoredatacsums must be used with ro mount option [ 1665.113574][ T5935] BTRFS info (device loop3: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 1665.472128][ T9594] loop1: detected capacity change from 0 to 32768 [ 1665.588947][ T9594] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1665.806143][ T9594] XFS (loop1): Ending clean mount [ 1665.878422][ T5936] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1666.094763][ T9665] netlink: 28 bytes leftover after parsing attributes in process `syz.3.14200'. [ 1666.130341][ T9665] netlink: 24 bytes leftover after parsing attributes in process `syz.3.14200'. [ 1666.149986][ T9665] netlink: 28 bytes leftover after parsing attributes in process `syz.3.14200'. [ 1666.189400][ T9665] netlink: 'syz.3.14200': attribute type 6 has an invalid length. [ 1666.359142][ T9675] loop2: detected capacity change from 0 to 24 [ 1666.369053][ T9675] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1666.425301][ T9675] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1666.743327][ T9694] loop1: detected capacity change from 0 to 256 [ 1667.075946][ T9709] netlink: 5 bytes leftover after parsing attributes in process `syz.2.14212'. [ 1667.302051][ T9717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.14214'. [ 1667.347298][ T9717] netlink: 28 bytes leftover after parsing attributes in process `syz.3.14214'. [ 1667.400438][ T9717] netlink: 36 bytes leftover after parsing attributes in process `syz.3.14214'. [ 1667.431100][ T9724] No such timeout policy "syz1" [ 1667.487412][ T9679] loop0: detected capacity change from 0 to 32768 [ 1667.728291][ T9735] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14219'. [ 1667.984123][ T9749] loop1: detected capacity change from 0 to 64 [ 1668.905823][ T9791] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1669.059189][ T9831] loop1: detected capacity change from 0 to 4096 [ 1669.101799][ T9831] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1669.245885][ T9831] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1669.302503][ T9843] loop2: detected capacity change from 0 to 8 [ 1669.362749][ T9843] SQUASHFS error: Unable to read directory block [629:26] [ 1670.881414][ T9929] netlink: 'syz.0.14269': attribute type 32 has an invalid length. [ 1671.008281][ T3974] usb 3-1: new low-speed USB device number 66 using dummy_hcd [ 1671.111719][ T9936] loop3: detected capacity change from 0 to 4096 [ 1671.152365][ T9936] ntfs: volume version 3.1. [ 1671.190248][ T9936] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1671.216226][ T3974] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1671.240223][ T9936] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1671.245306][ T3974] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1671.271306][ T9936] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk. [ 1671.306897][ T9936] ntfs: (device loop3): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4). Marking corrupt inode and base inode 0x1a as bad. Run chkdsk. [ 1671.324592][ T3974] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1671.361461][ T9936] ntfs: (device loop3): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute. [ 1671.371455][ T3974] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1671.403581][ T9936] ntfs: (device loop3): load_system_files(): Failed to load $UsnJrnl. Will not be able to remount read-write. Run chkdsk. [ 1671.434804][ T3974] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 1671.454760][ T3974] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1671.487908][ T3974] hub 3-1:1.0: bad descriptor, ignoring hub [ 1671.502869][ T3974] hub: probe of 3-1:1.0 failed with error -5 [ 1671.509471][ T3974] cdc_wdm 3-1:1.0: skipping garbage [ 1671.532194][ T9936] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Found already allocated name in phase 2. Please run chkdsk and if that doesn't find any errors please report you saw this message to linux-ntfs-dev@lists.sourceforge.net. [ 1671.548331][ T3974] cdc_wdm 3-1:1.0: invalid descriptor buffer length [ 1671.563492][ T9936] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 1671.574052][ T9936] ntfs: (device loop3): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5. [ 1671.601785][ T3974] cdc_wdm: probe of 3-1:1.0 failed with error -22 [ 1671.865300][ T5761] usb 3-1: USB disconnect, device number 66 [ 1671.914501][ T9973] IPVS: set_ctl: invalid protocol: 0 255.255.255.255:20002 [ 1672.292727][ T9987] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 1672.460462][ T9966] loop1: detected capacity change from 0 to 32768 [ 1672.545136][ T9966] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1672.743096][ T9966] XFS (loop1): Ending clean mount [ 1673.027187][ T5936] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1673.038087][T10029] netlink: 'syz.0.14294': attribute type 8 has an invalid length. [ 1674.028708][T10036] loop2: detected capacity change from 0 to 32768 [ 1674.036968][T10031] loop3: detected capacity change from 0 to 32768 [ 1674.060792][T10031] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 1674.094962][T10031] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1674.124671][T10036] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1674.133724][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1674.208691][T10031] (syz.3.14296,10031,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=281474976710721, rec_len=32768, name_len=1 [ 1674.262352][T10036] XFS (loop2): Ending clean mount [ 1674.306324][T10031] (syz.3.14296,10031,1):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 1674.326475][T10036] XFS (loop2): Quotacheck needed: Please wait. [ 1674.335663][T10031] (syz.3.14296,10031,0):ocfs2_mknod:298 ERROR: status = -2 [ 1674.343047][T10031] (syz.3.14296,10031,0):ocfs2_mknod:502 ERROR: status = -2 [ 1674.371638][T10031] (syz.3.14296,10031,0):ocfs2_create:676 ERROR: status = -2 [ 1674.462997][T10078] loop0: detected capacity change from 0 to 1024 [ 1674.484397][T10036] XFS (loop2): Quotacheck: Done. [ 1674.570642][ T5929] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1674.690988][ T5935] ocfs2: Unmounting device (7,3) on (node local) [ 1674.776393][ T2929] hfsplus: b-tree write err: -5, ino 25 [ 1674.829297][ T2929] hfsplus: b-tree write err: -5, ino 4 [ 1674.875953][ T2929] hfsplus: b-tree write err: -5, ino 2 [ 1674.881593][ T2929] hfsplus: b-tree write err: -5, ino 26 [ 1675.563265][T10116] loop3: detected capacity change from 0 to 4096 [ 1675.597440][T10116] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1675.638901][T10116] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103] [ 1675.649029][T10116] System zones: 0-5 [ 1675.678681][T10116] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1675.803247][T10139] xt_bpf: check failed: parse error [ 1675.933841][ T5935] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1676.084404][T10148] loop2: detected capacity change from 0 to 256 [ 1676.218290][T10148] FAT-fs (loop2): Directory bread(block 64) failed [ 1676.224951][T10148] FAT-fs (loop2): Directory bread(block 65) failed [ 1676.246682][T10148] FAT-fs (loop2): Directory bread(block 66) failed [ 1676.285014][T10148] FAT-fs (loop2): Directory bread(block 67) failed [ 1676.291754][T10148] FAT-fs (loop2): Directory bread(block 68) failed [ 1676.329614][T10148] FAT-fs (loop2): Directory bread(block 69) failed [ 1676.336386][T10148] FAT-fs (loop2): Directory bread(block 70) failed [ 1676.385828][T10148] FAT-fs (loop2): Directory bread(block 71) failed [ 1676.392561][T10148] FAT-fs (loop2): Directory bread(block 72) failed [ 1676.417878][T10148] FAT-fs (loop2): Directory bread(block 73) failed [ 1676.465545][T10148] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1677.023078][T10198] netlink: 'syz.1.14339': attribute type 1 has an invalid length. [ 1677.527559][T10227] netlink: 'syz.0.14348': attribute type 13 has an invalid length. [ 1677.619924][T10227] gretap0: refused to change device tx_queue_len [ 1677.640659][T10227] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1677.769919][T10239] netlink: 'syz.3.14351': attribute type 3 has an invalid length. [ 1678.399553][T10272] loop3: detected capacity change from 0 to 256 [ 1678.428791][T10272] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1678.465330][T10272] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 1678.522446][T10272] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1679.300265][T10320] kAFS: unable to lookup cell ' [ 1679.300265][T10320] $)-.ײfYǝa2s [ 1679.300265][T10320] ' [ 1679.611951][T10338] netlink: 'syz.2.14380': attribute type 2 has an invalid length. [ 1680.040636][T10366] x_tables: duplicate entry at hook 3 [ 1680.350321][T10379] xt_addrtype: ipv6 does not support BROADCAST matching [ 1681.188550][T10419] netlink: 48 bytes leftover after parsing attributes in process `syz.2.14407'. [ 1681.381547][T10361] loop3: detected capacity change from 0 to 32768 [ 1681.420973][T10361] gfs2: fsid=([{{{+: Trying to join cluster "lock_nolock", "([{{{+" [ 1681.464095][T10432] xt_l2tp: unknown flags: 10 [ 1681.475282][T10361] gfs2: fsid=([{{{+: Now mounting FS (format 0)... [ 1681.500664][T10361] gfs2: Invalid block size shift [ 1681.511798][T10361] gfs2: fsid=([{{{+: can't read superblock: -22 [ 1681.926732][T10460] loop0: detected capacity change from 0 to 256 [ 1681.985395][T10460] FAT-fs (loop0): Directory bread(block 64) failed [ 1681.997618][T10460] FAT-fs (loop0): Directory bread(block 65) failed [ 1682.015252][T10460] FAT-fs (loop0): Directory bread(block 66) failed [ 1682.042179][T10460] FAT-fs (loop0): Directory bread(block 67) failed [ 1682.061090][T10460] FAT-fs (loop0): Directory bread(block 68) failed [ 1682.093244][T10460] FAT-fs (loop0): Directory bread(block 69) failed [ 1682.109983][T10460] FAT-fs (loop0): Directory bread(block 70) failed [ 1682.147087][T10460] FAT-fs (loop0): Directory bread(block 71) failed [ 1682.153892][T10460] FAT-fs (loop0): Directory bread(block 72) failed [ 1682.168862][T10460] FAT-fs (loop0): Directory bread(block 73) failed [ 1682.175805][T10468] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14420'. [ 1682.869497][T10500] bond4: entered allmulticast mode [ 1682.904881][T10500] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1684.022857][T10588] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14447'. [ 1684.122282][T10561] loop1: detected capacity change from 0 to 32768 [ 1684.166782][T10561] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 1684.204741][T10561] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1684.274307][T10561] (syz.1.14438,10561,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=281474976710721, rec_len=32768, name_len=1 [ 1684.291669][T10561] (syz.1.14438,10561,1):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 1684.301811][T10561] (syz.1.14438,10561,1):ocfs2_mknod:298 ERROR: status = -2 [ 1684.309696][T10561] (syz.1.14438,10561,1):ocfs2_mknod:502 ERROR: status = -2 [ 1684.318799][T10561] (syz.1.14438,10561,1):ocfs2_create:676 ERROR: status = -2 [ 1684.522819][ T5936] ocfs2: Unmounting device (7,1) on (node local) [ 1685.442715][T10648] loop2: detected capacity change from 0 to 4096 [ 1685.462495][T10648] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 1687.076630][T10740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14495'. [ 1687.262545][T10749] netlink: 16 bytes leftover after parsing attributes in process `syz.2.14498'. [ 1687.432772][T10759] loop1: detected capacity change from 0 to 64 [ 1687.539550][T10759] syz.1.14501: attempt to access beyond end of device [ 1687.539550][T10759] loop1: rw=0, sector=16777216, nr_sectors = 2 limit=64 [ 1687.569999][T10759] Buffer I/O error on dev loop1, logical block 8388608, async page read [ 1687.627576][T10759] syz.1.14501: attempt to access beyond end of device [ 1687.627576][T10759] loop1: rw=0, sector=16777216, nr_sectors = 2 limit=64 [ 1687.661644][T10759] Buffer I/O error on dev loop1, logical block 8388608, async page read [ 1687.728474][T10772] bond0: mtu greater than device maximum [ 1688.169046][T10795] loop0: detected capacity change from 0 to 256 [ 1688.216778][ T28] audit: type=1400 audit(2000000007.445:243): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=10796 comm="syz.1.14512" [ 1688.261380][T10795] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x68d18d75, utbl_chksum : 0xe619d30d) [ 1688.387269][T10795] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000008) bogus content (0x00080000) [ 1688.424241][T10795] exFAT-fs (loop0): Filesystem has been set read-only [ 1688.457565][ T1282] ieee802154 phy1 wpan1: encryption failed: -22 [ 1688.695275][T10822] loop3: detected capacity change from 0 to 512 [ 1688.737520][T10822] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1688.802782][T10822] EXT4-fs (loop3): 1 truncate cleaned up [ 1688.854932][T10822] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1688.904553][T10822] EXT4-fs error (device loop3): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.3.14521: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1688.968693][T10822] EXT4-fs (loop3): Remounting filesystem read-only [ 1688.987172][T10822] EXT4-fs warning (device loop3): ext4_rename_delete:3778: inode #2: comm syz.3.14521: Deleting old file: nlink 4, error=-117 [ 1689.127627][ T5935] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1689.140197][T10844] ieee802154 phy1 wpan1: encryption failed: -22 [ 1689.456684][T10865] netlink: 'syz.3.14533': attribute type 3 has an invalid length. [ 1689.485710][T10865] netlink: 'syz.3.14533': attribute type 3 has an invalid length. [ 1689.648908][ T3974] usb 1-1: new high-speed USB device number 69 using dummy_hcd [ 1689.779641][ T5859] usb 3-1: new high-speed USB device number 67 using dummy_hcd [ 1689.799448][T10880] netlink: 'syz.3.14537': attribute type 11 has an invalid length. [ 1689.835471][ T3974] usb 1-1: Using ep0 maxpacket: 8 [ 1689.842749][ T3974] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 1689.861318][ T3974] usb 1-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config [ 1689.901707][ T3974] usb 1-1: config 179 has no interface number 0 [ 1689.908084][ T3974] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid wMaxPacketSize 0 [ 1689.946916][ T3974] usb 1-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23 [ 1689.958607][ T5859] usb 3-1: Using ep0 maxpacket: 16 [ 1689.980922][ T5859] usb 3-1: config 0 has an invalid interface number: 49 but max is 0 [ 1689.984473][ T3974] usb 1-1: config 179 interface 65 has no altsetting 0 [ 1690.009652][ T3974] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 1690.021004][ T5859] usb 3-1: config 0 has no interface number 0 [ 1690.027169][ T5859] usb 3-1: config 0 interface 49 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 16 [ 1690.037514][ T3974] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1690.074644][ T5859] usb 3-1: config 0 interface 49 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1690.099742][ T5859] usb 3-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=76.b7 [ 1690.119241][ T5859] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1690.136112][ T5859] usb 3-1: Product: syz [ 1690.140564][ T5859] usb 3-1: Manufacturer: syz [ 1690.145905][ T5859] usb 3-1: SerialNumber: syz [ 1690.165593][ T5859] usb 3-1: config 0 descriptor?? [ 1690.181936][T10868] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 1690.220083][T10855] loop1: detected capacity change from 0 to 32768 [ 1690.294219][ T3974] usb 1-1: USB disconnect, device number 69 [ 1690.333907][T10855] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1690.442403][ T5859] usb 3-1: USB disconnect, device number 67 [ 1690.480815][T10855] XFS (loop1): Ending clean mount [ 1690.542414][T10922] sctp: [Deprecated]: syz.3.14542 (pid 10922) Use of int in maxseg socket option. [ 1690.542414][T10922] Use struct sctp_assoc_value instead [ 1690.562924][ T787] XFS (loop1): Corruption warning: Metadata has LSN (2:16) ahead of current LSN (1:112). Please unmount and run xfs_repair (>= v4.3) to resolve. [ 1690.579082][ T787] XFS (loop1): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x20 [ 1690.630877][ T787] XFS (loop1): Unmount and run xfs_repair [ 1690.650301][ T787] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 1690.665694][ T787] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 1690.684788][ T787] 00000010: 00 00 00 00 00 00 00 20 00 00 00 02 00 00 00 10 ....... ........ [ 1690.712870][ T787] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 1690.722340][ T787] 00000030: 00 00 00 00 ca b4 20 ce 00 00 11 40 00 00 40 37 ...... ....@..@7 [ 1690.732222][ T787] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 1690.746679][ T787] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1690.765500][T10928] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 1690.774059][ T787] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1690.791767][ T787] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1690.801997][T10855] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x20 len 8 error 74 [ 1690.820378][T10855] XFS (loop1): Failed to initialize disk quotas. [ 1691.030603][ T5936] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1691.126564][T10944] loop2: detected capacity change from 0 to 1024 [ 1691.198360][T10943] loop3: detected capacity change from 0 to 64 [ 1691.351846][ T1123] hfsplus: b-tree write err: -5, ino 25 [ 1691.372032][ T1123] hfsplus: b-tree write err: -5, ino 4 [ 1691.382007][ T1123] hfsplus: b-tree write err: -5, ino 2 [ 1691.748886][T10974] ip6erspan0: entered promiscuous mode [ 1691.913377][ T5761] usb 4-1: new high-speed USB device number 62 using dummy_hcd [ 1692.039545][T10990] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1692.099867][ T5761] usb 4-1: Using ep0 maxpacket: 32 [ 1692.112573][ T5761] usb 4-1: config 0 has an invalid interface number: 35 but max is 0 [ 1692.137600][ T5761] usb 4-1: config 0 has no interface number 0 [ 1692.149416][T10995] netlink: 76 bytes leftover after parsing attributes in process `syz.0.14562'. [ 1692.158665][ T5761] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 1692.193267][ T5761] usb 4-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 1692.223389][ T5761] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 1692.237257][ T5761] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1692.255824][ T5761] usb 4-1: Product: syz [ 1692.265286][ T5761] usb 4-1: Manufacturer: syz [ 1692.280204][ T5761] usb 4-1: SerialNumber: syz [ 1692.297682][ T5761] usb 4-1: config 0 descriptor?? [ 1692.511259][T11006] loop1: detected capacity change from 0 to 4096 [ 1692.538814][ T5761] radio-si470x 4-1:0.35: this is not a si470x device. [ 1692.673022][T11006] ntfs: volume version 3.1. [ 1692.718740][T11006] ntfs: (device loop1): ntfs_setattr(): Changes in user/group/mode are not supported yet, ignoring. [ 1692.738999][ T5761] radio-raremono 4-1:0.35: this is not Thanko's Raremono. [ 1692.775504][ T5761] usb 4-1: USB disconnect, device number 62 [ 1693.070422][T11035] loop0: detected capacity change from 0 to 164 [ 1693.248927][T11044] netlink: 'syz.1.14574': attribute type 10 has an invalid length. [ 1693.643448][T11056] loop1: detected capacity change from 0 to 4096 [ 1693.681089][T11056] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1693.734950][T11056] ntfs3: loop1: Failed to initialize $Extend/$Reparse. [ 1693.944900][ T787] usb 3-1: new full-speed USB device number 68 using dummy_hcd [ 1694.152725][ T787] usb 3-1: config 11 has an invalid interface number: 93 but max is 0 [ 1694.170989][ T787] usb 3-1: config 11 has no interface number 0 [ 1694.177311][ T787] usb 3-1: config 11 interface 93 altsetting 4 endpoint 0x9 has invalid maxpacket 1023, setting to 64 [ 1694.208315][T11087] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14585'. [ 1694.217545][ T787] usb 3-1: config 11 interface 93 has no altsetting 0 [ 1694.227670][ T787] usb 3-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice= 3.e1 [ 1694.236991][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1694.262945][T11087] ip6tnl4: entered allmulticast mode [ 1694.268533][ T787] usb 3-1: Product: syz [ 1694.276177][T11058] loop3: detected capacity change from 0 to 32768 [ 1694.282522][ T787] usb 3-1: Manufacturer: syz [ 1694.293683][T11058] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.14578 (11058) [ 1694.299269][ T787] usb 3-1: SerialNumber: syz [ 1694.408506][T11069] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1694.448194][T11058] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1694.485888][T11058] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1694.509519][T11058] BTRFS info (device loop3): setting nodatacow, compression disabled [ 1694.518146][T11058] BTRFS info (device loop3): using free space tree [ 1694.691970][ T787] usb 3-1: no audio or video endpoints found [ 1694.700746][T11058] BTRFS info (device loop3): enabling ssd optimizations [ 1694.707759][T11058] BTRFS info (device loop3): auto enabling async discard [ 1694.718977][T11118] ieee802154 phy1 wpan1: encryption failed: -22 [ 1694.778726][ T787] usb 3-1: USB disconnect, device number 68 [ 1695.037117][ T5935] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1695.214078][T11144] x_tables: duplicate underflow at hook 4 [ 1695.315889][T10685] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop3 scanned by udevd (10685) [ 1695.706642][ T787] usb 1-1: new high-speed USB device number 70 using dummy_hcd [ 1695.912604][ T787] usb 1-1: Using ep0 maxpacket: 16 [ 1695.944367][ T787] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1695.968151][ T787] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1696.034002][ T787] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1696.051847][ T787] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1696.070903][ T787] usb 1-1: Product: syz [ 1696.077830][ T787] usb 1-1: Manufacturer: syz [ 1696.126635][ T787] usb 1-1: SerialNumber: syz [ 1696.146553][ T787] r8152-cfgselector 1-1: config 0 descriptor?? [ 1696.189061][T11191] libceph: secret too big 289 [ 1696.219273][T11193] loop3: detected capacity change from 0 to 256 [ 1696.298262][T11193] FAT-fs (loop3): Directory bread(block 64) failed [ 1696.334127][T11193] FAT-fs (loop3): Directory bread(block 65) failed [ 1696.354146][T11193] FAT-fs (loop3): Directory bread(block 66) failed [ 1696.365462][T11188] loop2: detected capacity change from 0 to 4096 [ 1696.392588][T11188] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1696.412111][T11193] FAT-fs (loop3): Directory bread(block 67) failed [ 1696.423574][ T787] usbip-host 1-1: 1-1 is not in match_busid table... skip! [ 1696.443007][T11193] FAT-fs (loop3): Directory bread(block 68) failed [ 1696.468514][T11193] FAT-fs (loop3): Directory bread(block 69) failed [ 1696.487278][T11193] FAT-fs (loop3): Directory bread(block 70) failed [ 1696.510151][T11193] FAT-fs (loop3): Directory bread(block 71) failed [ 1696.516827][T11193] FAT-fs (loop3): Directory bread(block 72) failed [ 1696.529998][T11188] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 1696.543192][T11193] FAT-fs (loop3): Directory bread(block 73) failed [ 1696.646239][T13752] usb 1-1: USB disconnect, device number 70 [ 1696.855404][T11211] netlink: 209860 bytes leftover after parsing attributes in process `syz.3.14611'. [ 1697.572639][ T5761] usb 1-1: new full-speed USB device number 71 using dummy_hcd [ 1697.786385][ T5761] usb 1-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33 [ 1697.816670][T11267] deleting an unspecified loop device is not supported. [ 1697.824691][ T5761] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1697.845556][ T5761] usb 1-1: config 0 descriptor?? [ 1697.867495][ T5761] gspca_main: sunplus-2.14.0 probing 055f:c420 [ 1697.885300][T11270] loop2: detected capacity change from 0 to 1024 [ 1698.367252][ T5761] gspca_sunplus: reg_w_riv err -71 [ 1698.377144][ T5761] sunplus: probe of 1-1:0.0 failed with error -71 [ 1698.401102][ T5761] usb 1-1: USB disconnect, device number 71 [ 1698.644046][T11302] xt_TCPMSS: Only works on TCP SYN packets [ 1698.941650][ T28] audit: type=1400 audit(2000000018.925:244): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=11318 comm="syz.1.14643" [ 1699.247783][T11336] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14649'. [ 1699.261102][T11339] netlink: 20 bytes leftover after parsing attributes in process `syz.1.14650'. [ 1699.369817][T11345] netlink: 'syz.2.14651': attribute type 58 has an invalid length. [ 1699.403937][T11345] netlink: 20 bytes leftover after parsing attributes in process `syz.2.14651'. [ 1699.495730][T11355] netdevsim netdevsim3 netdevsim3: entered allmulticast mode [ 1699.727676][T11365] kAFS: No cell specified [ 1699.798414][T11372] IPVS: set_ctl: invalid protocol: 50 224.0.0.1:20001 [ 1700.395428][T11408] netlink: 40 bytes leftover after parsing attributes in process `syz.1.14670'. [ 1700.535287][ T9] usb 1-1: new high-speed USB device number 72 using dummy_hcd [ 1700.610803][T11417] loop1: detected capacity change from 0 to 1024 [ 1700.724215][ T9] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 1700.750367][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1700.787666][ T9] usb 1-1: config 0 descriptor?? [ 1700.846565][T11430] bridge0: entered promiscuous mode [ 1700.854166][T11430] bridge0: entered allmulticast mode [ 1701.032217][T11438] netlink: 160 bytes leftover after parsing attributes in process `syz.1.14678'. [ 1701.186291][ T9] usb 1-1: Cannot set MAC address [ 1701.206216][ T9] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 1701.244847][ T9] usb 1-1: USB disconnect, device number 72 [ 1701.253610][T11447] overlayfs: cannot append lower layer [ 1701.352936][T11457] loop2: detected capacity change from 0 to 256 [ 1701.397773][T11457] exfat: Deprecated parameter 'namecase' [ 1701.434378][T11457] exfat: Deprecated parameter 'namecase' [ 1701.453949][T11457] exfat: Deprecated parameter 'utf8' [ 1701.521418][T11457] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 1701.796389][T11478] loop2: detected capacity change from 0 to 64 [ 1702.738951][T11536] loop2: detected capacity change from 0 to 16 [ 1702.800038][T11536] erofs: (device loop2): mounted with root inode @ nid 36. [ 1702.840087][T11536] syz.2.14705: attempt to access beyond end of device [ 1702.840087][T11536] loop2: rw=0, sector=15300821024, nr_sectors = 8 limit=16 [ 1702.933264][T11536] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 72 of nid 36 [ 1703.526608][T11569] loop2: detected capacity change from 0 to 256 [ 1704.209082][T11602] loop2: detected capacity change from 0 to 256 [ 1704.326938][T11609] m920x_read = error: -19 [ 1704.419687][T11602] FAT-fs (loop2): Directory bread(block 64) failed [ 1704.454346][T11602] FAT-fs (loop2): Directory bread(block 65) failed [ 1704.471510][T11602] FAT-fs (loop2): Directory bread(block 66) failed [ 1704.505690][T11602] FAT-fs (loop2): Directory bread(block 67) failed [ 1704.512434][T11602] FAT-fs (loop2): Directory bread(block 68) failed [ 1704.551696][T11602] FAT-fs (loop2): Directory bread(block 69) failed [ 1704.613890][T11602] FAT-fs (loop2): Directory bread(block 70) failed [ 1704.645685][T11602] FAT-fs (loop2): Directory bread(block 71) failed [ 1704.663335][T11602] FAT-fs (loop2): Directory bread(block 72) failed [ 1704.682819][T11602] FAT-fs (loop2): Directory bread(block 73) failed [ 1705.127093][T11593] loop1: detected capacity change from 0 to 32768 [ 1705.211259][T11593] ERROR: (device loop1): diAllocAG: numfree > numinos [ 1705.211259][T11593] [ 1705.275903][T11593] ialloc: diAlloc returned -5! [ 1705.743053][T11665] loop0: detected capacity change from 0 to 64 [ 1705.815774][T11665] hfs: unable to locate alternate MDB [ 1705.839643][T11665] hfs: continuing without an alternate MDB [ 1705.944820][ T28] audit: type=1800 audit(2000000026.457:245): pid=11665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.14741" name="bus" dev="loop0" ino=21 res=0 errno=0 [ 1706.095476][T19393] hfs: new node 0 already hashed? [ 1706.108591][T19393] ------------[ cut here ]------------ [ 1706.114165][T19393] WARNING: CPU: 0 PID: 19393 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440 [ 1706.123774][T19393] Modules linked in: [ 1706.127769][T19393] CPU: 0 PID: 19393 Comm: kworker/u4:1 Not tainted syzkaller #0 [ 1706.135480][T19393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1706.145647][T19393] Workqueue: writeback wb_workfn (flush-7:0) [ 1706.151709][T19393] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 1706.157791][T19393] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 1706.178003][T19393] RSP: 0018:ffffc9001b666e18 EFLAGS: 00010246 [ 1706.184710][T19393] RAX: 000000000000001f RBX: ffff88802f544000 RCX: ebc864ad61e32300 [ 1706.192908][T19393] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 1706.200932][T19393] RBP: 0000000000000000 R08: ffffc9001b666b27 R09: 1ffff920036ccd64 [ 1706.209140][T19393] R10: dffffc0000000000 R11: fffff520036ccd65 R12: 0000000000000000 [ 1706.217215][T19393] R13: ffff88802f5440e0 R14: ffff888019a72b00 R15: dffffc0000000000 [ 1706.225310][T19393] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1706.234351][T19393] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1706.241098][T19393] CR2: 0000001b2f821ff8 CR3: 0000000060d33000 CR4: 00000000003506f0 [ 1706.249363][T19393] Call Trace: [ 1706.252692][T19393] [ 1706.255668][T19393] hfs_bmap_alloc+0x541/0x5d0 [ 1706.260461][T19393] ? hfs_bmap_reserve+0x430/0x430 [ 1706.265568][T19393] hfs_btree_inc_height+0x101/0xac0 [ 1706.270929][T19393] ? hfs_brec_insert+0x6fa/0xbd0 [ 1706.275924][T19393] ? hfs_brec_insert+0xbd0/0xbd0 [ 1706.281047][T19393] ? do_raw_spin_unlock+0x121/0x230 [ 1706.286343][T19393] hfs_brec_insert+0x748/0xbd0 [ 1706.291186][T19393] ? hfs_brec_keylen+0x360/0x360 [ 1706.296230][T19393] __hfs_ext_write_extent+0x2a1/0x470 [ 1706.301776][T19393] hfs_ext_write_extent+0x17f/0x210 [ 1706.307075][T19393] ? verify_lock_unused+0x140/0x140 [ 1706.312332][T19393] ? hfs_ext_find_block+0x190/0x190 [ 1706.317632][T19393] ? blk_start_plug+0x51/0x1a0 [ 1706.322454][T19393] hfs_write_inode+0xdc/0x880 [ 1706.327292][T19393] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1706.332771][T19393] ? __writeback_single_inode+0x48d/0xec0 [ 1706.338564][T19393] ? __lock_acquire+0x7d40/0x7d40 [ 1706.343828][T19393] ? do_raw_spin_lock+0x11f/0x2c0 [ 1706.348946][T19393] ? __rwlock_init+0x150/0x150 [ 1706.353882][T19393] __writeback_single_inode+0x705/0xec0 [ 1706.359517][T19393] writeback_sb_inodes+0x7cd/0xf50 [ 1706.364787][T19393] ? queue_io+0x550/0x550 [ 1706.369199][T19393] ? rcu_is_watching+0x15/0xb0 [ 1706.374110][T19393] wb_writeback+0x46a/0xbf0 [ 1706.378719][T19393] ? queue_io+0x3b1/0x550 [ 1706.383129][T19393] ? percpu_ref_tryget+0x250/0x250 [ 1706.388464][T19393] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1706.394600][T19393] ? _raw_spin_unlock_irq+0x23/0x50 [ 1706.399902][T19393] wb_workfn+0x400/0xe60 [ 1706.404224][T19393] ? inode_wait_for_writeback+0x230/0x230 [ 1706.410085][T19393] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1706.416315][T19393] ? read_lock_is_recursive+0x20/0x20 [ 1706.421751][T19393] ? _raw_spin_unlock_irq+0x23/0x50 [ 1706.427042][T19393] ? process_scheduled_works+0x96f/0x15d0 [ 1706.432821][T19393] ? process_scheduled_works+0x96f/0x15d0 [ 1706.438665][T19393] process_scheduled_works+0xa5d/0x15d0 [ 1706.444389][T19393] ? worker_attach_to_pool+0x380/0x380 [ 1706.449917][T19393] ? assign_work+0x3d2/0x5d0 [ 1706.454639][T19393] worker_thread+0xa55/0xfc0 [ 1706.459318][T19393] kthread+0x2fa/0x390 [ 1706.463496][T19393] ? pr_cont_work+0x560/0x560 [ 1706.468232][T19393] ? kthread_blkcg+0xd0/0xd0 [ 1706.473031][T19393] ret_from_fork+0x48/0x80 [ 1706.477512][T19393] ? kthread_blkcg+0xd0/0xd0 [ 1706.482193][T19393] ret_from_fork_asm+0x11/0x20 [ 1706.487042][T19393] [ 1706.490117][T19393] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1706.497456][T19393] CPU: 0 PID: 19393 Comm: kworker/u4:1 Not tainted syzkaller #0 [ 1706.505118][T19393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1706.515383][T19393] Workqueue: writeback wb_workfn (flush-7:0) [ 1706.521422][T19393] Call Trace: [ 1706.524727][T19393] [ 1706.527681][T19393] dump_stack_lvl+0x18c/0x250 [ 1706.532397][T19393] ? show_regs_print_info+0x20/0x20 [ 1706.537636][T19393] ? load_image+0x400/0x400 [ 1706.542179][T19393] panic+0x2dc/0x730 [ 1706.546131][T19393] ? bpf_jit_dump+0xd0/0xd0 [ 1706.550676][T19393] ? ret_from_fork_asm+0x11/0x20 [ 1706.555661][T19393] __warn+0x2e0/0x470 [ 1706.559781][T19393] ? hfs_bnode_create+0x3b9/0x440 [ 1706.564851][T19393] ? hfs_bnode_create+0x3b9/0x440 [ 1706.569994][T19393] report_bug+0x2be/0x4f0 [ 1706.574361][T19393] ? hfs_bnode_create+0x3b9/0x440 [ 1706.579425][T19393] ? hfs_bnode_create+0x3b9/0x440 [ 1706.584492][T19393] ? hfs_bnode_create+0x3bb/0x440 [ 1706.589547][T19393] handle_bug+0xcf/0x120 [ 1706.593831][T19393] exc_invalid_op+0x1a/0x50 [ 1706.598370][T19393] asm_exc_invalid_op+0x1a/0x20 [ 1706.603258][T19393] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 1706.608998][T19393] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 1706.628628][T19393] RSP: 0018:ffffc9001b666e18 EFLAGS: 00010246 [ 1706.634724][T19393] RAX: 000000000000001f RBX: ffff88802f544000 RCX: ebc864ad61e32300 [ 1706.642724][T19393] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 1706.650891][T19393] RBP: 0000000000000000 R08: ffffc9001b666b27 R09: 1ffff920036ccd64 [ 1706.658903][T19393] R10: dffffc0000000000 R11: fffff520036ccd65 R12: 0000000000000000 [ 1706.666895][T19393] R13: ffff88802f5440e0 R14: ffff888019a72b00 R15: dffffc0000000000 [ 1706.674900][T19393] ? hfs_bnode_create+0x3b9/0x440 [ 1706.679951][T19393] hfs_bmap_alloc+0x541/0x5d0 [ 1706.684750][T19393] ? hfs_bmap_reserve+0x430/0x430 [ 1706.689815][T19393] hfs_btree_inc_height+0x101/0xac0 [ 1706.695037][T19393] ? hfs_brec_insert+0x6fa/0xbd0 [ 1706.700014][T19393] ? hfs_brec_insert+0xbd0/0xbd0 [ 1706.704991][T19393] ? do_raw_spin_unlock+0x121/0x230 [ 1706.710227][T19393] hfs_brec_insert+0x748/0xbd0 [ 1706.715051][T19393] ? hfs_brec_keylen+0x360/0x360 [ 1706.720027][T19393] __hfs_ext_write_extent+0x2a1/0x470 [ 1706.725513][T19393] hfs_ext_write_extent+0x17f/0x210 [ 1706.730735][T19393] ? verify_lock_unused+0x140/0x140 [ 1706.735959][T19393] ? hfs_ext_find_block+0x190/0x190 [ 1706.741188][T19393] ? blk_start_plug+0x51/0x1a0 [ 1706.746065][T19393] hfs_write_inode+0xdc/0x880 [ 1706.750768][T19393] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1706.756174][T19393] ? __writeback_single_inode+0x48d/0xec0 [ 1706.761926][T19393] ? __lock_acquire+0x7d40/0x7d40 [ 1706.766979][T19393] ? do_raw_spin_lock+0x11f/0x2c0 [ 1706.772034][T19393] ? __rwlock_init+0x150/0x150 [ 1706.777017][T19393] __writeback_single_inode+0x705/0xec0 [ 1706.782599][T19393] writeback_sb_inodes+0x7cd/0xf50 [ 1706.787759][T19393] ? queue_io+0x550/0x550 [ 1706.792132][T19393] ? rcu_is_watching+0x15/0xb0 [ 1706.797102][T19393] wb_writeback+0x46a/0xbf0 [ 1706.801635][T19393] ? queue_io+0x3b1/0x550 [ 1706.806018][T19393] ? percpu_ref_tryget+0x250/0x250 [ 1706.811202][T19393] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1706.817219][T19393] ? _raw_spin_unlock_irq+0x23/0x50 [ 1706.822441][T19393] wb_workfn+0x400/0xe60 [ 1706.826728][T19393] ? inode_wait_for_writeback+0x230/0x230 [ 1706.832484][T19393] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1706.838494][T19393] ? read_lock_is_recursive+0x20/0x20 [ 1706.843909][T19393] ? _raw_spin_unlock_irq+0x23/0x50 [ 1706.849154][T19393] ? process_scheduled_works+0x96f/0x15d0 [ 1706.854907][T19393] ? process_scheduled_works+0x96f/0x15d0 [ 1706.860652][T19393] process_scheduled_works+0xa5d/0x15d0 [ 1706.866258][T19393] ? worker_attach_to_pool+0x380/0x380 [ 1706.871747][T19393] ? assign_work+0x3d2/0x5d0 [ 1706.876372][T19393] worker_thread+0xa55/0xfc0 [ 1706.881020][T19393] kthread+0x2fa/0x390 [ 1706.885120][T19393] ? pr_cont_work+0x560/0x560 [ 1706.889836][T19393] ? kthread_blkcg+0xd0/0xd0 [ 1706.894469][T19393] ret_from_fork+0x48/0x80 [ 1706.898914][T19393] ? kthread_blkcg+0xd0/0xd0 [ 1706.903530][T19393] ret_from_fork_asm+0x11/0x20 [ 1706.908344][T19393] [ 1706.911970][T19393] Kernel Offset: disabled [ 1706.916441][T19393] Rebooting in 86400 seconds..