last executing test programs: 3.597290152s ago: executing program 1 (id=13597): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x3e}, 0x408d3) 3.203918841s ago: executing program 1 (id=13603): syz_usb_connect$cdc_ncm(0x0, 0x72, &(0x7f0000000280)=ANY=[@ANYBLOB="1201000002000040257d15a4400001040001090260004201000000090400000102090000052406000105240000000d240f01000004eaffffff1e0006031a00000804800200090581", @ANYBLOB="f7"], 0x0) syz_open_dev$char_usb(0xc, 0xb4, 0x0) 2.631267947s ago: executing program 0 (id=13610): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000000140)={[{@resuid}, {@noauto_da_alloc}, {@auto_da_alloc_val}, {@stripe={'stripe', 0x3d, 0x4}}, {@bsdgroups}, {@noblock_validity}, {@minixdf}, {@nouid32}, {@dioread_lock}, {@nolazytime}, {@oldalloc}, {@usrquota}]}, 0x0, 0x515, &(0x7f0000000c40)="$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") quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f00000002c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000000)='.\x00') 1.885073741s ago: executing program 5 (id=13618): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="1800000076000d0bcaf275791c32ee8e757f53"], 0x18}}, 0x0) 1.766785748s ago: executing program 3 (id=13619): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8937, &(0x7f00000000c0)={'netdevsim0\x00', @random="0100012010ff"}) 1.765941677s ago: executing program 2 (id=13620): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00') preadv(r0, &(0x7f0000003380)=[{&(0x7f00000020c0)=""/168, 0xa8}], 0x1, 0xffffffc0, 0x10000) 1.715912184s ago: executing program 4 (id=13621): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x4000000, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="020f00001000000000000000f30000ff020005000000000002"], 0x80}}, 0x0) 1.715705659s ago: executing program 3 (id=13622): r0 = socket$kcm(0x29, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000391, 0x40da3d4) 1.596874475s ago: executing program 0 (id=13623): r0 = openat$sysfs(0xffffff9c, &(0x7f0000000100)='/sys/power/pm_trace_dev_match', 0x0, 0x0) readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000280)=""/177, 0xb1}], 0x1) 1.555150431s ago: executing program 5 (id=13624): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0xf0, 0x1c, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}}, 0xf0}, 0x1, 0x0, 0x0, 0x8801}, 0x0) 1.478454336s ago: executing program 4 (id=13625): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000013c0)=@newlink={0x3c, 0x10, 0x44b, 0x0, 0x0, {0x7a, 0x0, 0x0, 0x0, 0x11418, 0x4000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}, @IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_BRIDGE={0x4}]}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8800}, 0x40880) 1.473871774s ago: executing program 2 (id=13626): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x972, &(0x7f0000006680)) munlockall() 1.38366736s ago: executing program 3 (id=13627): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000700)=@mangle={'mangle\x00', 0x64, 0x6, 0x648, 0xd0, 0x448, 0x448, 0x0, 0x0, 0x578, 0x578, 0x578, 0x578, 0x578, 0x6, 0x0, {[{{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@CONNSECMARK={0x28, 'CONNSECMARK\x00', 0x0, {0x1}}}, {{@ipv6={@mcast1, @local, [], [], 'macvtap0\x00', 'ip6tnl0\x00', {}, {}, 0x6}, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@broadcast}}}, {{@ipv6={@mcast2, @loopback, [], [], 'veth0_to_team\x00', 'syzkaller0\x00'}, 0x0, 0x100, 0x148, 0x0, {}, [@common=@unspec=@connmark={{0x30}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @SNPT={0x48, 'SNPT\x00', 0x0, {@ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @ipv4=@private}}}, {{@uncond, 0x0, 0x120, 0x148, 0x0, {}, [@common=@frag={{0x30}}, @common=@hbh={{0x48}}]}, @inet=@DSCP={0x28}}, {{@uncond, 0x0, 0xf0, 0x130, 0x0, {}, [@common=@dst={{0x48}}]}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv4=@dev}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x6a8) 1.233540698s ago: executing program 3 (id=13628): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x871a15abc695fb3d, 0x0, 0x400000, {}, [{0x54, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xfffffffd}, 0x7ffffffe}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0) 1.220158544s ago: executing program 2 (id=13629): r0 = socket$inet6(0xa, 0x800000000000002, 0x0) setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x8801, 0x4) 1.217184697s ago: executing program 4 (id=13630): r0 = socket$inet_udp(0x2, 0x2, 0x0) sendmmsg$inet(r0, &(0x7f0000000e00)=[{{&(0x7f0000000080)={0x2, 0x4e34, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_retopts={{0x1c, 0x0, 0x7, {[@lsrr={0x83, 0xb, 0x4, [@multicast2, @empty]}]}}}], 0x20}}], 0x2, 0x0) 1.205292994s ago: executing program 5 (id=13631): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x10, 0x140d, 0x1, 0x70bd28, 0x25dfdbff}, 0x10}}, 0x800) 1.171881208s ago: executing program 0 (id=13632): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_PORT_GET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x20, 0x1405, 0x1, 0x70bd25, 0x25dfdbfc, "", [{{0x8, 0x1, 0x1}, {0x8, 0x3, 0x3}}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000002}, 0x8050) 1.097917376s ago: executing program 1 (id=13633): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]}) quotactl_fd$Q_QUOTAOFF(0xffffffffffffffff, 0xffffffff80000302, 0x0, 0x0) 946.979622ms ago: executing program 3 (id=13634): syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f0000000580)='./file0\x00', 0x0, &(0x7f00000005c0), 0x1, 0x50d, &(0x7f0000000600)="$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") openat(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x40040, 0x6ab858183a7ef6ba) 944.57524ms ago: executing program 4 (id=13635): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000700)=@newsa={0x19c, 0x16, 0x633, 0x0, 0x80000000, {{@in=@rand_addr=0x64010100, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x16}, {@in=@multicast2, 0x4d2, 0x32}, @in6=@loopback, {0x0, 0x8000}, {0x5, 0xffffffffffffffff, 0x0, 0x5}, {0x4, 0x2, 0x3dce6aa0}, 0x6, 0x2, 0x0, 0x4, 0x18, 0x19}, [@policy={0xac, 0x7, {{@in=@loopback, @in=@remote, 0x4e25, 0x9, 0x4e23, 0xe, 0xa, 0xc0, 0x20, 0x3a}, {0x1, 0x3, 0x1, 0xfa, 0x9, 0xd2f, 0x3c, 0x8000}, {0x8, 0x81, 0x9, 0x40}, 0x4, 0x6e6bb2, 0x1, 0x1, 0x0, 0x3}}]}, 0x19c}}, 0x40004) 926.455547ms ago: executing program 2 (id=13636): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000540)={0x20, 0x2c, 0x107, 0x0, 0x25dfdbfe, {0x2, 0x7c}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0xb5}]}, @nested={0x4, 0x2}]}, 0x20}, 0x1, 0x0, 0x0, 0xc000}, 0x90) 925.585246ms ago: executing program 5 (id=13637): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000100)={0x76, 0x7d, 0x9, 0x4, 0x8, 0x81}) 797.540953ms ago: executing program 1 (id=13638): r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/raw6\x00') preadv(r0, &(0x7f0000003380)=[{&(0x7f00000020c0)=""/168, 0xa8}], 0x1, 0xffffffc0, 0x10000) 763.561306ms ago: executing program 0 (id=13639): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) fsetxattr(r0, &(0x7f0000000540)=@known='system.posix_acl_default\x00', &(0x7f0000000580)='\xe9', 0x1, 0x0) 556.415676ms ago: executing program 2 (id=13640): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x20}, @printk={@lu, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f00000001c0)='syzkaller\x00'}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000005c0)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="e0b9545dd30a3731677b2d0bfa91", 0x0, 0x27cb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 552.774069ms ago: executing program 5 (id=13641): r0 = syz_open_dev$vim2m(&(0x7f0000000240), 0x6, 0x2) ioctl$vim2m_VIDIOC_QUERYCAP(r0, 0x80685600, &(0x7f0000000380)) 536.133782ms ago: executing program 0 (id=13642): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$eJzs3U1rE08cB/Dv7KZN+m/pf7UVwYNINWAvovUiXiIlL8KTqE0KxSWitviAYBVPIvbu3aNXX4N4UQTP9eRJPHiqBxmZh2SfN6lmd1P9fsCy2dmZ/e3OzlPALIjon7Xa3n11/ov6JwAXLvDsIuAAaAA1AEdwtLHV29zY9LudvIJcHK+bXAImp0gcs9brpmVtwOawPPWphrnwPiqGlPLS56qDoMrp1i/d6M4Tuieo29apExsVxZfl8f6zfJsBsF1EMBMlv6bEHvZwD/OlhUNERBNJmPHdseP8nJ2/Ow7QtIOJSpu48f937VUdQOFkbmpo/NerLClUvf+vk4L1nl7CqXSnv0pMK+t17PNU7PM0zNMTmV2KYatKHYszs77hd8+s3fQ7Dp6gZYUOW9R/O/bxtCLR1hNFL6WsTXMMSpvJPESkzyhn9TVMqWtYMfHfBRCJfyH3jAUQ78QHcUV4eInOYP5Xk0JVk64pL1ZTJv6z2SXqq/TUUbDdRqvVciKHHNInOWbPYA25ygbcrDNO2zIjXxB4w+LUuQ7HcpmrOzck10JqrhW9vQwnI9diJJe6mvUN/232qUohXojLYglf8Qbt0PzfUfE1kWyZoYc+aDWiaYYCfcdV64zWbEitaXsiPXJsfdp9aPYnm8vgLiYbrPUjv0+jfXiO67iA+Tv3H9xwfb97W21c89XjqjcGe27N2Q2/O/UUCCdNyga2gz11SC1xcH9QKjOw5bEWqPqPlCTVsHrf+3tUKxtW4KM/jUf1A4XeutkRrmJ/G/2uazwFtt+P50HqTxsiST+llCU2oh17Z+JJ1XRLVK6g0kc7PmWqQwebqlJh1n/BeqVmJnvqj5c6Tx/xiwBbolRz7MEKLsgrzYwcwH85K7i0YjNXcMk1V2LNqNdcJ08Dp0Y/o2fj/EuINj7iKr//JyIiIiIiIiIiIiIiIiIiIiIiIiI6aMr4zzBVXyMRERERERERERERERERERERERERERER0UG32oD53Wv03/+L0d7/G38Vi2t+Enws7//d6YHv/yUq3q8AAAD///B/c8c=") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) 532.85568ms ago: executing program 3 (id=13643): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2000000, &(0x7f00000018c0)=ANY=[], 0xfb, 0x1501, &(0x7f00000002c0)="$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") unlink(&(0x7f0000000100)='./file2\x00') 519.54717ms ago: executing program 4 (id=13644): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000140)={0x58, 0x2, 0x6, 0x401, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x6, 0x1, 0x0, 0x9}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000000}, 0x4040800) 491.166865ms ago: executing program 1 (id=13645): r0 = openat$random(0xffffffffffffff9c, &(0x7f0000004600), 0x42, 0x0) sendfile(r0, r0, 0x0, 0x3) 163.833825ms ago: executing program 5 (id=13646): r0 = syz_mount_image$msdos(&(0x7f0000000740), &(0x7f0000000340)='./file0\x00', 0x1000000, &(0x7f0000000380)={[{@dots}, {@dots}, {@dots}, {@fat=@codepage={'codepage', 0x3d, '866'}}, {@fat=@nfs}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@fat=@dos1xfloppy}, {@nodots}, {@nodots}, {@dots}, {@nodots}, {@fat=@sys_immutable}, {@dots}, {@fat=@codepage={'codepage', 0x3d, '861'}}, {@dots}, {@nodots}, {@fat=@dos1xfloppy}, {@dots}, {@fat=@fmask={'fmask', 0x3d, 0x7}}, {@nodots}, {@fat=@dos1xfloppy}, {@dots}]}, 0x0, 0x207, &(0x7f0000007d40)="$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") getdents64(r0, &(0x7f00000021c0)=""/4096, 0x1000) 163.590641ms ago: executing program 1 (id=13647): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x300, 0xfc, 0x2f, 0x62, 0x40, 0x9c4, 0x11, 0x638, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x72, 0x6, 0x10, 0x6, "", [{{0x9, 0x4, 0xf0, 0xe8, 0x2, 0xb5, 0x1c, 0x80, 0x3, [], [{{0x9, 0x5, 0x1, 0x2, 0x3ff, 0xff, 0x10, 0x3}}, {{0x9, 0x5, 0xeb3925d0f91dd4ca, 0x2, 0x10, 0x10, 0x2, 0x81}}]}}]}}]}}, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x3, [{0x0, 0x0}, {0x0, 0x0}, {0x0, 0x0}]}) syz_usb_control_io$cdc_ncm(r0, &(0x7f00000005c0)={0x14, &(0x7f0000000480)={0x0, 0x23, 0x2a, {0x2a, 0x21, "d6813216510729b666313568b4490e87bbeadd8ea61c92ca678fafe11672387ae56e62610f806d13"}}, &(0x7f0000000540)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000840)={0x44, &(0x7f0000000600)={0x20, 0xd, 0x2c, "f1ea8cee016cc33ae140a638db53c6d8794813f0c158199b760efbd9f5fbd4a6cc52ef8689045073a9eb5f42"}, &(0x7f0000000680)={0x0, 0xa, 0x1, 0x1}, 0x0, &(0x7f0000000700)={0x20, 0x80, 0x1c, {0x8, 0x7, 0x1, 0xf922, 0x6ad9, 0xd, 0x7, 0x6, 0x4, 0x7fff, 0x31f9, 0xff}}, &(0x7f0000000740)={0x20, 0x85, 0x4, 0x10000}, &(0x7f0000000780)={0x20, 0x83, 0x2, 0x1}, &(0x7f00000007c0)={0x20, 0x87, 0x2, 0x4}, 0x0}) 138.658542ms ago: executing program 4 (id=13648): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SCAUSEDIAG(r0, 0x89ec, &(0x7f0000000380)={0x5, 0x14}) 98.124013ms ago: executing program 2 (id=13649): r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r0, 0x7a9, 0x0) 0s ago: executing program 0 (id=13650): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x20, 0x3, 0x8, 0x401, 0x0, 0x0, {0x5, 0x0, 0x4}, [@CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @icmpv6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x88}]}, 0x20}, 0x1, 0x0, 0x0, 0x20000011}, 0x20000004) kernel console output (not intermixed with test programs): -1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1411.992697][ T1392] NILFS (loop1): recovery complete [ 1412.011916][ T1400] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1412.143060][ T1405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12062'. [ 1412.533560][ T1418] netlink: 'syz.4.12067': attribute type 16 has an invalid length. [ 1412.587008][ T1418] netlink: 'syz.4.12067': attribute type 17 has an invalid length. [ 1412.630224][ T1414] loop1: detected capacity change from 0 to 4096 [ 1412.692601][ T1420] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1412.694073][ T29] usb 6-1: new high-speed USB device number 80 using dummy_hcd [ 1412.839403][ T1422] loop3: detected capacity change from 0 to 256 [ 1412.880894][ T1422] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1412.954835][ T1422] exFAT-fs (loop3): valid_size(150994954) is greater than size(10) [ 1412.981400][ T29] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1413.016268][ T29] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1413.059858][ T29] usb 6-1: Product: syz [ 1413.074223][ T29] usb 6-1: Manufacturer: syz [ 1413.091551][ T29] usb 6-1: SerialNumber: syz [ 1413.140026][ T29] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1413.197666][T30484] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1413.380121][ T1430] xt_ecn: cannot match TCP bits for non-tcp packets [ 1413.775167][ T1418] 0·: left allmulticast mode [ 1413.780367][ T1418] hsr_slave_0: left allmulticast mode [ 1413.786693][ T1418] hsr_slave_1: left allmulticast mode [ 1413.905911][ T29] usb 6-1: USB disconnect, device number 80 [ 1413.931785][ T1418] vlan0: left promiscuous mode [ 1414.054219][ T1418] netdevsim netdevsim4 netdevsim0: left allmulticast mode [ 1414.214089][ T1450] loop1: detected capacity change from 0 to 256 [ 1414.237180][ T1418] erspan1: left promiscuous mode [ 1414.247208][ T1418] erspan1: left allmulticast mode [ 1414.269845][ T1418] bridge3: left promiscuous mode [ 1414.297718][ T1418] bond1: left promiscuous mode [ 1414.301602][ T1446] loop3: detected capacity change from 0 to 4096 [ 1414.328651][ T1450] FAT-fs (loop1): Directory bread(block 64) failed [ 1414.330492][T30484] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 1414.343945][ T1428] ip6gre3: entered promiscuous mode [ 1414.362408][ T1450] FAT-fs (loop1): Directory bread(block 65) failed [ 1414.376819][T17560] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1414.394003][T30484] ath9k_htc: Failed to initialize the device [ 1414.401970][ T1450] FAT-fs (loop1): Directory bread(block 66) failed [ 1414.422176][T17560] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1414.426491][ T29] usb 6-1: ath9k_htc: USB layer deinitialized [ 1414.443997][ T1450] FAT-fs (loop1): Directory bread(block 67) failed [ 1414.456247][T17560] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1414.473140][ T1453] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1414.488879][ T1450] FAT-fs (loop1): Directory bread(block 68) failed [ 1414.504532][ T57] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1414.526060][ T1450] FAT-fs (loop1): Directory bread(block 69) failed [ 1414.547706][ T1450] FAT-fs (loop1): Directory bread(block 70) failed [ 1414.581043][ T1450] FAT-fs (loop1): Directory bread(block 71) failed [ 1414.617796][ T1450] FAT-fs (loop1): Directory bread(block 72) failed [ 1414.644634][ T1450] FAT-fs (loop1): Directory bread(block 73) failed [ 1414.822417][ T1459] loop5: detected capacity change from 0 to 256 [ 1414.835446][ T1462] loop3: detected capacity change from 0 to 128 [ 1414.898460][ T1459] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1415.031955][ T1459] exFAT-fs (loop5): valid_size(150994954) is greater than size(10) [ 1415.102990][ T1467] loop2: detected capacity change from 0 to 2048 [ 1415.150355][ T1467] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1415.187213][ T1467] NILFS (loop2): mounting unchecked fs [ 1415.232300][ T1467] NILFS (loop2): recovery complete [ 1415.257939][ T1470] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1415.478770][ T1478] openvswitch: netlink: Unexpected mask (mask=840, allowed=10048) [ 1415.781043][ T1486] loop2: detected capacity change from 0 to 512 [ 1416.049474][T30488] usb 5-1: new high-speed USB device number 73 using dummy_hcd [ 1416.278608][T30488] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1416.339507][T30488] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1416.370464][T30488] usb 5-1: Product: syz [ 1416.385791][T30488] usb 5-1: Manufacturer: syz [ 1416.396493][T30488] usb 5-1: SerialNumber: syz [ 1416.445804][T30488] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1416.493478][T30492] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1416.635174][ T1515] ieee802154 phy1 wpan1: encryption failed: -22 [ 1416.934708][ T1523] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1417.047487][T30484] usb 5-1: USB disconnect, device number 73 [ 1417.243911][ T1531] bridge7: entered promiscuous mode [ 1417.261933][ T1531] bridge7: entered allmulticast mode [ 1417.342471][ T10] usb 3-1: new full-speed USB device number 89 using dummy_hcd [ 1417.527129][ T10] usb 3-1: config 8 has an invalid interface number: 177 but max is 0 [ 1417.553683][ T10] usb 3-1: config 8 has no interface number 0 [ 1417.575727][ T10] usb 3-1: config 8 interface 177 altsetting 9 endpoint 0x9 has invalid maxpacket 1023, setting to 64 [ 1417.622132][ T10] usb 3-1: config 8 interface 177 has no altsetting 0 [ 1417.641837][ T10] usb 3-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1 [ 1417.670802][ T10] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1417.695215][T30492] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 1417.719744][T30492] ath9k_htc: Failed to initialize the device [ 1417.732254][ T1529] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 1417.754074][T30484] usb 5-1: ath9k_htc: USB layer deinitialized [ 1417.921985][ T1548] loop0: detected capacity change from 0 to 4096 [ 1418.037750][ T10] usb 3-1: string descriptor 0 read error: -71 [ 1418.047034][ T1557] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1418.074124][ C0] ir_toy 3-1:8.177: out urb status: -71 [ 1418.181070][ T1560] netlink: 'syz.4.12136': attribute type 10 has an invalid length. [ 1418.290061][ T1560] bond0: (slave batadv_slave_1): Enslaving as an active interface with an up link [ 1418.342272][ T1566] netlink: 260 bytes leftover after parsing attributes in process `syz.1.12139'. [ 1418.616980][ T1570] bridge4: entered promiscuous mode [ 1418.617017][ T1570] bridge4: entered allmulticast mode [ 1418.627964][ T10] ir_toy 3-1:8.177: could not write reset command: -110 [ 1418.628264][ T10] ir_toy 3-1:8.177: probe with driver ir_toy failed with error -110 [ 1418.652975][ T10] usb 3-1: USB disconnect, device number 89 [ 1418.803726][ T1576] ipt_REJECT: TCP_RESET invalid for non-tcp [ 1418.842657][ T1578] netlink: 'syz.1.12146': attribute type 21 has an invalid length. [ 1418.870628][ T1580] netlink: 'syz.0.12145': attribute type 16 has an invalid length. [ 1418.870665][ T1580] netlink: 'syz.0.12145': attribute type 17 has an invalid length. [ 1418.872531][ T1580] bridge_slave_0: left promiscuous mode [ 1418.919517][ T1580] 0·: left allmulticast mode [ 1418.919555][ T1580] hsr_slave_0: left allmulticast mode [ 1418.919585][ T1580] hsr_slave_1: left allmulticast mode [ 1418.923394][ T1580] veth0_macvtap: left allmulticast mode [ 1418.926613][ T1580] netdevsim netdevsim0 netdevsim0: left allmulticast mode [ 1418.931810][ T1580] ip6gre1: left promiscuous mode [ 1418.937502][ T1580] bridge4: left promiscuous mode [ 1418.937536][ T1580] bridge4: left allmulticast mode [ 1419.275657][ T1593] loop4: detected capacity change from 0 to 512 [ 1419.449205][ T1598] bridge4: left promiscuous mode [ 1419.682769][ T5820] usb 1-1: new high-speed USB device number 80 using dummy_hcd [ 1419.723831][ T1608] loop3: detected capacity change from 0 to 512 [ 1419.807712][ T1608] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1419.885119][ T5820] usb 1-1: string descriptor 0 read error: -22 [ 1419.912873][ T5820] usb 1-1: New USB device found, idVendor=0763, idProduct=2003, bcdDevice= 0.40 [ 1419.937431][ T1608] EXT4-fs error (device loop3): ext4_lookup:1785: inode #12: comm syz.3.12159: iget: bad i_size value: 2533274857506816 [ 1419.956728][ T5820] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1420.078577][ T10] usb 6-1: new high-speed USB device number 81 using dummy_hcd [ 1420.164006][T30492] usb 5-1: new high-speed USB device number 74 using dummy_hcd [ 1420.167509][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1420.172021][T30488] usb 3-1: new high-speed USB device number 90 using dummy_hcd [ 1420.232020][ T5820] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 1420.284415][ T10] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1420.298249][ T10] usb 6-1: New USB device found, idVendor=04b4, idProduct=9320, bcdDevice= 0.40 [ 1420.309145][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1420.330311][ T10] usb 6-1: Product: syz [ 1420.336660][ T10] usb 6-1: Manufacturer: syz [ 1420.345823][ T10] usb 6-1: SerialNumber: syz [ 1420.367195][T30488] usb 3-1: Using ep0 maxpacket: 8 [ 1420.375600][T30492] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1420.382643][ T1625] loop1: detected capacity change from 0 to 4096 [ 1420.393109][T30488] usb 3-1: config 0 has an invalid interface number: 55 but max is 0 [ 1420.410836][T30492] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1420.423981][T30488] usb 3-1: config 0 has no interface number 0 [ 1420.433192][T30492] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1420.449059][ T5820] usb 1-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 1420.452010][T30488] usb 3-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1420.493085][T30492] usb 5-1: string descriptor 0 read error: -22 [ 1420.502716][T30488] usb 3-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 1420.523949][T30492] usb 5-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40 [ 1420.545562][T30492] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1420.555410][T30488] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1420.594775][ T1629] netlink: 'syz.3.12167': attribute type 39 has an invalid length. [ 1420.612917][T30488] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 1420.637390][ T1625] ntfs3(loop1): ino=5, "/" indx_read_ra [ 1420.637452][T30492] usb 5-1: selecting invalid altsetting 1 [ 1420.655363][T30488] usb 3-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1420.673430][ T1625] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1420.677220][ T10] usb 6-1: Audio class v2/v3 interfaces need an interface association [ 1420.697045][T30488] usb 3-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 1420.706043][ T5820] usb 1-1: USB disconnect, device number 80 [ 1420.724539][T30488] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1420.757349][T30488] usb 3-1: config 0 descriptor?? [ 1420.807352][T30488] ldusb 3-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 1420.909406][T30492] usb 5-1: unit 3 not found! [ 1420.917394][ T10] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 1420.935251][T30492] usb 5-1: unit 0 not found! [ 1421.068295][ T10] snd-usb-hiface 6-1:1.0: probe with driver snd-usb-hiface failed with error -22 [ 1421.187190][ T1621] ldusb 3-1:0.55: Couldn't submit interrupt_in_urb -90 [ 1421.202137][ T10] usb 6-1: can't set first interface for hiFace device. [ 1421.217126][ T1635] loop3: detected capacity change from 0 to 256 [ 1421.240546][ T10] snd-usb-hiface 6-1:1.1: probe with driver snd-usb-hiface failed with error -5 [ 1421.262217][T30492] usb 5-1: USB disconnect, device number 74 [ 1421.293830][T30488] usb 3-1: USB disconnect, device number 90 [ 1421.301386][ T10] usb 6-1: can't set first interface for hiFace device. [ 1421.319619][ T10] snd-usb-hiface 6-1:1.2: probe with driver snd-usb-hiface failed with error -5 [ 1421.337114][T30488] ldusb 3-1:0.55: LD USB Device #0 now disconnected [ 1421.361726][ T10] usb 6-1: USB disconnect, device number 81 [ 1421.411469][ T1634] bond4: entered allmulticast mode [ 1421.512440][ T6255] udevd[6255]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory [ 1421.619919][ T5944] udevd[5944]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card4/controlC4/../uevent} for writing: No such file or directory [ 1421.637551][ T30] audit: type=1326 audit(1637.074:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1643 comm="syz.0.12174" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1421.741876][ T30] audit: type=1326 audit(1637.074:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1643 comm="syz.0.12174" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1421.816328][ T30] audit: type=1326 audit(1637.111:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1643 comm="syz.0.12174" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1421.876533][ T1646] loop3: detected capacity change from 0 to 2048 [ 1421.921862][ T30] audit: type=1326 audit(1637.111:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1643 comm="syz.0.12174" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1421.967920][ T1646] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1422.066731][ T1652] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1422.127875][ T1646] NILFS (loop3): DAT doesn't have a block to manage vblocknr = 147 [ 1422.157870][ T1646] NILFS error (device loop3): nilfs_bmap_truncate: broken bmap (inode number=15) [ 1422.186304][ T1656] ip6erspan0: entered allmulticast mode [ 1422.193176][ T1646] Remounting filesystem read-only [ 1422.214252][ T1646] NILFS (loop3): error -5 truncating bmap (ino=15) [ 1422.257443][ T1646] syz.3.12176: attempt to access beyond end of device [ 1422.257443][ T1646] loop3: rw=0, sector=262216, nr_sectors = 2 limit=2048 [ 1422.316841][ T1646] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=1) [ 1422.329062][ T1661] loop0: detected capacity change from 0 to 1024 [ 1422.360467][ T1661] EXT4-fs: Ignoring removed mblk_io_submit option [ 1422.403522][ T1661] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1422.444459][ T1661] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1422.518639][ T1669] netlink: 28 bytes leftover after parsing attributes in process `syz.2.12187'. [ 1422.529462][ T5856] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer [ 1422.546262][ T1661] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1422.655492][ T1661] EXT4-fs error (device loop0): __ext4_remount:6837: comm syz.0.12183: Abort forced by user [ 1422.687885][ T1661] EXT4-fs (loop0): Remounting filesystem read-only [ 1422.720650][ T1661] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000. [ 1422.917225][ T5840] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1423.150066][ T1683] loop3: detected capacity change from 0 to 2048 [ 1423.219369][ T1683] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1423.272000][ T1683] NILFS (loop3): mounting unchecked fs [ 1423.332264][ T1683] NILFS (loop3): recovery complete [ 1423.360227][ T1693] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1423.519711][ T1701] loop1: detected capacity change from 0 to 2048 [ 1423.566261][ T1701] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1423.602066][ T1702] loop5: detected capacity change from 0 to 4096 [ 1423.625998][ T1700] bond3: Removing last ns target with arp_interval on [ 1423.630682][ T1702] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 1423.690607][ T1704] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1423.762529][ T1702] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1423.773927][ T1701] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 147 [ 1423.800303][ T1702] ntfs3(loop5): Failed to load $Extend (-22). [ 1423.824358][ T1701] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=15) [ 1423.828628][ T1702] ntfs3(loop5): Failed to initialize $Extend. [ 1423.883480][ T1701] Remounting filesystem read-only [ 1423.954318][ T1701] NILFS (loop1): error -5 truncating bmap (ino=15) [ 1423.995329][ T1701] syz.1.12202: attempt to access beyond end of device [ 1423.995329][ T1701] loop1: rw=0, sector=262216, nr_sectors = 2 limit=2048 [ 1424.019510][ T1702] ntfs3(loop5): ino=0, attr_set_size_ex [ 1424.044114][ T10] usb 3-1: new high-speed USB device number 91 using dummy_hcd [ 1424.098128][ T1701] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=1) [ 1424.228524][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1424.256294][ T10] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 1424.290494][ T10] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1424.321744][ T5839] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 1424.322206][ T10] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 1424.401140][ T10] usb 3-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 1424.436199][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1424.469584][ T10] usb 3-1: Product: syz [ 1424.486122][ T10] usb 3-1: Manufacturer: syz [ 1424.502630][ T1722] netlink: 'syz.5.12208': attribute type 16 has an invalid length. [ 1424.510118][ T10] usb 3-1: SerialNumber: syz [ 1424.539488][ T1722] netlink: 'syz.5.12208': attribute type 17 has an invalid length. [ 1424.553534][ T10] usb 3-1: config 0 descriptor?? [ 1424.575479][ T1722] syz_tun: left promiscuous mode [ 1424.583253][ T10] ums-isd200 3-1:0.0: USB Mass Storage device detected [ 1424.885788][ T10] ums-isd200 3-1:0.0: probe with driver ums-isd200 failed with error -22 [ 1425.105093][T30492] usb 3-1: USB disconnect, device number 91 [ 1425.430589][ T1722] veth0_to_team: left promiscuous mode [ 1425.619831][ T1749] loop3: detected capacity change from 0 to 4096 [ 1425.620866][ T1751] loop0: detected capacity change from 0 to 2048 [ 1425.651419][ T1749] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 1425.714063][ T1751] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1425.740435][ T1722] veth1_vlan: left allmulticast mode [ 1425.778785][ T1722] macvlan1: left allmulticast mode [ 1425.783090][ T1749] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1425.830925][ T1749] ntfs3(loop3): Failed to load $Extend (-22). [ 1425.860427][ T1749] ntfs3(loop3): Failed to initialize $Extend. [ 1425.984515][ T1749] ntfs3(loop3): ino=0, attr_set_size_ex [ 1426.054776][ T1760] loop4: detected capacity change from 0 to 2048 [ 1426.097675][ T1760] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1426.188746][ T1762] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1426.246217][ T1760] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 147 [ 1426.282462][ T1760] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=15) [ 1426.331882][ T1760] Remounting filesystem read-only [ 1426.351147][ T1760] NILFS (loop4): error -5 truncating bmap (ino=15) [ 1426.358779][ T1722] netdevsim netdevsim5 netdevsim0: left promiscuous mode [ 1426.391222][ T1760] syz.4.12225: attempt to access beyond end of device [ 1426.391222][ T1760] loop4: rw=0, sector=262216, nr_sectors = 2 limit=2048 [ 1426.415632][ T1767] loop3: detected capacity change from 0 to 1024 [ 1426.443795][ T1760] NILFS (loop4): I/O error reading meta-data file (ino=6, block-offset=1) [ 1426.455600][ T1767] EXT4-fs: Ignoring removed mblk_io_submit option [ 1426.479754][ T1767] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1426.508808][ T1767] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1426.550721][ T1767] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1426.666130][ T5859] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 1426.709879][ T1767] EXT4-fs error (device loop3): __ext4_remount:6837: comm syz.3.12227: Abort forced by user [ 1426.746568][ T5973] usb 1-1: new high-speed USB device number 81 using dummy_hcd [ 1426.769473][ T1767] EXT4-fs (loop3): Remounting filesystem read-only [ 1426.804015][ T1767] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 1426.885949][ T1722] veth3: left promiscuous mode [ 1426.909790][ T1722] veth3: left allmulticast mode [ 1426.917674][ T5973] usb 1-1: Using ep0 maxpacket: 16 [ 1426.939940][ T5973] usb 1-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 1426.953491][ T1722] ip6gre1: left promiscuous mode [ 1426.980114][ T1722] ip6gre1: left allmulticast mode [ 1426.987385][ T5973] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1427.015046][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1427.036031][ T5973] usb 1-1: config 0 descriptor?? [ 1427.096774][ T5973] gspca_main: sonixj-2.14.0 probing 0471:0327 [ 1427.330303][ T1722] bond2: left promiscuous mode [ 1427.341226][ T1722] bond2: left allmulticast mode [ 1427.430968][ T1722] gtp0: left promiscuous mode [ 1427.444870][ T1722] gtp0: left allmulticast mode [ 1427.499576][ T1722] bridge5: left promiscuous mode [ 1427.510308][ T5973] gspca_sonixj: reg_r err -71 [ 1427.520694][ T5973] sonixj 1-1:0.0: probe with driver sonixj failed with error -71 [ 1427.550945][ T5973] usb 1-1: USB disconnect, device number 81 [ 1427.598504][ T1722] erspan1: left promiscuous mode [ 1427.612948][ T1722] erspan1: left allmulticast mode [ 1427.698504][ T1722] bridge7: left promiscuous mode [ 1427.712804][ T1722] bridge7: left allmulticast mode [ 1427.743009][ T34] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1427.771702][ T34] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1427.818380][ T34] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1427.843410][ T34] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1428.018888][ T1799] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 1428.032178][ T1798] loop1: detected capacity change from 0 to 256 [ 1428.117600][ T1798] FAT-fs (loop1): Directory bread(block 64) failed [ 1428.142868][ T1798] FAT-fs (loop1): Directory bread(block 65) failed [ 1428.142997][ T1798] FAT-fs (loop1): Directory bread(block 66) failed [ 1428.143039][ T1798] FAT-fs (loop1): Directory bread(block 67) failed [ 1428.143144][ T1798] FAT-fs (loop1): Directory bread(block 68) failed [ 1428.143185][ T1798] FAT-fs (loop1): Directory bread(block 69) failed [ 1428.143290][ T1798] FAT-fs (loop1): Directory bread(block 70) failed [ 1428.143330][ T1798] FAT-fs (loop1): Directory bread(block 71) failed [ 1428.143563][ T1798] FAT-fs (loop1): Directory bread(block 72) failed [ 1428.143605][ T1798] FAT-fs (loop1): Directory bread(block 73) failed [ 1428.873583][T30488] usb 2-1: new high-speed USB device number 85 using dummy_hcd [ 1429.066800][T30488] usb 2-1: Using ep0 maxpacket: 8 [ 1429.101683][T30488] usb 2-1: config 0 has an invalid interface number: 55 but max is 0 [ 1429.145765][T30488] usb 2-1: config 0 has no interface number 0 [ 1429.180066][T30488] usb 2-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1429.233423][T30488] usb 2-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 1429.273122][T30488] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1429.307081][T30488] usb 2-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 1429.307133][T30488] usb 2-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1429.307206][T30488] usb 2-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 1429.307251][T30488] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1429.308636][ T1841] bridge4: entered promiscuous mode [ 1429.308677][ T1841] bridge4: entered allmulticast mode [ 1429.320259][T30488] usb 2-1: config 0 descriptor?? [ 1429.344178][T30488] ldusb 2-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 1429.616522][ T6067] usb 2-1: USB disconnect, device number 85 [ 1429.622282][ T6067] ldusb 2-1:0.55: LD USB Device #0 now disconnected [ 1429.642400][ T1857] loop4: detected capacity change from 0 to 16 [ 1429.655353][ T1857] erofs (device loop4): mounted with root inode @ nid 36. [ 1429.666230][ T1857] erofs (device loop4): readahead error at folio 2 @ nid 89 [ 1429.666358][ T1857] erofs (device loop4): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1429.666395][ T1857] erofs (device loop4): readahead error at folio 1 @ nid 89 [ 1429.666430][ T1857] erofs (device loop4): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1429.666466][ T1857] erofs (device loop4): readahead error at folio 0 @ nid 89 [ 1429.667257][ T1856] IPVS: Error joining to the multicast group [ 1429.684887][ T1857] erofs (device loop4): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1429.684932][ T1857] erofs (device loop4): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1429.684969][ T1857] erofs (device loop4): read error -117 @ 0 of nid 89 [ 1429.686185][ T30] audit: type=1800 audit(1644.617:241): pid=1857 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.12265" name="file2" dev="loop4" ino=89 res=0 errno=0 [ 1429.901970][ T1859] loop0: detected capacity change from 0 to 4096 [ 1430.100934][ T1859] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1430.195356][ T1859] ntfs3(loop0): Failed to load $Extend (-22). [ 1430.243061][ T1859] ntfs3(loop0): Failed to initialize $Extend. [ 1430.415619][ T1859] ntfs3(loop0): ino=5, "/" indx_read_ra [ 1430.470741][ T1876] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1430.539492][ T1878] usb usb8: usbfs: process 1878 (syz.5.12275) did not claim interface 0 before use [ 1430.621414][ T5840] ntfs3(loop0): ino=9, ntfs_sync_fs failed, -22. [ 1431.082213][ T1886] loop4: detected capacity change from 0 to 4096 [ 1431.095542][T30484] usb 1-1: new high-speed USB device number 82 using dummy_hcd [ 1431.231106][ T1902] openvswitch: netlink: nsh attr 247 is out of range max 3 [ 1431.291612][T30484] usb 1-1: Using ep0 maxpacket: 8 [ 1431.321108][T30484] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1431.388741][T30484] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1431.417109][T30484] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1431.447554][T30484] usb 1-1: Product: syz [ 1431.468532][T30484] usb 1-1: Manufacturer: syz [ 1431.494228][T30484] usb 1-1: SerialNumber: syz [ 1431.689167][ T1916] netlink: 'syz.3.12291': attribute type 3 has an invalid length. [ 1431.718727][ T1916] netlink: 'syz.3.12291': attribute type 1 has an invalid length. [ 1431.749923][ T1916] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12291'. [ 1431.804620][T30484] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 1431.840957][T30484] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 1431.872005][ T1922] netlink: 'syz.1.12293': attribute type 16 has an invalid length. [ 1431.874689][T30484] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1431.922613][ T1922] netlink: 'syz.1.12293': attribute type 17 has an invalid length. [ 1431.945472][ T1922] bridge4: left allmulticast mode [ 1431.959830][ T1922] bond4: left allmulticast mode [ 1432.016555][T30484] usb 1-1: palm_os_3_probe - error -71 getting bytes available request [ 1432.040123][T30484] visor 1-1:1.0: Handspring Visor / Palm OS converter detected [ 1432.124529][T30484] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1432.189368][T30484] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1432.238418][T30484] usb 1-1: USB disconnect, device number 82 [ 1432.272014][T30484] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1432.384872][T30484] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1432.427982][T30484] visor 1-1:1.0: device disconnected [ 1432.485210][ T1743] usb 6-1: new high-speed USB device number 82 using dummy_hcd [ 1432.666711][ T1743] usb 6-1: Using ep0 maxpacket: 16 [ 1432.701008][ T1743] usb 6-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 1432.740286][ T1743] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1432.831178][ T1743] usb 6-1: config 0 descriptor?? [ 1432.879649][ T1743] gspca_main: sonixj-2.14.0 probing 0471:0327 [ 1433.262968][ T1966] loop0: detected capacity change from 0 to 8 [ 1433.331454][ T1743] gspca_sonixj: reg_r err -71 [ 1433.358994][ T1743] sonixj 6-1:0.0: probe with driver sonixj failed with error -71 [ 1433.375966][ T1966] SQUASHFS error: Unable to read inode 0xa7 [ 1433.412696][ T1743] usb 6-1: USB disconnect, device number 82 [ 1433.519354][ T1974] netlink: 'syz.4.12314': attribute type 10 has an invalid length. [ 1433.530297][ T1974] veth0_vlan: left promiscuous mode [ 1433.541708][ T1974] veth0_vlan: entered promiscuous mode [ 1433.561719][ T1974] team0: Device veth0_vlan failed to register rx_handler [ 1433.777912][ T1940] loop3: detected capacity change from 0 to 32768 [ 1433.834916][ T1940] JBD2: Ignoring recovery information on journal [ 1434.046953][ T1940] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1434.221029][ T1993] netlink: 'syz.2.12320': attribute type 39 has an invalid length. [ 1434.286054][ T1940] (syz.3.12301,1940,1):ocfs2_check_dir_entry:334 ERROR: bad entry in directory #4097: rec_len % 4 != 0 - offset=0, inode=18446673704965378049, rec_len=255, name_len=1 [ 1434.312825][ T1940] (syz.3.12301,1940,0):ocfs2_prepare_dir_for_insert:4342 ERROR: status = -2 [ 1434.359050][ T1940] (syz.3.12301,1940,0):ocfs2_mknod:302 ERROR: status = -2 [ 1434.406356][ T1940] (syz.3.12301,1940,0):ocfs2_mknod:506 ERROR: status = -2 [ 1434.414007][ T2000] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12323'. [ 1434.470734][ T2000] openvswitch: netlink: Unexpected mask (mask=c0, allowed=10048) [ 1434.847788][ T5856] ocfs2: Unmounting device (7,3) on (node local) [ 1435.015244][ T2015] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12331'. [ 1435.588476][ T2037] loop3: detected capacity change from 0 to 16 [ 1435.632275][ T2037] erofs (device loop3): mounted with root inode @ nid 36. [ 1435.679357][ T2037] erofs (device loop3): readahead error at folio 2 @ nid 89 [ 1435.698036][ T2037] erofs (device loop3): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1435.724669][ T2037] erofs (device loop3): readahead error at folio 1 @ nid 89 [ 1435.751001][ T2037] erofs (device loop3): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1435.786404][ T2037] erofs (device loop3): readahead error at folio 0 @ nid 89 [ 1435.815664][ T2037] erofs (device loop3): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1435.850990][ T2037] erofs (device loop3): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1435.877175][ T2037] erofs (device loop3): read error -117 @ 0 of nid 89 [ 1435.916477][ T30] audit: type=1800 audit(1650.437:242): pid=2037 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.12328" name="file2" dev="loop3" ino=89 res=0 errno=0 [ 1436.150118][ T6067] usb 3-1: new high-speed USB device number 92 using dummy_hcd [ 1436.363796][ T6067] usb 3-1: Using ep0 maxpacket: 16 [ 1436.381853][ T6067] usb 3-1: config 0 has an invalid interface number: 251 but max is 0 [ 1436.422180][ T6067] usb 3-1: config 0 has no interface number 0 [ 1436.445073][ T2065] block nbd4: NBD_DISCONNECT [ 1436.445725][ T6067] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 1436.493436][ T6067] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 1436.523092][ T6067] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 1436.541773][ T6067] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1436.567224][ T6067] usb 3-1: Product: syz [ 1436.577352][ T1743] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 1436.582140][ T6067] usb 3-1: Manufacturer: syz [ 1436.608160][ T6067] usb 3-1: SerialNumber: syz [ 1436.648954][ T6067] usb 3-1: config 0 descriptor?? [ 1436.671115][ T2048] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1436.708628][ T2048] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1436.720595][ T2041] loop0: detected capacity change from 0 to 32768 [ 1436.755516][ T2041] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.12342 (2041) [ 1436.769679][ T1743] usb 4-1: Using ep0 maxpacket: 8 [ 1436.792917][ T1743] usb 4-1: config 162 has an invalid interface number: 218 but max is 1 [ 1436.816324][ T2041] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1436.834734][ T2041] BTRFS info (device loop0): using sha256 checksum algorithm [ 1436.840460][ T1743] usb 4-1: config 162 has an invalid descriptor of length 0, skipping remainder of the config [ 1436.892194][ T1743] usb 4-1: config 162 has 1 interface, different from the descriptor's value: 2 [ 1436.931035][ T1743] usb 4-1: config 162 has no interface number 0 [ 1436.979616][ T1743] usb 4-1: config 162 interface 218 has no altsetting 0 [ 1436.998704][ T1743] usb 4-1: New USB device found, idVendor=0c10, idProduct=0000, bcdDevice=95.a7 [ 1437.008166][ T1743] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1437.016624][ T2048] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1437.016813][ T2048] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1437.024684][ T1743] usb 4-1: Product: syz [ 1437.035488][ T1743] usb 4-1: Manufacturer: syz [ 1437.040642][ T1743] usb 4-1: SerialNumber: syz [ 1437.055994][ T2041] BTRFS info (device loop0): enabling ssd optimizations [ 1437.093339][ T2090] bridge5: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 1437.109175][ T2041] BTRFS info (device loop0): turning on async discard [ 1437.129600][ T2041] BTRFS info (device loop0): enabling free space tree [ 1437.197187][T30488] usb 6-1: new full-speed USB device number 83 using dummy_hcd [ 1437.355414][ T6067] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1437.377143][T30470] usb 4-1: USB disconnect, device number 54 [ 1437.394085][ T6067] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 1437.405032][ T5840] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1437.411093][T30488] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1437.442380][ T6067] asix 3-1:0.251: probe with driver asix failed with error -5 [ 1437.478177][T30488] usb 6-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e [ 1437.507155][T30488] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1437.524128][ T6067] usb 3-1: USB disconnect, device number 92 [ 1437.544838][T30488] usb 6-1: Product: syz [ 1437.559014][T30488] usb 6-1: Manufacturer: syz [ 1437.574908][T30488] usb 6-1: SerialNumber: syz [ 1437.653629][T30488] usb 6-1: config 0 descriptor?? [ 1437.683718][T30488] streamzap 6-1:0.0: streamzap_probe: endpoint doesn't match input device 0203 [ 1437.979512][T30488] usb 6-1: USB disconnect, device number 83 [ 1438.275632][ T2118] team0: entered promiscuous mode [ 1438.435970][ T2122] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12375'. [ 1438.475546][ T2124] netlink: 'syz.1.12374': attribute type 39 has an invalid length. [ 1439.120690][T30488] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 1439.302295][T30488] usb 4-1: Using ep0 maxpacket: 16 [ 1439.324207][T30488] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 1439.338502][T30488] usb 4-1: config 0 has no interface number 0 [ 1439.349292][ T2155] openvswitch: netlink: Key type 31 is not supported [ 1439.367454][T30488] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 1439.390260][T30488] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1439.416447][T30488] usb 4-1: Product: syz [ 1439.432167][T30488] usb 4-1: Manufacturer: syz [ 1439.447935][T30488] usb 4-1: SerialNumber: syz [ 1439.499866][T30488] usb 4-1: config 0 descriptor?? [ 1439.519693][ T2160] loop2: detected capacity change from 0 to 256 [ 1439.523451][T30488] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 1439.662196][ T2160] FAT-fs (loop2): Directory bread(block 64) failed [ 1439.688967][ T2160] FAT-fs (loop2): Directory bread(block 65) failed [ 1439.711561][ T2160] FAT-fs (loop2): Directory bread(block 66) failed [ 1439.738505][ T2160] FAT-fs (loop2): Directory bread(block 67) failed [ 1439.750835][ T2160] FAT-fs (loop2): Directory bread(block 68) failed [ 1439.792455][ T2160] FAT-fs (loop2): Directory bread(block 69) failed [ 1439.828756][ T2160] FAT-fs (loop2): Directory bread(block 70) failed [ 1439.855103][ T2160] FAT-fs (loop2): Directory bread(block 71) failed [ 1439.870684][ T2160] FAT-fs (loop2): Directory bread(block 72) failed [ 1439.885682][ T2160] FAT-fs (loop2): Directory bread(block 73) failed [ 1439.961040][T30488] gspca_spca1528: reg_w err -71 [ 1440.000877][T30488] spca1528 4-1:0.1: probe with driver spca1528 failed with error -71 [ 1440.013679][ T2160] syz.2.12393: attempt to access beyond end of device [ 1440.013679][ T2160] loop2: rw=2051, sector=1224, nr_sectors = 32 limit=256 [ 1440.082102][T30488] usb 4-1: USB disconnect, device number 55 [ 1440.247283][ T2180] loop4: detected capacity change from 0 to 764 [ 1440.300688][ T2180] Symlink component flag not implemented [ 1440.324238][ T2180] Symlink component flag not implemented [ 1440.348287][ T2180] Symlink component flag not implemented (128) [ 1440.371530][ T2180] Symlink component flag not implemented (105) [ 1440.443886][ T2185] loop2: detected capacity change from 0 to 256 [ 1440.562379][ T2185] FAT-fs (loop2): Directory bread(block 64) failed [ 1440.589622][ T2185] FAT-fs (loop2): Directory bread(block 65) failed [ 1440.621945][ T2185] FAT-fs (loop2): Directory bread(block 66) failed [ 1440.656857][ T2185] FAT-fs (loop2): Directory bread(block 67) failed [ 1440.699034][ T2185] FAT-fs (loop2): Directory bread(block 68) failed [ 1440.740360][ T2185] FAT-fs (loop2): Directory bread(block 69) failed [ 1440.774374][ T2185] FAT-fs (loop2): Directory bread(block 70) failed [ 1440.806450][ T2185] FAT-fs (loop2): Directory bread(block 71) failed [ 1440.837593][ T2185] FAT-fs (loop2): Directory bread(block 72) failed [ 1440.861350][ T2185] FAT-fs (loop2): Directory bread(block 73) failed [ 1441.017353][ T2195] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=none,decodes=io+mem:owns=io+mem [ 1441.278486][ T2176] loop0: detected capacity change from 0 to 32768 [ 1441.480427][ T2204] openvswitch: netlink: Flow key attr not present in new flow. [ 1441.489580][ T2205] loop3: detected capacity change from 0 to 256 [ 1441.603381][ T2205] FAT-fs (loop3): Directory bread(block 64) failed [ 1441.632402][ T2205] FAT-fs (loop3): Directory bread(block 65) failed [ 1441.658777][ T2205] FAT-fs (loop3): Directory bread(block 66) failed [ 1441.708769][ T2205] FAT-fs (loop3): Directory bread(block 67) failed [ 1441.739903][ T2205] FAT-fs (loop3): Directory bread(block 68) failed [ 1441.766704][ T2205] FAT-fs (loop3): Directory bread(block 69) failed [ 1441.803964][ T2205] FAT-fs (loop3): Directory bread(block 70) failed [ 1441.836671][ T2205] FAT-fs (loop3): Directory bread(block 71) failed [ 1441.870822][ T2205] FAT-fs (loop3): Directory bread(block 72) failed [ 1441.892845][ T2212] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12418'. [ 1441.906576][ T2205] FAT-fs (loop3): Directory bread(block 73) failed [ 1442.036885][ T2187] loop1: detected capacity change from 0 to 32768 [ 1442.585195][ T30] audit: type=1326 audit(1656.688:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2224 comm="syz.0.12426" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1442.714522][ T30] audit: type=1326 audit(1656.688:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2224 comm="syz.0.12426" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1442.834346][ T30] audit: type=1326 audit(1656.716:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2224 comm="syz.0.12426" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1442.964998][ T30] audit: type=1326 audit(1656.716:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2224 comm="syz.0.12426" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3ba899ce59 code=0x7ffc0000 [ 1443.174927][ T2209] loop4: detected capacity change from 0 to 32768 [ 1443.223399][ T2241] loop2: detected capacity change from 0 to 512 [ 1443.233004][ T2209] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.12417 (2209) [ 1443.252712][ T2241] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1443.316819][ T2209] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1443.359297][ T2209] BTRFS info (device loop4): using sha256 checksum algorithm [ 1443.391326][ T2241] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003) [ 1443.578541][ T2209] BTRFS info (device loop4): enabling ssd optimizations [ 1443.618997][ T2209] BTRFS info (device loop4): turning on async discard [ 1443.661081][ T2265] openvswitch: netlink: Unexpected mask (mask=40040, allowed=10048) [ 1443.683181][ T2209] BTRFS info (device loop4): enabling free space tree [ 1443.778660][ T2269] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1443.979861][ T30] audit: type=1326 audit(1657.989:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2275 comm="syz.2.12443" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1444.007477][ T5859] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1444.105932][ T30] audit: type=1326 audit(1657.989:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2275 comm="syz.2.12443" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1444.121723][ T1743] usb 1-1: new full-speed USB device number 83 using dummy_hcd [ 1444.188139][ T30] audit: type=1326 audit(1657.989:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2275 comm="syz.2.12443" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1444.273561][ T30] audit: type=1326 audit(1657.989:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2275 comm="syz.2.12443" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1444.413254][ T30] audit: type=1326 audit(1657.998:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2275 comm="syz.2.12443" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1444.414908][ T1743] usb 1-1: config 0 has an invalid interface number: 175 but max is 0 [ 1444.560412][ T1743] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1444.605990][ T1743] usb 1-1: config 0 has no interface number 0 [ 1444.640683][ T1743] usb 1-1: config 0 interface 175 altsetting 0 has an endpoint descriptor with address 0xBC, changing to 0x8C [ 1444.704576][ T1743] usb 1-1: config 0 interface 175 altsetting 0 endpoint 0x8C has an invalid bInterval 0, changing to 10 [ 1444.766129][ T1743] usb 1-1: config 0 interface 175 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0 [ 1444.803071][ T1743] usb 1-1: config 0 interface 175 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 16 [ 1444.872700][ T1743] usb 1-1: New USB device found, idVendor=05e0, idProduct=0600, bcdDevice=f9.9b [ 1444.892789][ T1743] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1444.931756][ T1743] usb 1-1: Product: syz [ 1444.949268][ T1743] usb 1-1: Manufacturer: syz [ 1444.956774][ T2294] loop2: detected capacity change from 0 to 4096 [ 1444.969235][ T1743] usb 1-1: SerialNumber: syz [ 1445.013408][ T2294] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 1445.033766][ T1743] usb 1-1: config 0 descriptor?? [ 1445.061094][ T1743] symbolserial 1-1:0.175: symbol converter detected [ 1445.072876][T30488] usb 2-1: new high-speed USB device number 86 using dummy_hcd [ 1445.111336][ T1743] usb 1-1: symbol converter now attached to ttyUSB0 [ 1445.136410][ T2294] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 1445.152664][ T2306] netlink: 16 bytes leftover after parsing attributes in process `syz.3.12457'. [ 1445.276893][T30488] usb 2-1: Using ep0 maxpacket: 32 [ 1445.338924][T30488] usb 2-1: config 4 has an invalid interface number: 202 but max is 2 [ 1445.371197][T30488] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1445.424356][T30488] usb 2-1: config 4 has 1 interface, different from the descriptor's value: 3 [ 1445.473754][T30488] usb 2-1: config 4 has no interface number 0 [ 1445.516852][ T1743] usb 1-1: USB disconnect, device number 83 [ 1445.537254][T30488] usb 2-1: too many endpoints for config 4 interface 202 altsetting 31: 115, using maximum allowed: 30 [ 1445.592114][ T1743] symbol ttyUSB0: symbol converter now disconnected from ttyUSB0 [ 1445.613776][T30488] usb 2-1: config 4 interface 202 altsetting 31 has 0 endpoint descriptors, different from the interface descriptor's value: 115 [ 1445.619387][ T1743] symbolserial 1-1:0.175: device disconnected [ 1445.674533][T30488] usb 2-1: config 4 interface 202 has no altsetting 0 [ 1445.712883][T30488] usb 2-1: New USB device found, idVendor=0abf, idProduct=3370, bcdDevice=9a.c8 [ 1445.740602][T30488] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1445.769447][T30488] usb 2-1: Product: syz [ 1445.784215][T30488] usb 2-1: Manufacturer: syz [ 1445.799441][T30488] usb 2-1: SerialNumber: syz [ 1445.837448][ T2318] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12463'. [ 1445.873035][ T2318] netlink: 31 bytes leftover after parsing attributes in process `syz.3.12463'. [ 1445.904260][ T2318] netlink: 'syz.3.12463': attribute type 3 has an invalid length. [ 1445.929522][ T2318] netlink: 'syz.3.12463': attribute type 2 has an invalid length. [ 1445.953718][ T2318] netlink: 31 bytes leftover after parsing attributes in process `syz.3.12463'. [ 1446.122764][T30488] usb 2-1: USB disconnect, device number 86 [ 1446.403448][ T2309] loop5: detected capacity change from 0 to 32768 [ 1446.429667][ T2309] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.12459 (2309) [ 1446.500741][ T2309] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1446.525739][ T2332] netlink: 4456 bytes leftover after parsing attributes in process `syz.3.12470'. [ 1446.545200][ T2309] BTRFS info (device loop5): using sha256 checksum algorithm [ 1446.561890][ T2333] netlink: 'syz.2.12469': attribute type 5 has an invalid length. [ 1446.684916][ T2349] loop2: detected capacity change from 0 to 64 [ 1446.746414][ T2309] BTRFS info (device loop5): enabling ssd optimizations [ 1446.774222][ T2309] BTRFS info (device loop5): turning on async discard [ 1446.781358][ T2309] BTRFS info (device loop5): enabling free space tree [ 1446.906112][ T5854] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1447.522050][ T2375] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1447.963274][ T2391] loop3: detected capacity change from 0 to 256 [ 1448.022641][ T2391] FAT-fs (loop3): Directory bread(block 64) failed [ 1448.075752][ T2391] FAT-fs (loop3): Directory bread(block 65) failed [ 1448.094333][ T2395] netlink: 29868 bytes leftover after parsing attributes in process `syz.0.12493'. [ 1448.096215][ T2391] FAT-fs (loop3): Directory bread(block 66) failed [ 1448.124234][ T2397] netlink: 8 bytes leftover after parsing attributes in process `syz.4.12494'. [ 1448.177307][ T2391] FAT-fs (loop3): Directory bread(block 67) failed [ 1448.225528][ T2391] FAT-fs (loop3): Directory bread(block 68) failed [ 1448.254005][ T2391] FAT-fs (loop3): Directory bread(block 69) failed [ 1448.304133][ T2391] FAT-fs (loop3): Directory bread(block 70) failed [ 1448.327400][ T2391] FAT-fs (loop3): Directory bread(block 71) failed [ 1448.350103][ T2391] FAT-fs (loop3): Directory bread(block 72) failed [ 1448.410927][ T2391] FAT-fs (loop3): Directory bread(block 73) failed [ 1448.625815][ T2407] usb usb9: usbfs: process 2407 (syz.2.12500) did not claim interface 0 before use [ 1448.881625][ T2416] loop0: detected capacity change from 0 to 512 [ 1448.910968][ T2416] EXT4-fs (loop0): blocks per group (8192) and clusters per group (2304) inconsistent [ 1449.307726][ T2387] loop1: detected capacity change from 0 to 32768 [ 1449.593184][ T1743] usb 6-1: new high-speed USB device number 84 using dummy_hcd [ 1449.625006][T30484] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 1449.766013][ T1743] usb 6-1: Using ep0 maxpacket: 32 [ 1449.792279][ T1743] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 255, changing to 7 [ 1449.803548][T30484] usb 4-1: Using ep0 maxpacket: 8 [ 1449.830234][T30484] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 1449.856491][ T1743] usb 6-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 1449.869547][T30484] usb 4-1: config 0 has no interface number 0 [ 1449.895296][T30484] usb 4-1: config 0 interface 1 has no altsetting 0 [ 1449.903891][ T1743] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1449.921619][T30484] usb 4-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 1449.936488][ T1743] usb 6-1: Product: syz [ 1449.947747][ T1743] usb 6-1: Manufacturer: syz [ 1449.955459][T30484] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1449.970440][ T1743] usb 6-1: SerialNumber: syz [ 1449.986492][T30484] usb 4-1: Product: syz [ 1450.006418][T30484] usb 4-1: Manufacturer: syz [ 1450.021411][ T1743] usb 6-1: Audio class v2/v3 interfaces need an interface association [ 1450.033026][T30484] usb 4-1: SerialNumber: syz [ 1450.059243][T30484] usb 4-1: config 0 descriptor?? [ 1450.302732][ T1743] snd-usb-audio 6-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 1450.338047][T30484] i2c-cp2615 4-1:0.1: probe with driver i2c-cp2615 failed with error -22 [ 1450.588649][ T1743] usb 6-1: us122l: couldn't allocate write buffer [ 1450.622077][ T1743] snd-usb-us122l 6-1:1.1: probe with driver snd-usb-us122l failed with error -22 [ 1450.642134][T30484] usb 4-1: USB disconnect, device number 56 [ 1450.691602][ T1743] usb 6-1: USB disconnect, device number 84 [ 1450.787359][ T6255] udevd[6255]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1450.923693][ T2489] QAT: failed to copy from user cfg_data. [ 1451.058660][ T2494] netdevsim netdevsim2: Firmware load for '..' refused, path contains '..' component [ 1451.160806][ T2499] overlayfs: conflicting options: userxattr,metacopy=on [ 1451.658549][ T2520] SET target dimension over the limit! [ 1452.299769][ T2551] loop4: detected capacity change from 0 to 2048 [ 1452.355149][ T2561] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1452.942221][ T2584] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12569'. [ 1452.961843][T30484] usb 3-1: new full-speed USB device number 93 using dummy_hcd [ 1453.145704][T30484] usb 3-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 1453.180711][T30484] usb 3-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 1453.212123][T30484] usb 3-1: Product: syz [ 1453.231626][T30484] usb 3-1: Manufacturer: syz [ 1453.260184][T30484] usb 3-1: SerialNumber: syz [ 1453.311216][T30484] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 1453.627960][ T2613] netlink: 'syz.4.12579': attribute type 2 has an invalid length. [ 1453.684103][ T2613] netlink: 224 bytes leftover after parsing attributes in process `syz.4.12579'. [ 1453.760287][T30484] vp7045: USB control message 'in' went wrong. [ 1453.782102][T30484] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1453.829809][T30484] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 1453.884232][T30484] usb 3-1: USB disconnect, device number 93 [ 1453.905879][ T2625] loop1: detected capacity change from 0 to 64 [ 1455.159776][ T2677] loop0: detected capacity change from 0 to 256 [ 1455.311598][ T2677] FAT-fs (loop0): Directory bread(block 64) failed [ 1455.342297][ T2677] FAT-fs (loop0): Directory bread(block 65) failed [ 1455.370949][ T2677] FAT-fs (loop0): Directory bread(block 66) failed [ 1455.409688][ T2677] FAT-fs (loop0): Directory bread(block 67) failed [ 1455.436626][ T2692] loop1: detected capacity change from 0 to 16 [ 1455.451310][ T2677] FAT-fs (loop0): Directory bread(block 68) failed [ 1455.474469][ T2692] erofs (device loop1): mounted with root inode @ nid 36. [ 1455.485482][ T2677] FAT-fs (loop0): Directory bread(block 69) failed [ 1455.511733][ T2677] FAT-fs (loop0): Directory bread(block 70) failed [ 1455.524613][ T2692] erofs (device loop1): xattr_isize 12 of nid 86 is not supported yet [ 1455.555122][ T2677] FAT-fs (loop0): Directory bread(block 71) failed [ 1455.587511][ T2677] FAT-fs (loop0): Directory bread(block 72) failed [ 1455.613007][ T2677] FAT-fs (loop0): Directory bread(block 73) failed [ 1455.676088][ T2697] loop3: detected capacity change from 0 to 2048 [ 1455.761329][ T2707] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1455.767504][ T2706] netlink: 24 bytes leftover after parsing attributes in process `syz.4.12615'. [ 1455.963053][ T2709] openvswitch: netlink: Missing valid actions attribute. [ 1456.001175][ T2709] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1456.300747][ T2720] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1456.912244][ T2743] netlink: 12 bytes leftover after parsing attributes in process `syz.1.12632'. [ 1457.373792][ T2711] loop5: detected capacity change from 0 to 32768 [ 1457.391654][ T2757] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1457.467711][ T2711] jfs_strtoUCS: char2uni returned -22. [ 1457.495758][ T2711] charset = utf8, char = 0xc5 [ 1457.799167][ T2734] loop3: detected capacity change from 0 to 32768 [ 1457.827233][ T2734] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.12626 (2734) [ 1457.898098][ T2734] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1457.935889][ T2773] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 1457.948095][ T2734] BTRFS info (device loop3): using sha256 checksum algorithm [ 1458.145306][ T2734] BTRFS info (device loop3): enabling ssd optimizations [ 1458.179920][ T2797] netlink: 104 bytes leftover after parsing attributes in process `syz.1.12647'. [ 1458.186197][ T2734] BTRFS info (device loop3): turning on async discard [ 1458.211957][ T2734] BTRFS info (device loop3): enabling free space tree [ 1458.507807][ T5856] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1458.616941][ T2802] loop2: detected capacity change from 0 to 4096 [ 1458.734174][ T2811] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1458.798962][ T2802] NILFS error (device loop2): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0 [ 1459.004473][ T2802] Remounting filesystem read-only [ 1459.141945][ T2821] netlink: 'syz.3.12653': attribute type 1 has an invalid length. [ 1459.297118][ T2823] loop0: detected capacity change from 0 to 2048 [ 1459.417810][ T2837] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1459.548746][ T2841] netlink: 88 bytes leftover after parsing attributes in process `syz.2.12661'. [ 1459.598490][ T2844] loop1: detected capacity change from 0 to 256 [ 1459.712862][ T2844] FAT-fs (loop1): Directory bread(block 64) failed [ 1459.751014][ T2844] FAT-fs (loop1): Directory bread(block 65) failed [ 1459.782902][ T2844] FAT-fs (loop1): Directory bread(block 66) failed [ 1459.819453][ T2844] FAT-fs (loop1): Directory bread(block 67) failed [ 1459.868046][ T2844] FAT-fs (loop1): Directory bread(block 68) failed [ 1459.901030][ T2844] FAT-fs (loop1): Directory bread(block 69) failed [ 1459.966599][ T2844] FAT-fs (loop1): Directory bread(block 70) failed [ 1460.019979][ T2844] FAT-fs (loop1): Directory bread(block 71) failed [ 1460.062833][ T2844] FAT-fs (loop1): Directory bread(block 72) failed [ 1460.090315][ T2858] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12669'. [ 1460.107678][ T2844] FAT-fs (loop1): Directory bread(block 73) failed [ 1460.287305][ T2865] loop5: detected capacity change from 0 to 512 [ 1460.349962][ T2865] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1460.413308][ T2873] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12672'. [ 1460.522253][ T2865] EXT4-fs error (device loop5): ext4_find_dest_de:2049: inode #2: block 6: comm syz.5.12670: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2, rec_len=8, size=4096 fake=1 [ 1460.873755][ T5854] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1460.879117][ T2888] loop0: detected capacity change from 0 to 256 [ 1461.043278][ T2888] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011ded, chksum : 0xa21f83b3, utbl_chksum : 0xe619d30d) [ 1461.970803][ T2924] loop3: detected capacity change from 0 to 512 [ 1462.043337][ T2924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1462.073604][ T2924] EXT4-fs error (device loop3): ext4_find_dest_de:2049: inode #2: block 6: comm syz.3.12693: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2, rec_len=8, size=4096 fake=1 [ 1462.178308][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1462.407442][ T2928] loop0: detected capacity change from 0 to 4096 [ 1462.443946][ T2928] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1462.521558][ T2928] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1462.558037][ T2928] ntfs3(loop0): ino=19, mi_enum_attr [ 1462.903405][ T2909] loop1: detected capacity change from 0 to 32768 [ 1462.944882][ T2942] netlink: 28 bytes leftover after parsing attributes in process `syz.4.12701'. [ 1463.001475][ T2909] jfs_strtoUCS: char2uni returned -22. [ 1463.046806][ T2909] charset = utf8, char = 0xc5 [ 1463.124414][ T2947] loop2: detected capacity change from 0 to 512 [ 1463.270326][ T2953] netlink: 76 bytes leftover after parsing attributes in process `syz.3.12705'. [ 1463.297469][ T2953] netlink: 76 bytes leftover after parsing attributes in process `syz.3.12705'. [ 1463.324497][T30484] usb 1-1: new high-speed USB device number 84 using dummy_hcd [ 1463.341933][ T2947] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1463.500270][T30484] usb 1-1: config 0 has an invalid interface number: 69 but max is 0 [ 1463.543581][T30484] usb 1-1: config 0 has no interface number 0 [ 1463.575627][T30484] usb 1-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 1463.615233][T30484] usb 1-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1463.674404][T30484] usb 1-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 1463.717983][T30484] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1463.760361][T30484] usb 1-1: Product: syz [ 1463.780695][T30484] usb 1-1: Manufacturer: syz [ 1463.810897][T30484] usb 1-1: SerialNumber: syz [ 1463.842038][T30484] usb 1-1: config 0 descriptor?? [ 1463.856253][ T2965] loop1: detected capacity change from 0 to 512 [ 1463.880795][ T2948] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1463.914544][T30484] cyberjack 1-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 1463.967668][ T2965] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1463.987690][T30484] usb 1-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 1464.114033][ T2947] EXT4-fs error (device loop2): __ext4_add_entry:2412: inode #12: comm syz.2.12703: Directory hole found for htree leaf block 0 [ 1464.128345][ T2965] EXT4-fs error (device loop1): ext4_find_dest_de:2049: inode #2: block 6: comm syz.1.12709: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2, rec_len=8, size=4096 fake=1 [ 1464.309908][ C1] cyberjack ttyUSB0: cyberjack_read_int_callback - failed resubmitting read urb, error -22 [ 1464.402362][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1464.530364][ T2978] loop3: detected capacity change from 0 to 8 [ 1464.548912][T30484] usb 1-1: USB disconnect, device number 84 [ 1464.567019][T30484] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 1464.579936][ T2978] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1464.613087][T30484] cyberjack 1-1:0.69: device disconnected [ 1464.648715][ T2978] cramfs: Error -3 while decompressing! [ 1464.656202][ T5849] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1464.677944][ T2978] cramfs: ffffffff9b27f888(18)->ffff88804fa33000(4096) [ 1464.705970][ T2978] cramfs: Error -3 while decompressing! [ 1464.717617][ T6793] udevd[6793]: incorrect cramfs checksum on /dev/loop3 [ 1464.757472][ T2978] cramfs: ffffffff9b27f888(18)->ffff88804fa33000(4096) [ 1464.813453][ T6761] udevd[6761]: incorrect cramfs checksum on /dev/loop3 [ 1465.720234][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 1465.724102][ T3006] No such timeout policy "syz0" [ 1465.964584][ T3014] loop5: detected capacity change from 0 to 256 [ 1466.043120][ T3014] FAT-fs (loop5): Directory bread(block 64) failed [ 1466.068447][ T3014] FAT-fs (loop5): Directory bread(block 65) failed [ 1466.098049][ T3014] FAT-fs (loop5): Directory bread(block 66) failed [ 1466.118443][ T3014] FAT-fs (loop5): Directory bread(block 67) failed [ 1466.143557][ T3014] FAT-fs (loop5): Directory bread(block 68) failed [ 1466.169807][ T3014] FAT-fs (loop5): Directory bread(block 69) failed [ 1466.197323][ T3014] FAT-fs (loop5): Directory bread(block 70) failed [ 1466.227533][ T3014] FAT-fs (loop5): Directory bread(block 71) failed [ 1466.263982][ T3014] FAT-fs (loop5): Directory bread(block 72) failed [ 1466.295227][ T2988] loop1: detected capacity change from 0 to 32768 [ 1466.305111][ T3014] FAT-fs (loop5): Directory bread(block 73) failed [ 1466.384194][ T3023] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12740'. [ 1467.378383][ T3048] loop3: detected capacity change from 0 to 1764 [ 1467.405757][ T3055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12755'. [ 1467.807429][ T3069] netlink: 'syz.5.12763': attribute type 8 has an invalid length. [ 1467.995907][ T3067] loop1: detected capacity change from 0 to 4096 [ 1468.038673][ T3067] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1468.192319][ T3067] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1468.208621][T30488] usb 3-1: new high-speed USB device number 94 using dummy_hcd [ 1468.244953][ T3067] ntfs3(loop1): ino=19, mi_enum_attr [ 1468.314730][ T3082] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12768'. [ 1468.365933][ T3082] netlink: 348 bytes leftover after parsing attributes in process `syz.0.12768'. [ 1468.395980][ T3082] netlink: 16 bytes leftover after parsing attributes in process `syz.0.12768'. [ 1468.436195][T30488] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1468.453763][ T3082] netlink: 348 bytes leftover after parsing attributes in process `syz.0.12768'. [ 1468.488960][T30488] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1468.523795][T30488] usb 3-1: Product: syz [ 1468.545219][T30488] usb 3-1: Manufacturer: syz [ 1468.567288][T30488] usb 3-1: SerialNumber: syz [ 1468.605640][T30488] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1468.624063][ T3087] loop3: detected capacity change from 0 to 256 [ 1468.658915][ T5973] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1468.702902][ T3089] loop4: detected capacity change from 0 to 64 [ 1468.856853][ T3089] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. Mounting read-only. [ 1468.891420][ T3094] loop1: detected capacity change from 0 to 1764 [ 1469.037395][ T3089] hfs: filesystem is marked locked, mounting read-only. [ 1469.289323][ T1743] usb 3-1: USB disconnect, device number 94 [ 1469.811493][ T5973] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1469.849647][ T5973] ath9k_htc: Failed to initialize the device [ 1469.883051][ T1743] usb 3-1: ath9k_htc: USB layer deinitialized [ 1470.111584][ T3124] loop1: detected capacity change from 0 to 256 [ 1470.454876][ T3132] loop2: detected capacity change from 0 to 1764 [ 1470.490290][ T3136] loop1: detected capacity change from 0 to 512 [ 1470.612889][ T3136] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1470.700153][ T3144] netlink: del zone limit has 4 unknown bytes [ 1470.891536][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1471.645737][ T3167] loop2: detected capacity change from 0 to 2048 [ 1471.679244][ T3167] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1471.795354][ T3167] syz.2.12809: attempt to access beyond end of device [ 1471.795354][ T3167] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1471.809832][ T3171] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1471.942297][ T3167] syz.2.12809: attempt to access beyond end of device [ 1471.942297][ T3167] loop2: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 1472.005962][ T3167] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=0) [ 1472.484881][ T3156] loop1: detected capacity change from 0 to 32768 [ 1472.544721][ T3156] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1472.654660][ T3156] XFS (loop1): Ending clean mount [ 1472.730144][ T3216] loop2: detected capacity change from 0 to 256 [ 1472.937730][ T3128] loop4: detected capacity change from 0 to 32768 [ 1473.174032][ T3228] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12827'. [ 1473.293445][ T5839] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1473.576936][ T3235] CIFS mount error: No usable UNC path provided in device string! [ 1473.576936][ T3235] [ 1473.637396][ T3235] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1473.667427][ T3237] loop5: detected capacity change from 0 to 512 [ 1473.725655][ T3237] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1474.129946][ T5854] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1474.340880][ T3250] netlink: 60 bytes leftover after parsing attributes in process `syz.1.12829'. [ 1474.373958][ T1743] usb 3-1: new full-speed USB device number 95 using dummy_hcd [ 1474.554550][ T1743] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1474.590154][ T1743] usb 3-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=af.55 [ 1474.615668][ T1743] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1474.645850][ T1743] usb 3-1: Product: syz [ 1474.661628][ T1743] usb 3-1: Manufacturer: syz [ 1474.693803][ T1743] usb 3-1: SerialNumber: syz [ 1474.710253][ T1743] usb 3-1: config 0 descriptor?? [ 1474.979208][ T1743] cdc_subset 3-1:0.0: probe with driver cdc_subset failed with error -22 [ 1475.250410][ T1743] usb 3-1: USB disconnect, device number 95 [ 1475.294356][ T3279] loop4: detected capacity change from 0 to 1764 [ 1475.384367][ T3285] netlink: 12 bytes leftover after parsing attributes in process `syz.5.12853'. [ 1475.675090][ T3289] loop0: detected capacity change from 0 to 1764 [ 1476.130760][ T3304] netlink: 'syz.2.12862': attribute type 1 has an invalid length. [ 1476.306516][ T3310] openvswitch: netlink: IP tunnel dst address not specified [ 1476.386992][ T3312] netlink: 248 bytes leftover after parsing attributes in process `syz.0.12866'. [ 1477.143205][ T3339] loop5: detected capacity change from 0 to 16 [ 1477.188947][ T3339] erofs (device loop5): dirblkbits 7 isn't supported [ 1477.220441][ T3337] loop3: detected capacity change from 0 to 2048 [ 1477.260439][ T3337] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1477.887444][ T3359] loop2: detected capacity change from 0 to 256 [ 1477.934962][ T3359] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xf17e4aaa, utbl_chksum : 0xe619d30d) [ 1477.955486][ T3363] xt_hashlimit: Unknown mode mask C4, kernel too old? [ 1477.982541][ T3359] exFAT-fs (loop2): failed to test first cluster bit of root dir(5) [ 1478.014456][ T3365] Cannot find del_set index 3 as target [ 1478.413639][ T3377] netlink: 60 bytes leftover after parsing attributes in process `syz.2.12898'. [ 1479.052172][ T3397] overlay: Bad value for 'workdir' [ 1479.730981][ T3413] loop4: detected capacity change from 0 to 4096 [ 1479.764928][ T3413] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 1479.842988][ T3413] ntfs3(loop4): ino=1a, mi_enum_attr [ 1479.868181][ T3413] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1480.300413][ T3432] netlink: 16 bytes leftover after parsing attributes in process `syz.1.12924'. [ 1481.001305][ T3453] loop4: detected capacity change from 0 to 256 [ 1481.265441][ T3453] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001) [ 1481.620363][ T3472] Device name not specified. [ 1481.620363][ T3472] [ 1481.899471][ T3481] loop5: detected capacity change from 0 to 24 [ 1481.929541][ T3481] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 1481.972194][ T3481] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1482.179970][ T3483] loop3: detected capacity change from 0 to 4096 [ 1482.356432][ T3483] ntfs3(loop3): ino=18, mi_enum_attr [ 1482.371525][ T3483] ntfs3(loop3): ino=1a, mi_enum_attr [ 1482.486460][ T3483] ntfs3(loop3): ino=5, "/" indx_read_ra [ 1483.512038][ T3521] loop3: detected capacity change from 0 to 8 [ 1484.429524][T30484] usb 5-1: new high-speed USB device number 75 using dummy_hcd [ 1484.632496][T30484] usb 5-1: Using ep0 maxpacket: 16 [ 1484.654067][T30484] usb 5-1: config 0 has an invalid interface number: 132 but max is 0 [ 1484.677991][T30484] usb 5-1: config 0 has no interface number 0 [ 1484.702916][T30484] usb 5-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 1484.729967][T30484] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1484.770579][T30484] usb 5-1: Product: syz [ 1484.785882][T30484] usb 5-1: Manufacturer: syz [ 1484.801400][T30484] usb 5-1: SerialNumber: syz [ 1484.828272][T30484] usb 5-1: config 0 descriptor?? [ 1484.858995][T30484] hub 5-1:0.132: bad descriptor, ignoring hub [ 1484.884034][T30484] hub 5-1:0.132: probe with driver hub failed with error -5 [ 1484.892836][ T3553] loop5: detected capacity change from 0 to 4096 [ 1484.936002][T30484] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.132/input/input103 [ 1484.982534][ T3560] loop3: detected capacity change from 0 to 512 [ 1485.012602][ T3560] EXT4-fs: Ignoring removed mblk_io_submit option [ 1485.053307][ T3560] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=885ec129, mo2=0006] [ 1485.105485][ T3560] EXT4-fs error (device loop3): ext4_read_inode_bitmap:138: comm syz.3.12987: Invalid inode bitmap blk 4 in block_group 0 [ 1485.241686][ T3560] loop3: lost filesystem error report for type 5 error -117 [ 1485.246629][ T3560] EXT4-fs (loop3): Remounting filesystem read-only [ 1485.254124][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 1485.254164][ C1] EXT4-fs (loop3): initial error at time 1696: ext4_read_inode_bitmap:138 [ 1485.254210][ C1] EXT4-fs (loop3): last error at time 1696: ext4_read_inode_bitmap:138 [ 1485.384716][ T3560] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1485.745196][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1487.975380][ T3637] netlink: 16 bytes leftover after parsing attributes in process `syz.0.13022'. [ 1488.574755][ T3658] loop2: detected capacity change from 0 to 256 [ 1488.594763][ T3658] exfat: Deprecated parameter 'utf8' [ 1488.616306][ T3658] exfat: Deprecated parameter 'namecase' [ 1488.637304][ T3658] exfat: Deprecated parameter 'namecase' [ 1488.730718][ T3658] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 1488.748261][ T3656] loop4: detected capacity change from 0 to 4096 [ 1489.117576][ T3673] loop5: detected capacity change from 0 to 64 [ 1489.335902][ T3679] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13043'. [ 1489.427614][ T3675] loop1: detected capacity change from 0 to 4096 [ 1489.478258][ T3675] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 1489.644795][T30484] usb 5-1: USB disconnect, device number 75 [ 1489.667131][ T3675] ntfs3(loop1): ino=1a, mi_enum_attr [ 1489.687812][ T3675] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1490.121852][ T3698] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13051'. [ 1490.422189][ T3702] tc_dump_action: action bad kind [ 1490.909795][ T3718] netlink: 6032 bytes leftover after parsing attributes in process `syz.3.13061'. [ 1491.547364][ T3741] loop3: detected capacity change from 0 to 512 [ 1491.592884][ T3741] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1491.768595][ T3741] EXT4-fs error (device loop3): xattr_find_entry:337: inode #15: comm syz.3.13073: corrupted xattr entries [ 1491.803240][ T3741] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1491.807178][ T3741] EXT4-fs (loop3): Remounting filesystem read-only [ 1491.816456][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 1491.816491][ C0] EXT4-fs (loop3): initial error at time 1702: xattr_find_entry:337: inode 15 [ 1491.816549][ C0] EXT4-fs (loop3): last error at time 1702: xattr_find_entry:337: inode 15 [ 1491.930326][ T3741] EXT4-fs (loop3): 1 truncate cleaned up [ 1491.968112][ T3741] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1492.119009][ T3761] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13079'. [ 1492.215973][ T3761] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13079'. [ 1492.260612][ T3761] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13079'. [ 1492.282109][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1492.361395][ T3765] loop2: detected capacity change from 0 to 4096 [ 1492.696279][ T3778] netlink: 'syz.1.13089': attribute type 5 has an invalid length. [ 1492.772856][ T3778] ip6erspan0: entered promiscuous mode [ 1493.082432][ T3788] loop0: detected capacity change from 0 to 256 [ 1493.177864][ T3788] FAT-fs (loop0): Directory bread(block 64) failed [ 1493.198314][ T3788] FAT-fs (loop0): Directory bread(block 65) failed [ 1493.220777][ T3788] FAT-fs (loop0): Directory bread(block 66) failed [ 1493.247537][ T3788] FAT-fs (loop0): Directory bread(block 67) failed [ 1493.284560][ T3788] FAT-fs (loop0): Directory bread(block 68) failed [ 1493.315003][ T3788] FAT-fs (loop0): Directory bread(block 69) failed [ 1493.347950][ T3788] FAT-fs (loop0): Directory bread(block 70) failed [ 1493.381869][ T3788] FAT-fs (loop0): Directory bread(block 71) failed [ 1493.411403][ T3788] FAT-fs (loop0): Directory bread(block 72) failed [ 1493.435683][ T3788] FAT-fs (loop0): Directory bread(block 73) failed [ 1493.453467][ T3800] ptrace attach of "ci-upstream-kasan-badwrites-root/syz-executor exec"[5856] was attempted by "ci-upstream-kasan-badwrites-root/syz-executor exec"[3800] [ 1493.644626][ T30] audit: type=1800 audit(1704.470:252): pid=3788 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.13095" name="bus" dev="loop0" ino=1048762 res=0 errno=0 [ 1493.754394][ T3809] loop1: detected capacity change from 0 to 64 [ 1493.774362][ T3806] loop5: detected capacity change from 0 to 256 [ 1493.806774][ T3806] exfat: Deprecated parameter 'utf8' [ 1493.824102][ T3806] exfat: Deprecated parameter 'namecase' [ 1493.839531][ T3806] exfat: Deprecated parameter 'namecase' [ 1493.933210][ T3806] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 1494.216281][ T3826] x_tables: ip_tables: TCPMSS target: only valid for protocol 6 [ 1494.485502][ T3831] netlink: 4 bytes leftover after parsing attributes in process `syz.2.13115'. [ 1494.530518][ T3831] openvswitch: netlink: Message has 16 unknown bytes. [ 1494.644894][ T3835] nvme_fabrics: missing parameter 'transport=%s' [ 1494.662159][ T3835] nvme_fabrics: missing parameter 'nqn=%s' [ 1494.859531][T30484] usb 2-1: new high-speed USB device number 87 using dummy_hcd [ 1495.003493][ T3852] AppArmor: change_hat: Invalid input '' [ 1495.042345][T30484] usb 2-1: Using ep0 maxpacket: 16 [ 1495.101528][T30484] usb 2-1: config 0 has an invalid interface number: 132 but max is 0 [ 1495.110634][ T30] audit: type=1326 audit(1705.846:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3854 comm="syz.4.13127" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1495.139269][T30484] usb 2-1: config 0 has no interface number 0 [ 1495.177576][T30484] usb 2-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 1495.214923][T30484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1495.232375][ T30] audit: type=1326 audit(1705.855:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3854 comm="syz.4.13127" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1495.249456][T30484] usb 2-1: Product: syz [ 1495.306008][T30484] usb 2-1: Manufacturer: syz [ 1495.307146][ T3863] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13131'. [ 1495.337134][T30484] usb 2-1: SerialNumber: syz [ 1495.338666][ T30] audit: type=1326 audit(1705.855:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3854 comm="syz.4.13127" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1495.368648][ T3863] netlink: 24 bytes leftover after parsing attributes in process `syz.3.13131'. [ 1495.390648][T30484] usb 2-1: config 0 descriptor?? [ 1495.424824][T30484] hub 2-1:0.132: bad descriptor, ignoring hub [ 1495.460503][T30484] hub 2-1:0.132: probe with driver hub failed with error -5 [ 1495.464802][ T30] audit: type=1326 audit(1705.855:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3854 comm="syz.4.13127" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1495.497030][T30484] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.132/input/input104 [ 1495.512715][ T3867] netlink: 'syz.4.13133': attribute type 21 has an invalid length. [ 1495.569724][ T3867] netlink: 156 bytes leftover after parsing attributes in process `syz.4.13133'. [ 1495.613570][ T30] audit: type=1326 audit(1705.855:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3854 comm="syz.4.13127" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1495.902080][ T3876] loop2: detected capacity change from 0 to 4096 [ 1495.947519][ T3876] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 1496.066149][ T3876] ntfs3(loop2): ino=1a, mi_enum_attr [ 1496.089370][ T3876] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1496.172766][T30488] usb 2-1: USB disconnect, device number 87 [ 1496.268126][ T3888] AppArmor: change_hat: Invalid input '' [ 1496.372732][ T3890] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13145'. [ 1496.496697][ T3892] loop4: detected capacity change from 0 to 2048 [ 1496.536934][ T3892] UDF-fs: error (device loop4): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 1496.587232][ T3892] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 1496.622751][ T3892] UDF-fs: Scanning with blocksize 512 failed [ 1496.740492][ T3900] loop3: detected capacity change from 0 to 16 [ 1496.767016][ T3892] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1496.782847][ T3900] erofs (device loop3): mounted with root inode @ nid 36. [ 1496.871747][ T3900] erofs (device loop3): inline data across blocks @ nid 86 [ 1496.882589][ T3905] loop0: detected capacity change from 0 to 256 [ 1496.890829][ T3905] exfat: Deprecated parameter 'utf8' [ 1496.899677][ T3905] exfat: Deprecated parameter 'namecase' [ 1496.917310][ T3900] erofs (device loop3): inline data across blocks @ nid 86 [ 1496.939376][ T3905] exfat: Deprecated parameter 'namecase' [ 1497.116254][ T3905] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 1497.430416][ T3919] netlink: 24 bytes leftover after parsing attributes in process `syz.2.13158'. [ 1497.579157][ T3923] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1497.861820][T30484] usb 2-1: new full-speed USB device number 88 using dummy_hcd [ 1498.098270][T30484] usb 2-1: not running at top speed; connect to a high speed hub [ 1498.176754][T30484] usb 2-1: config 95 has an invalid interface number: 1 but max is 0 [ 1498.257871][T30484] usb 2-1: config 95 has no interface number 0 [ 1498.336881][T30484] usb 2-1: config 95 interface 1 has no altsetting 0 [ 1498.442360][T30484] usb 2-1: string descriptor 0 read error: -22 [ 1498.477179][T30484] usb 2-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 1498.531316][T30484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1499.078725][T30484] usb 2-1: USB disconnect, device number 88 [ 1499.094425][ T3994] dvmrp1: left allmulticast mode [ 1499.417703][ T4002] loop0: detected capacity change from 0 to 2048 [ 1499.436213][ T4002] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1499.494629][ T4008] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1499.985614][ T4022] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 1499.992199][ T4022] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus) [ 1500.101040][ T4022] vhci_hcd vhci_hcd.0: Device attached [ 1500.143520][ T4025] vhci_hcd vhci_hcd.0: port 0 already used [ 1500.220470][ T4023] vhci_hcd: connection closed [ 1500.222371][ T156] vhci_hcd vhci_hcd.3: stop threads [ 1500.262839][ T156] vhci_hcd vhci_hcd.3: release socket [ 1500.304284][ T156] vhci_hcd vhci_hcd.3: disconnect device [ 1500.422758][ T4040] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1500.673294][ T4053] netlink: 'syz.2.13199': attribute type 3 has an invalid length. [ 1500.685167][ T4053] netlink: 'syz.2.13199': attribute type 3 has an invalid length. [ 1500.966030][ T4064] loop2: detected capacity change from 0 to 256 [ 1500.976287][ T1743] usb usb40-port1: attempt power cycle [ 1501.372513][ T4081] netlink: 32 bytes leftover after parsing attributes in process `syz.4.13212'. [ 1501.420631][T30484] usb 4-1: new high-speed USB device number 57 using dummy_hcd [ 1501.593546][ T1743] usb usb40-port1: unable to enumerate USB device [ 1501.604486][T30484] usb 4-1: Using ep0 maxpacket: 16 [ 1501.623819][T30488] usb 6-1: new high-speed USB device number 85 using dummy_hcd [ 1501.645410][T30484] usb 4-1: config index 0 descriptor too short (expected 16456, got 72) [ 1501.664105][T30484] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 1501.682450][T30484] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 1501.692332][ T4090] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13217'. [ 1501.701991][T30484] usb 4-1: config 0 has an invalid interface number: 125 but max is 1 [ 1501.711832][T30484] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1501.743564][T30484] usb 4-1: config 0 has no interface number 0 [ 1501.761157][T30484] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 1501.785357][T30484] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 1501.825807][T30484] usb 4-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1501.853299][T30488] usb 6-1: config 0 has too many interfaces: 253, using maximum allowed: 32 [ 1501.875536][T30484] usb 4-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1501.881217][T30488] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 253 [ 1501.924865][T30484] usb 4-1: config 0 interface 125 has no altsetting 0 [ 1501.935249][ T4097] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1501.939086][T30488] usb 6-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac [ 1501.962929][T30484] usb 4-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 1501.970797][T30488] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1501.984125][T30488] usb 6-1: Product: syz [ 1501.988692][T30488] usb 6-1: Manufacturer: syz [ 1501.993428][T30488] usb 6-1: SerialNumber: syz [ 1501.999015][T30484] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1502.020532][T30488] usb 6-1: config 0 descriptor?? [ 1502.027304][T30484] usb 4-1: Product: syz [ 1502.041489][T30484] usb 4-1: Manufacturer: syz [ 1502.053373][T30484] usb 4-1: SerialNumber: syz [ 1502.060000][T30488] gspca_main: sunplus-2.14.0 probing 055f:c630 [ 1502.064169][T30484] usb 4-1: config 0 descriptor?? [ 1502.370453][ T4111] netlink: 60 bytes leftover after parsing attributes in process `syz.1.13227'. [ 1502.503221][T30488] gspca_sunplus: reg_r err -71 [ 1502.516998][T30488] sunplus 6-1:0.0: probe with driver sunplus failed with error -71 [ 1502.565298][T30488] usb 6-1: USB disconnect, device number 85 [ 1502.627394][ T5973] usb 4-1: USB disconnect, device number 57 [ 1502.943325][ T4131] netlink: 1108 bytes leftover after parsing attributes in process `syz.4.13237'. [ 1503.674399][ T4156] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13248'. [ 1503.692569][ T4157] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13249'. [ 1503.966277][ T5973] usb 1-1: new high-speed USB device number 85 using dummy_hcd [ 1504.063840][ T4171] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13256'. [ 1504.074351][ T4171] netlink: 224 bytes leftover after parsing attributes in process `syz.5.13256'. [ 1504.187906][ T5973] usb 1-1: Using ep0 maxpacket: 16 [ 1504.195820][ T5973] usb 1-1: config 0 has an invalid interface number: 132 but max is 0 [ 1504.213864][ T5973] usb 1-1: config 0 has no interface number 0 [ 1504.251841][ T5973] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 1504.277317][ T5973] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1504.296055][ T5973] usb 1-1: Product: syz [ 1504.305471][ T5973] usb 1-1: Manufacturer: syz [ 1504.318299][ T5973] usb 1-1: SerialNumber: syz [ 1504.392695][ T5973] usb 1-1: config 0 descriptor?? [ 1504.424468][ T5973] hub 1-1:0.132: bad descriptor, ignoring hub [ 1504.445428][ T5973] hub 1-1:0.132: probe with driver hub failed with error -5 [ 1504.501467][ T5973] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/input/input105 [ 1504.852891][ T5973] usb 1-1: USB disconnect, device number 85 [ 1505.102642][ T4142] infiniband syz2: set down [ 1505.118380][ T4142] infiniband syz2: added ipvlan1 [ 1505.141785][ T4142] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 1505.226377][ T4142] infiniband syz2: Couldn't open port 1 [ 1505.257974][ T4179] loop3: detected capacity change from 0 to 32768 [ 1505.265417][ T4142] smbdirect: ib_dev[syz2]: added: IB_CA max_fast_reg_page_list_len=512 device_cap_flags=0x1c001223c76 kernel_cap_flags=0x14 page_size_cap=0xfffff000 [ 1505.288027][ T4179] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.13261 (4179) [ 1505.301176][ T4199] netlink: 'syz.1.13270': attribute type 21 has an invalid length. [ 1505.309443][ T4199] netlink: 164 bytes leftover after parsing attributes in process `syz.1.13270'. [ 1505.319729][ T4142] smbdirect: ib_dev[syz2]: num_ports=1 max_qp_rd_atom=128 max_qp_init_rd_atom=128 max_sgl_rd=0 max_sge_rd=32 max_cqe=32767 max_qp_wr=1048576 max_send_sge=32 max_recv_sge=32 [ 1505.347631][ T4179] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1505.374392][ T4179] BTRFS info (device loop3): using sha256 checksum algorithm [ 1505.394211][ T4142] smbdirect: ib_dev[syz2]PORT[1]: iwarp=0 ib=0 roce=1 v1=0 v2=1 core_cap_flags=0x803005 [ 1505.585846][ T4179] BTRFS info (device loop3): enabling ssd optimizations [ 1505.629122][ T4179] BTRFS info (device loop3): turning on async discard [ 1505.662600][ T4179] BTRFS info (device loop3): enabling free space tree [ 1505.719242][ T4142] RDS/IB: syz2: added [ 1505.738223][ T4142] smc: adding ib device syz2 with port count 1 [ 1505.738260][ T4142] smc: ib device syz2 port 1 has no pnetid [ 1505.956356][ T4230] loop0: detected capacity change from 0 to 128 [ 1505.959818][ T5856] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1506.013783][ T4230] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1506.128697][ T4228] loop4: detected capacity change from 0 to 4096 [ 1506.305231][ T5840] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1506.871353][ T4243] loop3: detected capacity change from 0 to 4096 [ 1506.886576][ T4243] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 1506.970390][ T4243] ntfs3(loop3): ino=1a, mi_enum_attr [ 1506.970436][ T4243] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1507.090137][ T4243] ntfs3(loop3): ino=1e, "file1" ntfs3_write_inode failed, -22. [ 1508.055507][ T4277] netlink: 8 bytes leftover after parsing attributes in process `syz.4.13300'. [ 1508.908445][ T30] audit: type=1326 audit(1718.751:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.025747][ T30] audit: type=1326 audit(1718.797:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.129596][ T30] audit: type=1326 audit(1718.797:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.231489][ T30] audit: type=1326 audit(1718.797:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.304965][ T30] audit: type=1326 audit(1718.797:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.383547][ T30] audit: type=1326 audit(1718.797:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.435841][ T1743] usb 2-1: new high-speed USB device number 89 using dummy_hcd [ 1509.496876][ T30] audit: type=1326 audit(1718.797:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.531278][ T4315] netlink: 'syz.3.13319': attribute type 1 has an invalid length. [ 1509.577416][ T4319] loop5: detected capacity change from 0 to 64 [ 1509.596713][ T30] audit: type=1326 audit(1718.797:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.633656][ T1743] usb 2-1: Using ep0 maxpacket: 32 [ 1509.660647][ T1743] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1509.698972][ T30] audit: type=1326 audit(1718.797:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.709254][ T1743] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1509.781408][ T1743] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1509.826792][ T30] audit: type=1326 audit(1718.797:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4300 comm="syz.3.13313" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f0c4479ce59 code=0x7ffc0000 [ 1509.847993][ T1743] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1509.862997][ T4317] loop0: detected capacity change from 0 to 4096 [ 1509.889224][ T4317] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1509.903865][ T1743] usb 2-1: config 0 descriptor?? [ 1509.951735][ T1743] hub 2-1:0.0: USB hub found [ 1510.023503][ T4317] ntfs3(loop0): ino=19, mi_enum_attr [ 1510.050905][ T4317] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1510.191559][ T1743] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 1510.412530][ T1743] usbhid 2-1:0.0: can't add hid device: -71 [ 1510.434297][ T1743] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1510.474854][ T1743] usb 2-1: USB disconnect, device number 89 [ 1510.567806][ T5973] usb 6-1: new full-speed USB device number 86 using dummy_hcd [ 1510.773549][ T5973] usb 6-1: not running at top speed; connect to a high speed hub [ 1510.793555][ T5973] usb 6-1: config 95 has an invalid interface number: 1 but max is 0 [ 1510.821636][ T5973] usb 6-1: config 95 has no interface number 0 [ 1510.833887][ T5973] usb 6-1: config 95 interface 1 has no altsetting 0 [ 1510.859062][ T5973] usb 6-1: string descriptor 0 read error: -22 [ 1510.868985][ T5973] usb 6-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 1510.904877][ T5973] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1511.464551][ T4359] netlink: 116 bytes leftover after parsing attributes in process `syz.0.13341'. [ 1511.535836][ T5973] usb 6-1: USB disconnect, device number 86 [ 1511.587814][ T4357] loop1: detected capacity change from 0 to 4096 [ 1511.621930][ T4357] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 1511.759630][ T4357] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1511.783904][ T4357] ntfs3(loop1): Failed to load $Extend (-22). [ 1511.815969][ T4357] ntfs3(loop1): Failed to initialize $Extend. [ 1511.895531][ T4357] ntfs3(loop1): ino=0, attr_set_size_ex [ 1512.052412][ T4371] netlink: 20 bytes leftover after parsing attributes in process `syz.4.13347'. [ 1512.525120][ T4381] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 1512.720299][ T4363] loop3: detected capacity change from 0 to 32768 [ 1512.774507][ T4363] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.13342 (4363) [ 1512.830525][ T4363] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1512.869686][ T4363] BTRFS info (device loop3): using sha256 checksum algorithm [ 1513.067670][ T4363] BTRFS info (device loop3): enabling ssd optimizations [ 1513.100223][ T4363] BTRFS info (device loop3): turning on async discard [ 1513.124102][ T4363] BTRFS info (device loop3): enabling free space tree [ 1513.882814][ T5856] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1514.211903][ T4429] netlink: 76 bytes leftover after parsing attributes in process `syz.4.13369'. [ 1514.254237][ T4429] netlink: 76 bytes leftover after parsing attributes in process `syz.4.13369'. [ 1514.615623][ T4442] netlink: 59 bytes leftover after parsing attributes in process `syz.2.13373'. [ 1514.641969][ T4443] loop1: detected capacity change from 0 to 512 [ 1514.644189][ T4442] netlink: 59 bytes leftover after parsing attributes in process `syz.2.13373'. [ 1514.798508][ T4443] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1514.888340][ T4443] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1514.928167][ T30] audit: type=1326 audit(1724.365:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4445 comm="syz.4.13376" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1514.968900][ T4421] loop0: detected capacity change from 0 to 32768 [ 1515.015382][ T30] audit: type=1326 audit(1724.412:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4445 comm="syz.4.13376" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1515.046000][ T30] audit: type=1326 audit(1724.422:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4445 comm="syz.4.13376" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=453 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1515.072496][ T30] audit: type=1326 audit(1724.422:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4445 comm="syz.4.13376" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1515.099906][ T30] audit: type=1326 audit(1724.422:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4445 comm="syz.4.13376" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e7859ce59 code=0x7ffc0000 [ 1515.154101][ T4421] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1515.282179][ T4425] loop5: detected capacity change from 0 to 32768 [ 1515.314560][ T4425] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.13366 (4425) [ 1515.345966][ T4421] XFS (loop0): invalid iclog size (4096 bytes), using lsunit (32768 bytes) [ 1515.367660][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1515.434329][ T4421] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 1515.481955][ T4425] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1515.532401][ T4421] XFS (loop0): Starting recovery (logdev: internal) [ 1515.552167][ T4425] BTRFS info (device loop5): using sha256 checksum algorithm [ 1515.629929][ T4421] XFS (loop0): Ending recovery (logdev: internal) [ 1515.747351][ T4421] XFS (loop0): Quotacheck needed: Please wait. [ 1515.763118][ T4425] BTRFS info (device loop5): enabling ssd optimizations [ 1515.815933][ T4425] BTRFS info (device loop5): turning on async discard [ 1515.859395][ T4425] BTRFS info (device loop5): enabling free space tree [ 1516.044228][ T4421] XFS (loop0): Quotacheck: Done. [ 1516.232135][ T5854] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1516.320767][ T5840] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1516.540372][ T4502] netlink: 44 bytes leftover after parsing attributes in process `syz.3.13393'. [ 1516.924367][ T4506] loop2: detected capacity change from 0 to 4096 [ 1516.972101][ T4506] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1517.127400][ T4506] ntfs3(loop2): ino=19, mi_enum_attr [ 1517.159121][ T4506] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1517.408826][ T4520] netlink: 20 bytes leftover after parsing attributes in process `syz.3.13401'. [ 1517.496409][ T4525] loop0: detected capacity change from 0 to 64 [ 1517.709724][ T4525] syz.0.13392: attempt to access beyond end of device [ 1517.709724][ T4525] loop0: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 1517.782499][ T4525] Buffer I/O error on dev loop0, logical block 512, async page read [ 1517.799576][ T4532] loop2: detected capacity change from 0 to 64 [ 1517.839996][ T4525] syz.0.13392: attempt to access beyond end of device [ 1517.839996][ T4525] loop0: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 1517.922240][ T4525] Buffer I/O error on dev loop0, logical block 56576, async page read [ 1518.167549][ T4538] loop3: detected capacity change from 0 to 64 [ 1518.331790][ T4544] netlink: 'syz.1.13411': attribute type 4 has an invalid length. [ 1518.372965][ T4544] netlink: 152 bytes leftover after parsing attributes in process `syz.1.13411'. [ 1518.420254][ T4544] .`: renamed from bond0 [ 1518.827225][ T4559] loop0: detected capacity change from 0 to 1024 [ 1518.939435][ T4526] loop4: detected capacity change from 0 to 32768 [ 1518.976107][ T4526] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13402 (4526) [ 1519.075090][ T4526] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1519.124668][ T4526] BTRFS info (device loop4): using sha256 checksum algorithm [ 1519.173578][ T4569] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1519.394857][ T4526] BTRFS info (device loop4): enabling ssd optimizations [ 1519.415569][ T4526] BTRFS info (device loop4): turning on async discard [ 1519.451003][ T4526] BTRFS info (device loop4): enabling free space tree [ 1519.722187][ T4599] openvswitch: netlink: VXLAN extension message has 12 unknown bytes. [ 1519.792269][ T5859] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1519.862771][ T4601] loop1: detected capacity change from 0 to 512 [ 1519.952309][ T4601] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1520.121030][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1520.439969][ T4620] loop2: detected capacity change from 0 to 64 [ 1520.512578][ T4620] syz.2.13440: attempt to access beyond end of device [ 1520.512578][ T4620] loop2: rw=0, sector=1024, nr_sectors = 2 limit=64 [ 1520.554419][ T4621] loop0: detected capacity change from 0 to 256 [ 1520.560812][ T4620] Buffer I/O error on dev loop2, logical block 512, async page read [ 1520.605334][ T4620] syz.2.13440: attempt to access beyond end of device [ 1520.605334][ T4620] loop2: rw=0, sector=113152, nr_sectors = 2 limit=64 [ 1520.657119][ T4620] Buffer I/O error on dev loop2, logical block 56576, async page read [ 1520.798387][ T4621] FAT-fs (loop0): Directory bread(block 64) failed [ 1520.823714][ T4621] FAT-fs (loop0): Directory bread(block 65) failed [ 1520.827495][ T4624] netlink: 'syz.5.13441': attribute type 92 has an invalid length. [ 1520.891157][ T4621] FAT-fs (loop0): Directory bread(block 66) failed [ 1520.902045][ T4575] loop3: detected capacity change from 0 to 32768 [ 1520.927551][ T4621] FAT-fs (loop0): Directory bread(block 67) failed [ 1520.974531][ T4621] FAT-fs (loop0): Directory bread(block 68) failed [ 1521.060691][ T4621] FAT-fs (loop0): Directory bread(block 69) failed [ 1521.111558][ T4621] FAT-fs (loop0): Directory bread(block 70) failed [ 1521.148408][ T4621] FAT-fs (loop0): Directory bread(block 71) failed [ 1521.182074][ T4621] FAT-fs (loop0): Directory bread(block 72) failed [ 1521.199696][ T4621] FAT-fs (loop0): Directory bread(block 73) failed [ 1521.384301][ T4575] read_mapping_page failed! [ 1521.389146][ T4633] loop1: detected capacity change from 0 to 512 [ 1521.435950][ T4633] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1521.458832][ T4575] ERROR: (device loop3): txAbort: [ 1521.458832][ T4575] [ 1521.487716][ T4633] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 1521.503762][ T4633] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1314: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 1521.533771][ C0] EXT4-fs (loop1): error count since last fsck: 1 [ 1521.540282][ C0] EXT4-fs (loop1): initial error at time 1730: ext4_mb_generate_buddy:1314 [ 1521.548992][ C0] EXT4-fs (loop1): last error at time 1730: ext4_mb_generate_buddy:1314 [ 1521.602209][ T4633] EXT4-fs error (device loop1): ext4_clear_blocks:874: inode #13: comm syz.1.13445: attempt to clear invalid blocks 2 len 1 [ 1521.660248][ T4633] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1521.665876][ T4633] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #13: comm syz.1.13445: invalid indirect mapped block 1819239214 (level 0) [ 1521.704395][ T3944] read_mapping_page failed! [ 1521.728906][ T4633] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1521.731993][ T4633] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #13: comm syz.1.13445: invalid indirect mapped block 1819239214 (level 1) [ 1521.792735][ T4633] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1521.805452][ T4633] EXT4-fs (loop1): 1 truncate cleaned up [ 1521.813193][ T3944] ERROR: (device loop3): txAbort: [ 1521.813193][ T3944] [ 1521.830226][ T3944] jfs_write_inode: jfs_commit_inode failed! [ 1521.892696][ T4633] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1521.954929][ T4613] BTRFS warning: excessive commit interval 65536, use with care [ 1521.987790][ T4613] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13433 (4613) [ 1522.043336][ T4613] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1522.089066][ T4613] BTRFS info (device loop4): using sha256 checksum algorithm [ 1522.103568][ T4633] EXT4-fs error (device loop1): ext4_lookup:1781: inode #2: comm syz.1.13445: 'file1' linked to parent dir [ 1522.273089][ T4613] BTRFS info (device loop4): enabling ssd optimizations [ 1522.324578][ T4613] BTRFS info (device loop4): turning on async discard [ 1522.368545][ T4613] BTRFS info (device loop4): enabling free space tree [ 1522.475488][ T5839] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1522.722329][ T5859] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1522.739481][ T5973] usb 3-1: new high-speed USB device number 96 using dummy_hcd [ 1522.864446][ T4680] kAFS: unable to lookup cell '' [ 1522.966257][ T5973] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1522.986772][ T4684] set_capacity_and_notify: 1 callbacks suppressed [ 1522.986801][ T4684] loop5: detected capacity change from 0 to 8 [ 1523.004736][ T5973] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1523.023066][ T5973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1523.127221][ T5973] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1523.841934][T30488] usb 1-1: new high-speed USB device number 86 using dummy_hcd [ 1524.024910][ T4706] loop4: detected capacity change from 0 to 4096 [ 1524.030830][ T4712] loop5: detected capacity change from 0 to 1024 [ 1524.035035][ T4706] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1524.047013][T30488] usb 1-1: Using ep0 maxpacket: 16 [ 1524.077795][ T4712] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 1524.078226][T30488] usb 1-1: config 0 has an invalid interface number: 101 but max is 0 [ 1524.150931][T30488] usb 1-1: config 0 has an invalid descriptor of length 64, skipping remainder of the config [ 1524.173056][ T4706] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1524.186302][T30488] usb 1-1: config 0 has no interface number 0 [ 1524.209344][T30488] usb 1-1: too many endpoints for config 0 interface 101 altsetting 229: 144, using maximum allowed: 30 [ 1524.212749][ T4706] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 1524.239041][T30488] usb 1-1: config 0 interface 101 altsetting 229 has 0 endpoint descriptors, different from the interface descriptor's value: 144 [ 1524.274948][ T5973] stv0680 3-1:4.0: STV(e): camera ping failed!! [ 1524.294790][T30488] usb 1-1: config 0 interface 101 has no altsetting 0 [ 1524.333310][T30488] usb 1-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice=7a.5a [ 1524.346464][T30488] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1524.371707][T30488] usb 1-1: Product: syz [ 1524.383781][T30488] usb 1-1: Manufacturer: syz [ 1524.397901][T30488] usb 1-1: SerialNumber: syz [ 1524.421456][T30488] usb 1-1: config 0 descriptor?? [ 1524.491025][ T5973] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1524.523033][ T5973] stv0680 3-1:4.0: last error: 90, command = 0xeb [ 1524.602000][ T5973] usb 3-1: USB disconnect, device number 96 [ 1524.656321][ T156] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 1524.685173][ T5859] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1524.720771][ T5859] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1524.761977][ T5859] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 1524.763770][T30488] usb 1-1: USB disconnect, device number 86 [ 1524.816321][ T156] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 1525.105679][ T4732] loop5: detected capacity change from 0 to 8 [ 1525.801485][ T4760] netlink: 4 bytes leftover after parsing attributes in process `syz.3.13500'. [ 1525.925253][ T4767] misc userio: Invalid payload size [ 1526.104067][ T4774] openvswitch: netlink: Multiple metadata blocks provided [ 1526.230682][ T4780] comedi comedi1: pcmda12: a I/O base address must be specified [ 1526.389755][ T4783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13511'. [ 1527.084961][ T4812] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13526'. [ 1527.120440][ T4812] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13526'. [ 1527.293203][ T4818] netlink: 'syz.5.13528': attribute type 16 has an invalid length. [ 1527.315664][ T4818] netlink: 64138 bytes leftover after parsing attributes in process `syz.5.13528'. [ 1527.477593][ T4823] netlink: 220 bytes leftover after parsing attributes in process `syz.2.13531'. [ 1527.597974][ T4828] netlink: 'syz.5.13535': attribute type 1 has an invalid length. [ 1527.636807][ T30] audit: type=1326 audit(1736.278:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1527.750726][ T30] audit: type=1326 audit(1736.278:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1527.866476][ T30] audit: type=1326 audit(1736.306:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1527.983029][ T30] audit: type=1326 audit(1736.306:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.082859][ T4843] netlink: 'syz.2.13541': attribute type 16 has an invalid length. [ 1528.101586][ T30] audit: type=1326 audit(1736.316:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.139892][ T4843] netlink: 156 bytes leftover after parsing attributes in process `syz.2.13541'. [ 1528.176896][ T4799] loop4: detected capacity change from 0 to 32768 [ 1528.189783][ T30] audit: type=1326 audit(1736.316:278): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.281855][ T30] audit: type=1326 audit(1736.316:279): auid=4294967295 uid=60929 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.389303][ T30] audit: type=1326 audit(1736.316:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.402711][ T1743] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 1528.540263][ T30] audit: type=1326 audit(1736.316:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4829 comm="syz.1.13533" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1528.631220][ T1743] usb 4-1: Using ep0 maxpacket: 8 [ 1528.654322][ T1743] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1528.691309][ T1743] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1528.726244][ T1743] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1528.774702][ T1743] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1528.829445][ T1743] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1528.872221][ T1743] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1528.907671][ T1743] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1528.961334][ T1743] usb 4-1: config 0 descriptor?? [ 1528.984802][ T4845] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1529.505380][T30488] usb 4-1: USB disconnect, device number 58 [ 1529.517896][ T4940] Bluetooth: hci6: Opcode 0x0c03 failed: -19 [ 1529.633265][ T4847] loop5: detected capacity change from 0 to 32768 [ 1529.960344][ T4890] loop1: detected capacity change from 0 to 256 [ 1530.105077][ T4890] FAT-fs (loop1): Directory bread(block 64) failed [ 1530.112702][ T4890] FAT-fs (loop1): Directory bread(block 65) failed [ 1530.138698][ T4890] FAT-fs (loop1): Directory bread(block 66) failed [ 1530.179467][ T4890] FAT-fs (loop1): Directory bread(block 67) failed [ 1530.233115][ T4890] FAT-fs (loop1): Directory bread(block 68) failed [ 1530.266960][ T4890] FAT-fs (loop1): Directory bread(block 69) failed [ 1530.298389][ T4890] FAT-fs (loop1): Directory bread(block 70) failed [ 1530.322299][ T4890] FAT-fs (loop1): Directory bread(block 71) failed [ 1530.344973][ T4890] FAT-fs (loop1): Directory bread(block 72) failed [ 1530.362607][ T4890] FAT-fs (loop1): Directory bread(block 73) failed [ 1530.612862][ T4877] loop4: detected capacity change from 0 to 32768 [ 1530.774743][ T1743] usb 2-1: new high-speed USB device number 90 using dummy_hcd [ 1530.807477][ T4913] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1530.952014][ T1743] usb 2-1: config 127 has an invalid interface number: 63 but max is 0 [ 1530.986966][ T1743] usb 2-1: config 127 has no interface number 0 [ 1531.002569][ T1743] usb 2-1: too many endpoints for config 127 interface 63 altsetting 243: 127, using maximum allowed: 30 [ 1531.025838][ T1743] usb 2-1: config 127 interface 63 altsetting 243 has 0 endpoint descriptors, different from the interface descriptor's value: 127 [ 1531.076585][ T1743] usb 2-1: config 127 interface 63 has no altsetting 0 [ 1531.103265][ T1743] usb 2-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 1531.147589][ T1743] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1531.395406][ T1310] ieee802154 phy1 wpan1: encryption failed: -22 [ 1531.432979][ T1743] usb 2-1: string descriptor 0 read error: -71 [ 1531.461367][ T1743] usb 2-1: USB disconnect, device number 90 [ 1531.467709][ T4931] tmpfs: Bad value for 'mpol' [ 1532.502577][ T4962] loop5: detected capacity change from 0 to 4096 [ 1532.565375][ T4962] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1532.624520][ T4962] ntfs3(loop5): ino=1a, mi_enum_attr [ 1532.635956][ T4962] ntfs3(loop5): ino=1a, mi_enum_attr [ 1532.648609][ T4962] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1532.754469][ T4962] ntfs3(loop5): ino=1a, mi_enum_attr [ 1532.954724][ T1743] usb 2-1: new high-speed USB device number 91 using dummy_hcd [ 1533.147099][ T1743] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1533.178963][ T1743] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1533.221697][ T1743] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1533.265995][ T1743] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1533.294681][ T4997] loop0: detected capacity change from 0 to 512 [ 1533.317783][ T1743] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1533.324835][ T30] audit: type=1326 audit(1741.593:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.362324][ T4997] EXT4-fs: Ignoring removed oldalloc option [ 1533.381922][ T4997] EXT4-fs (loop0): filesystem is read-only [ 1533.389352][ T1743] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1533.401410][ T4997] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 1533.414263][ T1743] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1533.436500][ T30] audit: type=1326 audit(1741.593:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.436689][ T5002] netlink: 'syz.3.13613': attribute type 5 has an invalid length. [ 1533.483597][ T1743] usb 2-1: Product: syz [ 1533.490576][ T4997] EXT4-fs (loop0): filesystem is read-only [ 1533.502078][ T1743] usb 2-1: Manufacturer: syz [ 1533.515254][ T4997] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1533.537528][ T4997] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm syz.0.13610: bg 0: block 64: padding at end of block bitmap is not set [ 1533.552605][ T30] audit: type=1326 audit(1741.631:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.558718][ T1743] cdc_wdm 2-1:1.0: skipping garbage [ 1533.577922][ T30] audit: type=1326 audit(1741.631:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.578007][ T30] audit: type=1326 audit(1741.631:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.578080][ T30] audit: type=1326 audit(1741.631:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.578154][ T30] audit: type=1326 audit(1741.631:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.578227][ T30] audit: type=1326 audit(1741.631:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4998 comm="syz.2.13611" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb68bf9ce59 code=0x7ffc0000 [ 1533.713858][ T4997] loop0: lost filesystem error report for type 5 error -117 [ 1533.714665][ T4997] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 1533.730921][ C0] EXT4-fs (loop0): error count since last fsck: 1 [ 1533.730959][ C0] EXT4-fs (loop0): initial error at time 1741: ext4_validate_block_bitmap:440 [ 1533.731003][ C0] EXT4-fs (loop0): last error at time 1741: ext4_validate_block_bitmap:440 [ 1533.766944][ T4997] loop0: lost filesystem error report for type 5 error -117 [ 1533.775175][ T4997] EXT4-fs (loop0): 1 orphan inode deleted [ 1533.841508][ T4997] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1533.876209][ T1743] cdc_wdm 2-1:1.0: skipping garbage [ 1533.896404][ T1743] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device [ 1533.902375][ T1743] cdc_wdm 2-1:1.0: Unknown control protocol [ 1533.918594][ T1743] usb 2-1: USB disconnect, device number 91 [ 1534.218258][ T5840] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1534.395526][ T5023] netlink: 220 bytes leftover after parsing attributes in process `syz.5.13624'. [ 1534.715192][ T5039] sock: sock_timestamping_bind_phc: sock not bind to device [ 1534.797506][ T30] audit: type=1326 audit(1742.978:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5042 comm="syz.1.13633" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1534.921738][ T30] audit: type=1326 audit(1742.978:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5042 comm="syz.1.13633" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1aedf9ce59 code=0x7ffc0000 [ 1534.981421][ T5048] netlink: 164 bytes leftover after parsing attributes in process `syz.4.13635'. [ 1534.995464][ T5046] loop3: detected capacity change from 0 to 512 [ 1535.062801][ T5046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1535.280285][ T5856] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1535.418392][ T5063] loop0: detected capacity change from 0 to 64 [ 1535.475702][ T5063] hfs: unable to locate alternate MDB [ 1535.500571][ T5063] hfs: continuing without an alternate MDB [ 1535.678732][ T5069] loop3: detected capacity change from 0 to 256 [ 1535.732166][ T156] [ 1535.734540][ T156] ====================================================== [ 1535.741570][ T156] WARNING: possible circular locking dependency detected [ 1535.748608][ T156] syzkaller #0 Tainted: G L [ 1535.754586][ T156] ------------------------------------------------------ [ 1535.761595][ T156] kworker/u8:8/156 is trying to acquire lock: [ 1535.767651][ T156] ffff88805335b930 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0 [ 1535.778424][ T156] [ 1535.778424][ T156] but task is already holding lock: [ 1535.785826][ T156] ffff888033fb80a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1535.795213][ T156] [ 1535.795213][ T156] which lock already depends on the new lock. [ 1535.795213][ T156] [ 1535.805623][ T156] [ 1535.805623][ T156] the existing dependency chain (in reverse order) is: [ 1535.814645][ T156] [ 1535.814645][ T156] -> #1 (&tree->tree_lock/1){+.+.}-{4:4}: [ 1535.822601][ T156] __mutex_lock+0x1a4/0x1b10 [ 1535.827754][ T156] hfs_find_init+0x273/0x330 [ 1535.832884][ T156] hfs_ext_read_extent+0x19d/0x9d0 [ 1535.838547][ T156] hfs_get_block+0x576/0x830 [ 1535.843688][ T156] block_read_full_folio+0x36c/0x8e0 [ 1535.849528][ T156] filemap_read_folio+0xfc/0x3b0 [ 1535.855009][ T156] do_read_cache_folio+0x2d7/0x6b0 [ 1535.860665][ T156] read_cache_page+0x5b/0x1b0 [ 1535.865885][ T156] __hfs_bnode_create+0x718/0x9a0 [ 1535.871448][ T156] hfs_bnode_find+0x2d5/0xd30 [ 1535.876666][ T156] hfs_brec_find+0x39d/0x620 [ 1535.881799][ T156] hfs_brec_read+0x26/0x120 [ 1535.886847][ T156] hfs_cat_find_brec+0xdc/0x2a0 [ 1535.892251][ T156] hfs_fill_super+0x58d/0x7e0 [ 1535.897462][ T156] get_tree_bdev_flags+0x38c/0x620 [ 1535.903127][ T156] vfs_get_tree+0x92/0x320 [ 1535.908084][ T156] path_mount+0x7d0/0x23d0 [ 1535.913038][ T156] __x64_sys_mount+0x293/0x310 [ 1535.918340][ T156] do_syscall_64+0x10b/0xf80 [ 1535.923504][ T156] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1535.929929][ T156] [ 1535.929929][ T156] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 1535.939172][ T156] __lock_acquire+0x14b8/0x2630 [ 1535.944568][ T156] lock_acquire+0x1b1/0x370 [ 1535.949604][ T156] __mutex_lock+0x1a4/0x1b10 [ 1535.954744][ T156] hfs_extend_file+0xa6/0xcf0 [ 1535.959982][ T156] hfs_bmap_reserve+0x2ab/0x3a0 [ 1535.965383][ T156] __hfs_ext_write_extent+0x3c4/0x510 [ 1535.971302][ T156] hfs_ext_write_extent+0x1b7/0x200 [ 1535.977050][ T156] hfs_write_inode+0xce/0xab0 [ 1535.982253][ T156] __writeback_single_inode+0xcd4/0x1350 [ 1535.988440][ T156] writeback_sb_inodes+0x766/0x1c60 [ 1535.994186][ T156] wb_writeback+0x1bf/0xb90 [ 1535.999240][ T156] wb_workfn+0x14f/0xc00 [ 1536.004043][ T156] process_one_work+0xa0e/0x1980 [ 1536.009534][ T156] worker_thread+0x5ef/0xe50 [ 1536.014660][ T156] kthread+0x370/0x450 [ 1536.019263][ T156] ret_from_fork+0x72b/0xd50 [ 1536.024389][ T156] ret_from_fork_asm+0x1a/0x30 [ 1536.029696][ T156] [ 1536.029696][ T156] other info that might help us debug this: [ 1536.029696][ T156] [ 1536.039916][ T156] Possible unsafe locking scenario: [ 1536.039916][ T156] [ 1536.047361][ T156] CPU0 CPU1 [ 1536.052718][ T156] ---- ---- [ 1536.058078][ T156] lock(&tree->tree_lock/1); [ 1536.062778][ T156] lock(&HFS_I(tree->inode)->extents_lock); [ 1536.071293][ T156] lock(&tree->tree_lock/1); [ 1536.078514][ T156] lock(&HFS_I(tree->inode)->extents_lock); [ 1536.084508][ T156] [ 1536.084508][ T156] *** DEADLOCK *** [ 1536.084508][ T156] [ 1536.092642][ T156] 3 locks held by kworker/u8:8/156: [ 1536.097835][ T156] #0: ffff888020ab1140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980 [ 1536.108608][ T156] #1: ffffc90002e47d08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980 [ 1536.120511][ T156] #2: ffff888033fb80a8 (&tree->tree_lock/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 1536.130334][ T156] [ 1536.130334][ T156] stack backtrace: [ 1536.136222][ T156] CPU: 1 UID: 0 PID: 156 Comm: kworker/u8:8 Tainted: G L syzkaller #0 PREEMPT(full) [ 1536.136273][ T156] Tainted: [L]=SOFTLOCKUP [ 1536.136286][ T156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1536.136312][ T156] Workqueue: writeback wb_workfn (flush-7:0) [ 1536.136378][ T156] Call Trace: [ 1536.136392][ T156] [ 1536.136406][ T156] dump_stack_lvl+0x100/0x190 [ 1536.136445][ T156] print_circular_bug.cold+0x178/0x1c7 [ 1536.136506][ T156] check_noncircular+0x146/0x160 [ 1536.136544][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.136597][ T156] __lock_acquire+0x14b8/0x2630 [ 1536.136644][ T156] ? __pfx_stack_trace_save+0x10/0x10 [ 1536.136683][ T156] lock_acquire+0x1b1/0x370 [ 1536.136724][ T156] ? hfs_extend_file+0xa6/0xcf0 [ 1536.136783][ T156] ? __pfx___might_resched+0x10/0x10 [ 1536.136832][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.136879][ T156] ? add_lock_to_list+0x99/0x110 [ 1536.136915][ T156] __mutex_lock+0x1a4/0x1b10 [ 1536.136973][ T156] ? hfs_extend_file+0xa6/0xcf0 [ 1536.137028][ T156] ? hfs_extend_file+0xa6/0xcf0 [ 1536.137086][ T156] ? hfs_write_inode+0xce/0xab0 [ 1536.137118][ T156] ? __writeback_single_inode+0xcd4/0x1350 [ 1536.137177][ T156] ? __pfx___mutex_lock+0x10/0x10 [ 1536.137235][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137278][ T156] ? lock_acquire+0x1b1/0x370 [ 1536.137324][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137367][ T156] ? trace_contention_end+0x122/0x170 [ 1536.137415][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137462][ T156] ? hfs_extend_file+0xa6/0xcf0 [ 1536.137516][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137559][ T156] hfs_extend_file+0xa6/0xcf0 [ 1536.137616][ T156] ? __pfx_hfs_extend_file+0x10/0x10 [ 1536.137671][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137723][ T156] hfs_bmap_reserve+0x2ab/0x3a0 [ 1536.137779][ T156] __hfs_ext_write_extent+0x3c4/0x510 [ 1536.137834][ T156] ? hfs_find_init+0x273/0x330 [ 1536.137879][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.137925][ T156] hfs_ext_write_extent+0x1b7/0x200 [ 1536.137981][ T156] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1536.138044][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.138086][ T156] ? __mpage_writepages+0x1a8/0x210 [ 1536.138123][ T156] ? __pfx___mpage_writepages+0x10/0x10 [ 1536.138160][ T156] hfs_write_inode+0xce/0xab0 [ 1536.138195][ T156] ? __pfx_hfs_write_inode+0x10/0x10 [ 1536.138229][ T156] ? __lock_acquire+0x4a5/0x2630 [ 1536.138285][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1536.138342][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1536.138415][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.138465][ T156] __writeback_single_inode+0xcd4/0x1350 [ 1536.138526][ T156] ? __pfx___writeback_single_inode+0x10/0x10 [ 1536.138583][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.138626][ T156] ? do_raw_spin_unlock+0x145/0x1e0 [ 1536.138678][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.138724][ T156] writeback_sb_inodes+0x766/0x1c60 [ 1536.138792][ T156] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1536.138848][ T156] ? wakeup_preempt_fair+0x630/0x1050 [ 1536.138941][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.138983][ T156] ? rcu_is_watching+0x12/0xc0 [ 1536.139037][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139081][ T156] ? queue_io+0x287/0x540 [ 1536.139130][ T156] wb_writeback+0x1bf/0xb90 [ 1536.139192][ T156] ? __pfx_wb_writeback+0x10/0x10 [ 1536.139253][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139297][ T156] ? mark_held_locks+0x40/0x70 [ 1536.139338][ T156] ? _raw_spin_unlock_irq+0x23/0x50 [ 1536.139392][ T156] wb_workfn+0x14f/0xc00 [ 1536.139451][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139493][ T156] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1536.139547][ T156] ? __pfx_wb_workfn+0x10/0x10 [ 1536.139604][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139650][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139695][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139738][ T156] ? rcu_is_watching+0x12/0xc0 [ 1536.139789][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139837][ T156] process_one_work+0xa0e/0x1980 [ 1536.139897][ T156] ? __pfx_process_one_work+0x10/0x10 [ 1536.139940][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.139991][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.140039][ T156] worker_thread+0x5ef/0xe50 [ 1536.140091][ T156] ? kthread+0x13a/0x450 [ 1536.140129][ T156] ? __pfx_worker_thread+0x10/0x10 [ 1536.140171][ T156] kthread+0x370/0x450 [ 1536.140208][ T156] ? __pfx_kthread+0x10/0x10 [ 1536.140249][ T156] ret_from_fork+0x72b/0xd50 [ 1536.140293][ T156] ? __pfx_ret_from_fork+0x10/0x10 [ 1536.140337][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.140381][ T156] ? __switch_to+0x800/0x1100 [ 1536.140432][ T156] ? __switch_to_asm+0x39/0x70 [ 1536.140481][ T156] ? __pfx_kthread+0x10/0x10 [ 1536.140522][ T156] ret_from_fork_asm+0x1a/0x30 [ 1536.140583][ T156] [ 1536.646376][ T156] hfs: new node 0 already hashed? [ 1536.652258][ T156] ------------[ cut here ]------------ [ 1536.657753][ T156] 1 [ 1536.657770][ T156] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#0: kworker/u8:8/156 [ 1536.670185][ T156] Modules linked in: [ 1536.671075][ T5074] loop5: detected capacity change from 0 to 256 [ 1536.674140][ T156] CPU: 0 UID: 0 PID: 156 Comm: kworker/u8:8 Tainted: G L syzkaller #0 PREEMPT(full) [ 1536.691427][ T156] Tainted: [L]=SOFTLOCKUP [ 1536.695810][ T156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1536.705940][ T156] Workqueue: writeback wb_workfn (flush-7:0) [ 1536.712019][ T156] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1536.718064][ T156] Code: f5 e0 64 0a e9 f7 34 d1 01 e8 db 1e e1 00 4c 89 f7 e8 e3 e0 64 0a e8 ce 1e e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 f9 37 d1 01 e8 b2 1e e1 00 e8 bd 56 4d 00 e9 55 3a d1 [ 1536.737849][ T156] RSP: 0018:ffffc90002e47020 EFLAGS: 00010282 [ 1536.743947][ T156] RAX: 000000000000001f RBX: ffff888031a32700 RCX: 0000000000000000 [ 1536.752026][ T156] RDX: 000000000000001f RSI: ffffffff81e72d69 RDI: fffff520005c8df5 [ 1536.760148][ T156] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1536.768146][ T156] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1536.776170][ T156] R13: ffff888033fb8000 R14: ffff888033fb80d8 R15: 0000000000000000 [ 1536.784265][ T156] FS: 0000000000000000(0000) GS:ffff888124370000(0000) knlGS:0000000000000000 [ 1536.793278][ T156] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1536.799890][ T156] CR2: 00007f61de417dac CR3: 00000000770d9000 CR4: 0000000000350ef0 [ 1536.807921][ T156] Call Trace: [ 1536.811215][ T156] [ 1536.814253][ T156] ? _raw_spin_unlock+0x28/0x50 [ 1536.819182][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.824897][ T156] ? hfs_bnode_put+0x208/0x480 [ 1536.829729][ T156] hfs_bmap_alloc+0x5a7/0x6b0 [ 1536.834717][ T156] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1536.840004][ T156] ? __asan_memcpy+0x3c/0x60 [ 1536.844719][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.845663][ T5069] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d) [ 1536.850424][ T156] ? hfs_bnode_read.part.0+0x298/0x330 [ 1536.867945][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.873622][ T156] ? folio_mark_accessed+0xf3/0x1040 [ 1536.879062][ T156] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1536.884865][ T156] ? rcu_is_watching+0x12/0xc0 [ 1536.889739][ T156] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1536.896132][ T156] ? do_raw_spin_unlock+0x145/0x1e0 [ 1536.901431][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.907105][ T156] ? _raw_spin_unlock+0x28/0x50 [ 1536.912046][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.917724][ T156] ? hfs_bnode_put+0x208/0x480 [ 1536.922560][ T156] hfs_brec_insert+0x8ba/0xc20 [ 1536.927394][ T156] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1536.929922][T30484] usb 2-1: new high-speed USB device number 92 using dummy_hcd [ 1536.932766][ T156] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1536.945396][ T156] __hfs_ext_write_extent+0x3ef/0x510 [ 1536.950851][ T156] ? hfs_find_init+0x273/0x330 [ 1536.955710][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.961399][ T156] hfs_ext_write_extent+0x1b7/0x200 [ 1536.966698][ T156] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1536.972488][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1536.978221][ T156] ? __mpage_writepages+0x1a8/0x210 [ 1536.983500][ T156] ? __pfx___mpage_writepages+0x10/0x10 [ 1536.989075][ T156] hfs_write_inode+0xce/0xab0 [ 1536.993786][ T156] ? __pfx_hfs_write_inode+0x10/0x10 [ 1536.999123][ T156] ? __lock_acquire+0x4a5/0x2630 [ 1537.004107][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1537.010054][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1537.015932][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.021606][ T156] __writeback_single_inode+0xcd4/0x1350 [ 1537.027318][ T156] ? __pfx___writeback_single_inode+0x10/0x10 [ 1537.033442][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.039176][ T156] ? do_raw_spin_unlock+0x145/0x1e0 [ 1537.044440][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.050153][ T156] writeback_sb_inodes+0x766/0x1c60 [ 1537.055412][ T156] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1537.061131][ T156] ? wakeup_preempt_fair+0x630/0x1050 [ 1537.066605][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.072332][ T156] ? rcu_is_watching+0x12/0xc0 [ 1537.077159][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.082880][ T156] ? queue_io+0x287/0x540 [ 1537.087251][ T156] wb_writeback+0x1bf/0xb90 [ 1537.091850][ T156] ? __pfx_wb_writeback+0x10/0x10 [ 1537.096928][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.102633][ T156] ? mark_held_locks+0x40/0x70 [ 1537.103144][T30484] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1537.107452][ T156] ? _raw_spin_unlock_irq+0x23/0x50 [ 1537.116653][T30484] usb 2-1: config 114 has an invalid interface number: 240 but max is 0 [ 1537.120280][ T156] wb_workfn+0x14f/0xc00 [ 1537.128821][T30484] usb 2-1: config 114 has no interface number 0 [ 1537.132903][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.132956][ T156] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1537.139333][T30484] usb 2-1: config 114 interface 240 altsetting 232 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1537.144864][ T156] ? __pfx_wb_workfn+0x10/0x10 [ 1537.150744][T30484] usb 2-1: config 114 interface 240 altsetting 232 has an endpoint descriptor with address 0xCA, changing to 0x8A [ 1537.161112][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.161168][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.161216][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.183691][T30484] usb 2-1: config 114 interface 240 altsetting 232 bulk endpoint 0x8A has invalid maxpacket 16 [ 1537.189310][ T156] ? rcu_is_watching+0x12/0xc0 [ 1537.189380][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.195091][T30484] usb 2-1: config 114 interface 240 has no altsetting 0 [ 1537.205340][ T156] process_one_work+0xa0e/0x1980 [ 1537.205412][ T156] ? __pfx_process_one_work+0x10/0x10 [ 1537.225755][T30484] usb 2-1: string descriptor 0 read error: -22 [ 1537.227687][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.233468][T30484] usb 2-1: New USB device found, idVendor=09c4, idProduct=0011, bcdDevice= 6.38 [ 1537.239200][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.244913][T30484] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1537.253890][ T156] worker_thread+0x5ef/0xe50 [ 1537.253954][ T156] ? kthread+0x13a/0x450 [ 1537.253995][ T156] ? __pfx_worker_thread+0x10/0x10 [ 1537.254042][ T156] kthread+0x370/0x450 [ 1537.262693][ T5075] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1537.267738][ T156] ? __pfx_kthread+0x10/0x10 [ 1537.280626][ T5075] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1537.281536][ T156] ret_from_fork+0x72b/0xd50 [ 1537.290491][T30484] ir_usb 2-1:114.240: IR Dongle converter detected [ 1537.292707][ T156] ? __pfx_ret_from_fork+0x10/0x10 [ 1537.320644][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.326332][ T156] ? __switch_to+0x800/0x1100 [ 1537.331053][ T156] ? __switch_to_asm+0x39/0x70 [ 1537.335908][ T156] ? __pfx_kthread+0x10/0x10 [ 1537.340554][ T156] ret_from_fork_asm+0x1a/0x30 [ 1537.345368][ T156] [ 1537.348452][ T156] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1537.355754][ T156] CPU: 0 UID: 0 PID: 156 Comm: kworker/u8:8 Tainted: G L syzkaller #0 PREEMPT(full) [ 1537.366710][ T156] Tainted: [L]=SOFTLOCKUP [ 1537.371026][ T156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1537.381106][ T156] Workqueue: writeback wb_workfn (flush-7:0) [ 1537.387141][ T156] Call Trace: [ 1537.390412][ T156] [ 1537.393369][ T156] dump_stack_lvl+0x100/0x190 [ 1537.398069][ T156] vpanic+0x552/0x970 [ 1537.402059][ T156] ? __pfx_vpanic+0x10/0x10 [ 1537.406577][ T156] ? lock_release+0x245/0x310 [ 1537.411281][ T156] panic+0xd1/0xe0 [ 1537.415005][ T156] ? __pfx_panic+0x10/0x10 [ 1537.419430][ T156] ? check_panic_on_warn+0x1f/0x90 [ 1537.424559][ T156] check_panic_on_warn.cold+0x19/0x34 [ 1537.429957][ T156] ? hfs_bnode_create.cold+0x41/0x49 [ 1537.435270][ T156] __warn.cold+0x191/0x328 [ 1537.439710][ T156] __report_bug+0x296/0x3d0 [ 1537.444243][ T156] ? hfs_bnode_create.cold+0x41/0x49 [ 1537.449550][ T156] ? __pfx___report_bug+0x10/0x10 [ 1537.454602][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.460255][ T156] ? preempt_schedule_thunk+0x16/0x30 [ 1537.465662][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.471318][ T156] ? preempt_count_add+0x76/0x150 [ 1537.476382][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.482032][ T156] ? __wake_up_klogd+0xe2/0x140 [ 1537.486904][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.492555][ T156] ? vprintk_emit+0x1c9/0x6b0 [ 1537.497265][ T156] ? __pfx_vprintk_emit+0x10/0x10 [ 1537.502327][ T156] ? hfs_bnode_create.cold+0x41/0x49 [ 1537.507638][ T156] report_bug+0xb2/0x220 [ 1537.511911][ T156] ? hfs_bnode_create.cold+0x41/0x49 [ 1537.517216][ T156] handle_bug+0x16a/0x2a0 [ 1537.521555][ T156] exc_invalid_op+0x17/0x50 [ 1537.526073][ T156] asm_exc_invalid_op+0x1a/0x20 [ 1537.530961][ T156] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 1537.536878][ T156] Code: f5 e0 64 0a e9 f7 34 d1 01 e8 db 1e e1 00 4c 89 f7 e8 e3 e0 64 0a e8 ce 1e e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 f9 37 d1 01 e8 b2 1e e1 00 e8 bd 56 4d 00 e9 55 3a d1 [ 1537.556771][ T156] RSP: 0018:ffffc90002e47020 EFLAGS: 00010282 [ 1537.562865][ T156] RAX: 000000000000001f RBX: ffff888031a32700 RCX: 0000000000000000 [ 1537.570849][ T156] RDX: 000000000000001f RSI: ffffffff81e72d69 RDI: fffff520005c8df5 [ 1537.578826][ T156] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 1537.586804][ T156] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 1537.594954][ T156] R13: ffff888033fb8000 R14: ffff888033fb80d8 R15: 0000000000000000 [ 1537.602940][ T156] ? vprintk_emit+0x1c9/0x6b0 [ 1537.607664][ T156] ? _raw_spin_unlock+0x28/0x50 [ 1537.612540][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.618192][ T156] ? hfs_bnode_put+0x208/0x480 [ 1537.623069][ T156] hfs_bmap_alloc+0x5a7/0x6b0 [ 1537.627782][ T156] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1537.633010][ T156] ? __asan_memcpy+0x3c/0x60 [ 1537.637616][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.643395][ T156] ? hfs_bnode_read.part.0+0x298/0x330 [ 1537.648885][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.654539][ T156] ? folio_mark_accessed+0xf3/0x1040 [ 1537.659859][ T156] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1537.665613][ T156] ? rcu_is_watching+0x12/0xc0 [ 1537.670410][ T156] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1537.676768][ T156] ? do_raw_spin_unlock+0x145/0x1e0 [ 1537.681993][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.687647][ T156] ? _raw_spin_unlock+0x28/0x50 [ 1537.692522][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.698175][ T156] ? hfs_bnode_put+0x208/0x480 [ 1537.702964][ T156] hfs_brec_insert+0x8ba/0xc20 [ 1537.707764][ T156] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1537.713082][ T156] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1537.718143][ T156] __hfs_ext_write_extent+0x3ef/0x510 [ 1537.723551][ T156] ? hfs_find_init+0x273/0x330 [ 1537.728336][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.734001][ T156] hfs_ext_write_extent+0x1b7/0x200 [ 1537.739242][ T156] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1537.745005][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.750694][ T156] ? __mpage_writepages+0x1a8/0x210 [ 1537.755913][ T156] ? __pfx___mpage_writepages+0x10/0x10 [ 1537.761505][ T156] hfs_write_inode+0xce/0xab0 [ 1537.766200][ T156] ? __pfx_hfs_write_inode+0x10/0x10 [ 1537.771499][ T156] ? __lock_acquire+0x4a5/0x2630 [ 1537.776473][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1537.782316][ T156] ? __writeback_single_inode+0x454/0x1350 [ 1537.788163][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.793826][ T156] __writeback_single_inode+0xcd4/0x1350 [ 1537.799509][ T156] ? __pfx___writeback_single_inode+0x10/0x10 [ 1537.805615][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.811267][ T156] ? do_raw_spin_unlock+0x145/0x1e0 [ 1537.816498][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.822154][ T156] writeback_sb_inodes+0x766/0x1c60 [ 1537.827404][ T156] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1537.833074][ T156] ? wakeup_preempt_fair+0x630/0x1050 [ 1537.838512][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.844165][ T156] ? rcu_is_watching+0x12/0xc0 [ 1537.848964][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.854618][ T156] ? queue_io+0x287/0x540 [ 1537.858978][ T156] wb_writeback+0x1bf/0xb90 [ 1537.863529][ T156] ? __pfx_wb_writeback+0x10/0x10 [ 1537.868603][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.874258][ T156] ? mark_held_locks+0x40/0x70 [ 1537.879049][ T156] ? _raw_spin_unlock_irq+0x23/0x50 [ 1537.884280][ T156] wb_workfn+0x14f/0xc00 [ 1537.888568][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.894224][ T156] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1537.900068][ T156] ? __pfx_wb_workfn+0x10/0x10 [ 1537.904870][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.910528][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.916181][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.921835][ T156] ? rcu_is_watching+0x12/0xc0 [ 1537.926633][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.932290][ T156] process_one_work+0xa0e/0x1980 [ 1537.937265][ T156] ? __pfx_process_one_work+0x10/0x10 [ 1537.942661][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.948326][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.953988][ T156] worker_thread+0x5ef/0xe50 [ 1537.958616][ T156] ? kthread+0x13a/0x450 [ 1537.962876][ T156] ? __pfx_worker_thread+0x10/0x10 [ 1537.968011][ T156] kthread+0x370/0x450 [ 1537.972101][ T156] ? __pfx_kthread+0x10/0x10 [ 1537.976710][ T156] ret_from_fork+0x72b/0xd50 [ 1537.981323][ T156] ? __pfx_ret_from_fork+0x10/0x10 [ 1537.986461][ T156] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1537.992116][ T156] ? __switch_to+0x800/0x1100 [ 1537.996827][ T156] ? __switch_to_asm+0x39/0x70 [ 1538.001621][ T156] ? __pfx_kthread+0x10/0x10 [ 1538.006232][ T156] ret_from_fork_asm+0x1a/0x30 [ 1538.011037][ T156] [ 1538.014270][ T156] Kernel Offset: disabled [ 1538.018588][ T156] Rebooting in 86400 seconds..