last executing test programs: 2m8.571332569s ago: executing program 0 (id=5139): fsmount(0xffffffffffffffff, 0x1, 0x0) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000580)=@newnexthop={0x3c, 0x68, 0x1, 0x2, 0x7ffffffc, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x4}]}, @NHA_BLACKHOLE={0x4}, @NHA_GATEWAY={0x14, 0x6, @in6_addr=@dev={0xfe, 0x80, '\x00', 0x33}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2400c050}, 0x4000) 2m7.882764574s ago: executing program 0 (id=5145): r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000003c0)={0x0, 0x0, 0x0, {0x0, 0x1}, {0x45, 0x2}, @cond=[{0x8, 0xfff, 0x44, 0x2, 0x0, 0x7}, {0xfff, 0x3, 0x7fff, 0x8, 0xf, 0x8}]}) write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250) 2m7.209075657s ago: executing program 0 (id=5149): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="01000000060000000800000008"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001400)={0x11, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffff7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_BIND_MAP(0xa, &(0x7f00000003c0)={r1}, 0xc) 2m6.397814464s ago: executing program 0 (id=5154): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000300), 0x3, 0x470, &(0x7f0000000880)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file2\x00', 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c}) 2m4.940004121s ago: executing program 0 (id=5162): madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/self/clear_refs\x00', 0x1, 0x0) write$sysctl(r0, &(0x7f0000000000)='1\x00', 0x2) 2m3.820019176s ago: executing program 0 (id=5169): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x76a9bba1a690db0f, 0x0, 0x0, {0xa, 0x0, 0x2005}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3cb140bb}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_DEV={0x14, 0x3, 'wlan1\x00'}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 2m2.325005854s ago: executing program 32 (id=5169): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001680)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x40001}, 0x4040850) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000140)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x76a9bba1a690db0f, 0x0, 0x0, {0xa, 0x0, 0x2005}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x3cb140bb}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_HOOK_DEV={0x14, 0x3, 'wlan1\x00'}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x7c}, 0x1, 0x0, 0x0, 0x4000850}, 0x24000840) 7.289411653s ago: executing program 2 (id=5791): r0 = gettid() r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0xb, &(0x7f0000000000)={0x4, 0xfffffffe, 0x4}) 6.151126646s ago: executing program 2 (id=5796): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0) ioctl$F2FS_IOC_GET_FEATURES(r0, 0x4008af10, &(0x7f0000002000)) 4.77139792s ago: executing program 2 (id=5805): syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x80000) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 3.857965636s ago: executing program 3 (id=5811): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWRULE={0x74, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x48, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0xb}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x3}, @NFTA_SOCKET_LEVEL={0x8, 0x3, 0x89}]}}}, {0x18, 0x1, 0x0, 0x1, @dup_ipv6={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_DUP_SREG_ADDR={0x8, 0x1, 0x1, 0x0, 0xc}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x9c}}, 0x0) 3.588477464s ago: executing program 1 (id=5813): setresuid(0xee01, 0xee01, 0xee00) r0 = socket$netlink(0x10, 0x3, 0xf) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r0) 3.537617611s ago: executing program 2 (id=5814): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f0000000000)={0x1, 0x1, 0xaca}) ioctl$VT_DISALLOCATE(r0, 0x5608) 3.511145264s ago: executing program 5 (id=5815): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0xc0001, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15) ioctl$TCSETS(r0, 0x40384708, &(0x7f0000000040)={0xb, 0x1, 0x9, 0x20002, 0x6, "3eccd255f677e8828000000000000200"}) 3.207063923s ago: executing program 3 (id=5816): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x9e}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@hash}, {@obj_role}, {@subj_role={'subj_role', 0x3d, 'iso8859-7'}}, {@obj_type={'obj_type', 0x3d, '9p\x00'}}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x80) ioctl$FS_IOC_SETFSLABEL(r0, 0x41009432, &(0x7f00000002c0)="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") 3.19165821s ago: executing program 4 (id=5817): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000180)={0x1, 0x3}, 0x4) 3.059079024s ago: executing program 1 (id=5818): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000080), 0x10) sendmsg$can_bcm(r0, &(0x7f00000001c0)={0x0, 0xf, &(0x7f0000000180)={&(0x7f00000005c0)={0x5, 0x15, 0xfffffffe, {0x0, 0x2710}, {}, {}, 0x1, @can={{0x2}, 0x2, 0x6a035825891a9861, 0x0, 0x0, "61bcf34b016813cf"}}, 0x38}, 0x1, 0x0, 0x0, 0x6686ae64641a9d97}, 0x0) 2.776687627s ago: executing program 5 (id=5819): syz_mount_image$hfs(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f0000000100)=ANY=[@ANYBLOB='quiet,dir_umask=00000000000000000000007,iocharset=koi8-ru,codepage=koi8-ru,quiet,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c66696c655f756d61736b3d30303030303030303030303030303030303030313236342c63726561746f723d8c10b0812c66696c655f756d61736b3d3030303030303030303030303030322c00"], 0x2, 0x36b, &(0x7f0000000d80)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000001f80)=""/4097, 0x1001) 2.402945868s ago: executing program 3 (id=5820): setresuid(0xee00, 0xee00, 0x0) setfsuid(0x0) setfsuid(0x0) 2.397935329s ago: executing program 1 (id=5821): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bond0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=@newlink={0x3c, 0x10, 0x401, 0x20000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x8003}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20004885}, 0x4054) 2.34904276s ago: executing program 4 (id=5822): r0 = socket$netlink(0x10, 0x3, 0x8000000004) capset(&(0x7f0000000300)={0x20071026}, &(0x7f0000000340)={0x0, 0x0, 0x100000}) writev(r0, &(0x7f0000000480)=[{&(0x7f0000000000)="580000001400192340835b80040d8c560a067fbc45ff620500000000070058000b480400945f640094272d7008070000000000000000008000f0fffeffe809000000ffd9dd000000100001000d0808004149224e06040800", 0x58}], 0x1) 2.063549557s ago: executing program 5 (id=5823): symlinkat(&(0x7f0000002300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') readlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', &(0x7f0000001300)=""/4096, 0x1000) readlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)=""/204, 0xcc) 1.919274423s ago: executing program 4 (id=5824): r0 = syz_open_dev$vim2m(&(0x7f0000000480), 0x5a0c, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x80000001, 0x1, 0x2}) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405668, &(0x7f0000000000)={0x2, 0x1, 0x1, "4a37f6c000190000000000000020000000000000000000000100", 0x31435641}) 1.660624175s ago: executing program 3 (id=5825): r0 = io_uring_setup(0x7d7, &(0x7f0000000580)={0x0, 0x50c4, 0x40, 0xfffffffe, 0x8000170}) close_range(r0, r0, 0x0) clock_nanosleep(0xfffffff2, 0x0, &(0x7f0000000140)={0x77359400}, &(0x7f0000000040)) 1.366047846s ago: executing program 5 (id=5826): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000001a40)={0x1f, 0xffff, 0x3}, 0x6) write(r0, &(0x7f0000000000)="23000300010006", 0x7) 1.302448314s ago: executing program 1 (id=5827): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r0, &(0x7f0000001bc0)=[{{&(0x7f0000000080)={0x2, 0x0, @private=0xa010102}, 0x10, &(0x7f0000000100)=[{&(0x7f00000000c0)='~', 0x1}], 0x1}}, {{&(0x7f00000022c0)={0x2, 0x20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f0000000600)=[{&(0x7f0000002300)="ef", 0x1}], 0x1}}, {{&(0x7f0000000680)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x10, &(0x7f0000000ac0)=[{&(0x7f0000000700)="b5", 0x1}], 0x1}}], 0x3, 0x1005) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000180)={0x3, [0x0, 0x0, 0x0]}, &(0x7f00000001c0)=0x10) 1.245307431s ago: executing program 2 (id=5828): r0 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1) read(r0, &(0x7f0000002400)=""/4083, 0xff3) 1.178652389s ago: executing program 4 (id=5829): r0 = socket$inet6(0xa, 0x1, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000740)={'syztnl1\x00', 0x0, 0x29, 0x6, 0x23, 0x2, 0x4a, @local, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x8000, 0x40}}) ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000680)={'syztnl1\x00', 0x0}) 883.293732ms ago: executing program 5 (id=5830): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x1001}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_CT_DREG={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_CT_DIRECTION={0x5, 0x3, 0x773568b9b38b679a}, @NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xb}]}}}]}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000) 752.60855ms ago: executing program 1 (id=5831): syz_mount_image$minix(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="00e611ed6229b237ad2a184a94283e2b34c24caf7280c18475708140abe763dfb52cdb0ba0cdc8c572346d0a832984b36248c4fa844eda0af4b1652605421a7821dcfde12aa77458d811a84538a156b05b0ec3eaf24a90ceb5b7463d9fd38b49d41fbfa868653605702abe43d9c2c30aed4da0b8cc18c6b369f086a965442c1217f19a67a534064b7236a6660000000000"], 0x1, 0x190, &(0x7f0000000e40)="$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") r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$EBT_SO_GET_INIT_ENTRIES(r0, 0x0, 0x83, &(0x7f0000000480)={'broute\x00', 0x0, 0x0, 0x30, [0x2, 0xfffffffffffffffc, 0x4e83, 0x8, 0x9, 0x4], 0x0, 0x0, 0x0}, &(0x7f0000000c80)=0xa8) 520.125701ms ago: executing program 4 (id=5832): syz_open_dev$dvb_frontend(&(0x7f0000000100), 0x0, 0x400) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0xb, 0x6, 0xff}, 0x3a, [0x8000, 0xc95a, 0xf, 0x8, 0x80, 0x0, 0x3, 0x10007f, 0x20000006, 0x53, 0x6, 0x10000, 0x80005, 0x2, 0xffff2d34, 0xffffff01, 0x6, 0x3, 0xfffffffc, 0x5, 0x4, 0x2, 0x7, 0x3c5b, 0x80000001, 0x26, 0xd, 0x1, 0x6, 0x7, 0xe661, 0x4, 0x7, 0x7, 0x8, 0x4c74, 0x80000000, 0x0, 0x3, 0xe, 0x8, 0x800080ee, 0xa, 0x17, 0x1, 0x9, 0x200, 0x3e, 0x8c, 0x6, 0xca9, 0x0, 0x5, 0x4, 0x8, 0x400, 0x80, 0x1, 0x5, 0x6, 0x6, 0x5, 0x1, 0x40], [0x10000007, 0x9, 0x80000130, 0x8004, 0x5, 0xfffffff3, 0x2, 0xc8, 0xf9, 0xe, 0x7, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x42f, 0xe, 0x312, 0x78, 0x1, 0x0, 0x4, 0x7, 0x7fff, 0x6, 0x4400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4004e0, 0x1, 0x4, 0xffff80f1, 0x1, 0x9, 0x8, 0x9, 0x6, 0x47, 0x8020, 0x1, 0xfe000000, 0xffff, 0xfffffe01, 0x4, 0x9, 0x3, 0x3, 0x9, 0x1, 0x3, 0x3, 0xbc45, 0x48c93694, 0x43, 0x9], [0x7, 0xa, 0x4, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xf, 0x4, 0x6, 0x5, 0x0, 0x8, 0x5, 0x1, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x2, 0x6d03, 0x6, 0xd, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x2, 0xa2, 0x7, 0xa9, 0x5, 0x6, 0xac8, 0xc2, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0x1000000a, 0x0, 0x5, 0x21c, 0x120000, 0x3, 0x2006, 0x80a2ed, 0x4, 0x24], [0x9, 0xbb33, 0x80000000, 0xb, 0x5, 0x93a, 0x6, 0x1000006, 0x0, 0xb9, 0xce7, 0x1ff, 0x2, 0x57, 0x4, 0x3, 0x101, 0x10000, 0x4, 0x7fff, 0x10000, 0x7f, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x96, 0xffffffff, 0x80000001, 0x7, 0x4, 0xc8, 0x1, 0xfffff000, 0x4010080, 0x3, 0x7e, 0x100, 0x1000, 0x7, 0xaf, 0x8, 0x6, 0x226, 0x5, 0x5, 0x1, 0x30b1d693, 0xa1f, 0xf40, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x928, 0xb1e, 0xc7, 0x200, 0xffff2441, 0xfff]}, 0x45c) ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0) 519.970488ms ago: executing program 3 (id=5833): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) sendto$inet(r0, 0x0, 0x0, 0x20048880, 0x0, 0x0) setsockopt$SO_TIMESTAMP(r0, 0x1, 0x23, &(0x7f0000000280)=0x5, 0x4) 218.999854ms ago: executing program 2 (id=5834): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./bus\x00', 0x0, &(0x7f0000000300)={[{@barrier}, {@debug}, {@lazytime}]}, 0x1, 0x5b3, &(0x7f0000001400)="$eJzs3V9oJHcdAPDvbnavNnd6rdTqVdtLrbZn/2wuSTm8WpB71PZK7Z8nT86Q7OWObLIxu8EmtZBShAqehOqTPikIKj6cCAriQ0Gsj4JvSqlgEeUgFEtR9NSVmd099swmuTR/hst8PjDJzG9m8/vOfvnOzvxudi6A3BpKfhQiDkXEaxFxuL147QZD7V8rY5fOJ1MhWq2n3yqk270wdul8d9Pu6w4mP4oRH0p+/TriYHltv43FpenxWq0631kebs7MDTcWlx66MDM+VZ2qzo6OjZw4Pnpi5MTJHdvXHz7/ymffeP7xKxdXB7//+pGj/0jiPdRZ17sfO2UohjrvSTk+2ruiEPHpne4sIwMRUYqID2QdCFt25ndff7abv3Ja/4djIF2KGBw78/bhuPho1jECu6eVWm/tQAvYzwqRdQRANrqf9Mn1b3faq3OP6f1yEXwDWz3VvgB8oTO2s3I1/6UodrYp79L1/dG/RgxF8/5Ln7n7q8kUuzQOw/qWX4x0oG5t/RfSsbFbOtvdExHHIuJjEfHxiLg3Iu7bZt/PfCHJ/x+/2dsm/3vrevP/iYioRMT9EfFARDwYEQ9ts+/bTyf5P/jF3jb5z487Ppd1BGTpty9nHQHp8f94qdTv+F/c5t++e5P1rfTfFZff7G1z/M+Pp57OOgKy9MSJrCMgS995K+sIePVU+2Ju7ed/MW7v2S6Z/2D7UjGOJOfuEfHhiPhIRNwZEXdFxNHu/UTX6SuPJdtXqr1taz//i5e3s39sbPVUxKM993at9OS/45aBztJ70/GAcuHchVr1eES8Lx0TKt+ULI9s0MfXln/1WL/2H9+Z5P9TT3TH/5Ip6b87FtiJ43LppmtfNzneHN/uftO2+mLEHaV++S907gRq39fXiojhd9nHS8d+8pt+7Z98Ksn/vQ9unH92U+u77XHcfvnvKmx8f+ZwejwY7h4V1nopbrvYr/3JK0n+3/yD/Gcnqf/BjfOfHv+v3q/b2HofpZXL3+jbPpPk/8+/fDfH/wOFZ9IAD3TanhtvNudHIg4UHl/bPrr1mPer7vvRfb+S/B+7p//n//s7r0ne0KSy/xMR/42If0bEvyLiSkT8OyL+FhFvb9DnL1555Of92seeTfL/l9fUf3aS/E9uUv+Fa+p/6zPfvuvkl/v1/YPvJfkfrGxe/w+nwRzrtDj/29z1JijrOAEAAAAAAADYGcX0GXiFYuXqfLFYqbSf4XdbDBZr9UbzgXP1hdnJ6HwftFzs3ul1uOd+0JHOd0W7y6P/tzwWEbdGxMsDN6fLlYl6bTLrnYecOhTxxk+/NHHg4Dr1n3h9IOsogd2Q1P+5bw0sJ/PvqHPIlaT+f/TOTPq9LPUP+aL+Ib/UP+SX+of8Uv+QX+of8kv9Q36pf8gv9Q/51Vv/QD49efp0MrW6z/2crU9dmD4/d3L0eGVmYaIyUZ+fq0zV61PpN3ZmNv97tXp9buThWHhuuFltNIcbi0tnZ+oLs82z6XOjz1bLe7BPwOb+/qfP/+zWo6/+vhARy4/cnE7R8+xstQr7m0t/yK9S1gEAmXGODxQ2Wf+e9Vac2flYgL2x3f/jH7hx3XfE+D/klfF/yC/j/5BfzvEB4/+QP8b/Ib+q843FpenxWm3NTNaRAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADkU2NxaXq8VqvOmzFjJncz/wsAAP//ylZHUg==") setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0) rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000180)='./file1\x00') 199.876164ms ago: executing program 5 (id=5835): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f0000000700)={[{@nodiscard}, {@minixdf}, {@errors_remount}, {@noquota}]}, 0xfc, 0x4d9, &(0x7f00000011c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0) fstatfs(r0, &(0x7f0000000500)=""/167) 100.207316ms ago: executing program 1 (id=5836): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/cpuinfo\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) 97.627251ms ago: executing program 4 (id=5837): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./bus\x00', 0x804, &(0x7f00000001c0)={[{@rodir}, {@numtail}, {@utf8no}, {@uni_xlateno}, {@shortname_mixed}, {@utf8no}, {@uni_xlate}, {@utf8no}, {@fat=@check_normal}, {@fat=@codepage={'codepage', 0x3d, '866'}}, {@shortname_lower}, {@shortname_winnt}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@utf8no}, {@rodir}, {@shortname_mixed}, {@uni_xlate}, {@uni_xlateno}, {@uni_xlateno}, {@uni_xlate}]}, 0x1, 0x27e, &(0x7f0000000380)="$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") syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x206420, 0x0, 0x7, 0x0, &(0x7f0000006380)) creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9) 0s ago: executing program 3 (id=5838): r0 = openat$dsp1(0xffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f00000000c0)=0x17) ioctl$SNDCTL_DSP_GETFMTS(r0, 0x8004500b, 0x0) kernel console output (not intermixed with test programs): tem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 983.373166][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 984.520093][T22293] loop3: detected capacity change from 0 to 128 [ 984.573195][T22293] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 984.618554][T22297] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4400'. [ 984.974431][T22304] loop0: detected capacity change from 0 to 256 [ 985.062234][T22304] exfat: Deprecated parameter 'namecase' [ 985.068459][T22304] exfat: Deprecated parameter 'utf8' [ 985.257023][T22304] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x544194fd, utbl_chksum : 0xe619d30d) [ 985.424646][T22317] loop2: detected capacity change from 0 to 64 [ 986.041743][T22329] loop1: detected capacity change from 0 to 128 [ 986.577955][T22341] loop2: detected capacity change from 0 to 256 [ 986.626774][T22341] exfat: Deprecated parameter 'namecase' [ 986.664894][T22341] exfat: Deprecated parameter 'utf8' [ 986.758136][T22341] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 986.771602][ T5943] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 986.858626][T22351] loop1: detected capacity change from 0 to 256 [ 986.976592][ T5943] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 987.000146][ T5943] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 987.049540][ T5943] usb 5-1: config 220 has no interface number 2 [ 987.056031][ T5943] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 987.131492][ T5943] usb 5-1: config 220 interface 0 has no altsetting 0 [ 987.138540][ T5943] usb 5-1: config 220 interface 76 has no altsetting 0 [ 987.184597][ T5943] usb 5-1: config 220 interface 1 has no altsetting 0 [ 987.290255][ T5943] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 987.329576][ T5943] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 987.377763][ T5943] usb 5-1: Product: syz [ 987.392199][ T5943] usb 5-1: Manufacturer: syz [ 987.396996][ T5943] usb 5-1: SerialNumber: syz [ 987.731706][ T5943] uvcvideo 5-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 987.777777][T22372] loop2: detected capacity change from 0 to 256 [ 987.789741][ T5943] uvcvideo 5-1:220.0: No valid video chain found. [ 987.807406][ T5943] usb 5-1: selecting invalid altsetting 0 [ 987.896588][T22372] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001e4a3, chksum : 0xe65d9f0a, utbl_chksum : 0x7319d30d) [ 987.919122][ T5943] usb 5-1: selecting invalid altsetting 0 [ 987.939755][T22375] loop1: detected capacity change from 0 to 512 [ 987.950200][ T5943] usbtest 5-1:220.1: probe with driver usbtest failed with error -22 [ 988.006474][ T5943] usb 5-1: USB disconnect, device number 25 [ 988.130144][T22372] exfat: Deprecated parameter 'utf8' [ 988.132379][T22375] EXT4-fs (loop1): 1 orphan inode deleted [ 988.170793][T22372] exfat: Deprecated parameter 'utf8' [ 988.192089][T22372] exfat: Deprecated parameter 'utf8' [ 988.265903][T22375] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 988.312461][T22375] ext4 filesystem being mounted at /919/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 988.740600][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 989.096386][T22410] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4422'. [ 989.111509][T22409] loop0: detected capacity change from 0 to 256 [ 989.147162][T22409] exfat: Deprecated parameter 'namecase' [ 989.303378][T22409] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 989.722838][T22420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4425'. [ 989.758121][T22420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4425'. [ 989.931509][T22424] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4426'. [ 990.595863][T22438] loop4: detected capacity change from 0 to 128 [ 990.647005][T22438] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 990.734555][T22438] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 991.063880][T22450] loop3: detected capacity change from 0 to 512 [ 991.254501][ T13] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 991.312431][T22450] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.4433: inode has both inline data and extents flags [ 991.379654][T22450] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 991.384021][T22450] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4433: couldn't read orphan inode 15 (err -117) [ 991.393571][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 991.393659][ C0] EXT4-fs (loop3): initial error at time 1773471843: ext4_orphan_get:1391: inode 15 [ 991.393812][ C0] EXT4-fs (loop3): last error at time 1773471843: ext4_orphan_get:1391: inode 15 [ 991.462959][T22458] loop0: detected capacity change from 0 to 256 [ 991.498378][T22450] loop3: lost filesystem error report for type 5 error -117 [ 991.595836][T22450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 991.857737][T22458] FAT-fs (loop0): Directory bread(block 64) failed [ 991.889886][T22458] FAT-fs (loop0): Directory bread(block 65) failed [ 991.909916][T22458] FAT-fs (loop0): Directory bread(block 66) failed [ 991.975592][T22458] FAT-fs (loop0): Directory bread(block 67) failed [ 992.019870][T22458] FAT-fs (loop0): Directory bread(block 68) failed [ 992.026629][T22458] FAT-fs (loop0): Directory bread(block 69) failed [ 992.065228][T22459] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 13: invalid block bitmap [ 992.087010][T22458] FAT-fs (loop0): Directory bread(block 70) failed [ 992.118986][T22458] FAT-fs (loop0): Directory bread(block 71) failed [ 992.167695][T22458] FAT-fs (loop0): Directory bread(block 72) failed [ 992.179626][T22458] FAT-fs (loop0): Directory bread(block 73) failed [ 992.278552][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 992.605545][T22482] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4441'. [ 992.648914][T22482] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4441'. [ 993.222407][T22494] loop4: detected capacity change from 0 to 16 [ 993.268586][T22494] erofs (device loop4): mounted with root inode @ nid 36. [ 993.290548][T22497] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4445'. [ 993.353808][T22494] erofs (device loop4): invalid fast symlink size 39 @ nid 83 [ 995.574668][T22542] loop4: detected capacity change from 0 to 8192 [ 995.625185][T22542] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 995.642441][T22542] UDF-fs: Scanning with blocksize 512 failed [ 995.696646][T22542] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 995.734077][T22542] UDF-fs: Scanning with blocksize 1024 failed [ 995.783250][T22542] UDF-fs: warning (device loop4): udf_load_vrs: No VRS found [ 995.812037][T22542] UDF-fs: Scanning with blocksize 2048 failed [ 995.895641][T22542] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 996.069090][T22561] netlink: 75 bytes leftover after parsing attributes in process `syz.1.4463'. [ 996.087694][T22560] loop3: detected capacity change from 0 to 512 [ 996.130187][T22560] EXT4-fs (loop3): Test dummy encryption mode enabled [ 996.137129][T22560] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 996.290648][T22560] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.4462: bad orphan inode 131083 [ 996.400374][T22560] loop3: lost filesystem error report for type 5 error -117 [ 996.408253][T22560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 996.582444][T22560] overlayfs: upper fs needs to support d_type. [ 996.855981][T22560] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 996.876933][T22560] overlayfs: upper fs does not support tmpfile. [ 996.953396][T22560] fscrypt (loop3): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 997.581780][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 998.935727][T22617] loop0: detected capacity change from 0 to 512 [ 998.988231][T22617] msdos: Unknown parameter '' [ 998.989644][ T29] audit: type=1326 audit(1773471851.211:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22612 comm="syz.0.4474" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 999.148866][ T29] audit: type=1326 audit(1773471851.211:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22612 comm="syz.0.4474" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 999.262739][ T29] audit: type=1326 audit(1773471851.361:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22612 comm="syz.0.4474" exe="/root/syz-executor" sig=0 arch=40000003 syscall=100 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 999.392392][ T29] audit: type=1326 audit(1773471851.361:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22612 comm="syz.0.4474" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 999.519974][ T29] audit: type=1326 audit(1773471851.361:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22612 comm="syz.0.4474" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1000.013074][ T5943] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1000.143173][T22641] loop1: detected capacity change from 0 to 2364 [ 1000.180775][ T5943] usb 5-1: Using ep0 maxpacket: 8 [ 1000.204799][ T5943] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1000.247310][ T5943] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1000.288413][ T5943] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1000.309995][ T5943] usb 5-1: Product: syz [ 1000.314353][ T5943] usb 5-1: Manufacturer: syz [ 1000.349964][ T5943] usb 5-1: SerialNumber: syz [ 1000.668675][ T5943] usb 5-1: Handspring Visor / Palm OS: No valid connect info available [ 1000.700484][ T5943] usb 5-1: Handspring Visor / Palm OS: port 76, is for unknown use [ 1000.759786][ T5943] usb 5-1: Handspring Visor / Palm OS: port 111, is for HotSync use [ 1000.790191][ T5943] usb 5-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1000.873234][ T5943] usb 5-1: palm_os_3_probe - error -32 getting bytes available request [ 1000.912314][ T5943] visor 5-1:1.0: Handspring Visor / Palm OS converter detected [ 1000.949297][ T5943] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1001.046932][ T5943] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1001.118652][ T5943] usb 5-1: USB disconnect, device number 26 [ 1001.238557][ T5943] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1001.332313][ T5943] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1001.412144][ T5943] visor 5-1:1.0: device disconnected [ 1002.018713][T22699] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4491'. [ 1002.652081][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1002.658766][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1003.042285][T22705] loop1: detected capacity change from 0 to 8192 [ 1004.673965][T22752] loop3: detected capacity change from 0 to 8 [ 1006.848601][T22790] loop1: detected capacity change from 0 to 1024 [ 1006.958034][T22790] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1007.086368][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1007.457015][T22808] loop0: detected capacity change from 0 to 64 [ 1008.166388][T22821] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4525'. [ 1008.202905][T22827] loop1: detected capacity change from 0 to 256 [ 1008.445395][T22826] loop2: detected capacity change from 0 to 512 [ 1008.755278][T22826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1009.060402][T22826] ext4 filesystem being mounted at /908/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1009.639971][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1009.894517][T22862] loop0: detected capacity change from 0 to 512 [ 1009.965246][T22862] EXT4-fs: inline encryption not supported [ 1010.012640][T22862] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1010.075341][T22862] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 1010.137736][T22862] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1010.180122][T22862] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4222: comm syz.0.4532: Allocating blocks 41-42 which overlap fs metadata [ 1010.275396][T22862] loop0: lost filesystem error report for type 5 error -117 [ 1010.279456][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 1010.293635][ C0] EXT4-fs (loop0): initial error at time 1773471862: ext4_mb_mark_diskspace_used:4222 [ 1010.303444][ C0] EXT4-fs (loop0): last error at time 1773471862: ext4_mb_mark_diskspace_used:4222 [ 1010.330835][T22862] EXT4-fs (loop0): Remounting filesystem read-only [ 1010.380364][T22862] Quota error (device loop0): write_blk: dquota write failed [ 1010.388307][T22862] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1010.443482][T22862] EXT4-fs (loop0): 1 truncate cleaned up [ 1010.490401][T22862] EXT4-fs (loop0): pa ffff88812236f070: logic 1, phys. 41, len 23 [ 1010.563830][T22862] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1011.071073][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1011.197288][ T5943] hid-generic 0008:0001:0005.002D: item fetching failed at offset 0/1 [ 1011.253976][ T5943] hid-generic 0008:0001:0005.002D: probe with driver hid-generic failed with error -22 [ 1011.309274][T22880] loop2: detected capacity change from 0 to 4096 [ 1011.862991][T22902] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1011.898064][T22900] loop0: detected capacity change from 0 to 1764 [ 1012.956231][T22923] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4547'. [ 1014.926925][T22958] loop0: detected capacity change from 0 to 4096 [ 1015.010794][T22958] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1015.095032][T22966] loop4: detected capacity change from 0 to 1024 [ 1015.244407][T22966] hfsplus: bad catalog entry type [ 1015.317082][T22958] ntfs3(loop0): ino=19, mi_enum_attr [ 1015.330196][T22958] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1015.557494][ T108] hfsplus: b-tree write err: -5, ino 25 [ 1015.602486][ T108] hfsplus: b-tree write err: -5, ino 4 [ 1015.608317][ T108] hfsplus: b-tree write err: -5, ino 2 [ 1015.733708][T22958] ntfs3(loop0): ino=21, "file1" failed to extend initialized size to 8000c61. [ 1016.116820][T22977] loop1: detected capacity change from 0 to 4096 [ 1016.249539][T22977] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 1016.623757][T22977] ntfs3(loop1): ino=1a, mi_enum_attr [ 1016.629275][T22977] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1016.973282][T23001] netlink: 'syz.4.4568': attribute type 1 has an invalid length. [ 1017.291895][T22999] loop2: detected capacity change from 0 to 2048 [ 1017.447175][T22999] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1017.616172][T23004] loop0: detected capacity change from 0 to 2048 [ 1017.720101][T23013] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1017.874857][T23014] loop1: detected capacity change from 0 to 1024 [ 1017.896816][T23017] CIFS mount error: No usable UNC path provided in device string! [ 1017.896816][T23017] [ 1017.946575][T23017] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1018.025337][T23014] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1018.233425][T23014] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #11: comm syz.1.4571: missing EA_INODE flag [ 1018.280476][T23014] EXT4-fs (loop1): Remounting filesystem read-only [ 1018.608848][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1018.822454][T23032] loop0: detected capacity change from 0 to 1024 [ 1018.911296][T23032] EXT4-fs: inline encryption not supported [ 1019.095671][T23032] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1019.398275][T23032] EXT4-fs error (device loop0): mb_free_blocks:2047: group 0, inode 15: block 225:freeing already freed block (bit 14); block bitmap corrupt. [ 1019.474536][T23032] EXT4-fs (loop0): Remounting filesystem read-only [ 1019.666575][T23053] loop3: detected capacity change from 0 to 256 [ 1019.887848][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1020.073807][T23053] FAT-fs (loop3): Directory bread(block 64) failed [ 1020.094258][T23053] FAT-fs (loop3): Directory bread(block 65) failed [ 1020.119991][T23053] FAT-fs (loop3): Directory bread(block 66) failed [ 1020.159686][T23053] FAT-fs (loop3): Directory bread(block 67) failed [ 1020.179907][T23053] FAT-fs (loop3): Directory bread(block 68) failed [ 1020.186623][T23053] FAT-fs (loop3): Directory bread(block 69) failed [ 1020.259841][T23053] FAT-fs (loop3): Directory bread(block 70) failed [ 1020.292606][T23053] FAT-fs (loop3): Directory bread(block 71) failed [ 1020.335779][T23053] FAT-fs (loop3): Directory bread(block 72) failed [ 1020.385146][T23053] FAT-fs (loop3): Directory bread(block 73) failed [ 1021.351903][T23088] loop3: detected capacity change from 0 to 64 [ 1021.502567][ T9] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 1021.558305][T23092] loop1: detected capacity change from 0 to 512 [ 1021.606368][T23092] EXT4-fs: Ignoring removed bh option [ 1021.662227][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 1021.675879][ T9] usb 3-1: config 0 has an invalid interface number: 51 but max is 0 [ 1021.689607][T23092] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1021.713446][ T9] usb 3-1: config 0 has no interface number 0 [ 1021.762681][ T9] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 1021.774237][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1021.786701][ T9] usb 3-1: Product: syz [ 1021.792024][ T9] usb 3-1: Manufacturer: syz [ 1021.797445][ T9] usb 3-1: SerialNumber: syz [ 1021.799865][T23092] EXT4-fs error (device loop1): ext4_iget_extra_inode:5025: inode #15: comm syz.1.4585: corrupted in-inode xattr: e_value size too large [ 1021.811409][ T9] usb 3-1: config 0 descriptor?? [ 1021.843033][ T9] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 1021.869720][T23092] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1021.871137][T23092] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.4585: couldn't read orphan inode 15 (err -117) [ 1021.880707][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 1021.880789][ C0] EXT4-fs (loop1): initial error at time 1773471874: ext4_iget_extra_inode:5025: inode 15 [ 1021.880938][ C0] EXT4-fs (loop1): last error at time 1773471874: ext4_iget_extra_inode:5025: inode 15 [ 1021.995341][T23092] loop1: lost filesystem error report for type 5 error -117 [ 1022.033040][T23092] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1022.156631][ T9] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 1022.263150][ T9] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 1022.565001][ C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 1022.643945][ T5943] usb 3-1: USB disconnect, device number 23 [ 1022.792414][ T5781] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1022.803112][ T5943] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 1022.841212][ T5943] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 1022.913237][ T5943] quatech2 3-1:0.51: device disconnected [ 1023.632138][T23147] netlink: 56 bytes leftover after parsing attributes in process `syz.0.4593'. [ 1023.861497][T23149] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1024.140055][T23146] loop1: detected capacity change from 0 to 4096 [ 1024.388742][T23156] loop3: detected capacity change from 0 to 512 [ 1024.410685][T23157] loop0: detected capacity change from 0 to 512 [ 1024.448531][T23156] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 1024.482627][ T29] audit: type=1800 audit(1773471876.721:104): pid=23146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.4591" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 1024.523536][T23141] ntfs3(loop1): ino=1e, "file1" attr_set_size_ex [ 1024.551163][T23157] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #3: comm syz.0.4597: corrupted inode contents [ 1024.577912][T23141] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1024.600548][T23157] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117 [ 1024.604820][T23157] EXT4-fs (loop0): Remounting filesystem read-only [ 1024.614305][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 1024.614391][ C0] EXT4-fs (loop0): initial error at time 1773471876: ext4_do_update_inode:5569: inode 3 [ 1024.614544][ C0] EXT4-fs (loop0): last error at time 1773471876: ext4_do_update_inode:5569: inode 3 [ 1024.735002][T23156] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #17: comm syz.3.4596: inode has both inline data and extents flags [ 1024.759145][T23157] Quota error (device loop0): write_blk: dquota write failed [ 1024.803775][T23156] loop3: lost file I/O error report for ino 17 type 5 pos 0x0 len 0x0 error -117 [ 1024.809477][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 1024.825501][ C0] EXT4-fs (loop3): initial error at time 1773471877: ext4_orphan_get:1391: inode 17 [ 1024.830508][T23157] Quota error (device loop0): qtree_write_dquot: Error -30 occurred while creating quota [ 1024.835217][ C0] EXT4-fs (loop3): last error at time 1773471877: ext4_orphan_get:1391: inode 17 [ 1024.874741][T23156] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4596: couldn't read orphan inode 17 (err -117) [ 1024.932430][T23157] EXT4-fs (loop0): 1 truncate cleaned up [ 1024.974578][T23156] loop3: lost filesystem error report for type 5 error -117 [ 1024.983792][T23156] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1025.040514][T23157] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1025.094086][T23157] ext4 filesystem being mounted at /891/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1025.465090][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1025.630252][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1025.817049][T23184] loop4: detected capacity change from 0 to 256 [ 1025.892511][T23184] exfat: Unknown parameter '01777777777777777777777' [ 1026.027768][T23194] loop3: detected capacity change from 0 to 128 [ 1027.023361][T23213] overlayfs: "xino" feature enabled using 2 upper inode bits. [ 1027.083186][T23216] netlink: 32 bytes leftover after parsing attributes in process `syz.4.4617'. [ 1027.802335][T23227] loop4: detected capacity change from 0 to 2048 [ 1027.877051][T23227] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1027.884605][ T6050] udevd[6050]: inotify_add_watch(7, /dev/loop1, 10) failed: No such file or directory [ 1028.104136][T23235] loop0: detected capacity change from 0 to 128 [ 1028.267502][T23224] loop3: detected capacity change from 0 to 4096 [ 1028.822733][T23224] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1028.861182][T23224] ntfs3(loop3): Failed to load $Extend (-22). [ 1028.867465][T23224] ntfs3(loop3): Failed to initialize $Extend. [ 1029.057302][T23224] ntfs3(loop3): ino=9, ntfs_sync_fs failed, -22. [ 1029.206799][T23257] loop0: detected capacity change from 0 to 1024 [ 1029.409699][T16383] usb 5-1: new full-speed USB device number 27 using dummy_hcd [ 1029.480505][ T5789] ntfs3(loop3): ino=9, ntfs_sync_fs failed, -22. [ 1029.513015][T23257] hfsplus: bad catalog entry type [ 1029.628014][T16383] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1029.662285][T16383] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1029.705107][T16383] usb 5-1: config 0 descriptor?? [ 1029.763585][T16383] cp210x 5-1:0.0: cp210x converter detected [ 1029.867022][ T108] hfsplus: b-tree write err: -5, ino 25 [ 1029.941387][ T108] hfsplus: b-tree write err: -5, ino 4 [ 1029.975514][ T108] hfsplus: b-tree write err: -5, ino 2 [ 1030.294148][T16383] usb 5-1: cp210x converter now attached to ttyUSB0 [ 1030.446007][ T9] usb 5-1: USB disconnect, device number 27 [ 1030.521588][ T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1030.653671][ T9] cp210x 5-1:0.0: device disconnected [ 1031.651891][T23317] comedi comedi3: comedi_test: 20263 microvolt, 2 microsecond waveform attached [ 1032.474342][T23334] loop0: detected capacity change from 0 to 256 [ 1032.486972][T23334] exfat: Deprecated parameter 'namecase' [ 1032.564787][T23334] exfat: Deprecated parameter 'namecase' [ 1032.743522][T23334] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1033.092627][T23344] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4637'. [ 1034.734818][T23380] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4647'. [ 1034.773811][T23382] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4647'. [ 1035.615503][T23397] netlink: 140 bytes leftover after parsing attributes in process `syz.1.4653'. [ 1036.351568][T23410] loop2: detected capacity change from 0 to 512 [ 1036.411870][T23410] EXT4-fs: inline encryption not supported [ 1036.417975][T23410] EXT4-fs: Ignoring removed mblk_io_submit option [ 1036.513056][ T9] usb 2-1: new full-speed USB device number 17 using dummy_hcd [ 1036.554463][T23410] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1036.638715][T23410] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1036.726543][ T9] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1036.736156][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1036.762367][T23410] EXT4-fs error (device loop2): ext4_orphan_get:1391: comm syz.2.4656: inode #13: comm syz.2.4656: iget: illegal inode # [ 1036.795766][ T9] usb 2-1: config 0 descriptor?? [ 1036.842577][ T9] cp210x 2-1:0.0: cp210x converter detected [ 1036.890805][T23410] loop2: lost filesystem error report for type 5 error -117 [ 1036.899624][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 1036.913822][ C0] EXT4-fs (loop2): initial error at time 1773471889: ext4_orphan_get:1391 [ 1036.922620][ C0] EXT4-fs (loop2): last error at time 1773471889: ext4_orphan_get:1391 [ 1036.935461][T23410] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.4656: couldn't read orphan inode 13 (err -117) [ 1036.987974][T23410] loop2: lost filesystem error report for type 5 error -117 [ 1037.018186][T23410] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1037.374715][ T9] usb 2-1: cp210x converter now attached to ttyUSB0 [ 1037.480478][ T5943] usb 2-1: USB disconnect, device number 17 [ 1037.582943][ T5943] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1037.745039][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1037.812999][ T5943] cp210x 2-1:0.0: device disconnected [ 1037.945492][T23457] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4665'. [ 1040.844009][T23540] loop0: detected capacity change from 0 to 512 [ 1040.879571][ T9] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 1040.983784][T23540] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1041.050016][T23540] ext4 filesystem being mounted at /908/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1041.115825][ T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1041.133186][ T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 1041.170272][ T9] usb 2-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 1041.202173][ T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1041.252071][ T9] usb 2-1: config 0 descriptor?? [ 1041.626882][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1041.731299][ T9] hid (null): unknown global tag 0xd [ 1041.818133][ T9] kye 0003:0458:5019.002E: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 1041.881005][ T9] kye 0003:0458:5019.002E: unknown main item tag 0x0 [ 1041.888003][ T9] kye 0003:0458:5019.002E: unknown main item tag 0x0 [ 1041.925610][ T9] kye 0003:0458:5019.002E: unknown main item tag 0x0 [ 1041.964722][ T9] kye 0003:0458:5019.002E: unknown main item tag 0x0 [ 1041.992064][ T9] kye 0003:0458:5019.002E: unknown global tag 0xd [ 1042.019542][ T9] kye 0003:0458:5019.002E: item 0 1 1 13 parsing failed [ 1042.064939][ T9] kye 0003:0458:5019.002E: parse failed [ 1042.112365][ T9] kye 0003:0458:5019.002E: probe with driver kye failed with error -22 [ 1042.189251][ T9] usb 2-1: USB disconnect, device number 18 [ 1042.604267][T23578] loop0: detected capacity change from 0 to 2048 [ 1042.730346][T23578] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1043.188460][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1045.312097][T23650] bridge: RTM_NEWNEIGH with invalid ether address [ 1047.745601][T23702] loop3: detected capacity change from 0 to 512 [ 1047.781744][T23702] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1047.792899][T23704] netlink: zone id is out of range [ 1047.836728][T23702] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.4716: inode has both inline data and extents flags [ 1047.863029][T23702] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1047.870772][T23702] EXT4-fs (loop3): Remounting filesystem read-only [ 1047.880314][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 1047.880408][ C0] EXT4-fs (loop3): initial error at time 1773471900: ext4_orphan_get:1391: inode 15 [ 1047.880565][ C0] EXT4-fs (loop3): last error at time 1773471900: ext4_orphan_get:1391: inode 15 [ 1047.957073][T23702] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1048.285495][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1048.798645][T23722] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4719'. [ 1049.531255][T23735] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4725'. [ 1049.628811][T23737] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4726'. [ 1049.756927][T23737] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 1049.937600][T23737] batman_adv: batadv0: Adding interface: ip6gretap1 [ 1049.996737][T23737] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1050.134191][T23737] batman_adv: batadv0: Interface activated: ip6gretap1 [ 1050.717931][T23764] netlink: 199 bytes leftover after parsing attributes in process `syz.4.4732'. [ 1051.284314][T23781] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4736'. [ 1051.504533][T23780] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1053.701855][T23813] loop3: detected capacity change from 0 to 4096 [ 1053.789551][T23813] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1054.112574][T23813] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1054.171332][T23813] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 1054.280380][T23813] ntfs3(loop3): ino=1b, mi_enum_attr [ 1054.452470][T23840] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4751'. [ 1054.490529][T23840] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4751'. [ 1056.462648][T23873] loop3: detected capacity change from 0 to 164 [ 1057.955108][T23902] loop3: detected capacity change from 0 to 128 [ 1059.403909][T23930] vlan3: entered promiscuous mode [ 1059.486773][T23937] tmpfs: Bad value for 'mpol' [ 1060.240267][T23951] loop4: detected capacity change from 0 to 2048 [ 1060.388825][T23956] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1061.436216][T23978] loop3: detected capacity change from 0 to 1764 [ 1061.546503][T23978] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1061.709956][T23980] loop2: detected capacity change from 0 to 4096 [ 1061.863574][T23980] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1062.108141][T23980] EXT4-fs: Ignoring sb option on remount [ 1062.162470][T23980] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1062.199161][T23980] EXT4-fs (loop2): stripe (249) is not aligned with cluster size (16), stripe is disabled [ 1062.231529][T23999] loop0: detected capacity change from 0 to 256 [ 1062.254454][T23980] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 1062.348787][T23999] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 198) [ 1062.394219][T23999] FAT-fs (loop0): Filesystem has been set read-only [ 1062.459170][T23999] FAT-fs (loop0): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1062.650126][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1064.107673][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1064.114823][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1064.397536][T24045] netlink: 260 bytes leftover after parsing attributes in process `syz.2.4811'. [ 1065.131678][T24066] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 1066.287121][T24097] program syz.1.4826 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1067.102905][T24117] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4832'. [ 1067.156074][T24117] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4832'. [ 1067.310638][T24122] loop3: detected capacity change from 0 to 256 [ 1067.405971][T24122] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d) [ 1071.754418][T24217] loop3: detected capacity change from 0 to 8 [ 1071.861483][T24217] SQUASHFS error: xz decompression failed, data probably corrupt [ 1071.906731][T24217] SQUASHFS error: Failed to read block 0x108: -5 [ 1071.940170][T24217] SQUASHFS error: Unable to read metadata cache entry [106] [ 1071.947640][T24217] SQUASHFS error: Unable to read inode 0x11f [ 1071.956318][T24223] loop2: detected capacity change from 0 to 64 [ 1073.535020][T24255] loop3: detected capacity change from 0 to 22 [ 1073.615873][T24255] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1073.800033][T24247] loop0: detected capacity change from 0 to 8192 [ 1073.864844][T24247] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1074.693422][ T29] audit: type=1326 audit(1773471926.931:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24272 comm="syz.1.4879" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000 [ 1074.743223][T24266] loop2: detected capacity change from 0 to 4096 [ 1074.802557][ T29] audit: type=1326 audit(1773471926.931:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24272 comm="syz.1.4879" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb2f6c code=0x7ffc0000 [ 1075.580803][T24287] syz_tun: entered promiscuous mode [ 1075.586313][T24287] macsec2: entered allmulticast mode [ 1075.610043][T24287] syz_tun: entered allmulticast mode [ 1075.672731][T24287] syz_tun: left allmulticast mode [ 1075.680258][ T9] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 1075.705525][T24287] syz_tun: left promiscuous mode [ 1075.869582][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 1075.916871][ T9] usb 4-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 1075.949640][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1075.957860][ T9] usb 4-1: Product: syz [ 1076.002959][ T9] usb 4-1: Manufacturer: syz [ 1076.007757][ T9] usb 4-1: SerialNumber: syz [ 1076.051669][ T9] usb 4-1: config 0 descriptor?? [ 1076.086235][ T9] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state. [ 1076.123170][ T9] dvb-usb: bulk message failed: -22 (2/0) [ 1076.156037][ T9] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 1076.186818][ T9] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold) [ 1076.232501][ T9] usb 4-1: media controller created [ 1076.297902][T24286] cxusb: i2c wr: len=80 is too big! [ 1076.297902][T24286] [ 1076.473657][ T9] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1076.514642][T24312] loop0: detected capacity change from 0 to 512 [ 1076.645784][ T9] usb 4-1: selecting invalid altsetting 7 [ 1076.654558][T24312] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #11: comm syz.0.4885: unexpected EA_INODE flag [ 1076.655549][ T9] cxusb: set interface failed [ 1076.674156][ T9] dvb-usb: bulk message failed: -22 (1/0) [ 1076.709892][T24323] loop2: detected capacity change from 0 to 128 [ 1076.739688][T24312] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1076.742561][T24312] EXT4-fs (loop0): Remounting filesystem read-only [ 1076.752216][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 1076.752300][ C1] EXT4-fs (loop0): initial error at time 1773471928: ext4_orphan_get:1391: inode 11 [ 1076.752450][ C1] EXT4-fs (loop0): last error at time 1773471928: ext4_orphan_get:1391: inode 11 [ 1076.780217][ T9] DVB: Unable to find symbol lgdt330x_attach() [ 1076.864436][ T9] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold' [ 1076.990694][T24312] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1077.493180][ T9] rc_core: IR keymap rc-dvico-portable not found [ 1077.519681][ T9] Registered IR keymap rc-empty [ 1077.539980][ T9] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0 [ 1077.594858][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1077.623967][ T9] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0/input31 [ 1077.647754][T24339] loop3: detected capacity change from 0 to 128 [ 1077.784229][ T9] dvb-usb: schedule remote query interval to 100 msecs. [ 1078.247455][ T9] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected. [ 1078.286391][ T9] usb 4-1: USB disconnect, device number 25 [ 1079.036441][ T9] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected. [ 1079.508371][T24390] loop3: detected capacity change from 0 to 16 [ 1079.627733][T24393] sp0: Synchronizing with TNC [ 1079.633780][T24390] erofs (device loop3): mounted with root inode @ nid 36. [ 1080.764144][T24421] loop2: detected capacity change from 0 to 64 [ 1081.323189][T24433] netlink: 72 bytes leftover after parsing attributes in process `syz.3.4910'. [ 1081.434674][T24441] loop4: detected capacity change from 0 to 8 [ 1081.536868][T24441] SQUASHFS error: xz decompression failed, data probably corrupt [ 1081.570132][T24441] SQUASHFS error: Failed to read block 0x108: -5 [ 1081.576634][T24441] SQUASHFS error: Unable to read metadata cache entry [106] [ 1081.599897][T24441] SQUASHFS error: Unable to read inode 0x11f [ 1082.019245][T24453] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4916'. [ 1083.615149][T24481] loop3: detected capacity change from 0 to 4096 [ 1083.706304][T24490] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1084.256486][ T29] audit: type=1326 audit(1773471936.491:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1084.412164][ T29] audit: type=1326 audit(1773471936.491:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1084.538537][ T29] audit: type=1326 audit(1773471936.501:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1084.770215][ T29] audit: type=1326 audit(1773471936.501:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1084.979649][ T29] audit: type=1326 audit(1773471936.501:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.117496][ T29] audit: type=1326 audit(1773471936.501:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=311 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.242189][ T29] audit: type=1326 audit(1773471936.501:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.297845][T24521] loop3: detected capacity change from 0 to 64 [ 1085.379699][ T29] audit: type=1326 audit(1773471936.501:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.516809][ T29] audit: type=1326 audit(1773471936.501:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="syz.0.4929" exe="/root/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.650105][ T29] audit: type=1326 audit(1773471936.501:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24501 comm="" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1085.707089][T24529] loop4: detected capacity change from 0 to 256 [ 1086.042228][T24529] FAT-fs (loop4): Directory bread(block 64) failed [ 1086.048958][T24529] FAT-fs (loop4): Directory bread(block 65) failed [ 1086.105084][T24529] FAT-fs (loop4): Directory bread(block 66) failed [ 1086.142355][T24529] FAT-fs (loop4): Directory bread(block 67) failed [ 1086.149246][T24529] FAT-fs (loop4): Directory bread(block 68) failed [ 1086.242045][T24529] FAT-fs (loop4): Directory bread(block 69) failed [ 1086.248947][T24529] FAT-fs (loop4): Directory bread(block 70) failed [ 1086.307166][T24543] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4941'. [ 1086.322546][T24529] FAT-fs (loop4): Directory bread(block 71) failed [ 1086.347627][T24529] FAT-fs (loop4): Directory bread(block 72) failed [ 1086.362728][T24529] FAT-fs (loop4): Directory bread(block 73) failed [ 1086.372625][T24544] netlink: 60 bytes leftover after parsing attributes in process `syz.1.4941'. [ 1086.573561][T24547] loop2: detected capacity change from 0 to 1024 [ 1086.755541][T24547] hfsplus: b-tree write err: -5, ino 2 [ 1087.162530][ T108] hfsplus: b-tree write err: -5, ino 25 [ 1087.196855][ T108] hfsplus: b-tree write err: -5, ino 4 [ 1087.221746][ T108] hfsplus: b-tree write err: -5, ino 2 [ 1087.228651][ T108] hfsplus: b-tree write err: -5, ino 26 [ 1087.243089][T24565] loop0: detected capacity change from 0 to 64 [ 1087.244093][ T108] hfsplus: b-tree write err: -5, ino 22 [ 1087.393020][T24568] loop4: detected capacity change from 0 to 128 [ 1087.615242][T24568] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1087.695994][T24568] hpfs: filesystem error: improperly stopped [ 1087.720064][T24568] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1087.779945][T24568] hpfs: You really don't want any checks? You are crazy... [ 1087.787702][T24568] hpfs: hpfs_map_sector(): read error [ 1087.854985][T24568] hpfs: code page support is disabled [ 1087.920069][T24568] hpfs: hpfs_map_4sectors(): unaligned read [ 1087.926318][T24568] hpfs: hpfs_map_4sectors(): unaligned read [ 1088.009918][T24568] hpfs: filesystem error: unable to find root dir [ 1088.288480][T24584] loop0: detected capacity change from 0 to 1024 [ 1088.325916][T24584] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1088.403270][T24584] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 1088.494661][T24584] System zones: 0-1, 3-36 [ 1088.586680][T24584] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1089.011515][T24601] loop2: detected capacity change from 0 to 1764 [ 1089.126303][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1089.981187][T24633] tmpfs: Cannot retroactively limit inodes [ 1090.633836][T24646] vim2m vim2m.0: vidioc_s_fmt queue busy [ 1091.101042][T24651] loop4: detected capacity change from 0 to 1764 [ 1091.971590][T24677] loop2: detected capacity change from 0 to 16 [ 1092.003208][T24677] erofs (device loop2): mounted with root inode @ nid 36. [ 1092.056476][T24678] Dead loop on virtual device ip6_vti0, fix it urgently! [ 1092.074624][T24677] erofs (device loop2): invalid de[0].nameoff 0 @ nid 36 [ 1092.547908][T24688] loop3: detected capacity change from 0 to 256 [ 1094.152299][T24724] loop3: detected capacity change from 0 to 256 [ 1094.191939][T24724] vfat: Unknown parameter 'sh!'ortname' [ 1095.086943][T24745] loop3: detected capacity change from 0 to 512 [ 1095.283949][T24745] EXT4-fs (loop3): 1 truncate cleaned up [ 1095.310518][T24745] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1095.499655][T24750] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 7: invalid block bitmap [ 1095.558355][T24745] EXT4-fs: can't change dax mount option while remounting [ 1095.895938][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1096.217147][T24769] loop2: detected capacity change from 0 to 16 [ 1096.275528][T24769] erofs (device loop2): mounted with root inode @ nid 36. [ 1097.641000][T24801] netlink: 48 bytes leftover after parsing attributes in process `syz.3.5012'. [ 1098.529148][T24820] loop4: detected capacity change from 0 to 16 [ 1098.612777][T24820] erofs (device loop4): mounted with root inode @ nid 36. [ 1098.899972][ T5943] usb 2-1: new full-speed USB device number 19 using dummy_hcd [ 1099.127891][ T5943] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 1099.151040][ T5943] usb 2-1: config 0 has no interface number 0 [ 1099.157355][ T5943] usb 2-1: config 0 interface 1 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1099.209867][ T5943] usb 2-1: config 0 interface 1 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1099.226658][ T5943] usb 2-1: config 0 interface 1 altsetting 128 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1099.279885][ T5943] usb 2-1: config 0 interface 1 has no altsetting 0 [ 1099.287255][ T5943] usb 2-1: New USB device found, idVendor=145f, idProduct=0212, bcdDevice= 0.00 [ 1099.303993][ T5943] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1099.342408][ T5943] usb 2-1: config 0 descriptor?? [ 1100.002307][ T5943] uclogic 0003:145F:0212.002F: failed retrieving string descriptor #100: -71 [ 1100.030557][ T5943] uclogic 0003:145F:0212.002F: failed retrieving pen parameters: -71 [ 1100.038969][ T5943] uclogic 0003:145F:0212.002F: pen probing failed: -71 [ 1100.075400][ T5943] uclogic 0003:145F:0212.002F: failed probing parameters: -71 [ 1100.099840][ T5943] uclogic 0003:145F:0212.002F: probe with driver uclogic failed with error -71 [ 1100.174844][ T5943] usb 2-1: USB disconnect, device number 19 [ 1100.472967][T24871] [U] V3Fپ"S/4:XTZWTLW= [ 1102.485358][T24907] tipc: Enabled bearer , priority 17 [ 1102.546126][T24910] tipc: Enabling of bearer rejected, failed to enable media [ 1102.667195][T24914] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5045'. [ 1102.691740][T24914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5045'. [ 1103.391577][T24928] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5051'. [ 1103.401079][T24921] loop0: detected capacity change from 0 to 2048 [ 1103.401640][T24928] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5051'. [ 1103.466876][T24921] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1103.480145][T24928] netlink: 'syz.3.5051': attribute type 14 has an invalid length. [ 1103.515038][T24928] netlink: 'syz.3.5051': attribute type 12 has an invalid length. [ 1104.723254][T24953] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5058'. [ 1105.011279][T24942] loop3: detected capacity change from 0 to 8192 [ 1105.132563][ T29] kauditd_printk_skb: 8 callbacks suppressed [ 1105.132633][ T29] audit: type=1326 audit(1773471957.341:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24957 comm="syz.0.5060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1105.231267][ T29] audit: type=1326 audit(1773471957.341:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24957 comm="syz.0.5060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1105.365976][ T29] audit: type=1326 audit(1773471957.341:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24957 comm="syz.0.5060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=436 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1105.479842][ T29] audit: type=1326 audit(1773471957.341:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24957 comm="syz.0.5060" exe="/root/syz-executor" sig=0 arch=40000003 syscall=252 compat=1 ip=0xf70bef6c code=0x7ffc0000 [ 1105.718706][T24967] loop2: detected capacity change from 0 to 2048 [ 1105.763345][T24967] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1105.883499][T24967] syz.2.5062: attempt to access beyond end of device [ 1105.883499][T24967] loop2: rw=8912896, sector=33554430, nr_sectors = 2 limit=2048 [ 1105.901722][T24975] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1106.017912][T24967] NILFS (loop2): error -2 truncating bmap (ino=16) [ 1106.112449][T24981] NILFS (loop2): error -2 truncating bmap (ino=16) [ 1106.241894][T24974] loop3: detected capacity change from 0 to 2048 [ 1106.325553][T24974] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1106.380522][T24987] hugetlbfs: Bad value 'k' for mount option 'size' [ 1106.380522][T24987] [ 1106.866368][T24994] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5069'. [ 1107.022887][T24993] loop2: detected capacity change from 0 to 1764 [ 1108.208825][T25022] nftables ruleset with unbound set [ 1108.511489][T25026] loop4: detected capacity change from 0 to 64 [ 1110.392552][ T9] usb 5-1: new high-speed USB device number 28 using dummy_hcd [ 1110.557959][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1110.583443][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1110.646564][ T9] usb 5-1: New USB device found, idVendor=5543, idProduct=0064, bcdDevice= 0.00 [ 1110.669614][ T9] usb 5-1: New USB device strings: Mfr=0, Product=117, SerialNumber=0 [ 1110.692248][ T9] usb 5-1: Product: syz [ 1110.713819][ T9] usb 5-1: config 0 descriptor?? [ 1110.771621][T25084] loop0: detected capacity change from 0 to 1024 [ 1111.208669][ T9] uclogic 0003:5543:0064.0030: unbalanced collection at end of report description [ 1111.270253][ T2981] hfsplus: b-tree write err: -5, ino 25 [ 1111.276365][ T2981] hfsplus: b-tree write err: -5, ino 4 [ 1111.286900][ T9] uclogic 0003:5543:0064.0030: parse failed [ 1111.310951][ T2981] hfsplus: b-tree write err: -5, ino 2 [ 1111.327688][ T9] uclogic 0003:5543:0064.0030: probe with driver uclogic failed with error -22 [ 1111.383875][T25093] loop2: detected capacity change from 0 to 1024 [ 1111.412430][ T9] usb 5-1: USB disconnect, device number 28 [ 1111.433786][T25093] EXT4-fs: Ignoring removed mblk_io_submit option [ 1111.484377][T25093] EXT4-fs: Ignoring removed bh option [ 1111.544192][T25093] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1111.582119][T25111] usb usb9: usbfs: process 25111 (syz.0.5098) did not claim interface 0 before use [ 1112.131282][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1114.447927][ T29] audit: type=1400 audit(1773471966.681:129): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=25164 comm="syz.1.5114" [ 1115.635873][T25190] loop4: detected capacity change from 0 to 256 [ 1116.401339][T25207] loop2: detected capacity change from 0 to 256 [ 1116.435540][T25207] exfat: Deprecated parameter 'utf8' [ 1116.444913][T25210] netlink: 224 bytes leftover after parsing attributes in process `syz.0.5127'. [ 1116.496361][T25210] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5127'. [ 1116.601625][T25215] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5130'. [ 1116.606485][T25207] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 1116.709149][T25219] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5130'. [ 1116.785585][T25219] netlink: 104 bytes leftover after parsing attributes in process `syz.3.5130'. [ 1117.312246][T25229] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 1118.248809][T25250] overlayfs: failed to resolve './bus': -2 [ 1118.793916][T25260] loop3: detected capacity change from 0 to 256 [ 1118.847452][T25260] exfat: Deprecated parameter 'namecase' [ 1118.897422][T25266] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5146'. [ 1118.941994][T25260] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36bd6320, utbl_chksum : 0xe619d30d) [ 1119.013145][T25269] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5146'. [ 1119.084269][T25269] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5146'. [ 1119.117592][ T29] audit: type=1400 audit(1773471971.341:130): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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loop3: detected capacity change from 0 to 1024 [ 1120.294168][T25285] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1120.371714][T25298] loop0: detected capacity change from 0 to 512 [ 1120.402273][T25298] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1120.554576][T25298] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.5154: bad orphan inode 131083 [ 1120.656441][T25298] loop0: lost filesystem error report for type 5 error -117 [ 1120.659444][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 1120.673744][ C0] EXT4-fs (loop0): initial error at time 1773471972: ext4_orphan_get:1417 [ 1120.682570][ C0] EXT4-fs (loop0): last error at time 1773471972: ext4_orphan_get:1417 [ 1120.698435][T25298] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1120.828802][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1120.874488][T25298] overlayfs: upper fs needs to support d_type. [ 1120.992260][T25309] loop4: detected capacity change from 0 to 64 [ 1121.094126][T25309] syz.4.5157: attempt to access beyond end of device [ 1121.094126][T25309] loop4: rw=8388608, sector=412, nr_sectors = 2 limit=64 [ 1121.245350][T25309] Trying to free block not in datazone [ 1121.299873][T25313] syz.4.5157: attempt to access beyond end of device [ 1121.299873][T25313] loop4: rw=8388608, sector=412, nr_sectors = 2 limit=64 [ 1121.399181][T25313] buffer_io_error: 9 callbacks suppressed [ 1121.399254][T25313] Buffer I/O error on dev loop4, logical block 206, async page read [ 1121.481283][ T29] audit: type=1800 audit(1773471973.711:131): pid=25313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5157" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 1121.742911][ T5779] bridge0: port 3(syz_tun) entered disabled state [ 1121.858248][ T5779] syz_tun (unregistering): left allmulticast mode [ 1121.894888][ T5779] syz_tun (unregistering): left promiscuous mode [ 1121.902801][ T5779] bridge0: port 3(syz_tun) entered disabled state [ 1122.286525][ T5779] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1122.466644][T16707] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1122.519971][T16707] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.584951][T25348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5167'. [ 1122.623237][T25348] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5167'. [ 1122.715058][T16707] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1122.759574][T16707] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1122.872421][T25352] netlink: 36 bytes leftover after parsing attributes in process `syz.3.5171'. [ 1122.988469][T16707] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1123.023619][T16707] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1123.176680][T16707] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 1123.210454][T16707] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1123.554882][T16707] bridge_slave_1: left allmulticast mode [ 1123.561245][T16707] bridge_slave_1: left promiscuous mode [ 1123.567828][T16707] bridge0: port 2(bridge_slave_1) entered disabled state [ 1123.594710][T16707] bridge_slave_0: left allmulticast mode [ 1123.601532][T16707] bridge_slave_0: left promiscuous mode [ 1123.608049][T16707] bridge0: port 1(bridge_slave_0) entered disabled state [ 1124.702145][T16707] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1124.808198][T25382] loop3: detected capacity change from 0 to 1024 [ 1124.816730][T16707] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1124.852272][T25385] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1124.884371][T16707] bond0 (unregistering): (slave batadv0): Releasing backup interface [ 1125.011890][T16707] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 1125.017141][T25382] hfsplus: bad catalog entry type [ 1125.059894][T16707] bond0 (unregistering): Released all slaves [ 1125.132423][T25392] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1125.145539][T25392] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1125.162403][T25392] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1125.195071][T25392] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1125.227099][T25392] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1125.285098][ T5785] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1125.303242][ T5785] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1125.320615][ T5785] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1125.368841][ T5785] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1125.393322][ T5785] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1125.540585][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1125.547448][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1125.616794][ T144] hfsplus: b-tree write err: -5, ino 25 [ 1125.659895][ T144] hfsplus: b-tree write err: -5, ino 4 [ 1125.665721][ T144] hfsplus: b-tree write err: -5, ino 2 [ 1125.766021][T16707] tipc: Disabling bearer [ 1125.823808][T16707] tipc: Disabling bearer [ 1125.841656][T16707] tipc: Left network mode [ 1126.148036][T25443] loop4: detected capacity change from 0 to 256 [ 1126.408260][T25451] mkiss: ax0: crc mode is auto. [ 1127.054751][T25493] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5185'. [ 1127.091173][T16707] hsr_slave_0: left promiscuous mode [ 1127.106902][T16707] hsr_slave_1: left promiscuous mode [ 1127.127480][T16707] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1127.159722][T16707] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1127.224133][T16707] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1127.263470][T16707] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1127.400093][T16707] veth1_macvtap: left promiscuous mode [ 1127.410677][T16707] veth0_macvtap: left promiscuous mode [ 1127.424036][T25392] Bluetooth: hci1: command tx timeout [ 1127.431411][T16707] veth1_vlan: left promiscuous mode [ 1127.447532][T16707] veth0_vlan: left promiscuous mode [ 1127.805082][T25508] netlink: 160 bytes leftover after parsing attributes in process `syz.4.5189'. [ 1127.850145][T25508] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5189'. [ 1129.240405][T25539] loop3: detected capacity change from 0 to 128 [ 1129.283542][T25539] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1129.311775][T25537] loop4: detected capacity change from 0 to 2048 [ 1129.333505][T25539] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1129.489976][T25537] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=8842c128, mo2=0003] [ 1129.502249][T25392] Bluetooth: hci1: command tx timeout [ 1129.631699][T25537] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1129.658231][T25537] EXT4-fs error (device loop4): ext4_ext_precache:648: inode #2: comm syz.4.5196: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 1129.688817][T25537] EXT4-fs (loop4): Remounting filesystem read-only [ 1129.805678][ T108] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1129.809691][T25550] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 1129.930865][T16707] team0 (unregistering): Port device team_slave_1 removed [ 1129.975764][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1130.091808][T16707] team0 (unregistering): Port device team_slave_0 removed [ 1130.366922][T25558] loop3: detected capacity change from 0 to 1024 [ 1130.402986][T25558] EXT4-fs: Ignoring removed nobh option [ 1130.408851][T25558] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1130.492654][T25560] loop4: detected capacity change from 0 to 1024 [ 1130.525546][T25560] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1130.594464][T25567] netlink: 32 bytes leftover after parsing attributes in process `syz.1.5202'. [ 1130.624715][T25558] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1130.721060][T25560] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1131.208891][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1131.303849][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1131.380893][T25588] ipvlan2: entered allmulticast mode [ 1131.399272][T25588] syz_tun: entered allmulticast mode [ 1131.581341][T25392] Bluetooth: hci1: command tx timeout [ 1131.736752][T16707] IPVS: stop unused estimator thread 0... [ 1132.127073][T25389] chnl_net:caif_netlink_parms(): no params data found [ 1133.183270][T25670] loop2: detected capacity change from 0 to 256 [ 1133.393533][T25670] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1133.522705][T25670] exFAT-fs (loop2): valid_size(150994954) is greater than size(10) [ 1133.659880][T25392] Bluetooth: hci1: command tx timeout [ 1133.842695][T25389] bridge0: port 1(bridge_slave_0) entered blocking state [ 1133.899885][T25389] bridge0: port 1(bridge_slave_0) entered disabled state [ 1133.938736][T25389] bridge_slave_0: entered allmulticast mode [ 1133.962373][T25389] bridge_slave_0: entered promiscuous mode [ 1134.061121][T25389] bridge0: port 2(bridge_slave_1) entered blocking state [ 1134.068640][T25389] bridge0: port 2(bridge_slave_1) entered disabled state [ 1134.137290][T25389] bridge_slave_1: entered allmulticast mode [ 1134.171871][T25389] bridge_slave_1: entered promiscuous mode [ 1134.282133][T25702] loop4: detected capacity change from 0 to 1024 [ 1134.331570][T25702] EXT4-fs: Ignoring removed mblk_io_submit option [ 1134.414622][T25702] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1134.611901][T25389] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1134.721422][T25389] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1134.981830][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1134.983276][T25719] loop3: detected capacity change from 0 to 4096 [ 1135.028263][T25389] team0: Port device team_slave_0 added [ 1135.128874][T25389] team0: Port device team_slave_1 added [ 1135.220339][T25759] nbd: must specify at least one socket [ 1135.260523][T25719] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1135.524017][T25719] ntfs3(loop3): ino=1a, mi_enum_attr [ 1135.531629][T25389] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1135.541112][T25719] ntfs3(loop3): ino=1a, mi_enum_attr [ 1135.546591][T25719] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 1135.579612][T25389] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1135.669602][T25389] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1135.762491][T25389] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1135.793473][T25389] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 1135.869203][T25389] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1136.528862][T25389] hsr_slave_0: entered promiscuous mode [ 1136.587020][T25389] hsr_slave_1: entered promiscuous mode [ 1136.874897][T25835] sg_write: data in/out 443356/194 bytes for SCSI command 0x0-- guessing data in; [ 1136.874897][T25835] program syz.4.5232 not setting count and/or reply_len properly [ 1136.962403][T25826] loop2: detected capacity change from 0 to 2048 [ 1137.153674][T25826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1137.390908][T25826] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 1137.462218][T25826] overlayfs: failed to verify upper root origin [ 1138.339592][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1138.984764][T25389] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1139.158904][T25389] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1139.262097][T25389] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1139.300417][T25945] loop4: detected capacity change from 0 to 736 [ 1139.349555][T25389] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1140.259912][T25964] loop4: detected capacity change from 0 to 256 [ 1140.785635][T25389] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1141.043085][T25389] 8021q: adding VLAN 0 to HW filter on device team0 [ 1141.205671][ T144] bridge0: port 1(bridge_slave_0) entered blocking state [ 1141.213220][ T144] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1141.267429][ T144] bridge0: port 2(bridge_slave_1) entered blocking state [ 1141.275139][ T144] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1141.655480][T25972] loop3: detected capacity change from 0 to 8192 [ 1142.831509][T25999] loop3: detected capacity change from 0 to 128 [ 1143.093214][T26005] netlink: 348 bytes leftover after parsing attributes in process `syz.2.5254'. [ 1143.328266][ T29] audit: type=1326 audit(1773471995.561:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26006 comm="syz.4.5255" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fcef6c code=0x7ffc0000 [ 1143.479564][ T29] audit: type=1326 audit(1773471995.561:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26006 comm="syz.4.5255" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6fcef6c code=0x7ffc0000 [ 1144.371111][T25389] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1145.423446][ T5855] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 1145.652916][ T5855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1145.687935][ T5855] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1145.740572][ T5855] usb 2-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00 [ 1145.779806][ T5855] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1145.833141][ T5855] usb 2-1: config 0 descriptor?? [ 1146.420495][ T5855] hkems 0003:2006:0118.0031: hidraw0: USB HID v0.00 Device [HID 2006:0118] on usb-dummy_hcd.1-1/input0 [ 1146.482252][ T5855] hkems 0003:2006:0118.0031: no inputs found [ 1146.530259][ T5855] hkems 0003:2006:0118.0031: force feedback init failed [ 1146.653309][ T5855] usb 2-1: USB disconnect, device number 20 [ 1147.243536][T25389] veth0_vlan: entered promiscuous mode [ 1147.474217][T26087] fido_id[26087]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1147.526597][T25389] veth1_vlan: entered promiscuous mode [ 1147.940939][T26113] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 1147.940939][T26113] program syz.4.5275 not setting count and/or reply_len properly [ 1148.006068][T25389] veth0_macvtap: entered promiscuous mode [ 1148.108536][T25389] veth1_macvtap: entered promiscuous mode [ 1148.327385][T25389] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1148.565528][T25389] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1148.597417][T26123] loop2: detected capacity change from 0 to 256 [ 1148.764791][ T144] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1148.797839][T26123] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1148.822875][ T144] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1148.853192][T26126] tipc: Enabling of bearer rejected, max 3 bearers permitted [ 1148.880875][T26123] exFAT-fs (loop2): valid_size(150994954) is greater than size(10) [ 1148.906151][ T144] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1148.953933][ T144] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1149.181380][T26134] xt_limit: Overflow, try lower: 271964/0 [ 1152.580640][T26204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5299'. [ 1152.762550][T26213] loop4: detected capacity change from 0 to 512 [ 1152.798919][T26213] EXT4-fs: Ignoring removed nobh option [ 1152.847073][T26213] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1152.903593][ T5855] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 1152.963143][T26213] EXT4-fs error (device loop4): __ext4_iget:5378: inode #11: block 1: comm syz.4.5301: invalid block [ 1153.065203][T26213] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1153.069463][ C0] EXT4-fs (loop4): error count since last fsck: 1 [ 1153.085398][ C0] EXT4-fs (loop4): initial error at time 1773472005: __ext4_iget:5378: inode 11: block 1 [ 1153.095619][ C0] EXT4-fs (loop4): last error at time 1773472005: __ext4_iget:5378: inode 11: block 1 [ 1153.118920][T26213] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5301: couldn't read orphan inode 11 (err -117) [ 1153.131626][ T5855] usb 2-1: Using ep0 maxpacket: 8 [ 1153.141105][T26213] loop4: lost filesystem error report for type 5 error -117 [ 1153.182930][ T5855] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 1153.183826][T26213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1153.190511][ T5855] usb 2-1: config 0 has no interface number 0 [ 1153.241759][ T5855] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 1153.269712][ T5855] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1153.278014][ T5855] usb 2-1: Product: syz [ 1153.312627][ T5855] usb 2-1: Manufacturer: syz [ 1153.317438][ T5855] usb 2-1: SerialNumber: syz [ 1153.341647][ T5855] usb 2-1: config 0 descriptor?? [ 1153.637122][ T5786] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1153.685782][T26224] loop2: detected capacity change from 0 to 4096 [ 1153.784344][ T5855] uvcvideo 2-1:0.31: Found UVC 0.04 device syz (046d:08c3) [ 1153.803640][ T5855] uvcvideo 2-1:0.31: No valid video chain found. [ 1153.843356][T26224] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1153.997387][T16383] usb 2-1: USB disconnect, device number 21 [ 1154.042207][ T29] audit: type=1800 audit(1773472006.281:134): pid=26224 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5303" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 1154.313155][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1154.721600][T26257] loop4: detected capacity change from 0 to 256 [ 1154.841736][T26257] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x38eabd95, utbl_chksum : 0xe619d30d) [ 1155.040484][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1155.048483][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1155.391611][ T2981] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1155.439119][ T2981] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1156.881456][T26314] loop5: detected capacity change from 0 to 512 [ 1156.937254][T26314] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 1157.062067][T26314] EXT4-fs error (device loop5): mb_free_blocks:2047: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 1157.079462][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 1157.086105][ C0] EXT4-fs (loop5): initial error at time 1773472009: mb_free_blocks:2047: inode 11: block 64 [ 1157.096747][ C0] EXT4-fs (loop5): last error at time 1773472009: mb_free_blocks:2047: inode 11: block 64 [ 1157.163180][T26314] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #11: comm syz.5.5319: corrupted inode contents [ 1157.209724][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.225829][T26314] EXT4-fs error (device loop5): ext4_dirty_inode:6450: inode #11: comm syz.5.5319: mark_inode_dirty error [ 1157.313938][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.330427][T26314] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.5319: invalid indirect mapped block 1 (level 1) [ 1157.367064][T26326] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 1157.367064][T26326] program syz.3.5322 not setting count and/or reply_len properly [ 1157.414173][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.423377][T26314] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #11: comm syz.5.5319: corrupted inode contents [ 1157.516907][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.519856][T26314] EXT4-fs error (device loop5) in ext4_orphan_del:303: Corrupt filesystem [ 1157.609927][T26314] loop5: lost filesystem error report for type 5 error -117 [ 1157.612845][T26314] EXT4-fs error (device loop5): ext4_do_update_inode:5569: inode #11: comm syz.5.5319: corrupted inode contents [ 1157.679576][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.703215][T26314] EXT4-fs error (device loop5): ext4_truncate:4587: inode #11: comm syz.5.5319: mark_inode_dirty error [ 1157.828270][T26314] loop5: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1157.829804][T26314] EXT4-fs error (device loop5) in ext4_process_orphan:345: Corrupt filesystem [ 1157.909751][T26314] loop5: lost filesystem error report for type 5 error -117 [ 1157.911141][T26314] EXT4-fs (loop5): 1 truncate cleaned up [ 1157.973057][T26314] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1158.115694][T26314] EXT4-fs error (device loop5): ext4_find_dest_de:2050: inode #2: block 13: comm syz.5.5319: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0 [ 1158.510581][T25389] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1158.834648][T26354] loop5: detected capacity change from 0 to 64 [ 1159.197839][T26365] loop3: detected capacity change from 0 to 128 [ 1159.355947][ T29] audit: type=1800 audit(1773472011.591:135): pid=26354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5331" name="file1" dev="loop5" ino=5 res=0 errno=0 [ 1161.085121][T26400] loop3: detected capacity change from 0 to 2048 [ 1161.160410][T26400] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1161.306802][T26411] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1161.684224][T26414] tipc: Enabling of bearer rejected, failed to enable media [ 1161.743776][T26418] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5346'. [ 1162.751284][T26440] loop4: detected capacity change from 0 to 256 [ 1163.078146][T26448] loop2: detected capacity change from 0 to 512 [ 1163.113441][T26440] FAT-fs (loop4): Directory bread(block 64) failed [ 1163.124246][T26440] FAT-fs (loop4): Directory bread(block 65) failed [ 1163.161424][T26448] EXT4-fs: Ignoring removed nobh option [ 1163.164913][T26440] FAT-fs (loop4): Directory bread(block 66) failed [ 1163.228428][T26440] FAT-fs (loop4): Directory bread(block 67) failed [ 1163.248697][T26440] FAT-fs (loop4): Directory bread(block 68) failed [ 1163.336500][T26440] FAT-fs (loop4): Directory bread(block 69) failed [ 1163.372801][T26440] FAT-fs (loop4): Directory bread(block 70) failed [ 1163.396184][T26448] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1163.481140][T26440] FAT-fs (loop4): Directory bread(block 71) failed [ 1163.482538][T26448] ext4 filesystem being mounted at /1069/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1163.488003][T26440] FAT-fs (loop4): Directory bread(block 72) failed [ 1163.588805][T26440] FAT-fs (loop4): Directory bread(block 73) failed [ 1163.924263][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1165.471878][ T5855] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 1165.708736][ T5855] usb 3-1: Using ep0 maxpacket: 8 [ 1165.749157][ T5855] usb 3-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1165.776475][ T5855] usb 3-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1165.801982][ T5855] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1165.808848][ T5855] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 1165.830381][ T5855] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1165.875776][ T5855] usb 3-1: config 0 descriptor?? [ 1166.397745][ T5855] mcp2221 0003:04D8:00DD.0032: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 1166.680163][ T5855] usb 3-1: USB disconnect, device number 24 [ 1167.002218][ T13] Bluetooth: hci5: Frame reassembly failed (-84) [ 1169.018322][T26601] loop3: detected capacity change from 0 to 2048 [ 1169.032929][T25392] Bluetooth: hci5: Entering manufacturer mode failed (-110) [ 1169.036556][ T5785] Bluetooth: hci5: command 0xfc11 tx timeout [ 1169.135161][T26601] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1170.591489][T26632] loop4: detected capacity change from 0 to 2048 [ 1170.628140][T26640] loop3: detected capacity change from 0 to 256 [ 1170.647782][T26640] exfat: Deprecated parameter 'utf8' [ 1170.682542][T26632] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1170.694791][T26640] exfat: Deprecated parameter 'utf8' [ 1170.718111][T26640] exfat: Deprecated parameter 'utf8' [ 1170.819979][T26640] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 1170.860158][T20844] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1171.054301][T20844] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1171.098939][T20844] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1171.159640][T20844] usb 2-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 1171.209737][T20844] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1171.280794][T20844] usb 2-1: config 0 descriptor?? [ 1171.875306][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1171.939661][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1171.946648][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1171.995087][T26667] loop3: detected capacity change from 0 to 512 [ 1172.003046][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.066266][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.088223][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.116289][T26667] EXT4-fs: Ignoring removed nobh option [ 1172.126271][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.193385][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.228737][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.239120][T26667] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1172.268011][T20844] kye 0003:0458:0138.0033: unknown main item tag 0x0 [ 1172.398967][T26667] EXT4-fs (loop3): 1 truncate cleaned up [ 1172.468278][T26667] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1172.488569][T20844] kye 0003:0458:0138.0033: hidraw0: USB HID v7f.fd Device [HID 0458:0138] on usb-dummy_hcd.1-1/input0 [ 1172.579731][T20844] usb 2-1: USB disconnect, device number 22 [ 1172.848534][ T5789] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1173.534476][T26696] fido_id[26696]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1174.897606][T26738] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5415'. [ 1174.970476][T26738] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5415'. [ 1176.459706][ T5855] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 1176.706203][ T5855] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1176.748668][ T5855] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1176.791730][ T5855] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1176.884119][ T5855] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1176.913428][ T5855] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1176.940934][ T5855] usb 3-1: Product: syz [ 1176.945290][ T5855] usb 3-1: Manufacturer: syz [ 1176.967711][ T5855] usb 3-1: SerialNumber: syz [ 1177.012901][ T5855] hub 3-1:1.0: bad descriptor, ignoring hub [ 1177.028415][T26795] loop3: detected capacity change from 0 to 64 [ 1177.042031][ T5855] hub 3-1:1.0: probe with driver hub failed with error -5 [ 1177.123687][T26793] vhci_hcd vhci_hcd.0: pdev(5) rhport(0) sockfd(4) [ 1177.130426][T26793] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 1177.244223][T26793] vhci_hcd vhci_hcd.0: Device attached [ 1177.276421][ T5855] usblp 3-1:1.0: usblp0: USB Unidirectional printer dev 25 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 1177.292765][T26799] vhci_hcd: connection closed [ 1177.314785][ T144] vhci_hcd vhci_hcd.5: stop threads [ 1177.330508][ T144] vhci_hcd vhci_hcd.5: release socket [ 1177.336150][ T144] vhci_hcd vhci_hcd.5: disconnect device [ 1177.580245][ T5855] usb 3-1: reset high-speed USB device number 25 using dummy_hcd [ 1178.120624][ T5855] usb 3-1: USB disconnect, device number 25 [ 1178.198596][ T5855] usblp0: removed [ 1178.872374][T26844] tipc: Enabled bearer , priority 10 [ 1179.142917][T26854] vivid-000: disconnect [ 1179.162666][T26851] vivid-000: reconnect [ 1179.403190][T20844] kernel write not supported for file /snd/seq (pid: 20844 comm: kworker/1:1) [ 1179.568850][T26864] netlink: 32 bytes leftover after parsing attributes in process `syz.4.5447'. [ 1179.999750][T26802] tipc: Node number set to 4278255617 [ 1180.136365][T26878] loop3: detected capacity change from 0 to 64 [ 1180.313299][T26884] loop2: detected capacity change from 0 to 256 [ 1180.853183][T26891] loop5: detected capacity change from 0 to 1024 [ 1181.060197][T26903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5457'. [ 1181.081759][T26903] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5457'. [ 1181.135816][T26903] netlink: 'syz.3.5457': attribute type 15 has an invalid length. [ 1181.337391][ T2981] hfsplus: b-tree write err: -5, ino 25 [ 1181.400078][ T2981] hfsplus: b-tree write err: -5, ino 4 [ 1181.405972][ T2981] hfsplus: b-tree write err: -5, ino 2 [ 1182.206136][T26927] loop4: detected capacity change from 0 to 256 [ 1182.454267][T26927] FAT-fs (loop4): Directory bread(block 64) failed [ 1182.490649][T26927] FAT-fs (loop4): Directory bread(block 65) failed [ 1182.497559][T26927] FAT-fs (loop4): Directory bread(block 66) failed [ 1182.536931][T26927] FAT-fs (loop4): Directory bread(block 67) failed [ 1182.566231][T26927] FAT-fs (loop4): Directory bread(block 68) failed [ 1182.578854][T26927] FAT-fs (loop4): Directory bread(block 69) failed [ 1182.601658][T26927] FAT-fs (loop4): Directory bread(block 70) failed [ 1182.608382][T26927] FAT-fs (loop4): Directory bread(block 71) failed [ 1182.669840][T26927] FAT-fs (loop4): Directory bread(block 72) failed [ 1182.676562][T26927] FAT-fs (loop4): Directory bread(block 73) failed [ 1182.737113][T26940] loop5: detected capacity change from 0 to 128 [ 1182.817644][T26940] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 1182.883974][T26940] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1184.039181][T26967] loop2: detected capacity change from 0 to 164 [ 1184.194472][T26967] rock: directory entry would overflow storage [ 1184.217489][T26967] rock: sig=0x4f50, size=4, remaining=3 [ 1184.250228][T26967] iso9660: Corrupted directory entry in block 5 of inode 1792 [ 1185.314671][T26987] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5481'. [ 1185.367128][T26987] netlink: 277 bytes leftover after parsing attributes in process `syz.4.5481'. [ 1185.404872][T26987] netlink: 277 bytes leftover after parsing attributes in process `syz.4.5481'. [ 1186.331216][T27014] tipc: Enabling of bearer rejected, failed to enable media [ 1186.972212][ T1286] ieee802154 phy0 wpan0: encryption failed: -22 [ 1186.985673][ T1286] ieee802154 phy1 wpan1: encryption failed: -22 [ 1187.138394][T27023] loop4: detected capacity change from 0 to 4096 [ 1187.349249][T27028] loop5: detected capacity change from 0 to 4096 [ 1187.418442][T27028] EXT4-fs (loop5): Test dummy encryption mode enabled [ 1187.478923][T27028] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103] [ 1187.523163][T27028] System zones: 0-5 [ 1187.653416][T27028] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1187.932832][T27049] loop3: detected capacity change from 0 to 64 [ 1188.148431][T25389] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1188.162716][T27049] hfs: request for non-existent node 31232 in B*Tree [ 1188.222401][T27049] hfs: request for non-existent node 31232 in B*Tree [ 1188.271101][T27049] hfs: request for non-existent node 31232 in B*Tree [ 1188.315706][T27049] hfs: request for non-existent node 31232 in B*Tree [ 1188.716396][T27063] netlink: 164 bytes leftover after parsing attributes in process `syz.4.5504'. [ 1188.736630][ T57] kworker/u8:4: attempt to access beyond end of device [ 1188.736630][ T57] loop3: rw=8388609, sector=65, nr_sectors = 1 limit=64 [ 1188.803938][ T57] Buffer I/O error on dev loop3, logical block 65, lost async page write [ 1188.856490][ T57] kworker/u8:4: attempt to access beyond end of device [ 1188.856490][ T57] loop3: rw=8388609, sector=66, nr_sectors = 1 limit=64 [ 1188.971994][ T57] Buffer I/O error on dev loop3, logical block 66, lost async page write [ 1189.010651][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.010651][ T57] loop3: rw=8388609, sector=67, nr_sectors = 1 limit=64 [ 1189.069761][ T57] Buffer I/O error on dev loop3, logical block 67, lost async page write [ 1189.109716][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.109716][ T57] loop3: rw=8388609, sector=68, nr_sectors = 1 limit=64 [ 1189.179503][ T57] Buffer I/O error on dev loop3, logical block 68, lost async page write [ 1189.188234][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.188234][ T57] loop3: rw=8388609, sector=72, nr_sectors = 1 limit=64 [ 1189.299557][ T57] Buffer I/O error on dev loop3, logical block 72, lost async page write [ 1189.343506][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.343506][ T57] loop3: rw=8388609, sector=73, nr_sectors = 1 limit=64 [ 1189.383164][ T57] Buffer I/O error on dev loop3, logical block 73, lost async page write [ 1189.402582][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.402582][ T57] loop3: rw=8388609, sector=76, nr_sectors = 1 limit=64 [ 1189.450898][ T57] Buffer I/O error on dev loop3, logical block 76, lost async page write [ 1189.494774][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.494774][ T57] loop3: rw=8388609, sector=77, nr_sectors = 1 limit=64 [ 1189.512769][ T57] Buffer I/O error on dev loop3, logical block 77, lost async page write [ 1189.522307][ T57] kworker/u8:4: attempt to access beyond end of device [ 1189.522307][ T57] loop3: rw=1, sector=78, nr_sectors = 64 limit=64 [ 1189.611056][ T57] hfs: request for non-existent node 31232 in B*Tree [ 1189.617906][ T57] hfs: request for non-existent node 31232 in B*Tree [ 1190.079188][T27095] netlink: 'syz.5.5513': attribute type 3 has an invalid length. [ 1190.378444][T27102] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5515'. [ 1190.414310][T27102] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5515'. [ 1190.461471][T27102] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5515'. [ 1190.731144][T27112] loop4: detected capacity change from 0 to 64 [ 1190.950493][T27112] hfs: request for non-existent node 31232 in B*Tree [ 1190.957345][T27112] hfs: request for non-existent node 31232 in B*Tree [ 1191.037854][T27112] hfs: request for non-existent node 31232 in B*Tree [ 1191.101445][T27112] hfs: request for non-existent node 31232 in B*Tree [ 1191.485631][ T13] kworker/u8:1: attempt to access beyond end of device [ 1191.485631][ T13] loop4: rw=8388609, sector=65, nr_sectors = 1 limit=64 [ 1191.506845][T27128] loop5: detected capacity change from 0 to 256 [ 1191.522261][ T13] Buffer I/O error on dev loop4, logical block 65, lost async page write [ 1191.547091][ T13] Buffer I/O error on dev loop4, logical block 66, lost async page write [ 1191.577849][ T13] hfs: request for non-existent node 31232 in B*Tree [ 1191.648765][ T13] hfs: request for non-existent node 31232 in B*Tree [ 1191.667482][T27128] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0x2f9e4978, utbl_chksum : 0xe619d30d) [ 1192.031341][T27140] loop2: detected capacity change from 0 to 128 [ 1192.085874][T27140] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1192.182974][T27140] hpfs: filesystem error: improperly stopped [ 1192.189186][T27140] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1192.241466][T27144] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5524'. [ 1192.277360][T27140] hpfs: You really don't want any checks? You are crazy... [ 1192.303568][T27144] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5524'. [ 1192.304899][T27140] hpfs: hpfs_map_sector(): read error [ 1192.354833][T27140] hpfs: code page support is disabled [ 1192.396245][T27140] hpfs: hpfs_map_4sectors(): unaligned read [ 1192.449830][T27140] hpfs: hpfs_map_4sectors(): unaligned read [ 1192.499653][T27140] hpfs: filesystem error: unable to find root dir [ 1195.694326][T27214] macsec2: entered promiscuous mode [ 1195.709752][T27214] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 1195.880257][T27222] netlink: 128 bytes leftover after parsing attributes in process `syz.5.5559'. [ 1196.710137][T27233] loop4: detected capacity change from 0 to 4096 [ 1196.754503][T27233] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1196.976311][T27233] ntfs3(loop4): ino=5, "/" ntfs_readdir [ 1197.020248][T27233] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1197.036276][T27246] loop5: detected capacity change from 0 to 64 [ 1197.228924][T27246] hfs: request for non-existent node 31232 in B*Tree [ 1197.244368][T27246] hfs: request for non-existent node 31232 in B*Tree [ 1197.261239][T27246] hfs: request for non-existent node 31232 in B*Tree [ 1197.268625][T27246] hfs: request for non-existent node 31232 in B*Tree [ 1197.560650][ T144] bio_check_eod: 8 callbacks suppressed [ 1197.560727][ T144] kworker/u8:7: attempt to access beyond end of device [ 1197.560727][ T144] loop5: rw=8388609, sector=65, nr_sectors = 1 limit=64 [ 1197.641765][ T144] buffer_io_error: 6 callbacks suppressed [ 1197.641839][ T144] Buffer I/O error on dev loop5, logical block 65, lost async page write [ 1197.677666][ T144] kworker/u8:7: attempt to access beyond end of device [ 1197.677666][ T144] loop5: rw=8388609, sector=66, nr_sectors = 1 limit=64 [ 1197.713686][T27256] loop3: detected capacity change from 0 to 64 [ 1197.722315][ T144] Buffer I/O error on dev loop5, logical block 66, lost async page write [ 1197.756595][ T144] kworker/u8:7: attempt to access beyond end of device [ 1197.756595][ T144] loop5: rw=8388609, sector=67, nr_sectors = 1 limit=64 [ 1197.861903][ T144] Buffer I/O error on dev loop5, logical block 67, lost async page write [ 1197.919563][ T144] kworker/u8:7: attempt to access beyond end of device [ 1197.919563][ T144] loop5: rw=8388609, sector=68, nr_sectors = 1 limit=64 [ 1197.989647][ T144] Buffer I/O error on dev loop5, logical block 68, lost async page write [ 1197.998298][ T144] kworker/u8:7: attempt to access beyond end of device [ 1197.998298][ T144] loop5: rw=8388609, sector=72, nr_sectors = 1 limit=64 [ 1198.092107][ T144] Buffer I/O error on dev loop5, logical block 72, lost async page write [ 1198.109712][ T144] kworker/u8:7: attempt to access beyond end of device [ 1198.109712][ T144] loop5: rw=8388609, sector=73, nr_sectors = 1 limit=64 [ 1198.189644][ T144] Buffer I/O error on dev loop5, logical block 73, lost async page write [ 1198.198285][ T144] kworker/u8:7: attempt to access beyond end of device [ 1198.198285][ T144] loop5: rw=8388609, sector=76, nr_sectors = 1 limit=64 [ 1198.279728][ T144] Buffer I/O error on dev loop5, logical block 76, lost async page write [ 1198.329837][ T144] kworker/u8:7: attempt to access beyond end of device [ 1198.329837][ T144] loop5: rw=8388609, sector=77, nr_sectors = 1 limit=64 [ 1198.387922][ T144] Buffer I/O error on dev loop5, logical block 77, lost async page write [ 1198.428656][ T144] kworker/u8:7: attempt to access beyond end of device [ 1198.428656][ T144] loop5: rw=1, sector=78, nr_sectors = 64 limit=64 [ 1198.491597][ T144] hfs: request for non-existent node 31232 in B*Tree [ 1198.498438][ T144] hfs: request for non-existent node 31232 in B*Tree [ 1199.550888][ T6144] udevd[6144]: inotify_add_watch(7, /dev/nbd0, 10) failed: No such file or directory [ 1200.023685][T26802] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 1200.210100][T26802] usb 6-1: Using ep0 maxpacket: 8 [ 1200.278004][T26802] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1200.307225][T26802] usb 6-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 1200.335893][T26802] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1200.393074][T26802] usb 6-1: config 0 descriptor?? [ 1200.426152][T26802] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 1200.729847][T27320] loop3: detected capacity change from 0 to 256 [ 1200.827100][T27320] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1201.077200][T26802] gspca_vc032x: reg_r err -71 [ 1201.100711][T26802] vc032x 6-1:0.0: probe with driver vc032x failed with error -71 [ 1201.156520][T26802] usb 6-1: USB disconnect, device number 2 [ 1202.131486][T27352] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5585'. [ 1202.173934][T27349] loop2: detected capacity change from 0 to 8 [ 1202.473523][T27349] SQUASHFS error: Unable to read directory block [629:26] [ 1204.179733][T26802] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 1204.382272][T26802] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1204.410632][T26802] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1204.446819][T26802] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 1204.507135][T26802] usb 5-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 1204.539595][T26802] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1204.555489][T26802] usb 5-1: config 0 descriptor?? [ 1205.091897][T26802] steelseries 0003:1038:1410.0034: item fetching failed at offset 3/7 [ 1205.143322][T26802] steelseries 0003:1038:1410.0034: parse failed [ 1205.172627][T26802] steelseries 0003:1038:1410.0034: probe with driver steelseries failed with error -22 [ 1205.304748][T26802] usb 5-1: USB disconnect, device number 29 [ 1205.827595][T27439] loop2: detected capacity change from 0 to 64 [ 1206.106678][T27439] hfs: request for non-existent node 31232 in B*Tree [ 1206.220362][T27439] hfs: request for non-existent node 31232 in B*Tree [ 1206.262118][T27439] hfs: request for non-existent node 31232 in B*Tree [ 1206.277749][T27439] hfs: request for non-existent node 31232 in B*Tree [ 1206.478450][T27454] loop4: detected capacity change from 0 to 64 [ 1206.712510][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1206.712510][ T2981] loop2: rw=8388609, sector=65, nr_sectors = 1 limit=64 [ 1206.776867][T27459] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5610'. [ 1206.799594][ T2981] Buffer I/O error on dev loop2, logical block 65, lost async page write [ 1206.808273][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1206.808273][ T2981] loop2: rw=8388609, sector=66, nr_sectors = 1 limit=64 [ 1206.838064][T27459] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5610'. [ 1206.909003][ T2981] Buffer I/O error on dev loop2, logical block 66, lost async page write [ 1206.964969][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1206.964969][ T2981] loop2: rw=8388609, sector=67, nr_sectors = 1 limit=64 [ 1207.059618][ T2981] Buffer I/O error on dev loop2, logical block 67, lost async page write [ 1207.068291][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.068291][ T2981] loop2: rw=8388609, sector=68, nr_sectors = 1 limit=64 [ 1207.169823][ T2981] Buffer I/O error on dev loop2, logical block 68, lost async page write [ 1207.178469][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.178469][ T2981] loop2: rw=8388609, sector=72, nr_sectors = 1 limit=64 [ 1207.385877][T27471] loop4: detected capacity change from 0 to 64 [ 1207.546942][ T2981] Buffer I/O error on dev loop2, logical block 72, lost async page write [ 1207.575006][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.575006][ T2981] loop2: rw=8388609, sector=73, nr_sectors = 1 limit=64 [ 1207.630187][ T2981] Buffer I/O error on dev loop2, logical block 73, lost async page write [ 1207.638890][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.638890][ T2981] loop2: rw=8388609, sector=76, nr_sectors = 1 limit=64 [ 1207.740638][ T2981] Buffer I/O error on dev loop2, logical block 76, lost async page write [ 1207.749298][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.749298][ T2981] loop2: rw=8388609, sector=77, nr_sectors = 1 limit=64 [ 1207.858639][ T2981] Buffer I/O error on dev loop2, logical block 77, lost async page write [ 1207.905140][ T2981] kworker/u8:9: attempt to access beyond end of device [ 1207.905140][ T2981] loop2: rw=1, sector=78, nr_sectors = 64 limit=64 [ 1208.003348][ T2981] hfs: request for non-existent node 31232 in B*Tree [ 1208.043527][ T2981] hfs: request for non-existent node 31232 in B*Tree [ 1208.431664][T27487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5619'. [ 1208.462281][T27487] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5619'. [ 1208.469046][T27488] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5620'. [ 1208.513983][T27487] netlink: 'syz.4.5619': attribute type 14 has an invalid length. [ 1208.579076][T27487] netlink: 'syz.4.5619': attribute type 13 has an invalid length. [ 1209.118824][T27498] loop5: detected capacity change from 0 to 512 [ 1209.235426][T27503] netlink: 'syz.3.5623': attribute type 2 has an invalid length. [ 1209.293167][T27498] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1209.403197][T27498] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1209.845351][T25389] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1210.495297][T27534] loop4: detected capacity change from 0 to 64 [ 1211.539648][T26802] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 1211.552838][T27556] loop4: detected capacity change from 0 to 2048 [ 1211.619575][T27556] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1211.703930][T27556] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1211.749565][T26802] usb 6-1: Using ep0 maxpacket: 32 [ 1211.758003][T27563] devpts: Bad value for 'max' [ 1211.790411][T26802] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1211.844308][T26802] usb 6-1: New USB device found, idVendor=0c72, idProduct=0011, bcdDevice= 9.75 [ 1211.880888][T26802] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1211.897026][T26802] usb 6-1: Product: syz [ 1211.913020][T26802] usb 6-1: Manufacturer: syz [ 1211.917820][T26802] usb 6-1: SerialNumber: syz [ 1212.002591][T26802] usb 6-1: config 0 descriptor?? [ 1212.118202][T27574] loop3: detected capacity change from 0 to 64 [ 1212.164132][T27574] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing [ 1212.291560][T26802] peak_usb 6-1:0.0: PEAK-System PCAN-USB Pro FD v0 fw v0.0.0 (2 channels) [ 1212.511696][T26802] peak_usb 6-1:0.0 can0: sending command failure: -22 [ 1212.531162][T26802] peak_usb 6-1:0.0 can0: sending command failure: -22 [ 1212.538182][T26802] peak_usb 6-1:0.0 can0: sending command failure: -22 [ 1212.762438][T26802] peak_usb 6-1:0.0: probe with driver peak_usb failed with error -22 [ 1212.846582][T26802] usb 6-1: USB disconnect, device number 3 [ 1212.909788][T16383] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 1213.110122][T16383] usb 5-1: Using ep0 maxpacket: 16 [ 1213.131435][T16383] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1213.154342][T16383] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1213.187382][T16383] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 1213.236428][T16383] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1213.276469][T16383] usb 5-1: config 0 descriptor?? [ 1213.793192][T16383] hid_parser_main: 222 callbacks suppressed [ 1213.793296][T16383] konepure 0003:1E7D:2DB4.0035: unknown main item tag 0x0 [ 1213.818828][T16383] konepure 0003:1E7D:2DB4.0035: unknown main item tag 0x0 [ 1213.842826][T16383] konepure 0003:1E7D:2DB4.0035: unknown main item tag 0x0 [ 1213.888092][T16383] konepure 0003:1E7D:2DB4.0035: unknown main item tag 0x0 [ 1213.934554][T27621] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1213.989884][T16383] konepure 0003:1E7D:2DB4.0035: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.4-1/input0 [ 1214.101423][T16383] usb 5-1: USB disconnect, device number 30 [ 1214.746802][T27631] fido_id[27631]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 1215.960194][ T29] audit: type=1326 audit(1773472068.191:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.004370][T27673] loop3: detected capacity change from 0 to 256 [ 1216.024477][ T29] audit: type=1326 audit(1773472068.231:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.148494][T27673] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1216.162080][ T29] audit: type=1326 audit(1773472068.281:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=136 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.290336][ T29] audit: type=1326 audit(1773472068.281:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.410327][ T29] audit: type=1326 audit(1773472068.291:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.519566][ T29] audit: type=1326 audit(1773472068.291:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=308 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.660781][ T29] audit: type=1326 audit(1773472068.291:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1216.718715][ T29] audit: type=1326 audit(1773472068.291:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27669 comm="syz.5.5659" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f75f6c code=0x7ffc0000 [ 1217.294808][T27690] loop3: detected capacity change from 0 to 2048 [ 1217.486778][T27699] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1217.645761][T27690] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #12: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 1217.776796][T27690] Remounting filesystem read-only [ 1218.137013][ T5789] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 1219.441010][T27735] CUSE: info not properly terminated [ 1220.310070][T27747] sg_write: data in/out 405980/48 bytes for SCSI command 0x0-- guessing data in; [ 1220.310070][T27747] program syz.1.5683 not setting count and/or reply_len properly [ 1220.398048][T27750] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5684'. [ 1220.431689][T27750] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5684'. [ 1220.577474][T27753] netlink: 'syz.5.5685': attribute type 29 has an invalid length. [ 1220.721770][T27755] netlink: 'syz.5.5685': attribute type 29 has an invalid length. [ 1220.793010][T27760] loop3: detected capacity change from 0 to 8 [ 1220.856317][T27760] SQUASHFS error: Failed to read block 0xe000000000001ea: -5 [ 1220.881658][T27760] unable to read xattr id index table [ 1221.010906][T27763] netlink: 220 bytes leftover after parsing attributes in process `syz.1.5688'. [ 1223.165850][T27804] netlink: 'syz.1.5701': attribute type 29 has an invalid length. [ 1223.256270][T27804] netlink: 'syz.1.5701': attribute type 29 has an invalid length. [ 1223.701593][T27814] loop2: detected capacity change from 0 to 128 [ 1223.789755][T27814] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1223.882172][T27814] hpfs: filesystem error: improperly stopped [ 1223.888404][T27814] hpfs: You really don't want any checks? You are crazy... [ 1223.962472][T27828] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5705'. [ 1224.005623][T27814] hpfs: hpfs_map_sector(): read error [ 1224.037191][T27814] hpfs: code page support is disabled [ 1224.087841][T27814] hpfs: hpfs_map_4sectors(): unaligned read [ 1224.136074][T27814] hpfs: hpfs_map_4sectors(): unaligned read [ 1224.177687][T27814] hpfs: filesystem error: unable to find root dir [ 1225.397600][T27853] loop5: detected capacity change from 0 to 256 [ 1225.427421][T27852] loop4: detected capacity change from 0 to 256 [ 1225.506368][T27853] exFAT-fs (loop5): error, The cluster chain has a loop [ 1225.555525][T27853] exFAT-fs (loop5): Filesystem has been set read-only [ 1225.603271][T27853] exFAT-fs (loop5): failed to count the number of clusters in root [ 1225.620482][T27853] exFAT-fs (loop5): failed to recognize exfat type [ 1225.701468][T27852] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d) [ 1225.875542][T27866] [U]  [ 1225.878470][T27866] [U] K{ [ 1225.922908][T27866] [U] t 1ŠFfˊ`GJgo/mC [ 1225.964592][T27866] [U] tؖ/,~Ĝj}8'o1"7-JQKWq5c%"H12YX``+(!(z'tXlnIgjݭp~7!" (5Ob̓J [ 1226.040751][T27866] [U] k\&}66XHX .`a$40|϶9ި U4Vbz}wMTQΦr 4 [ 1226.124072][T27866] [U] ".h6"k[J4In[Z(C|T]z{3c=x4w)\TXJSH{q;칢t+gd.˂>ywUhfNhl]S2\g%O&z)'pul_< ذ`ұT;_"(u{7j2X /'cIHcճV=Ai%wEs RjgrhIa6-DV i"n Asc~48c*OO5/J~wvK+3Y)Mvyq潀DTrOtpem%fejA5T_-X~^aaۂq [ 1226.233919][T27866] [U] +wG?]'a: )' B>tf/<'U'hi.+]e.-ɿ%>2`^U8F.63+A«g3p6:^0tv'EtYCnrϩnPj ;Z8!\Aʖ2$­wi.#/Bai`4jdy@zgW5˿B ٜNy"vI2 [ 1226.329899][T27866] [U] T_K5tYJ9c$brLNul 9w|G"ʃ%C؝q 3qN^HP*$ .7yӱ2 [ 1226.356303][T27872] loop5: detected capacity change from 0 to 512 [ 1226.374576][T27872] EXT4-fs: Ignoring removed mblk_io_submit option [ 1226.383278][T27866] [U] ? h*37鍾^#Q"0~ (oX Lb,'v=CSGS0ւ`ه=1(p#2DO*Ƀ [ 1226.431548][T27872] EXT4-fs (loop5): 1 truncate cleaned up [ 1226.440487][T27866] [U] sgGud-{|&2Lc_!`oz֥B%>rwSsH"yA4O.Y䏄RTԶB[+/<>{q_՝LX8U{Z)7?rR;crhײڣ1>)Măt(aϝ}9ڥJ*Mќġ'Lq DW=|q ÆW;5Ž!dBx`/E`ƦMX"\ [ 1226.610042][T27866] [U] {; ٘_o2)o.2W2yx_ HPϱSD:]{ [ 1226.620587][T27866] [U] I,> 51^1N4oǶ'0?֒i9w._.WaV`)Zc6GiӹaXL[F*OW)+'\n[K@2Ǭp"^` [ 1226.762775][T27866] [U] 22Ʃx?0;3u [ 1226.778469][T27866] [U] ޜsObx8W4(~/KUԖoQe+G-ygY_>v3.hә]̈́2)D, D~d+w; A\FPȘ|$)KؐIɿkYT^R癵A=#ܜ aet1ݯ4K.e"RS|s:>p r"z#P!KY"}FN84hޱosߙ̫%Dlwm [ 1226.913458][T27866] [U] [['xn' ,mr/1D=!Dx91BwRlfKZ#` l؛˜b~m [ 1226.949824][T27866] [U] L>d+d"5h3<iR=F^fnvDOIO:U>Y [ 1226.978561][T27866] [U] 'B6v20瞥׌"t8{9FW]쩍 [ 1227.009153][T25389] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1227.024516][T27866] [U] 72uC6τI]8ctۨQSkYI |V'TV/g$[ 9kh`"}[^=0]%̂TF_v4C [ 1227.043787][T27890] netlink: 56 bytes leftover after parsing attributes in process `syz.2.5720'. [ 1227.071522][T27866] [U] ec [ 1227.074818][T27866] [U] |<:^3$7nK~-@?/mtl۾Iw@g~t{P+$jp| IRipm Y 8tV,l, [ 1227.089055][T27890] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5720'. [ 1227.130359][T27866] [U] K)0~ʪiP'fzr @B]5{ʼ'8ƥFUTqUdǩK;70c[yYCذmL8T͚5rxW xoQhVi'8L [ 1227.131065][T26802] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 1227.330747][T26802] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1227.369821][T26802] usb 2-1: New USB device found, idVendor=0458, idProduct=5005, bcdDevice= 0.00 [ 1227.410393][T26802] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1227.476400][T26802] usb 2-1: config 0 descriptor?? [ 1227.973663][T26802] kye 0003:0458:5005.0036: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 1228.080410][T26802] kye 0003:0458:5005.0036: hidraw0: USB HID v0.00 Device [HID 0458:5005] on usb-dummy_hcd.1-1/input0 [ 1228.131890][T26802] kye 0003:0458:5005.0036: tablet-enabling feature report not found [ 1228.190380][T26802] kye 0003:0458:5005.0036: tablet enabling failed [ 1228.290686][T26802] usb 2-1: USB disconnect, device number 23 [ 1228.397729][T27918] loop5: detected capacity change from 0 to 1024 [ 1228.849866][T27917] fido_id[27917]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 1229.010313][ T57] hfsplus: b-tree write err: -5, ino 25 [ 1229.016261][ T57] hfsplus: b-tree write err: -5, ino 4 [ 1229.052130][ T57] hfsplus: b-tree write err: -5, ino 2 [ 1230.610144][T27971] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5740'. [ 1231.131632][T27981] loop3: detected capacity change from 0 to 256 [ 1231.180870][T27981] exfat: Deprecated parameter 'utf8' [ 1231.186561][T27981] exfat: Deprecated parameter 'namecase' [ 1231.250950][T27981] exfat: Deprecated parameter 'namecase' [ 1231.256831][T27981] exfat: Deprecated parameter 'utf8' [ 1231.263394][T27991] loop4: detected capacity change from 0 to 128 [ 1231.313467][T27993] loop5: detected capacity change from 0 to 64 [ 1231.351864][T27991] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1231.403473][T27981] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 1231.480458][T27991] ext4 filesystem being mounted at /1132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 1231.481029][T27981] exFAT-fs (loop3): failed to test first cluster bit of root dir(5) [ 1232.203487][ T5786] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1232.306078][T28011] loop5: detected capacity change from 0 to 8 [ 1232.362642][T28011] SQUASHFS error: Failed to read block 0xe000000000001ea: -5 [ 1232.419682][T28011] unable to read xattr id index table [ 1232.540701][T28016] netlink: 'syz.1.5751': attribute type 1 has an invalid length. [ 1232.548616][T28016] netlink: 3 bytes leftover after parsing attributes in process `syz.1.5751'. [ 1232.563967][T28014] pim6reg: entered allmulticast mode [ 1232.601416][T28017] pim6reg: left allmulticast mode [ 1232.984733][T28030] loop4: detected capacity change from 0 to 128 [ 1233.058360][T28030] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1233.087236][T28030] hpfs: filesystem error: improperly stopped [ 1233.111339][T28030] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1233.156974][T28030] hpfs: You really don't want any checks? You are crazy... [ 1233.175699][T28030] hpfs: Code page index out of array [ 1233.204258][T28030] hpfs: code page support is disabled [ 1233.237745][T28035] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5753'. [ 1233.260089][T28030] hpfs: hpfs_map_4sectors(): unaligned read [ 1233.266324][T28030] hpfs: hpfs_map_4sectors(): unaligned read [ 1233.306121][T28030] hpfs: filesystem error: unable to find root dir [ 1234.978029][T28052] loop4: detected capacity change from 0 to 8192 [ 1236.480113][T28101] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5774'. [ 1236.893531][T28107] loop3: detected capacity change from 0 to 128 [ 1237.104320][T28107] FAT-fs (loop3): error, clusters badly computed (4 != 3) [ 1237.133146][T28107] FAT-fs (loop3): Filesystem has been set read-only [ 1237.199528][T28107] FAT-fs (loop3): error, clusters badly computed (5 != 4) [ 1237.613636][T28121] netlink: 'syz.1.5780': attribute type 3 has an invalid length. [ 1239.145433][T28149] loop5: detected capacity change from 0 to 256 [ 1239.400454][T28156] vlan3: entered promiscuous mode [ 1239.414856][T28156] macvtap0: entered promiscuous mode [ 1239.428114][T28149] FAT-fs (loop5): Directory bread(block 64) failed [ 1239.441062][T28149] FAT-fs (loop5): Directory bread(block 65) failed [ 1239.458955][T28149] FAT-fs (loop5): Directory bread(block 66) failed [ 1239.471863][T28149] FAT-fs (loop5): Directory bread(block 67) failed [ 1239.487613][T28149] FAT-fs (loop5): Directory bread(block 68) failed [ 1239.503999][T28149] FAT-fs (loop5): Directory bread(block 69) failed [ 1239.531831][T28149] FAT-fs (loop5): Directory bread(block 70) failed [ 1239.547231][T28149] FAT-fs (loop5): Directory bread(block 71) failed [ 1239.566535][T28149] FAT-fs (loop5): Directory bread(block 72) failed [ 1239.587616][T28149] FAT-fs (loop5): Directory bread(block 73) failed [ 1240.329708][ T29] audit: type=1326 audit(1773472092.531:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.416423][ T29] audit: type=1326 audit(1773472092.601:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.519280][ T29] audit: type=1326 audit(1773472092.611:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=310 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.667498][ T29] audit: type=1326 audit(1773472092.611:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.744587][ T29] audit: type=1326 audit(1773472092.611:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.861235][ T29] audit: type=1326 audit(1773472092.641:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1240.944821][ T29] audit: type=1326 audit(1773472092.641:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1241.029887][ T29] audit: type=1326 audit(1773472092.641:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28167 comm="syz.3.5795" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000 [ 1241.994493][T28202] loop4: detected capacity change from 0 to 24 [ 1243.410684][T28233] loop3: detected capacity change from 0 to 256 [ 1243.523986][T28233] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1243.751198][T28243] loop5: detected capacity change from 0 to 64 [ 1245.831408][T28304] ebtables: wrong size: *len 168, entries_size 48, replsz 48 [ 1246.603361][T28320] loop5: detected capacity change from 0 to 512 [ 1246.619035][T28323] loop4: detected capacity change from 0 to 256 [ 1246.685409][T28324] loop2: detected capacity change from 0 to 512 [ 1246.742963][ T13] ===================================================== [ 1246.750856][ T13] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x77e/0xf00 [ 1246.761191][ T13] n_tty_receive_buf_closing+0x77e/0xf00 [ 1246.767476][ T13] n_tty_receive_buf_common+0x19c6/0x2610 [ 1246.775059][ T13] n_tty_receive_buf2+0x4c/0x60 [ 1246.781302][ T13] tty_ldisc_receive_buf+0xc6/0x2c0 [ 1246.787180][ T13] tty_port_default_receive_buf+0xd7/0x1a0 [ 1246.793924][ T13] flush_to_ldisc+0x43e/0xe40 [ 1246.799270][ T13] process_scheduled_works+0xb82/0x1e80 [ 1246.805639][ T13] worker_thread+0xee4/0x1590 [ 1246.817806][ T13] kthread+0x53f/0x600 [ 1246.822923][ T13] ret_from_fork+0x20f/0x910 [ 1246.828222][ T13] ret_from_fork_asm+0x1a/0x30 [ 1246.833745][ T13] [ 1246.836646][ T13] Uninit was created at: [ 1246.841856][ T13] __kmalloc_noprof+0x486/0x1680 [ 1246.847442][ T13] __tty_buffer_request_room+0x3d4/0x7a0 [ 1246.854319][ T13] __tty_insert_flip_string_flags+0x157/0x6e0 [ 1246.861341][ T13] uart_insert_char+0x368/0x930 [ 1246.866951][ T13] serial8250_read_char+0x1ba/0x670 [ 1246.873868][ T13] serial8250_handle_irq+0x930/0x1110 [ 1246.880184][ T13] serial8250_default_handle_irq+0x116/0x370 [ 1246.887054][ T13] serial8250_interrupt+0xcb/0x420 [ 1246.892978][ T13] __handle_irq_event_percpu+0x13c/0xf90 [ 1246.899524][ T13] handle_irq_event+0xe0/0x2a0 [ 1246.904944][ T13] handle_edge_irq+0x2a9/0xb30 [ 1246.910676][ T13] __common_interrupt+0x9d/0x180 [ 1246.916237][T28320] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.5835: bg 0: block 393: padding at end of block bitmap is not set [ 1246.916304][ T13] common_interrupt+0x94/0xb0 [ 1246.936707][ T13] asm_common_interrupt+0x2b/0x40 [ 1246.944082][ T13] [ 1246.946986][ T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Tainted: G W L syzkaller #0 PREEMPT(full) [ 1246.958605][ T13] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 1246.964512][ T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1246.976258][ T13] Workqueue: events_unbound flush_to_ldisc [ 1246.983013][ T13] ===================================================== [ 1246.990873][ T13] Disabling lock debugging due to kernel taint [ 1247.012180][T28320] loop5: lost filesystem error report for type 5 error -117 [ 1247.019996][ C0] EXT4-fs (loop5): error count since last fsck: 1 [ 1247.035192][ C0] EXT4-fs (loop5): initial error at time 1773472099: ext4_validate_block_bitmap:441 [ 1247.045437][ C0] EXT4-fs (loop5): last error at time 1773472099: ext4_validate_block_bitmap:441 [ 1247.088266][T28320] EXT4-fs (loop5): Remounting filesystem read-only [ 1247.105385][T28320] EXT4-fs (loop5): 2 truncates cleaned up [ 1247.115374][T28320] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1247.139914][ T13] Kernel panic - not syncing: kmsan.panic set ... [ 1247.146457][ T13] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Tainted: G B W L syzkaller #0 PREEMPT(full) [ 1247.157506][ T13] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP [ 1247.164004][ T13] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1247.174186][ T13] Workqueue: events_unbound flush_to_ldisc [ 1247.180194][ T13] Call Trace: [ 1247.183553][ T13] [ 1247.186556][ T13] __dump_stack+0x26/0x30 [ 1247.191064][ T13] dump_stack_lvl+0x50/0x1c0 [ 1247.195868][ T13] ? dump_stack+0x12/0x25 [ 1247.200363][ T13] dump_stack+0x1e/0x25 [ 1247.204675][ T13] vpanic+0x7b4/0x1430 [ 1247.208928][ T13] panic+0x15d/0x160 [ 1247.213030][ T13] kmsan_report+0x31a/0x320 [ 1247.217728][ T13] ? __msan_warning+0x1b/0x30 [ 1247.222567][ T13] ? n_tty_receive_buf_closing+0x77e/0xf00 [ 1247.228548][ T13] ? n_tty_receive_buf_common+0x19c6/0x2610 [ 1247.234604][ T13] ? n_tty_receive_buf2+0x4c/0x60 [ 1247.239789][ T13] ? tty_ldisc_receive_buf+0xc6/0x2c0 [ 1247.245338][ T13] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 1247.251509][ T13] ? flush_to_ldisc+0x43e/0xe40 [ 1247.256536][ T13] ? process_scheduled_works+0xb82/0x1e80 [ 1247.262412][ T13] ? worker_thread+0xee4/0x1590 [ 1247.267409][ T13] ? kthread+0x53f/0x600 [ 1247.271817][ T13] ? ret_from_fork+0x20f/0x910 [ 1247.276726][ T13] ? ret_from_fork_asm+0x1a/0x30 [ 1247.281816][ T13] ? __update_load_avg_cfs_rq+0xc31/0x1060 [ 1247.287950][ T13] ? kmsan_get_metadata+0xf1/0x160 [ 1247.293338][ T13] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1247.299331][ T13] ? min_vruntime_cb_propagate+0x558/0xb90 [ 1247.305378][ T13] ? kmsan_get_metadata+0xf1/0x160 [ 1247.310666][ T13] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 1247.316666][ T13] ? __rb_insert_augmented+0x80/0x11b0 [ 1247.322315][ T13] ? kmsan_get_metadata+0xf1/0x160 [ 1247.327655][ T13] __msan_warning+0x1b/0x30 [ 1247.332322][ T13] n_tty_receive_buf_closing+0x77e/0xf00 [ 1247.338150][ T13] n_tty_receive_buf_common+0x19c6/0x2610 [ 1247.344107][ T13] n_tty_receive_buf2+0x4c/0x60 [ 1247.349101][ T13] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 1247.354780][ T13] tty_ldisc_receive_buf+0xc6/0x2c0 [ 1247.360156][ T13] tty_port_default_receive_buf+0xd7/0x1a0 [ 1247.366182][ T13] flush_to_ldisc+0x43e/0xe40 [ 1247.371047][ T13] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 1247.377638][ T13] ? __pfx_flush_to_ldisc+0x10/0x10 [ 1247.383008][ T13] process_scheduled_works+0xb82/0x1e80 [ 1247.388764][ T13] worker_thread+0xee4/0x1590 [ 1247.393620][ T13] kthread+0x53f/0x600 [ 1247.397843][ T13] ? __pfx_worker_thread+0x10/0x10 [ 1247.403108][ T13] ? __pfx_kthread+0x10/0x10 [ 1247.407849][ T13] ret_from_fork+0x20f/0x910 [ 1247.412574][ T13] ? __switch_to+0x51c/0x750 [ 1247.417416][ T13] ? __pfx_kthread+0x10/0x10 [ 1247.422157][ T13] ret_from_fork_asm+0x1a/0x30 [ 1247.427116][ T13] [ 1247.430485][ T13] Kernel Offset: disabled [ 1247.434872][ T13] Rebooting in 86400 seconds..