last executing test programs: 4m6.878172663s ago: executing program 2 (id=1941): r0 = syz_usb_connect$uac1(0x2, 0xa6, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000106b1d01010000000003010902940003010040000904000000010100000a2401000000020102132406000006000000281ab0ab2c90619b34000000000000000000000924030000000000000924050000f8211cfd0924030500000004000724050401"], 0x0) syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x4, @string={0x4, 0x3, "a1ee"}}, 0x0, 0x0, 0x0}, 0x0) 4m5.160501891s ago: executing program 2 (id=1955): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0) write$P9_RSTATu(r0, &(0x7f0000000080)={0x23d, 0x7d, 0x0, {{0x500, 0xfc, 0x0, 0x5000000, {}, 0x0, 0x0, 0x0, 0x0, 0x1f, '\x04nodev{cvfox%\xff\xff\xff\x81\x02\x00\x00\x00\x00\x001\xff\xce\xbc\x92\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\"\x00}\xfag>\xff\xeb\t\xb51\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00/\xa9Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x01\x00\x00\x00', 0x12, '\xcf\xb6\x00'/18, 0x60, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\xf4w\xd0\'\x12{p9\x8al\x8b\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x054\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xd4\x89\xdad\x9a5\x00'}, 0x12c, 'odev-n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x23d) 4m5.100457756s ago: executing program 2 (id=1956): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000040), 0x200, 0x0) ioctl$SNDCTL_TMR_TIMEBASE(r0, 0xc0045401, 0x0) 4m5.009810334s ago: executing program 2 (id=1957): syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000040)='./file0\x00', 0x1008408, &(0x7f0000000ac0)=ANY=[@ANYBLOB='nojoliet,dmode=0x000000007fffffff,dmode=0x0000000000000009,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,hide,nocompress,utf8,norock,overriderockperm,mode=0xffffffffffffffff,cruft,map=off,iocharset=macinuit,fund=BPRM_CHECK,\x00', @ANYRESDEC], 0xff, 0x5ac, &(0x7f0000002940)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0) 4m4.846522964s ago: executing program 2 (id=1959): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_netdev_private(r0, 0x89b1, &(0x7f0000000040)="55f1f4b10117400fcac4e13a") 4m4.470202312s ago: executing program 2 (id=1964): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000900)="89000000120081ae08060cdc030ec0007f03e3f7feff000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf00d7815e381ad6e706033a0093b837dc6cc01e32efaec8c7a6ec08123d000200354001000400446b9bbc7a46e3988285dcdf12f21308f868fece01951fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) 4m4.120131196s ago: executing program 32 (id=1964): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000900)="89000000120081ae08060cdc030ec0007f03e3f7feff000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf00d7815e381ad6e706033a0093b837dc6cc01e32efaec8c7a6ec08123d000200354001000400446b9bbc7a46e3988285dcdf12f21308f868fece01951fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) 2.698546051s ago: executing program 0 (id=5088): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="120100001517ee40f00a057a00f6000203010902120001000000000904000000ff"], 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, &(0x7f0000000240)=ANY=[@ANYBLOB="000a110000000b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.188766631s ago: executing program 4 (id=5108): r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0) ioctl$DRM_IOCTL_SET_VERSION(r0, 0xc0106407, &(0x7f0000000000)={0xffffffff, 0x2, 0x1, 0x1}) 1.095148948s ago: executing program 1 (id=5110): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000a80)=@filter={'filter\x00', 0xe, 0x4, 0x358, 0xffffffff, 0x0, 0x1b8, 0xe8, 0xffffffff, 0xffffffff, 0xe8, 0x288, 0xe8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0xa8, 0xe8}, @common=@inet=@TCPOPTSTRIP={0x40}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@inet=@SYNPROXY={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3b8) 1.055411809s ago: executing program 4 (id=5111): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={0x28, 0x1411, 0x1, 0x0, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x5, 0x4b, 0x13}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20004000}, 0x0) 955.447274ms ago: executing program 3 (id=5112): r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x17, 0x0, &(0x7f0000000400)) 940.000601ms ago: executing program 4 (id=5113): fanotify_init(0x0, 0x0) pselect6(0x2000, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x300}, 0x0, &(0x7f0000000100)={0x8}, 0x0, 0x0) 907.230152ms ago: executing program 1 (id=5114): r0 = socket(0x10, 0x802, 0x0) write(r0, &(0x7f0000000140)="fc00000018000703ab092500090007000a070000000000060000369321000700ff2500000005d00000000000000398996c92773411419da79bb94b46fe000000bc00020000036c6c256f1a272f2e117c22ebc205214000000000008934d07302ad031720d7d5bbc91a3e2e80772c05defd5a32e280fc83ab82f605f70c9ddefefe082038f4f8b29d3ef3d92c83170e5bba4a463ae4f5566f91cf190201ded815b2ccd243f295ed94e0ad91bd0734babc7c3f2eeb57d43dd16b17e583df150c3b880f411f46a6b567b4d5715587e658a1ad0a4f01731d05b0350b0041f0d48f6f0000080548deac270e33429fd3000175e63fb8d38a873cf1587c3b41", 0xfc) 869.103663ms ago: executing program 0 (id=5115): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendmsg$802154_raw(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)="98ab0c", 0x3}, 0x1, 0x0, 0x0, 0x24000085}, 0x24040090) 802.864456ms ago: executing program 3 (id=5116): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300, 0x82a0}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge={{0x17}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x5, 0x1}, @IFLA_BR_NF_CALL_IP6TABLES={0x5, 0x25, 0x1}, @IFLA_BR_VLAN_STATS_ENABLED={0x5}]}}}, @IFLA_MASTER={0x8}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x24048060) 763.676987ms ago: executing program 4 (id=5117): r0 = socket$igmp6(0xa, 0x3, 0x2) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'bridge0\x00'}, 0x0, 0x148, 0x12e, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00', {0xff}, {}, 0x0, 0x0, 0x0, 0x4b}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0xfffffffe, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528) 671.511514ms ago: executing program 0 (id=5118): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r0, &(0x7f00000012c0)=[{{&(0x7f0000000280)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000000980)=[{&(0x7f0000000200)="9c", 0x1}], 0x1}}, {{&(0x7f0000000ec0)={0x2, 0x4e22, @private=0xa010101}, 0x10, &(0x7f0000000fc0)=[{&(0x7f0000000f00)='I', 0x1}], 0x1}}], 0x2, 0x48000) 643.126077ms ago: executing program 1 (id=5119): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000940)=@delchain={0x2c, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1b, 0x9}, {}, {0x5, 0xe}}, [@TCA_CHAIN={0x8, 0xb, 0x7}]}, 0x2c}}, 0x0) 594.144136ms ago: executing program 4 (id=5120): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001400)=ANY=[@ANYBLOB="4400000010003b15000800"/20, @ANYRES32=0x0, @ANYBLOB="0000000000b401001400128009000100626f6e64000000000c000280050001"], 0x44}}, 0x0) 540.906942ms ago: executing program 3 (id=5121): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x68, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x30, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x104}}, 0x0) 444.014699ms ago: executing program 0 (id=5122): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'wlan1\x00', &(0x7f0000000080)=@ethtool_ts_info}) 415.168052ms ago: executing program 1 (id=5123): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)=@newlink={0x30, 0x10, 0x801, 0xfffffffd, 0x0, {}, [@IFLA_GROUP={0x8}, @IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_INET6={0x4}]}]}, 0x30}}, 0x0) 390.229555ms ago: executing program 4 (id=5124): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000a8f4dd086d0492082a6d0000000109021b0001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f00000018c0)={0x84, &(0x7f0000001480)={0x0, 0x11, 0x1, "f4"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 342.147054ms ago: executing program 3 (id=5125): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0xbf, &(0x7f0000000380), &(0x7f00000009c0)=0x4) 277.186067ms ago: executing program 0 (id=5126): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x29, &(0x7f0000001500)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b001105142603600e12080005007a010401a80016002000034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e", 0xd8}], 0x1}, 0x0) 218.650423ms ago: executing program 1 (id=5127): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) 202.420489ms ago: executing program 3 (id=5128): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)={0x5c, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x3}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5, 0x4, 0x3}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x5c}}, 0x0) 33.985538ms ago: executing program 0 (id=5129): r0 = syz_open_dev$I2C(&(0x7f0000000d80), 0x0, 0x0) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000300)={&(0x7f0000000100)=[{0x0, 0x1, 0x0, 0xfffffffffffffffc}], 0x1}) 1.2214ms ago: executing program 3 (id=5130): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@ipv4_newroute={0x34, 0x18, 0x35f32a6dfa748ddd, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x4}, @RTA_ENCAP={0x10, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0xc, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_GENEVE={0x5, 0x1, 0x0, 0x1, @LWTUNNEL_IP_OPT_GENEVE_DATA={0x4}}}}]}, 0x34}}, 0x0) 0s ago: executing program 1 (id=5131): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)={0x2, 0x18, 0x0, 0x0, 0xc, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private1}}]}, 0x60}}, 0x0) kernel console output (not intermixed with test programs): ompat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 341.980526][ T28] audit: type=1326 audit(1772456621.738:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 342.007141][ T28] audit: type=1326 audit(1772456621.738:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13329 comm="syz.0.3320" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 342.422354][T13357] loop0: detected capacity change from 0 to 4096 [ 342.458067][T13357] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 342.597467][T13357] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 342.647796][T13357] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 342.869457][T13357] ntfs3: loop0: ino=1e, "file1" failed to parse mft record [ 342.877265][T13357] ntfs3: loop0: ino=1e, "file1" attr_set_size [ 343.053164][ T198] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 343.086811][ T5770] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 343.104385][ T5770] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 343.124521][ T5770] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 343.143798][T13384] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6 [ 343.152927][ T59] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 343.589740][T13395] netlink: 'syz.3.3351': attribute type 21 has an invalid length. [ 343.881421][T13382] loop1: detected capacity change from 0 to 32768 [ 343.994251][ T28] audit: type=1326 audit(1772456624.388:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13404 comm="syz.4.3356" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 344.017322][ C1] vkms_vblank_simulate: vblank timer overrun [ 344.301734][T13413] netlink: 2 bytes leftover after parsing attributes in process `syz.0.3361'. [ 344.332209][T13413] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.357509][T13413] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.388395][T13413] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 344.426294][T13413] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 344.446667][T13413] batadv_slave_1: entered promiscuous mode [ 344.622523][T13421] (unnamed net_device) (uninitialized): option fail_over_mac: invalid value (4) [ 344.652480][T13419] loop3: detected capacity change from 0 to 4096 [ 344.664073][T13419] EXT4-fs: Ignoring removed nomblk_io_submit option [ 344.731543][T13419] EXT4-fs (loop3): Test dummy encryption mode enabled [ 344.775002][T13419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 344.801652][T13426] binder: 13424:13426 ioctl c018620b 0 returned -14 [ 345.047885][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 345.275659][T13444] (syz.1.3375,13444,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 345.304186][T13444] (syz.1.3375,13444,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 346.156309][T13475] loop3: detected capacity change from 0 to 512 [ 346.195554][T13476] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3391'. [ 346.216523][T13476] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 346.236109][T13478] comedi comedi1: rti800: a I/O base address must be specified [ 346.254694][T13475] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 49, start 000000c8) [ 346.307873][T13475] FAT-fs (loop3): error, invalid access to FAT (entry 0x000000c8) [ 346.615701][T13489] loop3: detected capacity change from 0 to 1024 [ 346.820347][ T4121] hfsplus: b-tree write err: -5, ino 4 [ 348.304965][T13558] netlink: 104 bytes leftover after parsing attributes in process `syz.4.3428'. [ 348.515030][T13564] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 348.534201][T13564] xt_HMARK: spi-set and port-set can't be combined [ 348.682940][T13573] netlink: 'syz.3.3437': attribute type 9 has an invalid length. [ 348.924209][T13581] netlink: 6 bytes leftover after parsing attributes in process `syz.3.3442'. [ 348.967812][T13581] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 349.673889][T13608] loop1: detected capacity change from 0 to 256 [ 350.436481][T13624] loop0: detected capacity change from 0 to 1024 [ 350.459482][T13626] /dev/nullb0: Can't open blockdev [ 350.488697][T13624] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 350.642760][T13624] EXT4-fs error (device loop0): ext4_lookup:1850: inode #2: comm syz.0.3462: bad inode number: 15 [ 350.670109][T13600] loop3: detected capacity change from 0 to 32768 [ 350.766164][T13600] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 350.837887][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 351.065948][T13600] XFS (loop3): Ending clean mount [ 351.109981][T13600] XFS (loop3): Quotacheck needed: Please wait. [ 351.323385][T13600] XFS (loop3): Quotacheck: Done. [ 351.505776][ T5777] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 352.171314][T13685] loop4: detected capacity change from 0 to 4096 [ 352.182760][T13685] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 352.341780][T13685] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 352.369321][T13685] ntfs3: loop4: Failed to load $Extend (-22). [ 352.375680][T13685] ntfs3: loop4: Failed to initialize $Extend. [ 352.457437][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 352.457452][ T28] audit: type=1326 audit(1772456632.858:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 352.501654][ T28] audit: type=1326 audit(1772456632.898:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 352.542723][ T28] audit: type=1326 audit(1772456632.938:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 352.638466][ T28] audit: type=1326 audit(1772456632.938:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 352.661367][ C1] vkms_vblank_simulate: vblank timer overrun [ 352.741421][ T28] audit: type=1326 audit(1772456632.938:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 352.828104][ T28] audit: type=1326 audit(1772456633.008:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68cff5cfce code=0x7ffc0000 [ 352.908327][ T28] audit: type=1326 audit(1772456633.028:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68cff5cfce code=0x7ffc0000 [ 352.931077][ C1] vkms_vblank_simulate: vblank timer overrun [ 352.977751][ T28] audit: type=1326 audit(1772456633.028:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68cff5cfce code=0x7ffc0000 [ 353.032171][ T28] audit: type=1326 audit(1772456633.038:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68cff5cfce code=0x7ffc0000 [ 353.126045][ T28] audit: type=1326 audit(1772456633.038:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13696 comm="syz.0.3495" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f68cff5cfce code=0x7ffc0000 [ 354.761328][T13770] loop3: detected capacity change from 0 to 64 [ 354.850354][T13770] hfs: hfs: Invalid key length: 94 [ 354.963078][T13774] netlink: 830 bytes leftover after parsing attributes in process `syz.4.3532'. [ 354.986249][T13773] loop1: detected capacity change from 0 to 512 [ 354.995213][ T5777] hfs: node 4:3 still has 1 user(s)! [ 355.021572][T13776] loop0: detected capacity change from 0 to 64 [ 355.688137][T10026] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 355.868568][T10026] usb 5-1: Using ep0 maxpacket: 32 [ 355.888553][T10026] usb 5-1: unable to get BOS descriptor or descriptor too short [ 355.906983][T10026] usb 5-1: config 129 has an invalid descriptor of length 0, skipping remainder of the config [ 355.917915][T10026] usb 5-1: config 129 has 0 interfaces, different from the descriptor's value: 1 [ 355.923538][T10026] usb 5-1: New USB device found, idVendor=0424, idProduct=9908, bcdDevice=2e.38 [ 355.923572][T10026] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 355.923606][T10026] usb 5-1: Product: syz [ 355.923621][T10026] usb 5-1: Manufacturer: syz [ 355.923636][T10026] usb 5-1: SerialNumber: syz [ 356.157434][T13786] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 356.175096][T13786] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 356.225870][T10026] usb 5-1: USB disconnect, device number 7 [ 356.396919][T13816] loop3: detected capacity change from 0 to 2048 [ 356.411138][T13816] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 356.477034][T13819] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 357.059574][T13838] netlink: 'syz.3.3562': attribute type 21 has an invalid length. [ 357.507155][T13856] loop4: detected capacity change from 0 to 256 [ 357.566766][T13856] FAT-fs (loop4): Directory bread(block 64) failed [ 357.588421][T13856] FAT-fs (loop4): Directory bread(block 65) failed [ 357.595200][T13856] FAT-fs (loop4): Directory bread(block 66) failed [ 357.631129][T13856] FAT-fs (loop4): Directory bread(block 67) failed [ 357.664986][T13856] FAT-fs (loop4): Directory bread(block 68) failed [ 357.675056][T13856] FAT-fs (loop4): Directory bread(block 69) failed [ 357.684911][T13856] FAT-fs (loop4): Directory bread(block 70) failed [ 357.703263][T13856] FAT-fs (loop4): Directory bread(block 71) failed [ 357.710842][T13856] FAT-fs (loop4): Directory bread(block 72) failed [ 357.717709][T13856] FAT-fs (loop4): Directory bread(block 73) failed [ 358.640361][T13894] loop3: detected capacity change from 0 to 1024 [ 358.679672][T13894] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a015c01c, mo2=0002] [ 358.689158][T13894] System zones: 0-1, 3-36 [ 358.731966][T13894] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.747861][T13900] devpts: called with bogus options [ 358.751178][T13899] loop1: detected capacity change from 0 to 512 [ 358.900130][T13899] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 358.931063][T13899] ext4 filesystem being mounted at /870/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 358.974274][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.120534][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 359.418100][T10026] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 359.478753][T13923] xt_nfacct: accounting object `syz1' does not exist [ 359.496290][T13925] loop0: detected capacity change from 0 to 256 [ 359.602713][T13925] FAT-fs (loop0): Directory bread(block 64) failed [ 359.616167][T13925] FAT-fs (loop0): Directory bread(block 65) failed [ 359.633329][T13925] FAT-fs (loop0): Directory bread(block 66) failed [ 359.638595][T10026] usb 4-1: Using ep0 maxpacket: 8 [ 359.640270][T13925] FAT-fs (loop0): Directory bread(block 67) failed [ 359.657292][T13925] FAT-fs (loop0): Directory bread(block 68) failed [ 359.665086][T13925] FAT-fs (loop0): Directory bread(block 69) failed [ 359.686431][T13925] FAT-fs (loop0): Directory bread(block 70) failed [ 359.706184][T13925] FAT-fs (loop0): Directory bread(block 71) failed [ 359.718162][T10026] usb 4-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76 [ 359.721821][T13925] FAT-fs (loop0): Directory bread(block 72) failed [ 359.747015][T10026] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 359.776410][T10026] usb 4-1: Product: syz [ 359.786727][T13925] FAT-fs (loop0): Directory bread(block 73) failed [ 359.793487][T10026] usb 4-1: Manufacturer: syz [ 359.793510][T10026] usb 4-1: SerialNumber: syz [ 359.796008][T10026] usb 4-1: config 0 descriptor?? [ 359.864333][T10026] gspca_main: ALi m5602-2.14.0 probing 0402:5602 [ 360.015601][T13937] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3607'. [ 360.026889][T13937] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3607'. [ 360.037447][T13936] netlink: 'syz.4.3608': attribute type 30 has an invalid length. [ 360.045648][T13937] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3607'. [ 360.204157][T13941] loop1: detected capacity change from 0 to 8 [ 360.224422][T13941] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 360.250357][ T5760] udevd[5760]: incorrect cramfs checksum on /dev/loop1 [ 360.252611][T13941] cramfs: Error -5 while decompressing! [ 360.271338][T13941] cramfs: ffffffff973f4368(26)->ffff888057300000(4096) [ 360.278831][T10026] gspca_m5602: Failed to find a sensor [ 360.284352][T10026] ALi m5602 4-1:0.0: ALi m5602 webcam failed [ 360.286594][T13941] cramfs: Error -3 while decompressing! [ 360.297219][T13941] cramfs: ffffffff973f4382(26)->ffff88806b282000(4096) [ 360.326197][T10026] usb 4-1: USB disconnect, device number 8 [ 360.328093][T13941] cramfs: Error -3 while decompressing! [ 360.354731][T13941] cramfs: ffffffff973f439c(16)->ffff88806b303000(4096) [ 360.375097][T13941] cramfs: Error -5 while decompressing! [ 360.402037][T13941] cramfs: ffffffff973f4368(26)->ffff888057300000(4096) [ 360.426231][ T28] kauditd_printk_skb: 50 callbacks suppressed [ 360.426247][ T28] audit: type=1800 audit(1772456640.828:165): pid=13941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.3611" name="file2" dev="loop1" ino=348 res=0 errno=0 [ 360.742043][T13956] netlink: 172 bytes leftover after parsing attributes in process `syz.1.3618'. [ 360.755877][T13956] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3618'. [ 360.773949][T13956] netlink: 172 bytes leftover after parsing attributes in process `syz.1.3618'. [ 360.786469][T13956] netlink: 100 bytes leftover after parsing attributes in process `syz.1.3618'. [ 360.817414][T13956] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3618'. [ 360.933137][T13960] loop0: detected capacity change from 0 to 2048 [ 360.987196][T13960] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 361.223660][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 361.770098][T13993] netlink: 'syz.0.3635': attribute type 32 has an invalid length. [ 361.963290][T14003] loop1: detected capacity change from 0 to 128 [ 362.011252][T14003] EXT4-fs (loop1): Test dummy encryption mode enabled [ 362.036154][T14003] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 362.058230][T14003] ext4 filesystem being mounted at /885/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 362.116924][T14007] loop0: detected capacity change from 0 to 64 [ 362.168130][ T9] usb 4-1: new full-speed USB device number 9 using dummy_hcd [ 362.312697][ T5767] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 362.377537][ T9] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 362.387931][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.400586][ T9] usb 4-1: config 0 descriptor?? [ 362.492952][T14017] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3645'. [ 362.843101][ T9] [drm:udl_init] *ERROR* Selecting channel failed [ 362.883170][T14027] ax25_connect(): syz.0.3651 uses autobind, please contact jreuter@yaina.de [ 362.914239][ T9] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2 [ 362.958548][ T9] [drm] Initialized udl on minor 2 [ 362.989337][ T9] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 363.027670][ T9] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 363.064591][ T5808] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 363.081316][ T9] usb 4-1: USB disconnect, device number 9 [ 363.109503][ T5808] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 363.117304][T14034] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3654'. [ 363.133680][T14034] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 363.628941][T14048] loop0: detected capacity change from 0 to 1024 [ 363.673162][T14050] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 363.753661][T14048] hfsplus: invalid file type 03755 for inode 20 [ 364.060148][T14062] JFS: discard option not supported on device [ 364.067576][T14062] Mount JFS Failure: -22 [ 364.076646][T14062] jfs_mount failed w/return code = -22 [ 364.315862][T14072] netlink: 'syz.1.3673': attribute type 10 has an invalid length. [ 364.338681][T14072] bridge0: port 3(5) entered blocking state [ 364.345043][T14072] bridge0: port 3(5) entered disabled state [ 364.363870][T14072] A link change request failed with some changes committed already. Interface 5 may have been left with an inconsistent configuration, please check. [ 364.392685][T14076] loop4: detected capacity change from 0 to 1024 [ 364.400239][ T787] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 364.609118][ T787] usb 4-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 364.634527][ T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 364.669746][ T787] usb 4-1: config 0 descriptor?? [ 365.117902][ T787] usb 4-1: Cannot set MAC address [ 365.132026][ T787] MOSCHIP usb-ethernet driver: probe of 4-1:0.0 failed with error -71 [ 365.169988][ T787] usb 4-1: USB disconnect, device number 10 [ 365.272947][T14100] loop1: detected capacity change from 0 to 256 [ 365.578425][T14110] __nla_validate_parse: 3 callbacks suppressed [ 365.578444][T14110] netlink: 144316 bytes leftover after parsing attributes in process `syz.1.3692'. [ 365.602237][T14110] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3692'. [ 366.338394][T10026] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 366.533490][T10026] usb 4-1: config 1 has an invalid interface number: 94 but max is 0 [ 366.553114][T10026] usb 4-1: config 1 has no interface number 0 [ 366.573462][T10026] usb 4-1: config 1 interface 94 altsetting 233 endpoint 0xA has an invalid bInterval 0, changing to 7 [ 366.597911][T10026] usb 4-1: config 1 interface 94 altsetting 233 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 366.628254][T10026] usb 4-1: config 1 interface 94 has no altsetting 0 [ 366.645568][T10026] usb 4-1: New USB device found, idVendor=2100, idProduct=9e66, bcdDevice=c7.28 [ 366.669073][T10026] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.947778][T10026] usb 4-1: string descriptor 0 read error: -71 [ 366.971318][T10026] ftdi_sio 4-1:1.94: FTDI USB Serial Device converter detected [ 366.993045][T10026] ftdi_sio ttyUSB0: unknown device type: 0xc728 [ 367.022844][T10026] usb 4-1: USB disconnect, device number 11 [ 367.031499][T10026] ftdi_sio 4-1:1.94: device disconnected [ 367.446999][T14170] loop0: detected capacity change from 0 to 1024 [ 367.477515][T14170] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 367.500019][T14174] netlink: 'syz.4.3724': attribute type 21 has an invalid length. [ 367.512448][T14174] netlink: 'syz.4.3724': attribute type 6 has an invalid length. [ 367.552778][T14174] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3724'. [ 367.827482][T14182] loop4: detected capacity change from 0 to 256 [ 367.870051][T14182] exfat: Deprecated parameter 'utf8' [ 367.915358][T14182] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 367.939299][T14185] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3729'. [ 367.960910][T14185] netlink: 28 bytes leftover after parsing attributes in process `syz.3.3729'. [ 367.986207][T14185] netlink: 36 bytes leftover after parsing attributes in process `syz.3.3729'. [ 368.743958][T14211] ieee802154 phy1 wpan1: encryption failed: -22 [ 368.824456][T14215] bond0: (slave erspan0): Enslaving as an active interface with an up link [ 369.527078][ T27] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 369.566030][T14242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3754'. [ 369.740251][ T27] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 369.768195][ T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 369.808096][ T27] usb 5-1: config 0 descriptor?? [ 369.836594][ T27] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 370.125998][T14256] loop0: detected capacity change from 0 to 4096 [ 370.261488][ T27] gspca_stv06xx: I2C: Read error writing address: -71 [ 370.299021][ T27] usb 5-1: USB disconnect, device number 8 [ 371.080725][T14283] loop3: detected capacity change from 0 to 4096 [ 371.255642][T14283] ntfs: volume version 3.1. [ 371.309327][T14291] loop4: detected capacity change from 0 to 4096 [ 371.744992][T14304] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3777'. [ 372.331582][T14325] devtmpfs: Cannot enable quota on remount [ 372.470722][T14329] random: crng reseeded on system resumption [ 372.898702][T14345] netlink: 'syz.0.3797': attribute type 17 has an invalid length. [ 372.937245][T14345] netlink: 'syz.0.3797': attribute type 16 has an invalid length. [ 372.956122][T14345] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3797'. [ 373.001652][T14348] xt_hashlimit: size too large, truncated to 1048576 [ 373.309195][ T27] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 373.518346][ T27] usb 5-1: Using ep0 maxpacket: 16 [ 373.528772][ T27] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 373.552039][ T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 373.568203][ T27] usb 5-1: Product: syz [ 373.578191][ T27] usb 5-1: Manufacturer: syz [ 373.586627][ T27] usb 5-1: SerialNumber: syz [ 373.600427][ T27] r8152-cfgselector 5-1: config 0 descriptor?? [ 373.791189][T14375] loop1: detected capacity change from 0 to 512 [ 373.809455][T14375] EXT4-fs: inline encryption not supported [ 373.845753][T14375] EXT4-fs: Ignoring removed mblk_io_submit option [ 373.876784][T14375] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 373.899049][T14375] EXT4-fs (loop1): Test dummy encryption mode enabled [ 373.928031][T14375] EXT4-fs (loop1): orphan cleanup on readonly fs [ 373.934528][T14375] EXT4-fs error (device loop1): ext4_orphan_get:1398: comm syz.1.3810: inode #13: comm syz.1.3810: iget: illegal inode # [ 373.958034][T14375] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.3810: couldn't read orphan inode 13 (err -117) [ 374.020413][T14375] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 374.061125][ T27] r8152-cfgselector 5-1: Unknown version 0x0000 [ 374.108680][ T27] r8152-cfgselector 5-1: USB disconnect, device number 9 [ 374.164802][T14375] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 374.199277][T14375] EXT4-fs error (device loop1): __ext4_remount:6752: comm syz.1.3810: Abort forced by user [ 374.232642][T14375] EXT4-fs (loop1): Remounting filesystem read-only [ 374.261393][T14375] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 374.366518][T14390] loop3: detected capacity change from 0 to 128 [ 374.376768][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 374.394251][T14390] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 374.426499][T14390] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 374.755128][T14400] loop1: detected capacity change from 0 to 512 [ 374.789404][T14400] EXT4-fs: Ignoring removed mblk_io_submit option [ 374.796616][T14402] loop3: detected capacity change from 0 to 1024 [ 374.819469][T14400] EXT4-fs (loop1): orphan cleanup on readonly fs [ 374.840033][T14400] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 374.879113][T14402] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 374.924546][T14400] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.3823: attempt to clear invalid blocks 2 len 1 [ 374.983984][T14400] EXT4-fs (loop1): Remounting filesystem read-only [ 375.002734][T14402] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.3822: lblock 2 mapped to illegal pblock 2 (length 1) [ 375.024254][T14400] EXT4-fs (loop1): 1 truncate cleaned up [ 375.028608][T14410] netlink: 'syz.0.3825': attribute type 3 has an invalid length. [ 375.038376][T14400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 375.051282][T14410] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.3825'. [ 375.074650][T14402] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 375.098114][T14402] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.3822: lblock 0 mapped to illegal pblock 48 (length 1) [ 375.158163][T14402] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 375.167562][T14402] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.3822: Failed to acquire dquot type 0 [ 375.226902][T14402] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 375.254853][T14402] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.3822: mark_inode_dirty error [ 375.272920][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.286045][T14414] loop0: detected capacity change from 0 to 764 [ 375.294529][T14402] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117) [ 375.331752][T14402] EXT4-fs (loop3): 1 orphan inode deleted [ 375.348793][T14414] rock: directory entry would overflow storage [ 375.360365][T14402] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 375.368478][ T1140] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 375.388086][T14414] rock: sig=0x4654, size=5, remaining=4 [ 375.478028][ T1140] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 375.531463][ T1140] EXT4-fs error (device loop3): ext4_release_dquot:6985: comm kworker/u4:6: Failed to release dquot type 0 [ 375.682655][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 375.700217][ T1140] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1) [ 375.757509][ T1140] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 375.787909][ T1140] EXT4-fs error (device loop3): ext4_release_dquot:6985: comm kworker/u4:6: Failed to release dquot type 0 [ 375.816808][ T5777] EXT4-fs error (device loop3): __ext4_get_inode_loc:4489: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 375.839805][T14429] netlink: 256 bytes leftover after parsing attributes in process `syz.0.3836'. [ 375.853105][ T5777] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 375.888112][ T5777] EXT4-fs error (device loop3): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error [ 376.670628][T14460] IPVS: sync thread started: state = BACKUP, mcast_ifn = macvlan1, syncid = 2, id = 0 [ 377.372283][T14482] netlink: 'syz.1.3859': attribute type 1 has an invalid length. [ 377.393753][T14482] netlink: 244 bytes leftover after parsing attributes in process `syz.1.3859'. [ 377.395283][T14486] cifs: Unknown parameter '[bITH&S)&:"1:ӭ'4,Zz-#F<]%gC [ 377.395283][T14486] SȘȞZ6' [ 377.611067][T14488] xt_CT: You must specify a L4 protocol and not use inversions on it [ 378.052582][T14506] loop1: detected capacity change from 0 to 1024 [ 379.049196][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.069431][T14507] loop0: detected capacity change from 0 to 32768 [ 379.168759][T14507] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 379.232453][T14547] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3886'. [ 379.416107][T14507] XFS (loop0): Ending clean mount [ 379.498116][ T27] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 379.574432][T14559] netlink: 'syz.3.3892': attribute type 6 has an invalid length. [ 379.592730][ T5770] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 379.691889][ T27] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 379.724791][ T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 379.734775][ T27] usb 5-1: Product: syz [ 379.739806][ T27] usb 5-1: Manufacturer: syz [ 379.747200][ T27] usb 5-1: SerialNumber: syz [ 379.770489][ T27] r8152-cfgselector 5-1: config 0 descriptor?? [ 380.130633][T14568] CIFS mount error: No usable UNC path provided in device string! [ 380.130633][T14568] [ 380.136819][ T28] audit: type=1326 audit(2000000010.930:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14567 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 380.141296][T14568] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 380.213770][ T28] audit: type=1326 audit(2000000010.930:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14567 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 380.249584][ T27] r8152-cfgselector 5-1: Unknown version 0x0000 [ 380.268792][ T27] r8152-cfgselector 5-1: USB disconnect, device number 10 [ 380.278984][ T28] audit: type=1326 audit(2000000010.980:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14567 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 380.330380][ T28] audit: type=1326 audit(2000000010.980:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14567 comm="syz.0.3893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 380.484436][T14576] netlink: 'syz.1.3901': attribute type 21 has an invalid length. [ 381.187022][T14604] loop0: detected capacity change from 0 to 128 [ 381.314799][T14604] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 381.363951][T14604] FAT-fs (loop0): Filesystem has been set read-only [ 381.656258][T14620] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3919'. [ 381.704375][T14623] loop0: detected capacity change from 0 to 512 [ 381.815936][T14629] loop3: detected capacity change from 0 to 128 [ 381.826152][T14623] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 381.866132][T14623] ext4 filesystem being mounted at /1009/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 381.903671][T14623] EXT4-fs error (device loop0): ext4_xattr_block_find:1879: inode #15: comm syz.0.3921: corrupted xattr block 33: e_value out of bounds [ 381.924128][T14623] EXT4-fs (loop0): Remounting filesystem read-only [ 381.972197][T14629] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 382.067428][ T5777] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 382.107237][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 382.129199][ T59] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 382.186853][ T59] Quota error (device loop0): write_blk: dquota write failed [ 382.218021][ T59] Quota error (device loop0): remove_free_dqentry: Can't write block (5) with free entries [ 382.269020][ T59] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 382.328053][ T59] Quota error (device loop0): write_blk: dquota write failed [ 382.344295][T14645] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3926'. [ 382.348306][ T59] Quota error (device loop0): free_dqentry: Can't move quota data block (5) to free list [ 382.408235][ T59] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started [ 382.460395][ T59] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 382.580010][T14650] netlink: 'syz.1.3930': attribute type 5 has an invalid length. [ 382.682328][T14655] netlink: 'syz.0.3925': attribute type 2 has an invalid length. [ 383.195153][T14675] xt_connbytes: Forcing CT accounting to be enabled [ 383.225317][T14676] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3939'. [ 383.266408][T14676] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3939'. [ 383.276888][T14666] loop4: detected capacity change from 0 to 8192 [ 383.295868][T14676] netlink: 19 bytes leftover after parsing attributes in process `syz.0.3939'. [ 383.317167][T14666] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 383.332864][T14666] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 383.347513][T14666] REISERFS (device loop4): using ordered data mode [ 383.354710][T14666] reiserfs: using flush barriers [ 383.365721][T14666] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 383.382858][T14666] REISERFS (device loop4): checking transaction log (loop4) [ 383.729362][T14666] REISERFS (device loop4): Using tea hash to sort names [ 383.738302][ T787] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 383.750716][T14666] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 383.793273][T14666] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 383.938285][ T787] usb 4-1: Using ep0 maxpacket: 16 [ 383.952629][ T787] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 383.971939][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 384.008188][ T787] usb 4-1: Product: syz [ 384.020392][ T787] usb 4-1: Manufacturer: syz [ 384.035525][ T787] usb 4-1: SerialNumber: syz [ 384.058425][ T787] r8152-cfgselector 4-1: config 0 descriptor?? [ 384.389233][T14709] raw_sendmsg: syz.0.3950 forgot to set AF_INET. Fix it! [ 384.491872][ T787] r8152-cfgselector 4-1: Unknown version 0x0000 [ 384.518444][ T787] r8152-cfgselector 4-1: USB disconnect, device number 12 [ 384.650699][T14718] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3952'. [ 384.668685][T14718] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3952'. [ 384.688366][T14718] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3952'. [ 385.077531][T14730] loop1: detected capacity change from 0 to 4096 [ 385.087334][T14733] libceph: resolve '. [ 385.087334][T14733] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 385.087334][T14733] ' (ret=-3): failed [ 385.124017][T14730] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 385.210447][T14730] ntfs: (device loop1): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 385.235319][T14730] ntfs: (device loop1): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 385.298537][T14730] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 385.307355][T14730] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 385.399585][T14730] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 385.448794][T14730] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 385.517422][T14730] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 385.558105][T14730] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 385.628865][T14730] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 385.693091][T14730] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 385.838256][T14730] ntfs: volume version 3.1. [ 385.952763][T14757] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 386.308102][T14769] SET target dimension over the limit! [ 386.581373][T14779] ieee802154 phy1 wpan1: encryption failed: -90 [ 386.698919][T14782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3977'. [ 386.732522][T14782] (unnamed net_device) (uninitialized): option lacp_active: invalid value (5) [ 386.845528][T14786] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3979'. [ 386.916721][T14788] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 386.951761][T14790] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3981'. [ 387.848648][T14792] loop3: detected capacity change from 0 to 32768 [ 387.904114][T14792] ERROR: (device loop3): diNewExt: no free extents [ 387.904114][T14792] [ 387.922538][T14792] ERROR: (device loop3): remounting filesystem as read-only [ 387.948665][T14792] ialloc: diAlloc returned -5! [ 388.288210][T14835] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4002'. [ 388.314316][T14835] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4002'. [ 388.519449][T14841] loop3: detected capacity change from 0 to 512 [ 388.559125][T14841] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 388.590555][T14841] EXT4-fs (loop3): orphan cleanup on readonly fs [ 388.611526][T14846] loop1: detected capacity change from 0 to 256 [ 388.655496][T14846] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x246f1341, utbl_chksum : 0xe619d30d) [ 388.689317][T14841] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.4004: Failed to acquire dquot type 1 [ 388.740013][T14841] EXT4-fs (loop3): Remounting filesystem read-only [ 388.767823][T14841] EXT4-fs (loop3): 1 truncate cleaned up [ 388.817320][T14841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 388.943584][T14852] AppArmor: change_hat: Invalid input, NULL hat and NULL magic [ 389.058335][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 389.257038][T14862] cgroup: Bad value for 'name' [ 389.731815][T14874] loop4: detected capacity change from 0 to 4096 [ 389.753428][T14874] ntfs3: loop4: ino=3, Correct links count -> 2. [ 389.917288][T14874] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 390.268852][T14884] loop1: detected capacity change from 0 to 4096 [ 390.309432][T14884] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 390.605983][T14884] ntfs3: loop1: failed to convert "c46c" to macromanian [ 390.925970][T14900] loop4: detected capacity change from 0 to 4096 [ 390.948082][ T1536] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 390.997401][T14900] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 391.020448][T14900] ntfs3: loop4: RAW NTFS volume: Filesystem size 0.00 Gb > volume size 0.00 Gb. Mount in read-only. [ 391.130294][ T1536] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 391.151206][ T1536] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 391.168056][ T1536] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 391.187012][ T1536] usb 4-1: Product: syz [ 391.198544][ T1536] usb 4-1: Manufacturer: syz [ 391.203265][ T1536] usb 4-1: SerialNumber: syz [ 391.238207][ T1536] usb 4-1: config 0 descriptor?? [ 391.247048][T14906] loop0: detected capacity change from 0 to 8192 [ 391.267859][ T1536] usb 4-1: Quirk or no altest; falling back to MIDI 1.0 [ 391.406665][T14912] openvswitch: netlink: Actions may not be safe on all matching packets [ 391.574008][ T1536] snd-usb-audio: probe of 4-1:0.0 failed with error -2 [ 391.651491][T10938] udevd[10938]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 391.825278][ T1536] usb 4-1: USB disconnect, device number 13 [ 391.978559][T14919] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878) [ 392.008553][T14919] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 392.230768][T14910] loop4: detected capacity change from 0 to 32768 [ 392.289361][T14910] XFS (loop4): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 392.450498][T14939] loop1: detected capacity change from 0 to 16 [ 392.461463][T14910] XFS (loop4): Ending clean mount [ 392.495597][T14939] erofs: (device loop1): mounted with root inode @ nid 36. [ 392.497177][T14910] XFS (loop4): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 392.568783][T14939] syz.1.4049: attempt to access beyond end of device [ 392.568783][T14939] loop1: rw=0, sector=34359736320, nr_sectors = 8 limit=16 [ 393.376971][T14955] loop0: detected capacity change from 0 to 4096 [ 393.409048][T14955] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 393.533202][T14955] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 393.602116][T14964] loop1: detected capacity change from 0 to 128 [ 393.609088][T14955] ntfs3: loop0: ino=1e, "file1" failed to parse mft record [ 393.616714][T14955] ntfs3: loop0: ino=1e, "file1" attr_set_size [ 393.695635][T14945] loop3: detected capacity change from 0 to 32768 [ 393.788234][T14945] jfs_lookup: iget failed on inum 4 [ 394.349252][T14980] loop4: detected capacity change from 0 to 16 [ 394.390490][T14980] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 395.328635][T15010] netlink: 'syz.3.4083': attribute type 5 has an invalid length. [ 395.455614][T14978] loop1: detected capacity change from 0 to 32768 [ 395.592415][T14978] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 395.931729][T14978] XFS (loop1): Ending clean mount [ 395.959011][T14978] XFS (loop1): Quotacheck needed: Please wait. [ 396.127247][T14978] XFS (loop1): Quotacheck: Done. [ 396.306375][ T5767] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 396.678225][T15054] netlink: 'syz.0.4102': attribute type 1 has an invalid length. [ 396.748294][T15054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4102'. [ 396.882451][T15058] IPv6: NLM_F_REPLACE set, but no existing node found! [ 397.106537][T15065] loop1: detected capacity change from 0 to 512 [ 397.139583][T15065] EXT4-fs: Ignoring removed i_version option [ 397.225797][T15065] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 397.288525][T15065] ext4 filesystem being mounted at /1013/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 397.332569][T15075] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 397.432270][T15065] EXT4-fs error (device loop1): ext4_do_update_inode:5248: inode #2: comm syz.1.4107: corrupted inode contents [ 397.447532][T15045] loop3: detected capacity change from 0 to 40427 [ 397.468222][T15045] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 397.477781][T15045] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 397.503332][T15065] EXT4-fs (loop1): Remounting filesystem read-only [ 397.558174][T15045] F2FS-fs (loop3): invalid crc value [ 397.605335][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.616548][T15045] F2FS-fs (loop3): Found nat_bits in checkpoint [ 397.800439][T15045] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 397.808077][T15045] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 397.838932][ T9] IPVS: starting estimator thread 0... [ 397.948556][T15090] IPVS: using max 16 ests per chain, 38400 per kthread [ 398.051808][T15096] loop1: detected capacity change from 0 to 1024 [ 398.237141][ T4121] hfsplus: b-tree write err: -5, ino 4 [ 398.567498][T15110] (unnamed net_device) (uninitialized): option xmit_hash_policy: invalid value (13) [ 398.705414][T15114] loop1: detected capacity change from 0 to 1024 [ 398.868593][T13249] hfsplus: b-tree write err: -5, ino 4 [ 399.002661][T15122] loop0: detected capacity change from 0 to 8 [ 399.265748][T15130] netlink: 1 bytes leftover after parsing attributes in process `syz.0.4136'. [ 399.289735][T15130] netlink: 1 bytes leftover after parsing attributes in process `syz.0.4136'. [ 400.027074][T15160] loop3: detected capacity change from 0 to 64 [ 400.388260][T15175] netlink: 156 bytes leftover after parsing attributes in process `syz.0.4155'. [ 400.606920][T15178] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 400.617305][T15178] overlayfs: conflicting options: metacopy=off,verity=require [ 401.198219][T15193] loop0: detected capacity change from 0 to 4096 [ 401.212483][T15169] loop3: detected capacity change from 0 to 32768 [ 401.221130][T15193] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 401.233163][T15169] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.4154 (15169) [ 401.248123][ T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 401.312093][T15199] erspan2: entered allmulticast mode [ 401.320116][T15169] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 401.320430][T15193] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 401.343949][T15169] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 401.379495][T15169] BTRFS info (device loop3): using free space tree [ 401.448654][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 401.486939][ T9] usb 5-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d [ 401.497878][T15169] BTRFS info (device loop3): enabling ssd optimizations [ 401.538031][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 401.556488][T15169] BTRFS info (device loop3): auto enabling async discard [ 401.558686][ T9] usb 5-1: Product: syz [ 401.593396][ T9] usb 5-1: Manufacturer: syz [ 401.639436][ T9] usb 5-1: SerialNumber: syz [ 401.659280][ T9] usb 5-1: config 0 descriptor?? [ 401.690744][ T9] gspca_main: sonixj-2.14.0 probing 0c45:613a [ 401.749334][T15219] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4171'. [ 401.764077][ T5777] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 402.092583][ T9] gspca_sonixj: reg_r err -71 [ 402.097479][ T9] sonixj: probe of 5-1:0.0 failed with error -71 [ 402.153382][ T9] usb 5-1: USB disconnect, device number 11 [ 402.424620][T15228] loop3: detected capacity change from 0 to 8192 [ 402.496290][T15228] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 402.578338][T15228] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 402.587065][T15237] erspan1: entered allmulticast mode [ 402.663560][T15228] REISERFS (device loop3): using ordered data mode [ 402.705755][T15241] netlink: 'syz.1.4180': attribute type 1 has an invalid length. [ 402.718589][T15228] reiserfs: using flush barriers [ 402.728445][T15228] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 402.737253][T15241] netlink: 'syz.1.4180': attribute type 3 has an invalid length. [ 402.785129][T15228] REISERFS (device loop3): checking transaction log (loop3) [ 402.809230][T15241] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4180'. [ 403.082202][T15228] REISERFS (device loop3): Using tea hash to sort names [ 403.110787][T15228] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 403.152861][T15251] loop4: detected capacity change from 0 to 2048 [ 403.181100][T15251] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 403.697288][T15263] sctp: [Deprecated]: syz.3.4191 (pid 15263) Use of struct sctp_assoc_value in delayed_ack socket option. [ 403.697288][T15263] Use struct sctp_sack_info instead [ 404.297695][T15285] netlink: 'syz.4.4203': attribute type 8 has an invalid length. [ 404.328227][T15285] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.4203'. [ 404.832459][T15297] loop1: detected capacity change from 0 to 4096 [ 404.864817][T15297] __ntfs_error: 12 callbacks suppressed [ 404.864840][T15297] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing. [ 404.907720][T15297] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 404.955621][T15297] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 405.018873][T15297] ntfs: volume version 3.1. [ 405.330774][ T5767] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 405.710047][T15328] binder: 15326:15328 ioctl c018620c 200000000380 returned -22 [ 405.937431][T15334] loop3: detected capacity change from 0 to 2048 [ 406.053021][T15340] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 406.182367][T15334] NILFS (loop3): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3) [ 406.220909][T15334] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=16) [ 406.283712][T15334] Remounting filesystem read-only [ 406.300227][T15334] NILFS (loop3): error -5 truncating bmap (ino=16) [ 406.308438][T15346] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4228'. [ 406.317549][T15346] bridge_slave_1: left allmulticast mode [ 406.325003][T15346] bridge_slave_1: left promiscuous mode [ 406.336454][T15348] loop4: detected capacity change from 0 to 256 [ 406.343183][T15346] bridge0: port 2(bridge_slave_1) entered disabled state [ 406.381231][T15346] bridge_slave_0: left allmulticast mode [ 406.387109][T15346] bridge_slave_0: left promiscuous mode [ 406.409558][T15348] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x99a53fd9, utbl_chksum : 0xe619d30d) [ 406.434318][T15346] bridge0: port 1(bridge_slave_0) entered disabled state [ 406.461864][ T5777] NILFS (loop3): discard dirty page: offset=4096, ino=6 [ 406.488021][ T5777] NILFS (loop3): discard dirty block: blocknr=39, size=1024 [ 406.500655][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.521281][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.531883][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.548941][ T5777] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 406.557884][ T5777] NILFS (loop3): discard dirty page: offset=0, ino=16 [ 406.570096][ T5777] NILFS (loop3): discard dirty block: blocknr=23, size=1024 [ 406.586259][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.605704][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.626660][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.663486][ T5777] NILFS (loop3): discard dirty page: offset=0, ino=3 [ 406.673970][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.724216][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.733324][ T5777] NILFS (loop3): discard dirty block: blocknr=44, size=1024 [ 406.748493][ T5777] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 406.822284][T15354] loop0: detected capacity change from 0 to 256 [ 406.904921][T15354] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x68afaf67, utbl_chksum : 0xe619d30d) [ 407.094563][T15361] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4236'. [ 407.146832][T15361] ip6tnl2: entered allmulticast mode [ 407.602404][T15375] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4242'. [ 407.633845][T15375] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4242'. [ 408.088292][ T5808] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 408.151635][T15364] loop4: detected capacity change from 0 to 40427 [ 408.169857][T15364] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 408.185123][T15364] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 408.216729][T15364] F2FS-fs (loop4): invalid crc value [ 408.233570][T15364] F2FS-fs (loop4): Found nat_bits in checkpoint [ 408.278032][ T5808] usb 2-1: Using ep0 maxpacket: 32 [ 408.307046][ T5808] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 408.321430][T15364] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 408.332643][ T5808] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 408.338139][T15364] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 408.361036][ T5808] usb 2-1: Product: syz [ 408.377781][ T5808] usb 2-1: Manufacturer: syz [ 408.400576][ T5808] usb 2-1: SerialNumber: syz [ 408.420797][ T5808] usb 2-1: config 0 descriptor?? [ 408.872726][ T5808] airspy 2-1:0.0: usb_control_msg() failed -71 request 0a [ 408.901940][ T5808] airspy 2-1:0.0: Could not detect board [ 408.907859][ T5808] airspy: probe of 2-1:0.0 failed with error -71 [ 408.969313][ T5808] usb 2-1: USB disconnect, device number 16 [ 409.227858][T15395] iommufd_mock iommufd_mock1: Adding to iommu group 0 [ 409.796645][T15386] loop0: detected capacity change from 0 to 32768 [ 409.921343][T15386] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.4246 (15386) [ 409.969959][T15411] loop3: detected capacity change from 0 to 2048 [ 409.999865][T15411] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 410.042582][T15386] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 410.043918][T15416] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 410.091716][T15386] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 410.115895][T15386] BTRFS info (device loop0): enabling auto defrag [ 410.122954][T15386] BTRFS info (device loop0): use no compression [ 410.131438][T15386] BTRFS info (device loop0): force clearing of disk cache [ 410.141772][T15386] BTRFS info (device loop0): max_inline at 4096 [ 410.158426][T15386] BTRFS info (device loop0): disabling free space tree [ 410.367690][T15386] BTRFS info (device loop0): enabling ssd optimizations [ 410.414596][T15386] BTRFS info (device loop0): auto enabling async discard [ 410.471545][T15386] BTRFS info (device loop0): rebuilding free space tree [ 410.595000][T15386] BTRFS info (device loop0): disabling free space tree [ 410.610756][T15386] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 410.627390][T15386] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 411.169228][ T5770] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 411.227060][T15460] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4274'. [ 412.363686][T15496] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4290'. [ 412.751920][T15512] loop4: detected capacity change from 0 to 1764 [ 413.231456][T15531] loop1: detected capacity change from 0 to 512 [ 413.254126][T15531] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 413.272257][T15525] loop4: detected capacity change from 0 to 4096 [ 413.312496][T15525] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 413.375230][T15531] EXT4-fs (loop1): 1 truncate cleaned up [ 413.409714][T15531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 413.630219][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 413.791382][T15543] netlink: 224 bytes leftover after parsing attributes in process `syz.3.4312'. [ 414.007115][T15551] loop3: detected capacity change from 0 to 256 [ 414.288592][T15559] dlm: no local IP address has been set [ 414.294923][T15559] dlm: cannot start dlm midcomms -107 [ 415.073913][T15551] FAT-fs (loop3): error, fat_get_cluster: detected the cluster chain loop (i_pos 194) [ 415.085471][T15551] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 194) [ 415.588151][ T5808] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 415.790229][ T5808] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 415.822935][ T5808] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 415.847009][ T5808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 415.875077][ T5808] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 415.975396][T15615] loop4: detected capacity change from 0 to 164 [ 416.022461][T15615] ISOFS: Logical zone size(0) < hardware blocksize(1024) [ 416.108626][T15619] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4350'. [ 416.557325][T15633] loop1: detected capacity change from 0 to 1024 [ 416.699018][T15633] hfsplus: keylen 65060 too large [ 416.704919][T15633] hfsplus: keylen 65060 too large [ 416.775699][T15641] xt_hashlimit: max too large, truncated to 1048576 [ 416.959110][ T5808] stv0680 4-1:4.0: STV(e): camera ping failed!! [ 417.038260][ T5781] Bluetooth: hci2: command 0x0c1a tx timeout [ 417.167069][ T5808] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 417.179560][ T5808] stv0680 4-1:4.0: last error: 179, command = 0x17 [ 417.207152][ T5808] usb 4-1: USB disconnect, device number 14 [ 417.284998][T15657] loop4: detected capacity change from 0 to 256 [ 417.537401][T15667] loop4: detected capacity change from 0 to 256 [ 417.559727][T15667] exfat: Deprecated parameter 'namecase' [ 417.651681][T15667] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf4419509, utbl_chksum : 0xe619d30d) [ 417.728521][T15671] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 418.591899][T15669] loop1: detected capacity change from 0 to 32768 [ 418.638246][ T5808] usb 5-1: new full-speed USB device number 12 using dummy_hcd [ 418.652542][T15669] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 418.762017][T15669] XFS (loop1): Ending clean mount [ 418.794864][T15669] XFS (loop1): Quotacheck needed: Please wait. [ 418.843449][ T5808] usb 5-1: config 0 has an invalid interface number: 11 but max is 0 [ 418.865020][ T5808] usb 5-1: config 0 has no interface number 0 [ 418.874560][ T5808] usb 5-1: config 0 interface 11 altsetting 253 endpoint 0x7 has invalid maxpacket 1023, setting to 64 [ 418.917397][ T5808] usb 5-1: config 0 interface 11 altsetting 253 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 418.965821][T15669] XFS (loop1): Quotacheck: Done. [ 418.972706][ T5808] usb 5-1: config 0 interface 11 altsetting 253 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 418.995416][ T5808] usb 5-1: config 0 interface 11 has no altsetting 0 [ 419.015749][ T5808] usb 5-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b [ 419.025083][ T5808] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 419.036043][ T5808] usb 5-1: config 0 descriptor?? [ 419.048720][T15689] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 419.056101][T15689] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 419.067067][ T5808] keyspan 5-1:0.11: Keyspan 2 port adapter converter detected [ 419.080225][T15705] SET target dimension over the limit! [ 419.088463][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 81 [ 419.096519][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 82 [ 419.122891][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 1 [ 419.131148][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 2 [ 419.139307][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 85 [ 419.152369][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 5 [ 419.152656][ T5767] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 419.182384][ T5808] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 419.218188][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 83 [ 419.245124][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 84 [ 419.274833][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 3 [ 419.294577][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 4 [ 419.317748][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 86 [ 419.362725][ T5808] keyspan 5-1:0.11: found no endpoint descriptor for endpoint 6 [ 419.409271][ T5808] usb 5-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 419.448618][ T5808] usb 5-1: USB disconnect, device number 12 [ 419.501815][ T5808] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0 [ 419.568782][ T5808] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1 [ 419.621411][ T5808] keyspan 5-1:0.11: device disconnected [ 420.287157][T15709] loop3: detected capacity change from 0 to 32768 [ 420.316249][T15719] loop4: detected capacity change from 0 to 64 [ 420.399611][T15709] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 420.622923][T15731] mmap: syz.4.4398 (15731): VmData 37453824 exceed data ulimit 131072. Update limits or use boot option ignore_rlimit_data. [ 420.899934][T15709] XFS (loop3): Ending clean mount [ 420.997697][T15739] xt_cgroup: xt_cgroup: no path or classid specified [ 421.037265][T15737] loop1: detected capacity change from 0 to 1024 [ 421.163164][T15737] hfsplus: invalid file type 0113366 for inode 2 [ 421.188813][T15737] hfsplus: failed to load root directory [ 421.230622][ T5777] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 422.054001][T15759] loop1: detected capacity change from 0 to 64 [ 422.518917][T15773] loop3: detected capacity change from 0 to 256 [ 423.285962][T15793] loop3: detected capacity change from 0 to 4096 [ 423.336235][T15793] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 423.385846][T15793] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 423.444821][T15793] ntfs3: loop3: volume is dirty and "force" flag is not set! [ 423.450940][T15801] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4430'. [ 423.505516][T15801] netlink: 28 bytes leftover after parsing attributes in process `syz.4.4430'. [ 424.108275][T15817] : renamed from bond_slave_0 (while UP) [ 424.138911][T15819] netlink: 'syz.4.4439': attribute type 2 has an invalid length. [ 424.146821][T15819] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.4439'. [ 424.788208][T15839] netlink: 152 bytes leftover after parsing attributes in process `syz.4.4449'. [ 424.797435][T15839] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4449'. [ 424.839607][T15843] xt_CT: You must specify a L4 protocol and not use inversions on it [ 425.204254][T15855] xt_recent: hitcount (4294967293) is larger than allowed maximum (255) [ 425.475998][T15861] loop4: detected capacity change from 0 to 22 [ 425.504515][T15861] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 425.533541][T15861] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 425.709103][T15869] loop3: detected capacity change from 0 to 8 [ 425.716300][T15869] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 425.754893][T10938] udevd[10938]: incorrect cramfs checksum on /dev/loop3 [ 425.826007][T15869] cramfs: Error -3 while decompressing! [ 425.844281][T15869] cramfs: ffffffff973f4368(26)->ffff88806bf8a000(4096) [ 425.858113][T15869] cramfs: Error -3 while decompressing! [ 425.874636][T15869] cramfs: ffffffff973f4382(26)->ffff88806bf8b000(4096) [ 425.894934][T15869] cramfs: Error -3 while decompressing! [ 425.929054][T15869] cramfs: ffffffff973f439c(16)->ffff88806b162000(4096) [ 425.936745][T15847] loop1: detected capacity change from 0 to 32768 [ 425.951138][T15869] cramfs: Error -3 while decompressing! [ 425.960741][T15869] cramfs: ffffffff973f4368(26)->ffff88806bf8a000(4096) [ 425.963524][T15875] netlink: 96 bytes leftover after parsing attributes in process `syz.4.4467'. [ 426.078033][T15847] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 426.123226][T15877] syz.0.4468 (15877): drop_caches: 2 [ 426.132853][T15847] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 426.536060][T15847] XFS (loop1): Ending clean mount [ 426.708584][ T5767] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 426.982279][T15904] loop4: detected capacity change from 0 to 4096 [ 427.016863][T15904] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 427.098539][ T787] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 427.128086][T15904] ntfs3: loop4: Failed to initialize $Extend/$Reparse. [ 427.304681][ T787] usb 4-1: Using ep0 maxpacket: 8 [ 427.336039][ T787] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 427.359707][ T787] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 427.387134][ T787] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 427.408085][ T787] usb 4-1: Product: syz [ 427.412338][ T787] usb 4-1: Manufacturer: syz [ 427.447601][ T787] usb 4-1: SerialNumber: syz [ 427.472560][T10072] ntfs3: loop4: ino=1a, ntfs_sync_fs failed, -22. [ 427.573216][ T2910] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 427.599480][ T2910] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 427.708514][ T787] usb 4-1: Handspring Visor / Palm OS: No valid connect info available [ 427.731066][ T787] usb 4-1: Handspring Visor / Palm OS: port 208, is for unknown use [ 427.746733][ T787] usb 4-1: Handspring Visor / Palm OS: port 187, is for Console use [ 427.755446][ T787] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2 [ 427.801867][T15923] loop1: detected capacity change from 0 to 4096 [ 427.824852][T15923] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 427.854135][T15923] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 427.884645][T15923] ntfs3: loop1: volume is dirty and "force" flag is not set! [ 427.912445][ T787] usb 4-1: palm_os_3_probe - error -71 getting bytes available request [ 427.943421][ T787] visor 4-1:1.0: Handspring Visor / Palm OS converter detected [ 427.988791][ T787] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 428.048915][ T787] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 428.065743][ T787] usb 4-1: USB disconnect, device number 15 [ 428.112223][ T787] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 428.176136][ T787] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 428.211229][ T787] visor 4-1:1.0: device disconnected [ 428.275680][T15939] netlink: 'syz.4.4493': attribute type 10 has an invalid length. [ 428.358438][T15942] loop1: detected capacity change from 0 to 64 [ 428.365163][T15939] team0: Device veth1_macvtap failed to register rx_handler [ 429.093893][T15965] loop0: detected capacity change from 0 to 64 [ 429.180699][T15968] ubi31: attaching mtd0 [ 429.211670][T15968] ubi31: scanning is finished [ 429.216784][T15968] ubi31: empty MTD device detected [ 429.218608][T15965] syz.0.4507: attempt to access beyond end of device [ 429.218608][T15965] loop0: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 429.273259][T15965] Buffer I/O error on dev loop0, logical block 1295, async page read [ 429.294013][T15965] syz.0.4507: attempt to access beyond end of device [ 429.294013][T15965] loop0: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 429.323687][T15965] Buffer I/O error on dev loop0, logical block 1295, async page read [ 429.341684][ T28] audit: type=1800 audit(2000000060.130:170): pid=15965 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4507" name="file2" dev="loop0" ino=6 res=0 errno=0 [ 429.438481][T15968] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 429.458670][T15968] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 429.488091][T15968] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 429.511108][T15974] block device autoloading is deprecated and will be removed. [ 429.518288][T15968] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 429.538138][T15968] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 429.545259][T15968] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 429.598236][T15968] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2664867888 [ 429.667555][T15968] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 429.721276][T15975] ubi31: background thread "ubi_bgt31d" started, PID 15975 [ 429.749612][T15981] netlink: 209844 bytes leftover after parsing attributes in process `syz.3.4514'. [ 430.289274][ T28] audit: type=1326 audit(2000000061.090:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.1.4522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750519c799 code=0x7ffc0000 [ 430.343154][ T28] audit: type=1326 audit(2000000061.090:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.1.4522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750519c799 code=0x7ffc0000 [ 430.428057][ T28] audit: type=1326 audit(2000000061.090:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.1.4522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f750519c799 code=0x7ffc0000 [ 430.498046][ T28] audit: type=1326 audit(2000000061.090:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15995 comm="syz.1.4522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f750519c799 code=0x7ffc0000 [ 431.101076][T16027] overlayfs: conflicting options: metacopy=on,redirect_dir=nofollow [ 431.120956][T16028] cgroup: none used incorrectly [ 432.040577][T16058] x_tables: duplicate underflow at hook 2 [ 432.748362][ T27] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 432.953178][ T27] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 432.972915][ T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 432.988426][ T27] usb 1-1: Product: syz [ 432.998401][ T27] usb 1-1: Manufacturer: syz [ 432.999525][T16088] loop3: detected capacity change from 0 to 1024 [ 433.008711][ T27] usb 1-1: SerialNumber: syz [ 433.037845][ T27] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 433.080203][ T23] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 433.256858][ T4121] hfsplus: b-tree write err: -5, ino 4 [ 433.366365][T16096] loop4: detected capacity change from 0 to 4096 [ 433.391934][T16098] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 433.500238][T16096] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 433.640606][ T27] usb 1-1: USB disconnect, device number 16 [ 433.956749][ T28] audit: type=1107 audit(2000000064.730:175): pid=16106 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 434.138724][T16116] netlink: 14 bytes leftover after parsing attributes in process `syz.4.4580'. [ 434.355165][T16116] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 434.445475][T16116] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 434.478061][ T23] usb 1-1: Service connection timeout for: 256 [ 434.496328][ T23] ath9k_htc 1-1:1.0: ath9k_htc: Unable to initialize HTC services [ 434.507840][T16116] bond0 (unregistering): Released all slaves [ 434.538051][ T23] ath9k_htc: Failed to initialize the device [ 434.557250][ T27] usb 1-1: ath9k_htc: USB layer deinitialized [ 435.072976][T16142] ieee802154 phy1 wpan1: encryption failed: -22 [ 435.187334][T16148] tmpfs: Bad value for 'mpol' [ 436.060966][ T28] audit: type=1400 audit(2000000066.860:176): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=16180 comm="syz.4.4611" [ 436.143477][T16183] loop1: detected capacity change from 0 to 64 [ 436.225066][T16183] syz.1.4612: attempt to access beyond end of device [ 436.225066][T16183] loop1: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 436.241073][ T787] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 436.300827][T16183] Buffer I/O error on dev loop1, logical block 134217734, async page read [ 436.322434][T16190] netlink: 'syz.4.4615': attribute type 11 has an invalid length. [ 436.353496][T16190] netlink: 212832 bytes leftover after parsing attributes in process `syz.4.4615'. [ 436.436896][T16183] Trying to free block not in datazone [ 436.478174][ T787] usb 4-1: Using ep0 maxpacket: 16 [ 436.502235][T16194] netlink: 72 bytes leftover after parsing attributes in process `syz.4.4618'. [ 436.504557][ T787] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 436.541995][ T787] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 436.563896][ T787] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 436.583801][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 436.605966][ T787] usb 4-1: Product: syz [ 436.610762][ T787] usb 4-1: Manufacturer: syz [ 436.615426][ T787] usb 4-1: SerialNumber: syz [ 436.755484][T16202] loop4: detected capacity change from 0 to 16 [ 436.782001][T16202] erofs: (device loop4): mounted with root inode @ nid 36. [ 436.839523][T16202] erofs: (device loop4): erofs_init_inode_xattrs: xattr_isize 12 of nid 46 is not supported yet [ 436.892940][ T787] usb 4-1: 0:2 : does not exist [ 436.909562][ T787] usb 4-1: unit 9 not found! [ 436.932269][ T787] usb 4-1: 4:0: cannot get min/max values for control 3 (id 4) [ 436.966911][ T787] usb 4-1: 4:0: cannot get min/max values for control 9 (id 4) [ 437.011716][ T787] usb 4-1: USB disconnect, device number 16 [ 437.072509][T10938] udevd[10938]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 437.587447][T16226] loop0: detected capacity change from 0 to 2048 [ 437.699607][T16226] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 437.727630][T16226] ext4 filesystem being mounted at /1201/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 437.797008][T16226] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #15: comm syz.0.4627: corrupted xattr block 128: overlapping e_value [ 437.893786][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.978884][ T787] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 438.186376][T16248] netlink: 14 bytes leftover after parsing attributes in process `syz.3.4637'. [ 438.200875][ T787] usb 2-1: unable to get BOS descriptor or descriptor too short [ 438.226220][ T787] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 438.246602][ T787] usb 2-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 438.271918][ T787] usb 2-1: config 1 interface 0 has no altsetting 1 [ 438.291116][ T787] usb 2-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75 [ 438.326113][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 438.337107][T16248] bond0 (unregistering): (slave 30): Releasing backup interface [ 438.353350][ T787] usb 2-1: Product: syz [ 438.357678][ T787] usb 2-1: Manufacturer: syz [ 438.378069][ T787] usb 2-1: SerialNumber: syz [ 438.383634][T16248] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 438.402819][ T787] smsusb:smsusb_probe: board id=8, interface number 0 [ 438.435932][T16248] bond0 (unregistering): Released all slaves [ 438.492821][ T28] audit: type=1326 audit(2000000069.290:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.4641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 438.535354][ T28] audit: type=1326 audit(2000000069.290:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.4641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 438.558960][ C1] vkms_vblank_simulate: vblank timer overrun [ 438.595065][ T28] audit: type=1326 audit(2000000069.290:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.4641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 438.606938][ T787] smsusb:smsusb_probe: Device initialized with return code -19 [ 438.636838][ T28] audit: type=1326 audit(2000000069.290:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.4641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 438.659360][ C1] vkms_vblank_simulate: vblank timer overrun [ 438.706560][ T28] audit: type=1326 audit(2000000069.290:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16255 comm="syz.0.4641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f68cff9c799 code=0x7ffc0000 [ 438.729248][ C1] vkms_vblank_simulate: vblank timer overrun [ 438.836978][ T787] usb 2-1: USB disconnect, device number 17 [ 439.498077][ T1536] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 439.722565][ T1536] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 439.733233][ T1536] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 1 [ 439.760896][ T1536] usb 5-1: New USB device found, idVendor=0499, idProduct=5002, bcdDevice=2a.7a [ 439.783947][ T1536] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 439.802804][ T1536] usb 5-1: Product: syz [ 439.807056][ T1536] usb 5-1: Manufacturer: 濦턁닫鼮㴩횠茶瞤歜ง๡䳲敯𿌼 [ 439.834695][ T1536] usb 5-1: SerialNumber: syz [ 439.844632][ T28] audit: type=1326 audit(2000000070.640:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16302 comm="syz.3.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218559c799 code=0x7ffc0000 [ 439.880921][ T28] audit: type=1326 audit(2000000070.640:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16302 comm="syz.3.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218559c799 code=0x7ffc0000 [ 439.940058][ T28] audit: type=1326 audit(2000000070.680:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16302 comm="syz.3.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f218559c799 code=0x7ffc0000 [ 439.962438][ C1] vkms_vblank_simulate: vblank timer overrun [ 439.970605][ T28] audit: type=1326 audit(2000000070.680:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16302 comm="syz.3.4664" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f218559c799 code=0x7ffc0000 [ 439.993137][ C1] vkms_vblank_simulate: vblank timer overrun [ 440.104665][ T1536] usb 5-1: USB disconnect, device number 13 [ 440.118365][ T5808] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 440.157621][T16312] loop0: detected capacity change from 0 to 256 [ 440.167705][T16312] exfat: Deprecated parameter 'utf8' [ 440.199344][T16312] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 440.318426][ T5808] usb 2-1: Using ep0 maxpacket: 16 [ 440.342085][ T5808] usb 2-1: unable to get BOS descriptor or descriptor too short [ 440.357643][ T5808] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 440.378595][ T5808] usb 2-1: New USB device found, idVendor=04b8, idProduct=0202, bcdDevice= 0.40 [ 440.390474][ T5808] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 440.408095][ T5808] usb 2-1: Product: syz [ 440.418032][ T5808] usb 2-1: Manufacturer: syz [ 440.428069][ T5808] usb 2-1: SerialNumber: syz [ 440.482501][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.603413][T16313] loop3: detected capacity change from 0 to 32768 [ 440.617392][T16313] (syz.3.4669,16313,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 440.640918][T16313] (syz.3.4669,16313,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 440.684452][T16313] JBD2: Ignoring recovery information on journal [ 440.698680][ T5807] usb 2-1: USB disconnect, device number 18 [ 440.797151][T16323] netlink: 14 bytes leftover after parsing attributes in process `syz.0.4673'. [ 440.823450][T16313] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 440.949808][T16323] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 440.984687][T16323] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 441.026142][T16323] bond0 (unregistering): (slave syz_tun): Releasing backup interface [ 441.047891][T16323] bond0 (unregistering): Released all slaves [ 441.074973][ T5777] ocfs2: Unmounting device (7,3) on (node local) [ 441.263975][T16329] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4677'. [ 441.548862][T16337] loop4: detected capacity change from 0 to 1024 [ 442.132137][T16357] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4690'. [ 442.928215][T16390] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4706'. [ 442.963282][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 442.982056][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 442.998384][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.016411][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.026847][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.056903][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.092405][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.106316][T16392] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4707'. [ 443.178752][ T5808] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 443.399430][ T5808] usb 4-1: Using ep0 maxpacket: 32 [ 443.416857][ T5808] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 443.440013][ T5808] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 443.468930][ T5808] usb 4-1: config 0 descriptor?? [ 443.490614][ T5808] gspca_main: sunplus-2.14.0 probing 041e:400b [ 443.692316][ T23] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 443.849337][T16422] loop4: detected capacity change from 0 to 256 [ 443.865479][T16422] exfat: Deprecated parameter 'utf8' [ 443.888145][ T23] usb 2-1: Using ep0 maxpacket: 16 [ 443.910942][ T23] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 443.924125][ T5808] gspca_sunplus: reg_w_riv err -71 [ 443.934011][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 443.946042][ T5808] sunplus: probe of 4-1:0.0 failed with error -71 [ 443.963171][ T5808] usb 4-1: USB disconnect, device number 17 [ 443.969993][ T23] usb 2-1: Product: syz [ 443.980397][T16422] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 443.994938][ T23] usb 2-1: Manufacturer: syz [ 444.006492][ T23] usb 2-1: SerialNumber: syz [ 444.029855][ T23] r8152-cfgselector 2-1: config 0 descriptor?? [ 444.129536][T16426] (null): rxe_set_mtu: Set mtu to 4096 [ 444.144691][T16426] lo speed is unknown, defaulting to 1000 [ 444.172376][T16426] lo speed is unknown, defaulting to 1000 [ 444.192876][T16426] lo speed is unknown, defaulting to 1000 [ 444.283254][ T23] usbip-host 2-1: 2-1 is not in match_busid table... skip! [ 444.330318][T16430] loop4: detected capacity change from 0 to 256 [ 444.391890][T16430] FAT-fs (loop4): Directory bread(block 64) failed [ 444.408785][T16430] FAT-fs (loop4): Directory bread(block 65) failed [ 444.415482][T16430] FAT-fs (loop4): Directory bread(block 66) failed [ 444.422401][T16430] FAT-fs (loop4): Directory bread(block 67) failed [ 444.429296][T16430] FAT-fs (loop4): Directory bread(block 68) failed [ 444.436019][T16430] FAT-fs (loop4): Directory bread(block 69) failed [ 444.443710][T16430] FAT-fs (loop4): Directory bread(block 70) failed [ 444.454672][T16430] FAT-fs (loop4): Directory bread(block 71) failed [ 444.463307][T16430] FAT-fs (loop4): Directory bread(block 72) failed [ 444.475360][T16430] FAT-fs (loop4): Directory bread(block 73) failed [ 444.479885][ T23] lo speed is unknown, defaulting to 1000 [ 444.491780][T16430] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 444.508241][T16426] infiniband syz0: set active [ 444.526527][T16426] infiniband syz0: added lo [ 444.530861][ T23] usb 2-1: USB disconnect, device number 19 [ 444.771727][T16426] RDS/IB: syz0: added [ 444.777448][T16426] smc: adding ib device syz0 with port count 1 [ 444.785835][T16426] smc: ib device syz0 port 1 has pnetid [ 444.797359][ T5807] lo speed is unknown, defaulting to 1000 [ 444.813881][T16426] lo speed is unknown, defaulting to 1000 [ 444.835308][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 444.835325][ T28] audit: type=1326 audit(2000000075.630:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 444.899293][ T28] audit: type=1326 audit(2000000075.630:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 444.963014][ T28] audit: type=1326 audit(2000000075.630:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.007791][ T28] audit: type=1326 audit(2000000075.640:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.030303][ C1] vkms_vblank_simulate: vblank timer overrun [ 445.081689][ T28] audit: type=1326 audit(2000000075.640:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.148072][ T28] audit: type=1326 audit(2000000075.640:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.225706][ T28] audit: type=1326 audit(2000000075.640:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.328499][ T28] audit: type=1326 audit(2000000075.640:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.398071][ T28] audit: type=1326 audit(2000000075.640:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16437 comm="syz.4.4729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 445.478613][ T28] audit: type=1800 audit(2000000075.940:196): pid=16435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.4728" name="/" dev="sockfs" ino=40472 res=0 errno=0 [ 445.623718][T16426] lo speed is unknown, defaulting to 1000 [ 445.708786][T16458] cifs: Unknown parameter '2Q [ 445.708786][T16458] @"2ach}#`[T&:"1:ӭ'4,Zz-#F<]%gC [ 445.708786][T16458] S' [ 446.075120][T16426] lo speed is unknown, defaulting to 1000 [ 446.397708][T16456] loop3: detected capacity change from 0 to 32768 [ 446.432760][T16456] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.4736 (16456) [ 446.473705][T16456] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 446.504743][T16456] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 446.539648][T16456] BTRFS info (device loop3): force zlib compression, level 3 [ 446.561870][T16456] BTRFS info (device loop3): force clearing of disk cache [ 446.577822][T16456] BTRFS info (device loop3): setting nodatasum [ 446.592348][T16456] BTRFS info (device loop3): use zlib compression, level 3 [ 446.602142][T16456] BTRFS info (device loop3): allowing degraded mounts [ 446.612812][T16456] BTRFS info (device loop3): enabling disk space caching [ 446.621865][T16456] BTRFS info (device loop3): disk space caching is enabled [ 446.669400][T16426] lo speed is unknown, defaulting to 1000 [ 446.708190][T16456] BTRFS info (device loop3): enabling ssd optimizations [ 446.715530][T16456] BTRFS info (device loop3): auto enabling async discard [ 446.730905][T16456] BTRFS info (device loop3): rebuilding free space tree [ 446.754764][T16456] BTRFS info (device loop3): disabling free space tree [ 446.780746][T16456] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 446.794303][T16456] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 446.941253][ T5777] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 447.434784][T16508] netlink: 'syz.4.4755': attribute type 1 has an invalid length. [ 447.451877][T16508] __nla_validate_parse: 32 callbacks suppressed [ 447.451894][T16508] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.4755'. [ 447.779676][T16516] loop1: detected capacity change from 0 to 256 [ 447.878791][T16516] FAT-fs (loop1): Directory bread(block 64) failed [ 447.885402][T16516] FAT-fs (loop1): Directory bread(block 65) failed [ 447.943580][T16516] FAT-fs (loop1): Directory bread(block 66) failed [ 447.962554][T16516] FAT-fs (loop1): Directory bread(block 67) failed [ 447.974688][T16516] FAT-fs (loop1): Directory bread(block 68) failed [ 447.979982][T16520] loop0: detected capacity change from 0 to 256 [ 447.981990][T16516] FAT-fs (loop1): Directory bread(block 69) failed [ 448.005134][T16516] FAT-fs (loop1): Directory bread(block 70) failed [ 448.037188][T16516] FAT-fs (loop1): Directory bread(block 71) failed [ 448.047154][T16520] FAT-fs (loop0): Directory bread(block 64) failed [ 448.060204][T16516] FAT-fs (loop1): Directory bread(block 72) failed [ 448.074412][T16520] FAT-fs (loop0): Directory bread(block 65) failed [ 448.087398][T16516] FAT-fs (loop1): Directory bread(block 73) failed [ 448.089421][T16520] FAT-fs (loop0): Directory bread(block 66) failed [ 448.121904][T16520] FAT-fs (loop0): Directory bread(block 67) failed [ 448.164708][T16520] FAT-fs (loop0): Directory bread(block 68) failed [ 448.189356][T16520] FAT-fs (loop0): Directory bread(block 69) failed [ 448.198185][T16520] FAT-fs (loop0): Directory bread(block 70) failed [ 448.204869][T16520] FAT-fs (loop0): Directory bread(block 71) failed [ 448.238108][T16520] FAT-fs (loop0): Directory bread(block 72) failed [ 448.249068][T16520] FAT-fs (loop0): Directory bread(block 73) failed [ 448.297624][T16520] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 448.722735][T16529] loop1: detected capacity change from 0 to 4096 [ 448.730788][T16510] loop3: detected capacity change from 0 to 32768 [ 448.751169][T16510] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.4756 (16510) [ 448.761497][T16529] ntfs: volume version 3.1. [ 448.797088][T16510] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 448.809933][T16510] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 448.821775][T16510] BTRFS info (device loop3): using free space tree [ 448.928076][ T23] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 449.044941][T16510] BTRFS info (device loop3): enabling ssd optimizations [ 449.065987][T16510] BTRFS info (device loop3): auto enabling async discard [ 449.132705][ T23] usb 5-1: unable to get BOS descriptor or descriptor too short [ 449.161099][ T23] usb 5-1: config 129 has an invalid interface number: 135 but max is 0 [ 449.198170][ T23] usb 5-1: config 129 has an invalid interface number: 5 but max is 0 [ 449.206422][ T23] usb 5-1: config 129 has 2 interfaces, different from the descriptor's value: 1 [ 449.258087][ T23] usb 5-1: config 129 has no interface number 0 [ 449.264428][ T23] usb 5-1: config 129 has no interface number 1 [ 449.298462][ T23] usb 5-1: config 129 interface 135 altsetting 6 has 0 endpoint descriptors, different from the interface descriptor's value: 5 [ 449.332529][ T5777] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 449.342935][ T23] usb 5-1: too many endpoints for config 129 interface 5 altsetting 7: 37, using maximum allowed: 30 [ 449.400991][ T23] usb 5-1: config 129 interface 5 altsetting 7 has 0 endpoint descriptors, different from the interface descriptor's value: 37 [ 449.419621][ T23] usb 5-1: config 129 interface 135 has no altsetting 0 [ 449.426712][ T23] usb 5-1: config 129 interface 5 has no altsetting 0 [ 449.451382][ T23] usb 5-1: string descriptor 0 read error: -22 [ 449.457895][ T23] usb 5-1: New USB device found, idVendor=2040, idProduct=721f, bcdDevice=f2.00 [ 449.504608][ T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 449.589466][ T23] usb 5-1: Quirk or no altest; falling back to MIDI 1.0 [ 449.597124][ T23] usb 5-1: MIDIStreaming interface descriptor not found [ 449.908323][ T27] usb 1-1: new full-speed USB device number 17 using dummy_hcd [ 450.029711][ T5807] usb 5-1: USB disconnect, device number 14 [ 450.112357][ T27] usb 1-1: config index 0 descriptor too short (expected 39, got 27) [ 450.134103][ T27] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 450.190314][ T27] usb 1-1: config 0 interface 0 has no altsetting 0 [ 450.221771][ T27] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 450.238585][ T27] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 450.254376][ T27] usb 1-1: Product: syz [ 450.268057][ T27] usb 1-1: Manufacturer: syz [ 450.278439][ T27] usb 1-1: SerialNumber: syz [ 450.291726][ T27] usb 1-1: config 0 descriptor?? [ 450.318589][ T27] hub 1-1:0.0: bad descriptor, ignoring hub [ 450.324617][ T27] hub: probe of 1-1:0.0 failed with error -5 [ 450.345202][T16579] netlink: 'syz.1.4781': attribute type 3 has an invalid length. [ 450.354779][ T27] usb 1-1: selecting invalid altsetting 0 [ 450.412900][T16581] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4782'. [ 450.435847][T16581] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4782'. [ 450.781987][T16585] loop3: detected capacity change from 0 to 4096 [ 450.797095][T16589] netlink: 'syz.4.4786': attribute type 21 has an invalid length. [ 450.820244][T16589] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4786'. [ 450.843402][T16585] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 450.868504][ T27] usb 1-1: USB disconnect, device number 17 [ 451.035373][T16585] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 451.658219][ T787] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 451.858023][ T787] usb 5-1: Using ep0 maxpacket: 32 [ 451.871211][ T787] usb 5-1: unable to get BOS descriptor or descriptor too short [ 451.899316][ T787] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 196, changing to 7 [ 451.938426][ T787] usb 5-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40 [ 451.968084][ T787] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 451.976147][ T787] usb 5-1: Product: syz [ 452.000741][ T787] usb 5-1: Manufacturer: syz [ 452.005424][ T787] usb 5-1: SerialNumber: syz [ 452.065683][T16619] loop3: detected capacity change from 0 to 1024 [ 452.117023][T16619] hfsplus: invalid length 32517 has been corrected to 255 [ 452.291431][ T787] usb 5-1: unit 6 not found! [ 452.296306][ T787] usb 5-1: unit 2 not found! [ 452.344408][ T787] snd-usb-audio: probe of 5-1:1.0 failed with error -22 [ 452.391745][ T787] usb 5-1: unit 6 not found! [ 452.396516][ T787] usb 5-1: unit 2 not found! [ 452.437337][ T787] snd-usb-audio: probe of 5-1:1.1 failed with error -22 [ 452.477894][ T787] usb 5-1: unit 6 not found! [ 452.486472][ T787] usb 5-1: unit 2 not found! [ 452.632465][ T787] snd-usb-audio: probe of 5-1:1.2 failed with error -22 [ 452.672175][ T787] usb 5-1: USB disconnect, device number 15 [ 452.741205][ T5856] udevd[5856]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 452.998165][T16642] loop3: detected capacity change from 0 to 1024 [ 453.062793][ T2910] hfsplus: b-tree write err: -5, ino 4 [ 453.808128][ T787] usb 4-1: new low-speed USB device number 18 using dummy_hcd [ 453.929149][ T28] kauditd_printk_skb: 20 callbacks suppressed [ 453.929165][ T28] audit: type=1326 audit(2000000084.730:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.000339][ T28] audit: type=1326 audit(2000000084.760:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.033885][ T787] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 454.038077][ T28] audit: type=1326 audit(2000000084.760:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.048830][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 454.114807][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 454.122033][ T28] audit: type=1326 audit(2000000084.760:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.133401][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 454.167749][ T28] audit: type=1326 audit(2000000084.760:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.184446][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 454.194972][ T28] audit: type=1326 audit(2000000084.760:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.226943][ T787] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 454.240906][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 454.273806][ T28] audit: type=1326 audit(2000000084.760:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.296813][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 454.309358][T16687] ptrace attach of "./syz-executor exec"[5767] was attempted by ""[16687] [ 454.317986][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 454.318670][ T28] audit: type=1326 audit(2000000084.760:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.338028][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 454.364808][ T28] audit: type=1326 audit(2000000084.760:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.387657][ T28] audit: type=1326 audit(2000000084.760:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16675 comm="syz.4.4827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x50000 [ 454.410865][ C0] vkms_vblank_simulate: vblank timer overrun [ 454.419982][ T787] usb 4-1: config 168 descriptor has 1 excess byte, ignoring [ 454.427495][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 454.441876][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 454.464931][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 454.486797][ T787] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 454.520671][ T787] usb 4-1: string descriptor 0 read error: -22 [ 454.527018][ T787] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 454.543458][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 454.600933][ T787] adutux 4-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 454.901313][T16704] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4840'. [ 454.930547][ T787] usb 4-1: USB disconnect, device number 18 [ 455.219083][T16713] loop1: detected capacity change from 0 to 512 [ 455.256370][T16713] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 455.337507][T16713] EXT4-fs (loop1): 1 truncate cleaned up [ 455.361832][T16713] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 455.442856][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 455.668311][ T9] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 455.818179][ T23] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 455.881866][ T9] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 455.916672][ T9] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 455.935335][ T9] usb 1-1: config 220 has no interface number 2 [ 455.955192][ T9] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 455.985750][ T9] usb 1-1: config 220 interface 0 has no altsetting 0 [ 455.998009][ T9] usb 1-1: config 220 interface 76 has no altsetting 0 [ 456.013658][ T9] usb 1-1: config 220 interface 1 has no altsetting 0 [ 456.028365][ T23] usb 2-1: Using ep0 maxpacket: 8 [ 456.029937][ T9] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 456.046470][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 456.062960][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 456.069861][ T23] usb 2-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e [ 456.080616][ T9] usb 1-1: Product: syz [ 456.088350][ T9] usb 1-1: Manufacturer: syz [ 456.093212][ T9] usb 1-1: SerialNumber: syz [ 456.094854][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 456.136691][ T23] usb 2-1: Product: syz [ 456.159906][ T23] usb 2-1: Manufacturer: syz [ 456.164640][ T23] usb 2-1: SerialNumber: syz [ 456.199011][ T23] usb 2-1: config 0 descriptor?? [ 456.216644][ T23] streamzap 2-1:0.0: streamzap_probe: endpoint doesn't match input device 0203 [ 456.339247][T16743] netlink: 115 bytes leftover after parsing attributes in process `syz.4.4859'. [ 456.347352][ T9] usb 1-1: selecting invalid altsetting 0 [ 456.367225][ T9] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 456.385846][ T9] usb 1-1: No valid video chain found. [ 456.410586][ T9] usb 1-1: selecting invalid altsetting 0 [ 456.447654][ T9] usbtest: probe of 1-1:220.1 failed with error -22 [ 456.475056][ T9] usb 1-1: USB disconnect, device number 18 [ 456.495645][ T1536] usb 2-1: USB disconnect, device number 20 [ 456.577762][T16731] loop3: detected capacity change from 0 to 40427 [ 456.603971][T16731] F2FS-fs (loop3): Small segment_count (9 < 1 * 24) [ 456.618734][T16731] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 456.689778][T16731] F2FS-fs (loop3): Found nat_bits in checkpoint [ 456.828002][T16731] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 456.835308][T16731] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 456.903425][T16731] syz.3.4853: attempt to access beyond end of device [ 456.903425][T16731] loop3: rw=2049, sector=53248, nr_sectors = 8 limit=40427 [ 456.971470][ T5777] syz-executor: attempt to access beyond end of device [ 456.971470][ T5777] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 457.009632][T16753] loop4: detected capacity change from 0 to 4096 [ 457.011481][ T5777] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 457.128497][T16753] ntfs: volume version 3.1. [ 458.732694][T16803] loop3: detected capacity change from 0 to 2048 [ 458.778445][T16803] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 459.098945][T16815] loop1: detected capacity change from 0 to 1024 [ 459.215207][T16793] Bluetooth: hci0: Opcode 0x080f failed: -4 [ 459.309056][ T198] hfsplus: b-tree write err: -5, ino 4 [ 459.479309][T16823] (null): rxe_set_mtu: Set mtu to 4096 [ 459.485636][T16823] rdma_rxe: rxe_newlink: failed to add lo [ 459.843008][T16810] loop0: detected capacity change from 0 to 32768 [ 459.886796][T16810] (syz.0.4890,16810,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 459.925583][T16810] (syz.0.4890,16810,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 459.992459][T16839] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 460.038436][T16810] JBD2: Ignoring recovery information on journal [ 460.219447][T16810] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 460.405475][T16850] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.4908'. [ 460.408981][ T5776] Bluetooth: hci0: command 0x0c1a tx timeout [ 460.444938][T16850] openvswitch: netlink: IP tunnel attribute has 3064 unknown bytes. [ 460.687295][ T5770] ocfs2: Unmounting device (7,0) on (node local) [ 460.808029][ T5807] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 461.007098][T16867] loop3: detected capacity change from 0 to 512 [ 461.028099][ T5807] usb 5-1: Using ep0 maxpacket: 8 [ 461.051758][ T5807] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 48, changing to 7 [ 461.053700][T16867] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 461.085669][T16867] ext4 filesystem being mounted at /1185/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 461.121629][ T5807] usb 5-1: string descriptor 0 read error: -22 [ 461.131363][T16867] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1231: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 461.153454][ T5807] usb 5-1: New USB device found, idVendor=0582, idProduct=0156, bcdDevice= 0.40 [ 461.203244][ T5807] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 461.219655][ T5777] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 461.295801][ T5807] usb 5-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 461.349123][T16876] netlink: 'syz.1.4919': attribute type 15 has an invalid length. [ 461.378699][T16880] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4920'. [ 461.499847][ T5807] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 461.563608][ T5807] usb 5-1: USB disconnect, device number 16 [ 462.130953][T16901] mac80211_hwsim hwsim6 wlan0: entered allmulticast mode [ 462.154827][T16901] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 462.172206][T16905] loop4: detected capacity change from 0 to 16 [ 462.193007][T16905] erofs: (device loop4): mounted with root inode @ nid 36. [ 462.293707][T16905] erofs: (device loop4): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 462.359620][T16905] erofs: (device loop4): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 462.394259][T16905] erofs: (device loop4): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 462.422522][T16905] erofs: (device loop4): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 462.437023][T16911] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4937'. [ 462.447621][ T28] kauditd_printk_skb: 86 callbacks suppressed [ 462.447637][ T28] audit: type=1800 audit(2000000002.990:273): pid=16905 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.4934" name="file2" dev="loop4" ino=89 res=0 errno=0 [ 463.424534][T16947] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4954'. [ 463.548533][ T5807] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 463.748236][ T5807] usb 1-1: Using ep0 maxpacket: 16 [ 463.780088][ T5807] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 463.797715][ T5807] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 463.830147][ T5807] usb 1-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=a8.98 [ 463.848124][ T5807] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 463.860299][T16964] loop3: detected capacity change from 0 to 256 [ 463.870624][ T5807] usb 1-1: Product: syz [ 463.874865][ T5807] usb 1-1: Manufacturer: syz [ 463.901429][ T5807] usb 1-1: SerialNumber: syz [ 463.917566][ T5807] usb 1-1: config 0 descriptor?? [ 463.952969][T16964] FAT-fs (loop3): Directory bread(block 64) failed [ 463.970346][T16964] FAT-fs (loop3): Directory bread(block 65) failed [ 463.992996][T16964] FAT-fs (loop3): Directory bread(block 66) failed [ 464.026846][T16964] FAT-fs (loop3): Directory bread(block 67) failed [ 464.044488][T16964] FAT-fs (loop3): Directory bread(block 68) failed [ 464.064938][T16964] FAT-fs (loop3): Directory bread(block 69) failed [ 464.086335][T16964] FAT-fs (loop3): Directory bread(block 70) failed [ 464.100510][T16964] FAT-fs (loop3): Directory bread(block 71) failed [ 464.110664][T16964] FAT-fs (loop3): Directory bread(block 72) failed [ 464.117564][T16964] FAT-fs (loop3): Directory bread(block 73) failed [ 464.219033][ T1536] usb 1-1: USB disconnect, device number 19 [ 464.548601][T16980] netlink: 148 bytes leftover after parsing attributes in process `syz.3.4966'. [ 464.652939][T16985] netlink: 'syz.4.4970': attribute type 5 has an invalid length. [ 464.709358][T16985] : entered promiscuous mode [ 465.160172][T17003] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4978'. [ 465.203524][T17003] ip6tnl1: entered allmulticast mode [ 465.224476][T16998] loop1: detected capacity change from 0 to 8192 [ 465.435088][T16998] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 465.476809][T16998] FAT-fs (loop1): Filesystem has been set read-only [ 465.940121][T17026] loop1: detected capacity change from 0 to 8 [ 466.445311][T17042] loop1: detected capacity change from 0 to 8 [ 466.472786][T17042] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 466.738165][T17050] loop0: detected capacity change from 0 to 16 [ 466.755129][T17050] erofs: (device loop0): mounted with root inode @ nid 36. [ 466.787459][T17056] SET target dimension over the limit! [ 466.799173][T17054] loop3: detected capacity change from 0 to 8 [ 467.136925][T17066] netlink: 'syz.1.5009': attribute type 1 has an invalid length. [ 467.248183][ T28] audit: type=1326 audit(2000000007.780:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 467.303463][ T28] audit: type=1326 audit(2000000007.780:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 467.338403][ T23] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 467.354509][ T28] audit: type=1326 audit(2000000007.790:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 467.421932][ T28] audit: type=1326 audit(2000000007.790:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 467.486235][ T28] audit: type=1326 audit(2000000007.790:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17067 comm="syz.4.5010" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd4a19c799 code=0x7ffc0000 [ 467.528678][ T23] usb 1-1: Using ep0 maxpacket: 32 [ 467.536402][ T23] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 467.559462][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 467.595121][ T23] usb 1-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1 [ 467.616468][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 467.627851][ T23] usb 1-1: config 0 descriptor?? [ 467.682523][ T23] rndis_wlan 1-1:0.0: skipping garbage [ 467.694721][ T23] rndis_wlan 1-1:0.0: invalid descriptor buffer length [ 467.702525][ T23] usb 1-1: bad CDC descriptors [ 467.711876][ T23] rndis_host 1-1:0.0: skipping garbage [ 467.731592][ T23] rndis_host 1-1:0.0: invalid descriptor buffer length [ 467.758433][ T23] usb 1-1: bad CDC descriptors [ 467.772143][ T23] cdc_acm 1-1:0.0: skipping garbage [ 467.777644][ T23] cdc_acm 1-1:0.0: invalid descriptor buffer length [ 467.965613][ T23] usb 1-1: USB disconnect, device number 20 [ 468.094314][T17089] loop4: detected capacity change from 0 to 4096 [ 468.128141][T17089] EXT4-fs (loop4): Test dummy encryption mode enabled [ 468.173596][T17089] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 468.324917][T17089] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 468.476358][T10072] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 469.438411][ T27] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 469.598415][ T5807] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 469.631456][ T27] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 469.641196][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 469.652792][ T27] usb 2-1: config 0 descriptor?? [ 469.666135][ T27] cp210x 2-1:0.0: cp210x converter detected [ 469.799004][ T5807] usb 4-1: Using ep0 maxpacket: 16 [ 469.806651][ T5807] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 469.818312][ T5807] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 469.838474][ T5807] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 469.847848][ T5807] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 469.864540][ T5807] usb 4-1: Product: syz [ 469.874757][ T5807] usb 4-1: Manufacturer: syz [ 469.880155][ T787] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 469.891068][ T5807] usb 4-1: SerialNumber: syz [ 469.905569][ T5807] r8152-cfgselector 4-1: config 0 descriptor?? [ 469.918642][ T27] usb 2-1: cp210x converter now attached to ttyUSB0 [ 469.931550][T17158] loop4: detected capacity change from 0 to 256 [ 469.966382][T17158] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 470.018729][T17158] exFAT-fs (loop4): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5) [ 470.038202][T17158] exFAT-fs (loop4): Filesystem has been set read-only [ 470.119920][ T787] usb 1-1: config 0 has an invalid interface number: 170 but max is 0 [ 470.130880][ T787] usb 1-1: config 0 has no interface number 0 [ 470.151232][ T787] usb 1-1: config 0 interface 170 altsetting 100 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 470.156563][ T27] usb 2-1: USB disconnect, device number 21 [ 470.174360][ T5807] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 470.186636][T13249] usb 4-1: config 0 descriptor?? [ 470.195730][ T787] usb 1-1: config 0 interface 170 has no altsetting 0 [ 470.204018][ T787] usb 1-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b [ 470.204065][ T27] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 470.213327][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 470.219973][ T787] usb 1-1: config 0 descriptor?? [ 470.255747][ T27] cp210x 2-1:0.0: device disconnected [ 470.401778][T13249] usb 4-1: can't set config #0, error -71 [ 470.401974][ T1536] usb 4-1: USB disconnect, device number 19 [ 470.467205][ T787] usb 1-1: string descriptor 0 read error: -71 [ 470.486340][ T787] ums-realtek 1-1:0.170: USB Mass Storage device detected [ 470.516630][T17167] loop4: detected capacity change from 0 to 1024 [ 470.562870][ T787] usb 1-1: unknown interface protocol 0x83, assuming v1 [ 470.590177][ T787] usb 1-1: cannot find UAC_HEADER [ 470.661998][ T787] snd-usb-audio: probe of 1-1:0.170 failed with error -22 [ 470.710842][ T787] usb 1-1: USB disconnect, device number 21 [ 471.043108][T17179] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 471.890780][T17209] xfrm0: entered promiscuous mode [ 471.902269][T17209] xfrm0: entered allmulticast mode [ 472.107090][T17214] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5079'. [ 472.147534][T17182] loop3: detected capacity change from 0 to 32768 [ 472.226510][T17182] jfs_rename: dtInsert returned -EIO [ 472.769346][T17229] loop1: detected capacity change from 0 to 4096 [ 472.781991][T17229] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 472.843318][T17229] ntfs: (device loop1): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 472.874640][T17229] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 472.918091][ T23] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 472.918600][T17229] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 472.945385][T17229] ntfs: volume version 3.1. [ 473.101324][ T5767] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 473.160970][ T23] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00 [ 473.178696][ T23] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 473.186847][ T23] usb 1-1: Product: syz [ 473.213943][ T23] usb 1-1: SerialNumber: syz [ 473.248740][ T23] usb 1-1: config 0 descriptor?? [ 473.490707][ T23] hso 1-1:0.0: Failed to find BULK IN ep [ 473.752493][ T23] usb 1-1: USB disconnect, device number 22 [ 474.189787][T17277] x_tables: unsorted underflow at hook 3 [ 474.209647][T17279] netlink: 'syz.4.5111': attribute type 75 has an invalid length. [ 474.425847][T17285] ieee802154 phy1 wpan1: encryption failed: -22 [ 474.539186][T17290] bridge4: entered allmulticast mode [ 474.670061][T17296] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5120'. [ 474.699374][T17296] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5120'. [ 474.994901][T17309] netlink: 'syz.0.5126': attribute type 27 has an invalid length. [ 475.026721][T17309] netlink: 'syz.0.5126': attribute type 3 has an invalid length. [ 475.038415][T17309] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5126'. [ 475.078279][T17313] loop1: detected capacity change from 0 to 64 [ 475.095756][T17313] hfs: unable to locate alternate MDB [ 475.107838][T17313] hfs: continuing without an alternate MDB [ 475.125397][ T28] audit: type=1800 audit(2000000015.663:279): pid=17313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5127" name="bus" dev="loop1" ino=21 res=0 errno=0 [ 475.198390][ T787] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 475.212721][T13249] hfs: new node 0 already hashed? [ 475.249040][T13249] ------------[ cut here ]------------ [ 475.254572][T13249] WARNING: CPU: 1 PID: 13249 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440 [ 475.263730][T13249] Modules linked in: [ 475.267743][T13249] CPU: 1 PID: 13249 Comm: kworker/u4:0 Not tainted syzkaller #0 [ 475.275816][T13249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 475.286470][T13249] Workqueue: writeback wb_workfn (flush-7:1) [ 475.292872][T13249] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 475.298966][T13249] Code: d2 e0 8a 89 ee e8 b7 f5 1e 08 e9 73 fd ff ff e8 3d 1e 2d ff 4c 89 ef e8 f5 1d 34 08 48 c7 c7 c0 d2 e0 8a 89 ee e8 97 f5 1e 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 475.318931][T13249] RSP: 0018:ffffc9000b50ee18 EFLAGS: 00010246 [ 475.325056][T13249] RAX: 000000000000001f RBX: ffff88801d7ca000 RCX: 45737b0e33f67f00 [ 475.333126][T13249] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 475.341198][T13249] RBP: 0000000000000000 R08: ffffc9000b50eb27 R09: 1ffff920016a1d64 [ 475.349327][T13249] R10: dffffc0000000000 R11: fffff520016a1d65 R12: 0000000000000000 [ 475.357348][T13249] R13: ffff88801d7ca0e0 R14: ffff8880250f8400 R15: dffffc0000000000 [ 475.365755][T13249] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 475.374796][T13249] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 475.381601][T13249] CR2: 00007f21863456b8 CR3: 000000000cf32000 CR4: 00000000003506e0 [ 475.389677][T13249] Call Trace: [ 475.392999][T13249] [ 475.395974][T13249] hfs_bmap_alloc+0x541/0x5d0 [ 475.398733][ T787] usb 5-1: Using ep0 maxpacket: 8 [ 475.401040][T13249] ? hfs_bmap_reserve+0x430/0x430 [ 475.411038][T13249] hfs_btree_inc_height+0x101/0xac0 [ 475.416316][T13249] ? hfs_brec_insert+0x6fa/0xbd0 [ 475.416381][ T787] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 475.421512][T13249] ? hfs_brec_insert+0xbd0/0xbd0 [ 475.421552][T13249] ? do_raw_spin_unlock+0x121/0x230 [ 475.421585][T13249] hfs_brec_insert+0x748/0xbd0 [ 475.421628][T13249] ? hfs_brec_keylen+0x360/0x360 [ 475.421668][T13249] __hfs_ext_write_extent+0x2a1/0x470 [ 475.447318][ T787] usb 5-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 475.451976][T13249] hfs_ext_write_extent+0x17f/0x210 [ 475.452008][T13249] ? verify_lock_unused+0x140/0x140 [ 475.452033][T13249] ? hfs_ext_find_block+0x190/0x190 [ 475.452066][T13249] ? blk_start_plug+0x51/0x1a0 [ 475.452091][T13249] hfs_write_inode+0xdc/0x880 [ 475.452119][T13249] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 475.452149][T13249] ? __writeback_single_inode+0x48d/0xec0 [ 475.452181][T13249] ? __lock_acquire+0x7d40/0x7d40 [ 475.452202][T13249] ? do_raw_spin_lock+0x11f/0x2c0 [ 475.459215][ T787] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 475.466828][T13249] ? __rwlock_init+0x150/0x150 [ 475.479685][ T787] usb 5-1: config 0 descriptor?? [ 475.482641][T13249] __writeback_single_inode+0x705/0xec0 [ 475.493862][ T787] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 475.497809][T13249] writeback_sb_inodes+0x7cd/0xf50 [ 475.497880][T13249] ? queue_io+0x550/0x550 [ 475.554242][T13249] ? rcu_is_watching+0x15/0xb0 [ 475.559225][T13249] wb_writeback+0x46a/0xbf0 [ 475.563792][T13249] ? queue_io+0x361/0x550 [ 475.568214][T13249] ? percpu_ref_tryget+0x250/0x250 [ 475.573371][T13249] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 475.579461][T13249] ? _raw_spin_unlock_irq+0x23/0x50 [ 475.584729][T13249] wb_workfn+0x400/0xe60 [ 475.589371][T13249] ? inode_wait_for_writeback+0x230/0x230 [ 475.595386][T13249] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 475.601844][T13249] ? read_lock_is_recursive+0x20/0x20 [ 475.607690][T13249] ? _raw_spin_unlock_irq+0x23/0x50 [ 475.613110][T13249] ? process_scheduled_works+0x96f/0x15d0 [ 475.618939][T13249] ? process_scheduled_works+0x96f/0x15d0 [ 475.624710][T13249] process_scheduled_works+0xa5d/0x15d0 [ 475.630474][T13249] ? assign_work+0x430/0x430 [ 475.635138][T13249] ? assign_work+0x3d0/0x430 [ 475.639961][T13249] worker_thread+0xa55/0xfc0 [ 475.644726][T13249] kthread+0x2fa/0x390 [ 475.649019][T13249] ? pr_cont_work+0x560/0x560 [ 475.653756][T13249] ? kthread_blkcg+0xd0/0xd0 [ 475.658539][T13249] ret_from_fork+0x48/0x80 [ 475.663011][T13249] ? kthread_blkcg+0xd0/0xd0 [ 475.667732][T13249] ret_from_fork_asm+0x11/0x20 [ 475.672625][T13249] [ 475.675678][T13249] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 475.682969][T13249] CPU: 1 PID: 13249 Comm: kworker/u4:0 Not tainted syzkaller #0 [ 475.690743][T13249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 475.700840][T13249] Workqueue: writeback wb_workfn (flush-7:1) [ 475.706899][T13249] Call Trace: [ 475.710390][T13249] [ 475.713367][T13249] dump_stack_lvl+0x18c/0x250 [ 475.718086][T13249] ? show_regs_print_info+0x20/0x20 [ 475.723412][T13249] ? load_image+0x400/0x400 [ 475.727982][T13249] panic+0x2dc/0x730 [ 475.731931][T13249] ? bpf_jit_dump+0xd0/0xd0 [ 475.736475][T13249] ? ret_from_fork_asm+0x11/0x20 [ 475.741434][T13249] __warn+0x2e0/0x470 [ 475.745427][T13249] ? hfs_bnode_create+0x3b9/0x440 [ 475.750489][T13249] ? hfs_bnode_create+0x3b9/0x440 [ 475.755627][T13249] report_bug+0x2be/0x4f0 [ 475.760072][T13249] ? hfs_bnode_create+0x3b9/0x440 [ 475.765128][T13249] ? hfs_bnode_create+0x3b9/0x440 [ 475.770169][T13249] ? hfs_bnode_create+0x3bb/0x440 [ 475.775210][T13249] handle_bug+0xcf/0x120 [ 475.779494][T13249] exc_invalid_op+0x1a/0x50 [ 475.784108][T13249] asm_exc_invalid_op+0x1a/0x20 [ 475.788972][T13249] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 475.794628][T13249] Code: d2 e0 8a 89 ee e8 b7 f5 1e 08 e9 73 fd ff ff e8 3d 1e 2d ff 4c 89 ef e8 f5 1d 34 08 48 c7 c7 c0 d2 e0 8a 89 ee e8 97 f5 1e 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 475.814341][T13249] RSP: 0018:ffffc9000b50ee18 EFLAGS: 00010246 [ 475.820444][T13249] RAX: 000000000000001f RBX: ffff88801d7ca000 RCX: 45737b0e33f67f00 [ 475.828443][T13249] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 475.836427][T13249] RBP: 0000000000000000 R08: ffffc9000b50eb27 R09: 1ffff920016a1d64 [ 475.844581][T13249] R10: dffffc0000000000 R11: fffff520016a1d65 R12: 0000000000000000 [ 475.852588][T13249] R13: ffff88801d7ca0e0 R14: ffff8880250f8400 R15: dffffc0000000000 [ 475.860687][T13249] ? hfs_bnode_create+0x3b9/0x440 [ 475.865743][T13249] hfs_bmap_alloc+0x541/0x5d0 [ 475.870497][T13249] ? hfs_bmap_reserve+0x430/0x430 [ 475.875632][T13249] hfs_btree_inc_height+0x101/0xac0 [ 475.880854][T13249] ? hfs_brec_insert+0x6fa/0xbd0 [ 475.885933][T13249] ? hfs_brec_insert+0xbd0/0xbd0 [ 475.890889][T13249] ? do_raw_spin_unlock+0x121/0x230 [ 475.896135][T13249] hfs_brec_insert+0x748/0xbd0 [ 475.900925][T13249] ? hfs_brec_keylen+0x360/0x360 [ 475.905887][T13249] __hfs_ext_write_extent+0x2a1/0x470 [ 475.911281][T13249] hfs_ext_write_extent+0x17f/0x210 [ 475.916575][T13249] ? verify_lock_unused+0x140/0x140 [ 475.921872][T13249] ? hfs_ext_find_block+0x190/0x190 [ 475.927179][T13249] ? blk_start_plug+0x51/0x1a0 [ 475.931957][T13249] hfs_write_inode+0xdc/0x880 [ 475.936654][T13249] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 475.942047][T13249] ? __writeback_single_inode+0x48d/0xec0 [ 475.947966][T13249] ? __lock_acquire+0x7d40/0x7d40 [ 475.953190][T13249] ? do_raw_spin_lock+0x11f/0x2c0 [ 475.958234][T13249] ? __rwlock_init+0x150/0x150 [ 475.963118][T13249] __writeback_single_inode+0x705/0xec0 [ 475.968806][T13249] writeback_sb_inodes+0x7cd/0xf50 [ 475.973966][T13249] ? queue_io+0x550/0x550 [ 475.978325][T13249] ? rcu_is_watching+0x15/0xb0 [ 475.983115][T13249] wb_writeback+0x46a/0xbf0 [ 475.987730][T13249] ? queue_io+0x361/0x550 [ 475.992082][T13249] ? percpu_ref_tryget+0x250/0x250 [ 475.997213][T13249] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 476.003214][T13249] ? _raw_spin_unlock_irq+0x23/0x50 [ 476.008437][T13249] wb_workfn+0x400/0xe60 [ 476.012714][T13249] ? inode_wait_for_writeback+0x230/0x230 [ 476.018458][T13249] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 476.024454][T13249] ? read_lock_is_recursive+0x20/0x20 [ 476.030019][T13249] ? _raw_spin_unlock_irq+0x23/0x50 [ 476.035231][T13249] ? process_scheduled_works+0x96f/0x15d0 [ 476.041142][T13249] ? process_scheduled_works+0x96f/0x15d0 [ 476.046880][T13249] process_scheduled_works+0xa5d/0x15d0 [ 476.052488][T13249] ? assign_work+0x430/0x430 [ 476.057275][T13249] ? assign_work+0x3d0/0x430 [ 476.061890][T13249] worker_thread+0xa55/0xfc0 [ 476.066527][T13249] kthread+0x2fa/0x390 [ 476.070610][T13249] ? pr_cont_work+0x560/0x560 [ 476.075305][T13249] ? kthread_blkcg+0xd0/0xd0 [ 476.079910][T13249] ret_from_fork+0x48/0x80 [ 476.084426][T13249] ? kthread_blkcg+0xd0/0xd0 [ 476.089044][T13249] ret_from_fork_asm+0x11/0x20 [ 476.093926][T13249] [ 476.097617][T13249] Kernel Offset: disabled [ 476.102131][T13249] Rebooting in 86400 seconds..