last executing test programs: 19.945242021s ago: executing program 2 (id=10577): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x14, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r0, 0x0, 0x0, 0x4}, 0x20) 19.716922623s ago: executing program 2 (id=10580): r0 = socket$nl_crypto(0x10, 0x3, 0x15) sendmsg$nl_crypto(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@get={0xe0, 0x13, 0x1, 0x70bd26, 0x25dfdbff, {{'sha256\x00'}, '\x00', '\x00', 0x400, 0x2000}}, 0xe0}, 0x1, 0x0, 0x0, 0x4001}, 0x0) 19.571785613s ago: executing program 2 (id=10582): r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x114, 0x4, 0x0, 0x0) 19.394632804s ago: executing program 2 (id=10585): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x800, &(0x7f00000017c0)={[{@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@umask={'umask', 0x3d, 0x4}}, {@namecase}, {@namecase}, {@fmask={'fmask', 0x3d, 0x8}}, {@discard}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'euc-jp'}}, {@allow_utime={'allow_utime', 0x3d, 0x3}}, {@errors_continue}]}, 0x1, 0x1528, &(0x7f0000000280)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzfzP/1D/kd0NAQIECFSqMwRiMxVjMhbkwN+bGPJgHIxjBOIzDfJgP82N+LIgFMR7jsQgWQYMGCQmLYlGMYhSLY3EsgSWwFJZChw4TMAHL4k1YDstheSyPFbACVsRKWAmrYBWsilWxGlbD6lgda2ANrIW18C68C/tgXayL9bAe1sf6l25PYSNshI2xMTbBJtgUm2IzbIYtsAW2wlbYGltjG2yD7bAdtsf22AE7YCImYkfsiJ2wE3bGztgFu2BX7IrdsDt2z3w+B+AL+AL2xhqiD/bFvtgPk3MMwJfwJXwZB+Er+Aq+isk4BIfia/gavo7D8SSOwJE4CkdhVfEWjsGxSGI8pmAKTsSJOAknYVah7+JUTMVpOB2n4wyciTPxfZyNH+AHOBfn4nxMwzRcgAsxHdNxEZ7CDFyMS3ApLsPluAxX4ipciWtwLa7B9bgeN+JG3IybcStuxe24HT9BBYCf4m7cjcm4F/fiPtyH+3E/HsADmImZeBAP4iE8hIfxMB7BI3gUj+FxPIYn8ASexFN4Gk/jWTyL5/DZ+K8bf1JydTKILEooESNiRKyIFblELpFb5BZ5RB4RERERJ+JEPpFP5Bf5RUFRUMSLeFFEFBFGGEEijAEAERVRUVwUFyVECVFKlBJOOJEgEkRZUVaUE+VEeXGLqCBuFRVFJdHWVRFVRFXRzlUTd4jqorqoIWqKWqK2qC3qiDqirqgr6ol6or6oLxqI+0VD0QcH4IMiqzNNxBBsKoZiM9FcyIufYK3FcGwj2op24nExEkdgB9HaJYqnREcxBjuJv4mx+IzoIsZjV/Gc6Ca6ix7iedFTtHG9RG8xGfuIvmIq9hP9xQDxkpiBNcX7ODtnLfGqSBZDxFDxmpiPr4vh4g0xQowUo8SbYrR4S4wRY8U4MV6kiAlionhbTBLviMniXTFFTBWpYpqYLt4TM8RMMUu8L2aLD8QcMVfME/NFmvhQLBALRbr4SCwSH4sMsVgsEUvFMrFcrBArxSqxWqwRa8U6sV5sEBvFJrFZbBFbxTaxXewQn4id4lOxS+wWe8RnYq/4XOwTX4j94ktxQHwlMsXX4qD4RhwS34rD4jtxRHwvjopj4rj4QZwQP4qT4pQ4Lc6Is+IncU78LM4LL0CiFFJKJQMZI3PIWJlT5pJXydwyuPjsXiPj5LUyn7xO5pcFZEFZSMbLwrKI1NJIK0mGsqgsJqPyellc3iBLyJKylCwtnSwjE+SNsqy8SZaTN8vy8hZZQd4qK8pKsrKsIm+TVeXtEiIX9lFD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6iy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeW/zH/7d/IH/7L3jXKT3Cy3yK1ym9wud8hP5E65U+6Su+QeuUfulXvlPrlP7pf75QF5QGbKTHlQHpSH5CF5WB6WR+QReVQek2fkD/KE/FGelKfkKXlGnpVn5bmLzwEoVEJJpVSgYlQOFatyqlzqKpVbXa3yqLwqoq5RcepalU9dp/KrAqqgKqTiVWFVRGlllFWkQlVUFVNRdT1efMGoUqq0cqqMSlA3/jv5qri6QZVQJX+Vf6m+pH9SXyvVSrVWrVUb1Ua1U+1Ue9VedVAdVKJKVB1VR9VJdVKdVWfVRXVRXVVX1U11Uz1UD9VT9VS9VC+VpJJUX/Wi6qf6qwHqJTVQvawGqUFqsBqsklWyGqqGqmFqmBquhqsRaoQapUap0Wq0GqPGqHFqnEpRKWqimqgmqUlqspqspqgpKlWlqulqupqhZqhZapaarWarOWqOmqfmqTSVphaoBSpdpatFapHKUIvVYrVULVXL1XK1Uq1Uq9VqtVatVevVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nnfYFIhCBClQQE8QEsUFskCvIFeQOcgd5gjxBJIgEcUFckC+4LsgfFAgKBoWC+KBwUCTQgQlsIC42PRpcHxQPbghKBCWDUkHpwAVlgoTgxqBscFNQLrg5KB/cElQIbg0qBpWCykGV4LaganB7UC24I6ge3BnUCGoGtYLawV1BneDuoG5wT1AvuDeoH9wXNAjuDxoGDwSNggeDxsFDQZPg4aBp8EjQLGgetAhaBq3+1Pm9P1ngMddL99ZJuo/uq1/U/XR/PUC/pAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erJ+V0/RU3Wqnqan6/f0DD1Tz9Lv69n6Az1Hz9Xz9Hydpj/UC/RCna4/0ov0xzpDL9ZL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0J3qn/lTv0rv1Hv2Z3qs/1/v0F3q//lIf0F/pTP21Pqi/0Yf0t/qw/k4f0d/ro/qYPq5/0Cf0j/qkPqVP6zP6rP5Jn9M/6/PaZ53cZ329G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emn8ln8pv8pqApaOJNvCliipgsZMgUNUVN1ERNcVPclDAlTClTyjjjTIJJMGVNWVPOlDPlTXlTwVQwFU1FU9lUNreZ28zt5nZzh7nD3GnuNDVNTVPb1DZ1TB1T19Q19Uw9U9/UNw1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1MM9PCtDCtTCvT2rQ2bUwb0860M+1Ne9PBdDCJJtF0NB1NJ9PJdDadTRfTxXQ1XU030830MD1MT9PT9DK9TJJJMn1NX9PP9DMDzAAz0Aw0g8wgM9gMNskm2Qw1Q80wM8wMN8PNCDPSjMo6UTVvmTFmrBlnxpsUk2ImmolmkplkJpvJZoqZYlJNqpluppsZZoaZZWaZ2Wa2mWPmmHlmnkkzaWaBWWDSTbpZZBaZDJNhlpglZplZZlaYFWaVWWXWmDVmHawzG8wGs8lsMlvMFrPNbDM7zA6z0+w0u8wus8fsMXvNXrPP7DP7zX5zwBwwmSbTHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81ZU+Di96U3sTanzWWvsrnt1TaPzWv/MS5oC9l4W9gWsdrmtwV+FRtrbQlb0paypa2zZWyCvfE3cUVbyVa2Vexttqq93Vb7TVzH3m3r2ntsPXuvrW3v+lVc395nG9iHbUNEANvcNrYtbRP7sG1qH7HNbHPbwra07e0TtoN90ibap2xH+/Rv4gV2oV1lV9s1dq3dZXfb0/aMPWS/tWftT7aX7W0H2pftIPuKHWxftcl2yG/iUfZNO9q+ZcfYsXacHf+beIqdalPtNDvdvmdn2Jm/idPsh3a2Tbdz7Fw7z87/Jc6qKd1+ZBfZj22GDWCJXWqX2eV2hV15qVaf1663G+xGu9N+arfYrXab3W53XDoRtrvtHvuZ3Ws/twftN3a//dIesIdtpv36lzjr+A7b7+wR+709ao/Z4/YHe8L+qC5lZx37D/Zne956C4QEJElRQDGUg2IpJ+Wiqyg3XU15KC9F6BqKo2spH11H+akAFaRCFE+FqQhpMmSJKKSiVIyidD1dKq8UlSZHZSiBbqSydBOVo5upPN1CFehWqkiVqDJVoduoKt1O1egOqk53Ug2qSbWoNt1Fdehuqkv3UD26l+rTfdSA7qeG9AA1ogepMT1ETehhakqPUDNqTi2oJbWiR6k1PUZtqC21o8epPT1BHehJSqSnqCM9TZ3ob9SZnqEu9Cx1peeoG3WnHvQ89aQXqBf1piTqQ33pRepH/WkAvUQD6WUaRK/QYHqVkmkIDaXXaBi9TsPpDRpBI2kUvUmj6S0aQ2NpHI2nFJpAE+ltmkTv0GR6l6bQVEqlaTSd3qMZNJNm0fs0mz6gOTSX5tF8SqMPaQEtpHT6iBbRx5RBi2kJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQJ7STPqVdtJv20Ge0lz6nffQF7acv6QB9RZn0NR2kb+gQfUuH6Tvfm76no3SMjtMPdIJ+pJN0ik7TGTpLP9E5+pnOkycIMRShDFUYhDFhjjA2zBnmCq8Kc4dXh3nCvGEkvCaMC68N84XXhfnDAmHBsFAYHxYOi4Q6NKENKQzDomGxMBpeHxYPbwhLhCXDUmHp0IVlwoTwxrBseFNYLrw5LB/eElYIbw0rhpXCh++tEt4WVg1vD6uFd4TVwzvDGmHNsFZYO7wrrBPeHdYN7wnrhfeG5cL7wgbh/WHD8IGwUfhg2Dh8KGwSPhw2DR8Jm4XNwxZhy7BV+GjYOnwsbBO2DduFj4ftwyfCDuGTYWL4VNgxfPqX9fct/Ofrk8I+Yd/wxfDF0Pt75Lzo/Gha9MPogujCaHr0o+ii6MfRjOji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxqj3tXOAQyecdMoFLsblcLEup8vlrnK53dUuj8vrIu4aF+eudfncdS6/K+AKukIu3hV2RZx2xllHLnRFXTEXdde74u4GV8KVdKVcaedcGZfgWrpWrpVr7R5zbVxb18497h53T7gn3JPuSfeU6+iedp3c31xn94zr4p51z7rnXDfX3fVwz7uebkKeC+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ15YS9z3Bw3z81zaS7NLXBZ54zpbpFb5DJchlvilrhlbplb4Va4VW6VW+PWuHVundvgNrhNbpPb4ra4bW6b2+F2uJ1up9vl816Y1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5Mi7kSmRqZHUyLTI9Mh7kRmRmZFZkfcjsyMfROZE5kbmReZH0iIfRhZEFkbSIx9FFkU+jmREFkeWRJZGlkWWR7wvvCX0RX0xH/XX++L+Bl/Cl/SlfGnvfBmf4G/0Zf1Nvpy/2Zf3t/gK/lZf0Vfylf0jvplv7lv4lr6Vf9S39o/5Nr6tb+cf9+39E76Df9In+qd8R/+07+T/5jv7Z3wX/6zv6p/z3Xx338M/73v6F3wv39sn+T6+r3/R9/P9/QD/kh/oX/aD/Ct+sH/VJ/shfqh/zQ/zr/vh/g0/wo/0o2Le9KMvXSLDeJ/iJ/iJ/m0/yb/jJ/t3/RQ/1af6aX66f8/P8DP9LP++n+0/8HP8XD/Pz/dp/kO/wC/06f4jv8h/7DP84ks3lf0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9Dv+J3+k/9bv8br/Hf+b3+s/9Pv+F3++/9Af8Vz7Tf+0P+m/8If+tP+y/80f89/6oP+aP+x/8Cf+jP+lP+dP+jD/rf/Ln/M/+PP/OGmOMMcbYHzLh8lD8es2F2/l9fidH/N3GfQHg6q2FMv9+fdYZ5br8F8b9RXz7CAA81bvrg5eWGjWSkpIubpshISg2F+DS/wRliYHL8WJoB09AIrSFsr9bf3/R/Sz9i/mjtwDk+rucWLgcX57/CwBM+p35H3181IIK4em4/8/8cwFKFLuckxMux4uh3S/3V9pCuX9Sf4HW/6L+nF+mALT5u5zccDm+XH8CPAZPQ+KvtmSMMcYYY4wxxi7oLyp3vnT9eeknPn/v+jxeXc7JAZfjf3V9zhhjjDHGGGOMsSvvme49nnw0MbFt539/UO1/lPWHB03hf2tmHvzuwHuAS48oAPgPJwTIGsi/8ig2/yX7Sr741vnHVcvO+AD+O1r5Zwyu8AcTY4wxxhhj7E93+aT/14+rK1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWDf0Vf07sSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//kfb+pw==") mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 18.923569527s ago: executing program 2 (id=10591): capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000500)={0x200001, 0x200001, 0x7}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c40000000000000000000085000000aa00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000}, 0x43) 18.640332218s ago: executing program 2 (id=10594): r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) ioctl$VIDIOC_S_AUDIO(r0, 0x40345622, &(0x7f00000001c0)={0x0, "3c4d83e651b1791481d5da49a0e1f5dd23f3fc71e6a58aae6fd755a19f96a736", 0x3}) 18.212093161s ago: executing program 32 (id=10594): r0 = syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2) ioctl$VIDIOC_S_AUDIO(r0, 0x40345622, &(0x7f00000001c0)={0x0, "3c4d83e651b1791481d5da49a0e1f5dd23f3fc71e6a58aae6fd755a19f96a736", 0x3}) 3.079917623s ago: executing program 1 (id=10723): r0 = socket$phonet(0x23, 0x2, 0x1) sendto$phonet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 2.798380585s ago: executing program 1 (id=10725): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003173610ef171e7206de010203010902f3c8010000000009040000000206"], 0x0) syz_usb_control_io$sierra_net(r0, 0x0, &(0x7f0000000280)={0x1c, &(0x7f0000000180)={0x0, 0x11, 0x4, "65ef1b62"}, 0x0, 0x0}) 1.82148923s ago: executing program 4 (id=10734): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newlink={0x44, 0x10, 0x401, 0x800000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x32b, 0x3069e}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_ALL_SLAVES_ACTIVE={0x5, 0x11, 0x1}, @IFLA_BOND_MIN_LINKS={0x8, 0x12, 0x80000001}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000000}, 0xc050) 1.436613352s ago: executing program 4 (id=10738): syz_mount_image$cramfs(&(0x7f0000000080), &(0x7f0000000180)='./file2\x00', 0x1, &(0x7f0000000000)=ANY=[@ANYRES64=0x0], 0xfd, 0x151, &(0x7f0000000400)="$eJzsj89LImEch59XR/eXri644C7sXvaw4uI6jtitg0aSkM0hvHQKaiJhTPEQHqtzh/6AORRBJ5GIjh3CTpZC2N/hLegUxjszUV07v89l5vt8vu+H952fHaWIQxCPuWaj1bbC/lRePju/+Cr/PgAfXddoteXyurdxWYRN+dVgsuvpq2gAsK3/a01bzpMipIDSF9ioh9DlwQB8li4hnW3l8M6n/kD/u+eM104D6raV991PDUoxb0/2TY/gr+z79tJ3D3SckP+WTPrkV7DoD3Scf73u9dJwUMmkf1v7RvnHcSQZpOY+Xcj8LjvI3GZ73fFoWF00q+YobxgzeT2n64WxeTOsFHYO0BYi27Ai3vaFZUcN9gQ4ArpuPnkUURD9wwezETtNfAK24iA6DsgENxH+/bwksJoMPRvENIZCoVAoFAqFQqFQKBTv4ikAAP//TolZNg==") execve(&(0x7f00000003c0)='./file2\x00', 0x0, 0x0) 1.391040532s ago: executing program 3 (id=10739): r0 = socket(0x2, 0x80805, 0x0) setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f0000000000)=0x4, 0x4) 1.335682013s ago: executing program 0 (id=10740): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000380)="d800000018007b18e00212ba0d8105040a601100fe0f040b067c73a1bc0009001e000500000000001500150005000000000000000300014002000c0901ac04000bd67f6f94007100a007a290457f0189b316277ce06bbace8017cbecbf29d746e7372f2a00001fb791643a5ee4b11602b2a10c11ce1b14d6d930dfe1d9d322fe04fb95cae8c9010000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad8ffd5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd601edef3d93452a92307f00000e97031e9f05e9f16e9cb5000000000000", 0xd8}], 0x1, 0x0, 0x0, 0x2663}, 0x0) 1.169461443s ago: executing program 3 (id=10741): r0 = socket$inet6(0xa, 0x2, 0x0) sendmsg$inet6(r0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xa, 0x4e20, 0x80000, @dev={0xfe, 0x80, '\x00', 0x20}}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=[@pktinfo={{0x0, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x2e}}}}], 0xb}, 0x40c0) 1.107557844s ago: executing program 0 (id=10742): timer_create(0x0, 0x0, &(0x7f00000002c0)=0x0) timer_delete(r0) 991.498484ms ago: executing program 3 (id=10743): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x1, 0x2000, 0x9) 849.916095ms ago: executing program 4 (id=10744): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000400), 0x0) ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r0, 0x40505331, &(0x7f0000000540)={{}, {0x18}, 0x0, 0x7}) 848.894535ms ago: executing program 1 (id=10745): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000080)=@echo=0x7) 828.531525ms ago: executing program 0 (id=10746): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000200)={0x2, @pix={0xc0000000, 0x1, 0x32315559, 0x3, 0x1, 0x8, 0x9, 0x6, 0x0, 0x1, 0x1, 0x3}}) 695.601716ms ago: executing program 3 (id=10747): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000600), 0x141000, 0x0) ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f0000000640)={0x39, 0x1}) 620.476077ms ago: executing program 4 (id=10748): r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xc000003, 0xf, &(0x7f0000000180)=[0x16, 0x9, 0xf909, 0x899d, 0x80, 0xfffffffb, 0x7, 0x10, 0xfffffe01, 0x1, 0x4, 0x2, 0x6, 0x8811, 0x0], 0x1, 0x4000007}) 604.111426ms ago: executing program 1 (id=10749): r0 = socket(0x1000000000000010, 0x80802, 0x0) write(r0, &(0x7f0000000000)="24000000520001000000f4f9002304000a04f51108000100020000000800028001000000", 0x24) 593.514947ms ago: executing program 0 (id=10750): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000400)='/sys/power/resume', 0x149a82, 0x0) write$cgroup_int(r0, &(0x7f0000000040)=0x1f00, 0x12) 400.631598ms ago: executing program 1 (id=10751): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="440000001000010400000000fdffffff00000000", @ANYRES32=0x0, @ANYBLOB="00000000000400002400128009000100626f6e64000000001400028008001f0000000000080009"], 0x44}}, 0x0) 390.690328ms ago: executing program 4 (id=10752): r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) bind$802154_raw(r0, &(0x7f0000000680)={0x24, @long={0x3, 0x2, {0xaaaaaaaaaaaa0102}}}, 0x14) 370.875708ms ago: executing program 0 (id=10753): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000000)={0x60, 0x2, 0x6, 0x101, 0x0, 0x0, {0x4, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x5}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x9}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x4044081}, 0x0) 336.412148ms ago: executing program 3 (id=10754): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./file1\x00', 0x84, &(0x7f0000000000)=ANY=[], 0x8b, 0x2d5, &(0x7f0000025dc0)="$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") syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x181d011, 0x0, 0x40, 0x0, &(0x7f0000000140)) 164.816459ms ago: executing program 0 (id=10755): r0 = socket$vsock_stream(0x28, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000080)=[{0x30, 0x4, 0xfd, 0xfffff028}, {0x6, 0x7, 0x10, 0x40000}]}, 0x10) 143.950239ms ago: executing program 4 (id=10756): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(r0, 0xc01064bd, &(0x7f0000000140)={0x0}) 70.08071ms ago: executing program 1 (id=10757): mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0xc1c0, 0x0) mount$tmpfs(0x0, &(0x7f000000b8c0)='./file3\x00', &(0x7f000000b900), 0x8001, &(0x7f000000b940)={[{@mpol={'mpol', 0x3d, {'prefer', '', @void}}}], [{@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}]}) 0s ago: executing program 3 (id=10758): r0 = syz_open_dev$video4linux(&(0x7f0000000780), 0x5, 0x0) ioctl$VIDIOC_SUBDEV_S_SELECTION(r0, 0xc040563e, &(0x7f0000000000)={0x0, 0x0, 0x103, 0x0, {0x0, 0x2, 0x4, 0xc09}}) kernel console output (not intermixed with test programs): duct: syz [ 1318.744907][T27033] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 1318.754024][ T5822] usb 1-1: Manufacturer: syz [ 1318.758695][ T5822] usb 1-1: SerialNumber: syz [ 1318.781422][T27039] loop3: detected capacity change from 0 to 1024 [ 1318.791823][T27033] EXT4-fs (loop2): 1 truncate cleaned up [ 1318.798339][ T5822] usb 1-1: config 0 descriptor?? [ 1318.803731][ T787] usb 2-1: USB disconnect, device number 45 [ 1318.819782][T27033] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1318.865298][T27039] syz.3.9322: attempt to access beyond end of device [ 1318.865298][T27039] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 1318.882678][T27033] ext4 filesystem being mounted at /2321/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1318.898564][T27033] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1319.099763][ T5822] usb 1-1: Found UVC 0.00 device syz (046d:0823) [ 1319.120646][ T5822] usb 1-1: No valid video chain found. [ 1319.358491][ T5910] usb 1-1: USB disconnect, device number 56 [ 1319.627595][T27055] loop2: detected capacity change from 0 to 2048 [ 1319.688516][T27060] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1320.197263][T27072] loop1: detected capacity change from 0 to 256 [ 1320.318996][T27072] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xba6f1341, utbl_chksum : 0xe619d30d) [ 1320.576509][T27062] loop3: detected capacity change from 0 to 32768 [ 1320.616089][T27062] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.9333 (27062) [ 1320.634316][T27080] netlink: 'syz.1.9342': attribute type 10 has an invalid length. [ 1320.687875][T27062] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1320.716701][T27062] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 1320.725744][T27062] BTRFS info (device loop3): setting nodatasum [ 1320.738853][T27080] team0: Cannot enslave team device to itself [ 1320.745683][T27062] BTRFS info (device loop3): force zlib compression, level 3 [ 1320.808736][T27062] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8) [ 1320.839650][T27062] BTRFS info (device loop3): use lzo compression, level 0 [ 1320.855590][T27062] BTRFS info (device loop3): turning on flush-on-commit [ 1320.909081][T27062] BTRFS info (device loop3): enabling auto defrag [ 1320.915659][T27062] BTRFS info (device loop3): max_inline at 4096 [ 1320.943012][T27062] BTRFS info (device loop3): using free space tree [ 1321.173899][T27062] BTRFS info (device loop3): enabling ssd optimizations [ 1321.335824][T27078] loop0: detected capacity change from 0 to 32768 [ 1321.375337][T27108] loop2: detected capacity change from 0 to 256 [ 1321.443430][T27108] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 1321.670567][ T5870] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1322.968005][T27150] netlink: 'syz.2.9367': attribute type 2 has an invalid length. [ 1323.076404][T27153] netlink: 'syz.1.9368': attribute type 2 has an invalid length. [ 1323.100657][T27153] netlink: 224 bytes leftover after parsing attributes in process `syz.1.9368'. [ 1323.506733][T27168] bridge5: entered promiscuous mode [ 1323.600842][T27172] ieee802154 phy0 wpan0: encryption failed: -22 [ 1323.654691][T27174] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9379'. [ 1324.052430][T27188] CIFS mount error: No usable UNC path provided in device string! [ 1324.052430][T27188] [ 1324.062538][T27188] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1324.197276][T27194] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9390'. [ 1324.623959][ T5872] Bluetooth: hci0: ACL packet for unknown connection handle 201 [ 1325.066307][T27221] loop0: detected capacity change from 0 to 164 [ 1325.284284][T27225] loop3: detected capacity change from 0 to 2048 [ 1325.379930][T27225] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1326.053872][T27250] bridge2: entered promiscuous mode [ 1326.282291][T27256] kAFS: unable to lookup cell '' [ 1326.435377][T27259] netlink: 'syz.3.9422': attribute type 12 has an invalid length. [ 1326.665444][T27247] loop2: detected capacity change from 0 to 32768 [ 1326.684248][T27247] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.9416 (27247) [ 1326.722990][T27262] loop0: detected capacity change from 0 to 2046 [ 1326.741137][T27247] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1326.762243][T27247] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 1326.788410][T27247] BTRFS info (device loop2): using free space tree [ 1326.840803][T27262] Alternate GPT is invalid, using primary GPT. [ 1326.847337][T27262] loop0: p1 p2 p3 [ 1326.976568][T27247] BTRFS info (device loop2): enabling ssd optimizations [ 1326.987064][T27247] BTRFS info (device loop2): auto enabling async discard [ 1327.103385][ T5766] udevd[5766]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 1327.144071][ T5769] udevd[5769]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 1327.157925][ T5827] udevd[5827]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory [ 1327.273744][ T5875] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1327.340893][T27292] loop0: detected capacity change from 0 to 256 [ 1327.627573][T27292] FAT-fs (loop0): Directory bread(block 64) failed [ 1327.650588][T27292] FAT-fs (loop0): Directory bread(block 65) failed [ 1327.671841][T27292] FAT-fs (loop0): Directory bread(block 66) failed [ 1327.700562][T27292] FAT-fs (loop0): Directory bread(block 67) failed [ 1327.750628][T27292] FAT-fs (loop0): Directory bread(block 68) failed [ 1327.783545][T27292] FAT-fs (loop0): Directory bread(block 69) failed [ 1327.790325][T27292] FAT-fs (loop0): Directory bread(block 70) failed [ 1327.847703][T27292] FAT-fs (loop0): Directory bread(block 71) failed [ 1327.854469][T27292] FAT-fs (loop0): Directory bread(block 72) failed [ 1327.879129][T27300] netlink: 'syz.1.9433': attribute type 1 has an invalid length. [ 1327.898537][T27292] FAT-fs (loop0): Directory bread(block 73) failed [ 1327.905776][T27300] netlink: 'syz.1.9433': attribute type 3 has an invalid length. [ 1327.952202][T27300] netlink: 224 bytes leftover after parsing attributes in process `syz.1.9433'. [ 1328.105911][T27303] loop2: detected capacity change from 0 to 256 [ 1328.167628][T27303] FAT-fs (loop2): Directory bread(block 64) failed [ 1328.209305][T27303] FAT-fs (loop2): Directory bread(block 65) failed [ 1328.227080][T27303] FAT-fs (loop2): Directory bread(block 66) failed [ 1328.261326][T27303] FAT-fs (loop2): Directory bread(block 67) failed [ 1328.277223][T27303] FAT-fs (loop2): Directory bread(block 68) failed [ 1328.298710][T27303] FAT-fs (loop2): Directory bread(block 69) failed [ 1328.305751][T27303] FAT-fs (loop2): Directory bread(block 70) failed [ 1328.327254][T27303] FAT-fs (loop2): Directory bread(block 71) failed [ 1328.355575][T27303] FAT-fs (loop2): Directory bread(block 72) failed [ 1328.381794][T27303] FAT-fs (loop2): Directory bread(block 73) failed [ 1328.420833][T27289] loop3: detected capacity change from 0 to 32768 [ 1328.540847][T27289] JBD2: Ignoring recovery information on journal [ 1328.735081][T27289] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1328.849254][T27315] netdevsim netdevsim1 netdevsim1: entered allmulticast mode [ 1329.096620][ T5870] ocfs2: Unmounting device (7,3) on (node local) [ 1329.260689][T27327] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9446'. [ 1329.823362][ T5872] Bluetooth: hci3: Malformed LE Event: 0x0d [ 1329.897590][T27347] netlink: 'syz.3.9456': attribute type 1 has an invalid length. [ 1329.953468][T27347] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9456'. [ 1330.175241][T27358] loop2: detected capacity change from 0 to 256 [ 1330.354178][T27358] FAT-fs (loop2): Directory bread(block 64) failed [ 1330.361174][T27365] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.9465'. [ 1330.389666][T27358] FAT-fs (loop2): Directory bread(block 65) failed [ 1330.423967][T27358] FAT-fs (loop2): Directory bread(block 66) failed [ 1330.430596][T27358] FAT-fs (loop2): Directory bread(block 67) failed [ 1330.452600][T27358] FAT-fs (loop2): Directory bread(block 68) failed [ 1330.467652][T27358] FAT-fs (loop2): Directory bread(block 69) failed [ 1330.488021][T27358] FAT-fs (loop2): Directory bread(block 70) failed [ 1330.498898][T27358] FAT-fs (loop2): Directory bread(block 71) failed [ 1330.505604][T27358] FAT-fs (loop2): Directory bread(block 72) failed [ 1330.548780][T27358] FAT-fs (loop2): Directory bread(block 73) failed [ 1331.408472][T27397] netlink: 'syz.2.9480': attribute type 40 has an invalid length. [ 1331.472221][T27395] loop0: detected capacity change from 0 to 4096 [ 1331.542921][T27395] ntfs3: loop0: Failed to load $MFT (-22). [ 1331.607065][T27410] loop3: detected capacity change from 0 to 256 [ 1331.777711][T27410] FAT-fs (loop3): Directory bread(block 64) failed [ 1331.823761][T27410] FAT-fs (loop3): Directory bread(block 65) failed [ 1331.843597][T27410] FAT-fs (loop3): Directory bread(block 66) failed [ 1331.870698][T27410] FAT-fs (loop3): Directory bread(block 67) failed [ 1331.903402][T27410] FAT-fs (loop3): Directory bread(block 68) failed [ 1331.928792][T27410] FAT-fs (loop3): Directory bread(block 69) failed [ 1331.946725][T27410] FAT-fs (loop3): Directory bread(block 70) failed [ 1332.001783][T27410] FAT-fs (loop3): Directory bread(block 71) failed [ 1332.024604][T27410] FAT-fs (loop3): Directory bread(block 72) failed [ 1332.063280][T27410] FAT-fs (loop3): Directory bread(block 73) failed [ 1332.375618][T27416] netlink: 'syz.1.9488': attribute type 21 has an invalid length. [ 1332.432142][T27416] netlink: 128 bytes leftover after parsing attributes in process `syz.1.9488'. [ 1332.451736][T27416] netlink: 'syz.1.9488': attribute type 4 has an invalid length. [ 1332.487256][T27416] netlink: 'syz.1.9488': attribute type 3 has an invalid length. [ 1332.505341][T27416] netlink: 3 bytes leftover after parsing attributes in process `syz.1.9488'. [ 1332.814508][T27438] SET target dimension over the limit! [ 1332.986098][ T28] audit: type=1326 audit(1781060768.963:3212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27445 comm="syz.0.9503" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1333.070393][ T28] audit: type=1326 audit(1781060768.963:3213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27445 comm="syz.0.9503" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1333.170976][ T28] audit: type=1326 audit(1781060768.963:3214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27445 comm="syz.0.9503" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=253 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1333.230668][ T28] audit: type=1326 audit(1781060768.963:3215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27445 comm="syz.0.9503" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1333.452231][T27461] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 1333.922395][T27471] loop0: detected capacity change from 0 to 4096 [ 1334.020461][T27471] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1334.101256][T27471] ntfs3: loop0: ino=9, ntfs_sync_fs failed, -22. [ 1334.226352][T27486] loop3: detected capacity change from 0 to 64 [ 1335.079138][T27508] program syz.1.9532 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1335.138792][T27510] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[5870] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[27510] [ 1335.241194][T27512] loop1: detected capacity change from 0 to 1024 [ 1335.339921][T27512] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1335.415379][ T5872] Bluetooth: hci2: unexpected cc 0x204b length: 9 > 3 [ 1335.422987][ T5872] Bluetooth: hci2: unexpected event for opcode 0x204b [ 1335.772036][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1335.795832][T27528] loop3: detected capacity change from 0 to 1024 [ 1335.825808][T27529] netlink: 36 bytes leftover after parsing attributes in process `syz.2.9541'. [ 1336.231647][T27541] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.9547'. [ 1337.149159][T27545] loop3: detected capacity change from 0 to 32768 [ 1337.168820][T27545] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.9549 (27545) [ 1337.215921][T27545] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1337.239758][T27545] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 1337.260385][T27545] BTRFS info (device loop3): setting nodatasum [ 1337.271406][T27545] BTRFS info (device loop3): disabling tree log [ 1337.281110][T27545] BTRFS info (device loop3): max_inline at 0 [ 1337.306901][T27545] BTRFS info (device loop3): turning on sync discard [ 1337.338933][T27545] BTRFS info (device loop3): using free space tree [ 1337.478647][T27550] loop2: detected capacity change from 0 to 32768 [ 1337.538996][T27545] BTRFS info (device loop3): enabling ssd optimizations [ 1337.547641][T27588] loop0: detected capacity change from 0 to 256 [ 1337.574182][T27550] JBD2: Ignoring recovery information on journal [ 1337.626334][T27550] jbd2_journal_bmap: journal block not found at offset 32 on loop2-75 [ 1337.647716][ T5870] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1337.664161][T27588] FAT-fs (loop0): Directory bread(block 64) failed [ 1337.700781][T27550] JBD2: bad block at offset 32 [ 1337.715556][T27588] FAT-fs (loop0): Directory bread(block 65) failed [ 1337.722309][T27588] FAT-fs (loop0): Directory bread(block 66) failed [ 1337.768291][T27588] FAT-fs (loop0): Directory bread(block 67) failed [ 1337.770549][T27550] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 1337.775333][T27588] FAT-fs (loop0): Directory bread(block 68) failed [ 1337.879687][T27588] FAT-fs (loop0): Directory bread(block 69) failed [ 1337.907218][T27588] FAT-fs (loop0): Directory bread(block 70) failed [ 1337.927935][T27588] FAT-fs (loop0): Directory bread(block 71) failed [ 1337.950353][T27550] OCFS2: ERROR (device loop2): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 71 has 16777215 used bits but only 1024 total [ 1337.971815][T27588] FAT-fs (loop0): Directory bread(block 72) failed [ 1338.002107][T27588] FAT-fs (loop0): Directory bread(block 73) failed [ 1338.052217][T27550] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1338.066360][T27550] OCFS2: File system is now read-only. [ 1338.120993][T27550] (syz.2.9551,27550,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30 [ 1338.129622][T27550] (syz.2.9551,27550,1):__ocfs2_claim_clusters:2365 ERROR: status = -30 [ 1338.195701][T27550] (syz.2.9551,27550,1):__ocfs2_claim_clusters:2373 ERROR: status = -30 [ 1338.204085][T27550] (syz.2.9551,27550,1):ocfs2_block_group_alloc_contig:433 ERROR: status = -30 [ 1338.221862][ T6908] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 9 /dev/loop3 scanned by udevd (6908) [ 1338.281277][T27550] (syz.2.9551,27550,1):ocfs2_block_group_alloc:705 ERROR: status = -30 [ 1338.289979][T27550] (syz.2.9551,27550,1):ocfs2_block_group_alloc:758 ERROR: status = -30 [ 1338.345400][T27550] (syz.2.9551,27550,1):ocfs2_reserve_suballoc_bits:833 ERROR: status = -30 [ 1338.354122][T27550] (syz.2.9551,27550,1):ocfs2_reserve_suballoc_bits:850 ERROR: status = -30 [ 1338.388248][T27550] (syz.2.9551,27550,1):ocfs2_reserve_new_metadata_blocks:990 ERROR: status = -30 [ 1338.397669][T27550] (syz.2.9551,27550,1):ocfs2_reserve_new_metadata_blocks:1013 ERROR: status = -30 [ 1338.453147][T27550] (syz.2.9551,27550,1):ocfs2_expand_inline_dir:2841 ERROR: status = -30 [ 1338.461585][T27550] (syz.2.9551,27550,1):ocfs2_extend_dir:3205 ERROR: status = -30 [ 1338.477381][T27588] Process accounting resumed [ 1338.485742][T27550] (syz.2.9551,27550,1):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -30 [ 1338.494623][T27550] (syz.2.9551,27550,1):ocfs2_mknod:298 ERROR: status = -30 [ 1338.537923][T27550] (syz.2.9551,27550,1):ocfs2_mknod:502 ERROR: status = -30 [ 1338.546171][T27550] (syz.2.9551,27550,1):ocfs2_mkdir:659 ERROR: status = -30 [ 1338.825660][ T5875] ocfs2: Unmounting device (7,2) on (node local) [ 1339.132084][T27593] loop1: detected capacity change from 0 to 32768 [ 1339.180839][T27593] JBD2: Ignoring recovery information on journal [ 1339.385227][T27593] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1339.551962][ T28] audit: type=1326 audit(1781060775.099:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27614 comm="syz.2.9567" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1339.607864][T27593] OCFS2: ERROR (device loop1): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 1339.656365][ T28] audit: type=1326 audit(1781060775.099:3217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27614 comm="syz.2.9567" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1339.671876][T27593] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1339.733284][T27593] OCFS2: File system is now read-only. [ 1339.745876][T27593] (syz.1.9563,27593,0):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 1339.767275][ T28] audit: type=1326 audit(1781060775.127:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27614 comm="syz.2.9567" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1339.810914][T27593] OCFS2: ERROR (device loop1): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature  [ 1339.853970][ T28] audit: type=1326 audit(1781060775.127:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27614 comm="syz.2.9567" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1339.863615][T27593] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1339.902801][T27601] loop3: detected capacity change from 0 to 32768 [ 1339.912749][T27601] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.9566 (27601) [ 1339.931528][T27593] (syz.1.9563,27593,0):ocfs2_find_entry_dx:1029 ERROR: status = -30 [ 1339.969026][ T28] audit: type=1326 audit(1781060775.127:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27614 comm="syz.2.9567" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1339.985182][T27593] (syz.1.9563,27593,0):ocfs2_mknod:502 ERROR: status = -30 [ 1340.016224][T27601] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1340.058403][T27601] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1340.067457][T27593] (syz.1.9563,27593,0):ocfs2_create:676 ERROR: status = -30 [ 1340.097497][T27601] BTRFS info (device loop3): enabling ssd optimizations [ 1340.141964][T27601] BTRFS info (device loop3): not using ssd optimizations [ 1340.149112][T27601] BTRFS info (device loop3): turning off barriers [ 1340.173102][T27601] BTRFS info (device loop3): using free space tree [ 1340.265748][ T5878] ocfs2: Unmounting device (7,1) on (node local) [ 1340.429838][T27645] kAFS: unable to lookup cell '(,c' [ 1340.613772][ T5870] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1340.751258][T27647] loop0: detected capacity change from 0 to 4096 [ 1340.842173][T27647] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1340.884662][T27647] ntfs3: loop0: Failed to load $Extend (-22). [ 1340.904293][T27647] ntfs3: loop0: Failed to initialize $Extend. [ 1341.797416][T27675] SET target dimension over the limit! [ 1342.392369][T27692] netlink: 'syz.3.9600': attribute type 1 has an invalid length. [ 1342.469921][T27673] loop0: detected capacity change from 0 to 32768 [ 1342.489869][T27673] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.9590 (27673) [ 1342.563193][T27673] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1342.591068][T27673] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 1342.632332][T27673] BTRFS info (device loop0): using free space tree [ 1342.792892][T27673] BTRFS info (device loop0): enabling ssd optimizations [ 1342.825472][T27673] BTRFS info (device loop0): auto enabling async discard [ 1343.022989][T27722] x_tables: ip_tables: icmp match: only valid for protocol 1 [ 1343.036637][T27687] Bluetooth: hci0: Opcode 0x0c20 failed: -4 [ 1343.107436][ T5869] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1343.657702][T27736] netlink: 'syz.2.9615': attribute type 21 has an invalid length. [ 1344.305113][T27754] loop0: detected capacity change from 0 to 128 [ 1344.334152][T27754] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 1344.396975][ T5872] Bluetooth: hci0: command 0x0406 tx timeout [ 1344.450007][T27756] netlink: 'syz.3.9623': attribute type 22 has an invalid length. [ 1344.634324][T27760] loop0: detected capacity change from 0 to 512 [ 1344.641769][T27760] EXT4-fs: Ignoring removed bh option [ 1344.702705][T27760] EXT4-fs: inline encryption not supported [ 1344.720360][T27760] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 1344.864199][T27760] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1344.942079][T27760] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.9625: bg 0: block 248: padding at end of block bitmap is not set [ 1344.957386][T27760] Quota error (device loop0): write_blk: dquota write failed [ 1344.965453][T27760] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 1344.977342][T27760] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.9625: Failed to acquire dquot type 1 [ 1344.991259][T27760] EXT4-fs (loop0): 1 truncate cleaned up [ 1345.002339][T27760] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 1345.072101][T27747] loop1: detected capacity change from 0 to 32768 [ 1345.103140][T27747] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.9618 (27747) [ 1345.141654][T27747] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1345.152418][ T5822] usb 3-1: new high-speed USB device number 55 using dummy_hcd [ 1345.180215][T27747] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 1345.190424][T27747] BTRFS info (device loop1): using free space tree [ 1345.236990][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 1345.378512][T27747] BTRFS info (device loop1): enabling ssd optimizations [ 1345.386318][T27747] BTRFS info (device loop1): auto enabling async discard [ 1345.412890][ T5822] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1345.438972][ T5822] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1345.455085][ T5822] usb 3-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 1345.464222][ T5822] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1345.547038][ T5822] usb 3-1: config 0 descriptor?? [ 1345.666474][ T5878] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 1345.688234][T27798] loop0: detected capacity change from 0 to 2048 [ 1345.717837][T27798] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1345.797587][T27801] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1345.810513][T27798] syz.0.9635: attempt to access beyond end of device [ 1345.810513][T27798] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1345.986537][T27798] syz.0.9635: attempt to access beyond end of device [ 1345.986537][T27798] loop0: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 1346.043631][ T5822] Bluetooth: Can't get version to change to load ram patch err [ 1346.052387][ T5822] Bluetooth: Loading patch file failed [ 1346.069374][T27798] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=0) [ 1346.085829][ T5822] ath3k: probe of 3-1:0.0 failed with error -71 [ 1346.122219][ T5822] usb 3-1: USB disconnect, device number 55 [ 1346.255989][T27806] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1346.266587][T27806] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1346.289295][T27806] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1346.334437][T27806] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1346.389415][T27806] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1346.417976][T27806] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1347.347497][T27832] loop1: detected capacity change from 0 to 4096 [ 1347.357897][T27832] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1347.572778][T27832] ntfs3: loop1: failed to convert "c46c" to iso8859-1 [ 1348.001025][T27848] loop1: detected capacity change from 0 to 4096 [ 1348.042129][T27848] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 1348.182693][T27848] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 1348.207414][T27833] loop2: detected capacity change from 0 to 32768 [ 1348.221547][T27856] vlan0: entered promiscuous mode [ 1348.323950][T27833] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1348.497884][T27868] loop3: detected capacity change from 0 to 256 [ 1348.527472][T27833] XFS (loop2): Ending clean mount [ 1348.532788][T27868] exfat: Deprecated parameter 'utf8' [ 1348.583724][T27868] exfat: Deprecated parameter 'utf8' [ 1348.698840][T27868] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 1348.844061][T27872] netlink: 'syz.0.9666': attribute type 9 has an invalid length. [ 1348.844522][ T5875] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1348.851915][T27872] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.9666'. [ 1349.297858][T27883] loop0: detected capacity change from 0 to 1024 [ 1349.352926][T27883] EXT4-fs: Ignoring removed orlov option [ 1349.463261][T27883] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1349.577434][T27883] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1349.768140][T27898] bridge6: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 1349.799750][T27898] bridge6: entered promiscuous mode [ 1349.805107][T27898] bridge6: entered allmulticast mode [ 1349.841279][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1350.407581][T27919] loop3: detected capacity change from 0 to 64 [ 1350.443931][T27919] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1350.798533][T27931] loop0: detected capacity change from 0 to 1764 [ 1350.894644][T27931] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1350.955085][T27937] loop3: detected capacity change from 0 to 256 [ 1350.982871][T27937] exfat: Deprecated parameter 'namecase' [ 1350.988666][T27937] exfat: Deprecated parameter 'utf8' [ 1351.081703][T27937] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x544194fd, utbl_chksum : 0xe619d30d) [ 1351.117229][T27939] loop2: detected capacity change from 0 to 2048 [ 1351.184357][T27942] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1351.286408][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.383313][T27939] Remounting filesystem read-only [ 1351.418460][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.495542][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.570993][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.644631][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.667063][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.699406][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.744509][T27939] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1351.757438][ T28] audit: type=1800 audit(1781060786.530:3221): pid=27939 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.9698" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 1351.999994][T27959] loop0: detected capacity change from 0 to 4096 [ 1352.018932][ T8] usb 2-1: new low-speed USB device number 46 using dummy_hcd [ 1352.031490][T27961] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1352.059534][T27959] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1352.198821][T27959] ntfs3: loop0: failed to convert "c46c" to cp862 [ 1352.227510][ T8] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 1352.241264][ T8] usb 2-1: config 179 has no interface number 0 [ 1352.262449][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 1029, setting to 8 [ 1352.277649][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 1352.289406][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 1352.311064][ T8] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 19 [ 1352.360959][ T8] usb 2-1: config 179 interface 65 has no altsetting 0 [ 1352.367965][ T8] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 1352.386678][T27967] netlink: 76 bytes leftover after parsing attributes in process `syz.3.9711'. [ 1352.412314][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1352.456631][T27954] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1352.514157][ T8] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input66 [ 1352.964548][ T787] usb 2-1: USB disconnect, device number 46 [ 1352.964637][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1353.003875][ T787] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 1353.092499][T27980] loop2: detected capacity change from 0 to 256 [ 1354.704485][T28041] netlink: 3 bytes leftover after parsing attributes in process `syz.0.9748'. [ 1355.234845][T28058] loop2: detected capacity change from 0 to 4096 [ 1355.492539][T28064] loop0: detected capacity change from 0 to 8192 [ 1355.591985][T28064] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1355.656614][T28064] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 1355.668056][T28064] REISERFS (device loop0): using ordered data mode [ 1355.674667][T28064] reiserfs: using flush barriers [ 1355.683259][T28064] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1355.715544][T28064] REISERFS (device loop0): checking transaction log (loop0) [ 1355.748057][T28064] REISERFS (device loop0): Using r5 hash to sort names [ 1355.795033][T28064] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 1356.028119][T28083] netlink: 92 bytes leftover after parsing attributes in process `syz.3.9766'. [ 1356.048196][T28083] netlink: 'syz.3.9766': attribute type 3 has an invalid length. [ 1356.056069][T28081] loop1: detected capacity change from 0 to 4096 [ 1356.081308][T28083] netlink: 92 bytes leftover after parsing attributes in process `syz.3.9766'. [ 1356.101066][T28084] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1356.560956][T28096] sg_write: data in/out 262268/45 bytes for SCSI command 0x7a-- guessing data in; [ 1356.560956][T28096] program syz.1.9771 not setting count and/or reply_len properly [ 1356.680298][T28100] loop3: detected capacity change from 0 to 1024 [ 1356.700872][T28100] EXT4-fs: Ignoring removed orlov option [ 1356.732568][T28100] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1356.736172][T12447] usb 3-1: new high-speed USB device number 56 using dummy_hcd [ 1356.780672][T28100] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1356.962748][T12447] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1356.973899][T12447] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1356.983749][T12447] usb 3-1: Product: syz [ 1356.988222][T12447] usb 3-1: Manufacturer: syz [ 1356.993456][T12447] usb 3-1: SerialNumber: syz [ 1357.006332][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1357.021499][T12447] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1357.088582][ T5839] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1357.345887][T28118] netlink: 'syz.0.9782': attribute type 1 has an invalid length. [ 1357.637503][T12447] usb 3-1: USB disconnect, device number 56 [ 1357.895340][T28132] loop3: detected capacity change from 0 to 2048 [ 1357.929820][T28134] netlink: 19 bytes leftover after parsing attributes in process `syz.0.9790'. [ 1357.956061][T28137] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1358.069185][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.132609][T28132] Remounting filesystem read-only [ 1358.158438][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.163940][T28142] loop1: detected capacity change from 0 to 16 [ 1358.192516][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.223917][T28142] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1358.228996][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.253107][ T5839] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1358.260290][ T5839] ath9k_htc: Failed to initialize the device [ 1358.293406][ T6908] udevd[6908]: incorrect cramfs checksum on /dev/loop1 [ 1358.303409][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.314230][T12447] usb 3-1: ath9k_htc: USB layer deinitialized [ 1358.331333][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.373843][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.394967][ T6908] udevd[6908]: incorrect cramfs checksum on /dev/loop1 [ 1358.412647][T28132] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1358.438750][ T28] audit: type=1800 audit(1781060792.778:3222): pid=28132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.9789" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 1358.732487][T28152] xt_nfacct: accounting object `syz1' does not exist [ 1358.785546][T28154] loop1: detected capacity change from 0 to 256 [ 1359.023997][T28160] netlink: 'syz.1.9801': attribute type 21 has an invalid length. [ 1359.059627][T28160] netlink: 'syz.1.9801': attribute type 1 has an invalid length. [ 1359.613390][T28178] netlink: 'syz.3.9808': attribute type 15 has an invalid length. [ 1359.654447][T28178] netlink: 666 bytes leftover after parsing attributes in process `syz.3.9808'. [ 1359.777102][T28182] loop1: detected capacity change from 0 to 64 [ 1359.865924][T28182] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1360.530757][T28208] loop2: detected capacity change from 0 to 64 [ 1360.744616][T28216] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9829'. [ 1360.947007][T28224] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9834'. [ 1361.130695][T28230] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9835'. [ 1361.432884][T28240] batadv0: entered promiscuous mode [ 1361.600072][T28246] geneve2: entered promiscuous mode [ 1362.417265][T28248] loop0: detected capacity change from 0 to 32768 [ 1362.891542][ T8] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 1362.923186][ T787] usb 3-1: new high-speed USB device number 57 using dummy_hcd [ 1363.116707][ T8] usb 2-1: Using ep0 maxpacket: 32 [ 1363.128162][ T787] usb 3-1: Using ep0 maxpacket: 8 [ 1363.135427][ T8] usb 2-1: config 0 has an invalid interface number: 85 but max is 0 [ 1363.149819][ T787] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1363.163759][ T8] usb 2-1: config 0 has no interface number 0 [ 1363.172983][ T787] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1363.188660][ T8] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1363.200612][ T787] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 249, changing to 7 [ 1363.219433][ T8] usb 2-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1363.229536][ T787] usb 3-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 1363.250666][ T8] usb 2-1: config 0 interface 85 has no altsetting 0 [ 1363.262039][ T8] usb 2-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 1363.281277][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1363.290311][ T787] usb 3-1: New USB device found, idVendor=2b53, idProduct=0031, bcdDevice= 0.40 [ 1363.305825][ T8] usb 2-1: Product: syz [ 1363.310422][ T787] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1363.325030][ T8] usb 2-1: Manufacturer: syz [ 1363.330129][ T8] usb 2-1: SerialNumber: syz [ 1363.335818][ T787] usb 3-1: Product: syz [ 1363.341424][ T787] usb 3-1: Manufacturer: syz [ 1363.343883][T28288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9864'. [ 1363.346074][ T787] usb 3-1: SerialNumber: syz [ 1363.360961][ T8] usb 2-1: config 0 descriptor?? [ 1363.382880][T28288] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9864'. [ 1363.391993][T28288] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9864'. [ 1363.579695][T28294] netlink: 'syz.0.9866': attribute type 1 has an invalid length. [ 1363.600901][T28294] netlink: 220 bytes leftover after parsing attributes in process `syz.0.9866'. [ 1363.691188][ T787] snd-usb-audio: probe of 3-1:1.0 failed with error -22 [ 1363.716665][ T787] snd-usb-audio: probe of 3-1:1.1 failed with error -22 [ 1363.804201][ T787] snd-usb-audio: probe of 3-1:1.2 failed with error -22 [ 1363.839688][ T8] appletouch 2-1:0.85: Failed to request geyser raw mode [ 1363.850780][ T787] usb 3-1: USB disconnect, device number 57 [ 1363.858093][ T8] appletouch: probe of 2-1:0.85 failed with error -5 [ 1363.885653][ T8] usb 2-1: USB disconnect, device number 47 [ 1363.995393][ T6174] udevd[6174]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1364.420014][ T8] usb 4-1: new high-speed USB device number 69 using dummy_hcd [ 1364.591305][ T5910] usb 1-1: new high-speed USB device number 57 using dummy_hcd [ 1364.647128][ T8] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1364.663375][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1364.688977][ T8] usb 4-1: Product: syz [ 1364.693341][ T8] usb 4-1: Manufacturer: syz [ 1364.701764][ T8] usb 4-1: SerialNumber: syz [ 1364.714148][ T8] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1364.722810][T28316] binder: 28315:28316 ioctl 400c620e 200000000040 returned -22 [ 1364.741341][T28318] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709510581) [ 1364.764704][T28318] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647 [ 1364.778091][ T787] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1364.793980][ T5910] usb 1-1: Using ep0 maxpacket: 16 [ 1364.809244][ T5910] usb 1-1: config 0 has no interfaces? [ 1364.839733][ T5910] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1364.869852][ T5910] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1364.889205][ T5910] usb 1-1: Product: syz [ 1364.899128][ T5910] usb 1-1: Manufacturer: syz [ 1364.914872][ T5910] usb 1-1: SerialNumber: syz [ 1364.949171][ T5910] r8152-cfgselector 1-1: config 0 descriptor?? [ 1365.165591][T28326] loop1: detected capacity change from 0 to 512 [ 1365.208152][ T5910] usbip-host 1-1: 1-1 is not in match_busid table... skip! [ 1365.231958][T28326] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 1365.287756][ T5910] usb 4-1: USB disconnect, device number 69 [ 1365.326859][T28326] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 1365.337531][T28326] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1365.347113][T28326] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.9882: Failed to acquire dquot type 1 [ 1365.362104][T28326] EXT4-fs (loop1): 1 truncate cleaned up [ 1365.369225][T28326] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 1365.415864][T28326] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 1365.458114][T28326] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 1365.468763][T28326] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.9882: Failed to acquire dquot type 1 [ 1365.484189][ T5839] usb 1-1: USB disconnect, device number 57 [ 1365.533671][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 1365.860648][T28345] loop1: detected capacity change from 0 to 16 [ 1365.886473][T28345] erofs: (device loop1): mounted with root inode @ nid 36. [ 1365.968669][ T787] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 1365.976728][ T787] ath9k_htc: Failed to initialize the device [ 1365.996728][ T5910] usb 4-1: ath9k_htc: USB layer deinitialized [ 1366.040114][ T5839] usb 3-1: new high-speed USB device number 58 using dummy_hcd [ 1366.263408][ T5839] usb 3-1: Using ep0 maxpacket: 16 [ 1366.276018][ T5839] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 1366.303556][ T5839] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 1366.313037][ T5839] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1366.321099][ T5839] usb 3-1: Product: syz [ 1366.336814][ T5839] usb 3-1: Manufacturer: syz [ 1366.341681][ T5839] usb 3-1: SerialNumber: syz [ 1366.359538][ T5839] usb 3-1: config 0 descriptor?? [ 1366.384460][ T5839] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 1366.404923][ T5839] usb 3-1: Detected FT232R [ 1366.626524][T28363] loop0: detected capacity change from 0 to 8192 [ 1366.655106][ T787] usb 2-1: new high-speed USB device number 48 using dummy_hcd [ 1366.664133][T28363] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1366.707963][T28363] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 1366.718125][T28363] REISERFS (device loop0): using ordered data mode [ 1366.725651][T28363] reiserfs: using flush barriers [ 1366.733361][T28363] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1366.753031][T28363] REISERFS (device loop0): checking transaction log (loop0) [ 1366.812848][ T5839] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1366.842450][ T5839] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71 [ 1366.861513][ T787] usb 2-1: Using ep0 maxpacket: 8 [ 1366.879414][ T5839] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1366.900205][ T787] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1366.933035][ T787] usb 2-1: config 6 has an invalid interface number: 4 but max is 1 [ 1366.933968][ T5839] usb 3-1: USB disconnect, device number 58 [ 1366.956619][ T787] usb 2-1: config 6 has an invalid descriptor of length 0, skipping remainder of the config [ 1366.980984][ T5839] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1366.991084][ T787] usb 2-1: config 6 has 1 interface, different from the descriptor's value: 2 [ 1367.005575][ T5839] ftdi_sio 3-1:0.0: device disconnected [ 1367.021931][ T787] usb 2-1: config 6 has no interface number 0 [ 1367.031272][T28363] REISERFS (device loop0): Using tea hash to sort names [ 1367.050179][T28363] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 1367.062964][ T787] usb 2-1: New USB device found, idVendor=1235, idProduct=0001, bcdDevice= 6.d0 [ 1367.088996][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1367.111413][ T787] usb 2-1: Product: syz [ 1367.124504][ T787] usb 2-1: Manufacturer: syz [ 1367.129232][ T787] usb 2-1: SerialNumber: syz [ 1367.410044][ T787] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 1367.475767][ T787] usb 2-1: USB disconnect, device number 48 [ 1367.577623][ T6174] udevd[6174]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:6.4/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1367.823364][ T28] audit: type=1800 audit(1781060801.543:3223): pid=28376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.3.9906" name="/4923/task/4924/net/xfrm_stat" dev="proc" ino=4026532976 res=0 errno=0 [ 1368.020200][T28389] loop2: detected capacity change from 0 to 2048 [ 1368.089169][T28394] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1368.338410][T28394] NILFS (loop2): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 1368.382065][T28394] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=4) [ 1368.407772][T28394] Remounting filesystem read-only [ 1368.413024][T25519] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 1368.420619][T25519] NILFS (loop2): discard dirty block: blocknr=35, size=1024 [ 1368.427989][T25519] NILFS (loop2): discard dirty block: blocknr=36, size=1024 [ 1368.437921][T25519] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 1368.445680][T25519] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 1368.461670][T25519] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 1368.478763][T25519] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 1368.491379][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.512295][T28404] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9919'. [ 1368.522149][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.542171][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.573167][T25519] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 1368.594116][T25519] NILFS (loop2): discard dirty block: blocknr=18, size=1024 [ 1368.619792][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.663982][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.672941][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.708718][T25519] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 1368.717202][T25519] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 1368.737079][T25519] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 1368.759437][T25519] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 1368.770236][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.790634][T25519] NILFS (loop2): discard dirty page: offset=131072, ino=3 [ 1368.809089][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.831928][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.853712][T25519] NILFS (loop2): discard dirty block: blocknr=46, size=1024 [ 1368.877771][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.899383][T25519] NILFS (loop2): discard dirty page: offset=163840, ino=3 [ 1368.917481][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.957322][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1368.976944][T25519] NILFS (loop2): discard dirty block: blocknr=47, size=1024 [ 1368.995430][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.027989][T25519] NILFS (loop2): discard dirty page: offset=196608, ino=3 [ 1369.039118][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.048085][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.089555][T25519] NILFS (loop2): discard dirty block: blocknr=49, size=1024 [ 1369.125548][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.156637][T25519] NILFS (loop2): discard dirty page: offset=0, ino=5 [ 1369.163408][T25519] NILFS (loop2): discard dirty block: blocknr=41, size=1024 [ 1369.200357][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.230601][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.239649][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.273812][T25519] NILFS (loop2): discard dirty page: offset=0, ino=4 [ 1369.292848][T25519] NILFS (loop2): discard dirty block: blocknr=40, size=1024 [ 1369.303138][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.332945][ T28] audit: type=1326 audit(1781060802.965:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28425 comm="syz.0.9930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1369.359217][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.379031][T25519] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.411372][ T5875] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 1369.434299][ T28] audit: type=1326 audit(1781060802.965:3225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28425 comm="syz.0.9930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1369.443059][ T5875] NILFS (loop2): discard dirty page: offset=0, ino=12 [ 1369.461719][ T28] audit: type=1326 audit(1781060802.965:3226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28425 comm="syz.0.9930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1369.491918][T28428] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1369.507938][ T28] audit: type=1326 audit(1781060802.965:3227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28425 comm="syz.0.9930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1369.508065][ T28] audit: type=1326 audit(1781060802.965:3228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28425 comm="syz.0.9930" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7fecfbb9ce59 code=0x7ffc0000 [ 1369.532219][ C0] vkms_vblank_simulate: vblank timer overrun [ 1369.571538][ T5875] NILFS (loop2): discard dirty block: blocknr=17, size=1024 [ 1369.594151][ T5875] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.603151][ T5875] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.628735][ T5875] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1369.798119][T28435] netlink: 'syz.2.9917': attribute type 39 has an invalid length. [ 1370.129426][T28445] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 1370.663234][ T8] usb 4-1: new high-speed USB device number 70 using dummy_hcd [ 1370.677785][T28462] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9947'. [ 1370.699690][T28462] netlink: 28 bytes leftover after parsing attributes in process `syz.0.9947'. [ 1370.764630][T28462] Process accounting paused [ 1370.801714][T28448] loop2: detected capacity change from 0 to 32768 [ 1370.840874][T28448] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.9940 (28448) [ 1370.878424][T28448] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1370.891046][ T8] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 1370.900782][T28448] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 1370.909631][ T8] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1370.921205][T28448] BTRFS info (device loop2): using free space tree [ 1370.928180][ T8] usb 4-1: config 220 has no interface number 2 [ 1370.935882][ T8] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1370.950076][ T8] usb 4-1: config 220 interface 0 has no altsetting 0 [ 1370.957313][ T8] usb 4-1: config 220 interface 76 has no altsetting 0 [ 1370.965283][ T8] usb 4-1: config 220 interface 1 has no altsetting 0 [ 1370.982732][ T8] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1370.992412][T28471] loop0: detected capacity change from 0 to 256 [ 1370.999421][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1371.056813][ T8] usb 4-1: Product: syz [ 1371.080504][ T8] usb 4-1: Manufacturer: syz [ 1371.091530][ T8] usb 4-1: SerialNumber: syz [ 1371.103560][T28448] BTRFS info (device loop2): enabling ssd optimizations [ 1371.115221][T28448] BTRFS info (device loop2): auto enabling async discard [ 1371.398912][ T5875] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1371.436036][ T8] usb 4-1: selecting invalid altsetting 0 [ 1371.462175][ T8] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 1371.479971][ T8] usb 4-1: No valid video chain found. [ 1371.505120][T28490] loop1: detected capacity change from 0 to 512 [ 1371.530607][ T8] usb 4-1: selecting invalid altsetting 0 [ 1371.536749][ T8] usbtest: probe of 4-1:220.1 failed with error -22 [ 1371.597747][ T8] usb 4-1: USB disconnect, device number 70 [ 1371.622052][T28490] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.9953: Invalid inode bitmap blk 4 in block_group 0 [ 1371.753030][T28490] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1371.865032][T28490] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 7969 vs 220 free clusters [ 1371.921298][ T6908] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop2 scanned by udevd (6908) [ 1371.934488][T28490] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.9953: Invalid inode bitmap blk 4 in block_group 0 [ 1371.986223][T28490] EXT4-fs error (device loop1) in ext4_free_inode:363: Corrupt filesystem [ 1372.181807][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1372.776189][T28515] loop0: detected capacity change from 0 to 512 [ 1372.867215][T28515] EXT4-fs error (device loop0): __ext4_iget:5078: inode #11: block 1: comm syz.0.9964: invalid block [ 1372.900953][T28515] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.9964: couldn't read orphan inode 11 (err -117) [ 1373.096795][T28515] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1373.164944][T28521] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters [ 1373.220112][T28529] bad cache= option: no%e [ 1373.220112][T28529] [ 1373.227041][T28529] CIFS: VFS: bad cache= option: no%e [ 1373.245843][T28531] loop1: detected capacity change from 0 to 512 [ 1373.253338][T28531] EXT4-fs: Ignoring removed nobh option [ 1373.316243][T28531] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1373.334633][T28531] ext4 filesystem being mounted at /2556/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1373.393951][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 1373.400552][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 1373.408453][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1373.457816][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1373.665748][T28543] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9974'. [ 1373.678961][T28544] x_tables: unsorted underflow at hook 4 [ 1373.684900][T28543] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9974'. [ 1374.293827][T28563] loop1: detected capacity change from 0 to 8 [ 1374.589352][T28571] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9989'. [ 1374.855720][T28579] loop3: detected capacity change from 0 to 16 [ 1374.876023][T28579] erofs: (device loop3): mounted with root inode @ nid 36. [ 1374.921939][T28579] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1374.977799][T28579] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -46 in[60, 4036] out[1851] [ 1375.020881][T28579] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 1375.109410][T28564] loop0: detected capacity change from 0 to 32768 [ 1375.119273][T28583] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9995'. [ 1375.142780][ T5839] usb 3-1: new high-speed USB device number 59 using dummy_hcd [ 1375.152471][T28564] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 1375.333282][T28587] loop1: detected capacity change from 0 to 512 [ 1375.361317][T28587] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1375.378179][ T5839] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1375.403153][ T5769] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 1375.403596][ T5839] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1375.439801][T28587] EXT4-fs (loop1): 1 truncate cleaned up [ 1375.462146][T28587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1375.495386][ T5839] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1375.528666][T28592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9999'. [ 1375.537764][ T5839] usb 3-1: config 1 has no interface number 0 [ 1375.565659][ T5839] usb 3-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30 [ 1375.588548][T28587] EXT4-fs error (device loop1): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.1.9997: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 1375.609858][ T5839] usb 3-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32 [ 1375.630742][ T5839] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1375.643929][ T5839] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1375.677631][ T5839] usb 3-1: Product: syz [ 1375.684298][T28587] EXT4-fs (loop1): Remounting filesystem read-only [ 1375.690547][ T5839] usb 3-1: Manufacturer: syz [ 1375.702622][T28587] EXT4-fs warning (device loop1): ext4_rename_delete:3778: inode #2: comm syz.1.9997: Deleting old file: nlink 4, error=-117 [ 1375.703947][ T5839] usb 3-1: SerialNumber: syz [ 1375.720661][ T5910] usb 1-1: new high-speed USB device number 58 using dummy_hcd [ 1375.835413][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1375.941270][ T5910] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 1375.971135][ T5910] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1375.998234][ T5910] usb 1-1: config 220 has no interface number 2 [ 1376.005692][ T5910] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1376.026865][ T5910] usb 1-1: config 220 interface 0 has no altsetting 0 [ 1376.037158][ T5910] usb 1-1: config 220 interface 76 has no altsetting 0 [ 1376.052154][ T5910] usb 1-1: config 220 interface 1 has no altsetting 0 [ 1376.068239][ T5910] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1376.094474][ T5910] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1376.102590][ T5910] usb 1-1: Product: syz [ 1376.115490][ T5910] usb 1-1: Manufacturer: syz [ 1376.135791][ T5910] usb 1-1: SerialNumber: syz [ 1376.221683][ T5839] usb 3-1: USB disconnect, device number 59 [ 1376.324746][T28600] loop1: detected capacity change from 0 to 8192 [ 1376.346149][T28600] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1376.393368][T28600] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal [ 1376.415506][T28600] REISERFS (device loop1): using ordered data mode [ 1376.431106][T28600] reiserfs: using flush barriers [ 1376.442956][ T5910] usb 1-1: selecting invalid altsetting 0 [ 1376.443773][T28600] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1376.463263][ T5910] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 1376.484026][T28600] REISERFS (device loop1): checking transaction log (loop1) [ 1376.496038][T28605] netlink: 'syz.3.10005': attribute type 39 has an invalid length. [ 1376.511112][ T5910] usb 1-1: No valid video chain found. [ 1376.540377][ T5910] usb 1-1: selecting invalid altsetting 0 [ 1376.562243][ T5910] usbtest: probe of 1-1:220.1 failed with error -22 [ 1376.595469][ T5910] usb 1-1: USB disconnect, device number 58 [ 1376.740232][T28600] REISERFS (device loop1): Using tea hash to sort names [ 1376.775252][T28600] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 1377.253766][T28614] netlink: 5 bytes leftover after parsing attributes in process `syz.3.10009'. [ 1377.311417][T28614] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1377.768774][T28631] netlink: 216 bytes leftover after parsing attributes in process `syz.0.10017'. [ 1377.794371][T28631] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10017'. [ 1378.628717][T28655] netlink: 'syz.0.10028': attribute type 1 has an invalid length. [ 1379.243635][T28677] loop1: detected capacity change from 0 to 512 [ 1379.275048][T28671] loop3: detected capacity change from 0 to 4096 [ 1379.356779][ T5769] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1379.431917][T28671] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1379.987263][T28696] loop1: detected capacity change from 0 to 512 [ 1380.043188][T28700] loop0: detected capacity change from 0 to 256 [ 1380.050739][T28696] EXT4-fs: Ignoring removed i_version option [ 1380.093368][T28700] exfat: Deprecated parameter 'utf8' [ 1380.119407][T28696] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1380.166361][T28700] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1380.341387][T28686] loop2: detected capacity change from 0 to 32768 [ 1380.375594][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1380.462924][T28686] ialloc: diAlloc returned -5! [ 1380.611821][T28709] netlink: 'syz.1.10052': attribute type 39 has an invalid length. [ 1381.653133][T24251] usb 1-1: new high-speed USB device number 59 using dummy_hcd [ 1381.667989][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 1381.668008][ T28] audit: type=1326 audit(1781060814.508:3233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.743607][ T28] audit: type=1326 audit(1781060814.508:3234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.796969][ T28] audit: type=1326 audit(1781060814.554:3235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.829182][ T28] audit: type=1326 audit(1781060814.554:3236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.875273][ T28] audit: type=1326 audit(1781060814.554:3237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.899632][ C0] vkms_vblank_simulate: vblank timer overrun [ 1381.911816][ T28] audit: type=1326 audit(1781060814.554:3238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.936111][ C0] vkms_vblank_simulate: vblank timer overrun [ 1381.943518][T24251] usb 1-1: Using ep0 maxpacket: 8 [ 1381.954377][T24251] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 1381.968059][ T28] audit: type=1326 audit(1781060814.554:3239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1381.992376][ C0] vkms_vblank_simulate: vblank timer overrun [ 1382.006068][ T5910] usb 2-1: new high-speed USB device number 49 using dummy_hcd [ 1382.013310][T24251] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 1382.023960][T24251] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 1382.038202][T24251] usb 1-1: Product: syz [ 1382.042544][T24251] usb 1-1: Manufacturer: syz [ 1382.047764][ T28] audit: type=1326 audit(1781060814.554:3240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1382.091572][T24251] usb 1-1: SerialNumber: syz [ 1382.107386][ T28] audit: type=1326 audit(1781060814.554:3241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28736 comm="syz.2.10068" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1382.134224][ C0] vkms_vblank_simulate: vblank timer overrun [ 1382.219718][ T5910] usb 2-1: Using ep0 maxpacket: 32 [ 1382.235984][ T5910] usb 2-1: config 0 has an invalid interface number: 119 but max is 0 [ 1382.246626][T28747] loop2: detected capacity change from 0 to 256 [ 1382.253582][ T5910] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1382.263906][ T5910] usb 2-1: config 0 has no interface number 0 [ 1382.270103][ T5910] usb 2-1: config 0 interface 119 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1382.296815][T28747] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x190b464b, utbl_chksum : 0xe619d30d) [ 1382.341838][ T5910] usb 2-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 1382.353933][ T5910] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1382.363061][ T5910] usb 2-1: Product: syz [ 1382.374551][ T5910] usb 2-1: Manufacturer: syz [ 1382.379279][ T5910] usb 2-1: SerialNumber: syz [ 1382.402019][ T5910] usb 2-1: config 0 descriptor?? [ 1382.411378][T24251] usb 1-1: Handspring Visor / Palm OS: No valid connect info available [ 1382.435887][ T5910] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.119/input/input68 [ 1382.444451][T24251] usb 1-1: Handspring Visor / Palm OS: port 143, is for Remote File System use [ 1382.454390][T24251] usb 1-1: Handspring Visor / Palm OS: port 223, is for unknown use [ 1382.516248][T24251] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2 [ 1382.655669][T24251] usb 1-1: palm_os_3_probe - error -71 getting bytes available request [ 1382.700850][T24251] visor 1-1:1.0: Handspring Visor / Palm OS converter detected [ 1382.777459][T24251] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1382.796022][T24251] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1382.818982][T24251] usb 1-1: USB disconnect, device number 59 [ 1382.843463][ T5910] usb 2-1: USB disconnect, device number 49 [ 1382.866775][T24251] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1382.879893][T28755] loop3: detected capacity change from 0 to 256 [ 1382.918861][T24251] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1382.939837][T28755] exfat: Deprecated parameter 'namecase' [ 1382.959441][T24251] visor 1-1:1.0: device disconnected [ 1382.965483][T28755] exfat: Deprecated parameter 'namecase' [ 1383.059154][T28755] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1383.260152][T28761] loop3: detected capacity change from 0 to 1024 [ 1383.673647][T12447] usb 4-1: new high-speed USB device number 71 using dummy_hcd [ 1383.723050][T28775] pimreg: entered allmulticast mode [ 1383.898582][T12447] usb 4-1: Using ep0 maxpacket: 32 [ 1383.918285][T12447] usb 4-1: config 0 has an invalid interface number: 132 but max is 0 [ 1383.948836][T12447] usb 4-1: config 0 has no interface number 0 [ 1383.956055][T12447] usb 4-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid maxpacket 65519, setting to 1024 [ 1383.990702][T12447] usb 4-1: config 0 interface 132 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 1384.057816][T12447] usb 4-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5 [ 1384.085981][T12447] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1384.112104][T12447] usb 4-1: Product: syz [ 1384.116373][T12447] usb 4-1: Manufacturer: syz [ 1384.121012][T12447] usb 4-1: SerialNumber: syz [ 1384.141757][T12447] usb 4-1: config 0 descriptor?? [ 1384.155462][T28761] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1384.177087][T12447] em28xx 4-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132) [ 1384.218938][T12447] em28xx 4-1:0.132: Video interface 132 found: bulk [ 1384.290036][T28789] loop2: detected capacity change from 0 to 2048 [ 1384.323101][T28789] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1384.366114][T28789] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1384.487610][T12447] em28xx 4-1:0.132: unknown em28xx chip ID (0) [ 1384.602847][T12447] em28xx 4-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5) [ 1384.648814][T12447] em28xx 4-1:0.132: board has no eeprom [ 1384.721297][T12447] em28xx 4-1:0.132: Identified as Leadtek Winfast USB II (card=7) [ 1384.742143][T12447] em28xx 4-1:0.132: analog set to bulk mode. [ 1384.758671][ T5839] em28xx 4-1:0.132: Registering V4L2 extension [ 1384.799166][T12447] usb 4-1: USB disconnect, device number 71 [ 1384.806234][T12447] em28xx 4-1:0.132: Disconnecting em28xx [ 1385.243648][T28814] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1385.274930][T28816] netlink: 252 bytes leftover after parsing attributes in process `syz.0.10107'. [ 1385.308791][ T5839] em28xx 4-1:0.132: Config register raw data: 0xffffffed [ 1385.339886][ T5839] em28xx 4-1:0.132: AC97 chip type couldn't be determined [ 1385.383837][ T5839] em28xx 4-1:0.132: No AC97 audio processor [ 1385.423392][ T5839] usb 4-1: Decoder not found [ 1385.437555][ T5839] em28xx 4-1:0.132: failed to create media graph [ 1385.444071][ T5839] em28xx 4-1:0.132: V4L2 device video103 deregistered [ 1385.527534][ T5839] em28xx 4-1:0.132: Remote control support is not available for this card. [ 1385.591033][T12447] em28xx 4-1:0.132: Closing input extension [ 1385.745148][T12447] em28xx 4-1:0.132: Freeing device [ 1385.915650][T28836] netlink: 'syz.2.10116': attribute type 10 has an invalid length. [ 1385.993098][T28836] geneve0: entered promiscuous mode [ 1386.056525][T28836] bond0: (slave geneve0): Enslaving as an active interface with an up link [ 1386.272202][ T787] usb 2-1: new high-speed USB device number 50 using dummy_hcd [ 1386.377489][T28850] netlink: 220 bytes leftover after parsing attributes in process `syz.3.10122'. [ 1386.508807][ T787] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 82, changing to 7 [ 1386.538884][ T787] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 129, changing to 7 [ 1386.568061][ T787] usb 2-1: New USB device found, idVendor=2a39, idProduct=3fd3, bcdDevice= 0.40 [ 1386.584275][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1386.623225][ T787] usb 2-1: Product: syz [ 1386.628248][ T787] usb 2-1: Manufacturer: syz [ 1386.632925][ T787] usb 2-1: SerialNumber: syz [ 1386.882365][T28866] loop2: detected capacity change from 0 to 16 [ 1386.890784][T28866] erofs: (device loop2): mounted with root inode @ nid 36. [ 1386.917105][ T787] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 1386.928737][T28866] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 1386.941139][ T787] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 1387.016328][ T787] usb 2-1: USB disconnect, device number 50 [ 1387.184421][ T6908] udevd[6908]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1387.327355][T28874] loop2: detected capacity change from 0 to 2048 [ 1387.355708][T28874] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1387.402403][T28877] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1387.545935][T28881] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1388.016535][T28898] ip6erspan1: entered allmulticast mode [ 1388.357217][T28910] netlink: 'syz.0.10151': attribute type 10 has an invalid length. [ 1388.390255][T28910] geneve0: entered promiscuous mode [ 1388.437866][T28910] bond0: (slave geneve0): Enslaving as an active interface with an up link [ 1388.869441][T28930] 8021q: VLANs not supported on lo [ 1388.906533][T28927] loop3: detected capacity change from 0 to 2048 [ 1388.949037][T28927] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1388.991769][T28933] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1389.054133][T28927] NILFS (loop3): unrecognized mount option "01777777777777777777777184467440737095516150xffffffffffffffff0x00000000000000002VcǟT=]_ǿ.w [ 1389.054133][T28927] ŕw [ 1389.054133][T28927] ņO@" [ 1389.778100][T28963] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10177'. [ 1389.854225][T28962] loop1: detected capacity change from 0 to 2048 [ 1389.880052][T28962] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1390.264361][T28973] loop2: detected capacity change from 0 to 1024 [ 1390.575270][T28981] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10186'. [ 1390.628303][T28981] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10186'. [ 1391.428831][T29005] loop1: detected capacity change from 0 to 2048 [ 1391.479458][T29005] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1391.759211][T29017] loop3: detected capacity change from 0 to 64 [ 1391.930445][T29023] loop1: detected capacity change from 0 to 16 [ 1391.966252][T29023] erofs: (device loop1): mounted with root inode @ nid 36. [ 1392.129601][T29028] netlink: 'syz.2.10210': attribute type 3 has an invalid length. [ 1392.147848][T29029] loop0: detected capacity change from 0 to 512 [ 1392.245242][T29029] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1392.317603][T29029] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.10209: bg 0: block 384: padding at end of block bitmap is not set [ 1392.453349][ T28] audit: type=1400 audit(1781060824.600:3242): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=29040 comm="syz.2.10213" [ 1392.457616][T29029] EXT4-fs (loop0): Remounting filesystem read-only [ 1392.542884][T29029] EXT4-fs (loop0): 1 truncate cleaned up [ 1392.588206][T29029] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1392.617981][T29046] netlink: 'syz.2.10218': attribute type 5 has an invalid length. [ 1392.830250][T29050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10220'. [ 1392.830983][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1393.030576][T29056] bridge0: port 3(batadv0) entered blocking state [ 1393.076998][T29056] bridge0: port 3(batadv0) entered disabled state [ 1393.110418][T29056] batadv0: entered allmulticast mode [ 1393.133334][T29056] batadv0: entered promiscuous mode [ 1393.164730][T29056] bridge0: port 3(batadv0) entered blocking state [ 1393.171397][T29056] bridge0: port 3(batadv0) entered forwarding state [ 1393.602586][ T1083] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 1393.614071][ T1083] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 1393.733719][ T8] usb 1-1: new high-speed USB device number 60 using dummy_hcd [ 1393.930084][ T8] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1393.939725][ T8] usb 1-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config [ 1393.961117][ T8] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 50, changing to 7 [ 1393.990128][ T8] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 97, changing to 7 [ 1394.013829][ T8] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 24929, setting to 1024 [ 1394.045030][ T8] usb 1-1: New USB device found, idVendor=2b53, idProduct=0024, bcdDevice= 0.40 [ 1394.055990][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1394.064066][ T8] usb 1-1: Product: syz [ 1394.069520][ T8] usb 1-1: Manufacturer: syz [ 1394.075803][ T8] usb 1-1: SerialNumber: syz [ 1394.192290][T29094] netlink: 64 bytes leftover after parsing attributes in process `syz.2.10240'. [ 1394.341185][T29098] loop2: detected capacity change from 0 to 164 [ 1394.382910][T29098] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1394.393812][ T8] usb 1-1: USB disconnect, device number 60 [ 1394.411844][T29098] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1394.442018][T29098] Symlink component flag not implemented [ 1394.448548][T29098] Symlink component flag not implemented [ 1394.461851][ T5910] usb 4-1: new high-speed USB device number 72 using dummy_hcd [ 1394.477636][T29098] Symlink component flag not implemented (7) [ 1394.484278][T29098] Symlink component flag not implemented (116) [ 1394.532711][ T6174] udevd[6174]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1394.664750][ T5910] usb 4-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 1394.673904][ T5910] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1394.716821][ T5910] usb 4-1: Product: syz [ 1394.727442][ T5910] usb 4-1: Manufacturer: syz [ 1394.738223][ T5910] usb 4-1: SerialNumber: syz [ 1394.756849][ T5910] usb 4-1: config 0 descriptor?? [ 1394.997566][ T5910] usb 4-1: f81604_read: reg: 105 failed: -EPIPE [ 1395.004007][ T5910] f81604 4-1:0.0: Setting termination of CH#0 failed: -EPIPE [ 1395.048863][ T5910] f81604: probe of 4-1:0.0 failed with error -32 [ 1395.059445][ T5910] usb 4-1: USB disconnect, device number 72 [ 1395.216988][ T28] audit: type=1326 audit(1781060827.173:3243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29115 comm="syz.2.10251" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1395.278327][ T28] audit: type=1326 audit(1781060827.173:3244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29115 comm="syz.2.10251" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1395.372750][ T28] audit: type=1326 audit(1781060827.210:3245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29115 comm="syz.2.10251" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=232 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1395.454166][T29122] loop1: detected capacity change from 0 to 1024 [ 1395.461771][ T28] audit: type=1326 audit(1781060827.210:3246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29115 comm="syz.2.10251" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1395.530547][ T28] audit: type=1326 audit(1781060827.210:3247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29115 comm="syz.2.10251" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1396.228989][T29121] loop2: detected capacity change from 0 to 32768 [ 1396.821706][T29154] loop0: detected capacity change from 0 to 512 [ 1396.895676][T29132] loop1: detected capacity change from 0 to 32768 [ 1396.940022][T29154] EXT4-fs error (device loop0): ext4_orphan_get:1430: comm syz.0.10269: bad orphan inode 15 [ 1396.987725][T29154] ext4_test_bit(bit=14, block=18) = 1 [ 1396.993216][T29154] is_bad_inode(inode)=0 [ 1396.998361][T29154] NEXT_ORPHAN(inode)=1023 [ 1397.003594][T29154] max_ino=32 [ 1397.007949][T29154] i_nlink=0 [ 1397.008675][T29161] netlink: 172 bytes leftover after parsing attributes in process `syz.3.10271'. [ 1397.021384][T29154] EXT4-fs error (device loop0): ext4_xattr_delete_inode:2971: inode #15: comm syz.0.10269: corrupted xattr block 19: invalid header [ 1397.035654][T29154] EXT4-fs warning (device loop0): ext4_evict_inode:274: xattr delete (err -117) [ 1397.046882][T29154] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none. [ 1397.060922][T29154] ext4 filesystem being mounted at /2502/qY3aK supports timestamps until 2038-01-19 (0x7fffffff) [ 1397.109062][T29154] EXT4-fs error (device loop0): ext4_empty_dir:3139: inode #12: comm syz.0.10269: Directory hole found for htree leaf block 0 [ 1397.115244][T29132] XFS (loop1): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 1397.265975][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0009-000000000000. [ 1397.388239][T29132] XFS (loop1): Ending clean mount [ 1397.443764][T29132] XFS (loop1): Quotacheck needed: Please wait. [ 1397.595632][T29132] XFS (loop1): Quotacheck: Done. [ 1397.822584][ T5878] XFS (loop1): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 1397.989954][ T28] audit: type=1326 audit(1781060829.773:3248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.112944][ T28] audit: type=1326 audit(1781060829.801:3249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.209897][ T28] audit: type=1326 audit(1781060829.801:3250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.305391][ T28] audit: type=1326 audit(1781060829.820:3251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.372980][ T28] audit: type=1326 audit(1781060829.820:3252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.436446][T29199] netlink: 'syz.0.10287': attribute type 4 has an invalid length. [ 1398.444533][T29199] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.10287'. [ 1398.470842][ T28] audit: type=1326 audit(1781060829.820:3253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.534282][ T28] audit: type=1326 audit(1781060829.820:3254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.641211][ T28] audit: type=1326 audit(1781060829.820:3255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1398.741555][ T28] audit: type=1326 audit(1781060829.820:3256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29187 comm="syz.3.10283" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f4ece19ce59 code=0x7ffc0000 [ 1399.358333][T29226] loop2: detected capacity change from 0 to 1024 [ 1399.852698][T29216] loop3: detected capacity change from 0 to 32768 [ 1399.874942][T29240] geneve2: entered allmulticast mode [ 1399.919402][T29216] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1400.352457][T29216] XFS (loop3): Ending clean mount [ 1400.413452][T29259] netlink: 588 bytes leftover after parsing attributes in process `syz.2.10311'. [ 1400.474396][T29259] bridge0: port 2(bridge_slave_1) entered disabled state [ 1400.533040][T29259] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 1400.624604][ T5870] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1400.768527][T29269] netlink: 'syz.1.10316': attribute type 3 has an invalid length. [ 1400.814393][T29269] netlink: 'syz.1.10316': attribute type 27 has an invalid length. [ 1401.638185][T29296] netlink: 56 bytes leftover after parsing attributes in process `syz.3.10330'. [ 1401.708785][ T5910] usb 3-1: new full-speed USB device number 60 using dummy_hcd [ 1401.924940][ T5910] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 64 [ 1401.943673][ T5910] usb 3-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=c2.87 [ 1401.955695][T29306] netlink: 196 bytes leftover after parsing attributes in process `syz.0.10334'. [ 1401.965064][ T5910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1401.973257][ T5910] usb 3-1: Product: syz [ 1401.979486][T29306] netlink: 196 bytes leftover after parsing attributes in process `syz.0.10334'. [ 1401.989273][ T5910] usb 3-1: Manufacturer: syz [ 1401.993959][ T5910] usb 3-1: SerialNumber: syz [ 1401.999592][T29306] netlink: 19 bytes leftover after parsing attributes in process `syz.0.10334'. [ 1402.024285][ T5910] usb 3-1: config 0 descriptor?? [ 1402.049346][T29287] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1402.063058][T29287] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1402.073938][ C1] port100 3-1:0.0: NFC: Urb failure (status -71) [ 1402.080442][ C1] port100 3-1:0.0: NFC: Urb failure (status -71) [ 1402.110408][ T5910] port100 3-1:0.0: NFC: Could not get supported command types [ 1402.387198][ T787] usb 3-1: USB disconnect, device number 60 [ 1402.605619][T29326] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10345'. [ 1402.636934][T29326] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10345'. [ 1402.656188][T29326] netlink: 31 bytes leftover after parsing attributes in process `syz.3.10345'. [ 1402.684814][T29326] netlink: 'syz.3.10345': attribute type 3 has an invalid length. [ 1402.712369][T29326] netlink: 'syz.3.10345': attribute type 2 has an invalid length. [ 1402.746906][T29326] netlink: 31 bytes leftover after parsing attributes in process `syz.3.10345'. [ 1402.774423][T29326] netlink: 'syz.3.10345': attribute type 2 has an invalid length. [ 1403.305064][T29344] loop3: detected capacity change from 0 to 256 [ 1403.324194][T29344] exfat: Deprecated parameter 'utf8' [ 1403.330143][T29344] exfat: Deprecated parameter 'utf8' [ 1403.366444][T29344] exfat: Deprecated parameter 'namecase' [ 1403.372244][T29344] exfat: Deprecated parameter 'namecase' [ 1403.448507][T29344] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 1403.563542][ T28] audit: type=1326 audit(1781060834.974:3257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29349 comm="syz.1.10356" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9582d9ce59 code=0x7ffc0000 [ 1403.625803][ T28] audit: type=1326 audit(1781060834.974:3258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29349 comm="syz.1.10356" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9582d9ce59 code=0x7ffc0000 [ 1403.689242][ T28] audit: type=1326 audit(1781060835.021:3259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29349 comm="syz.1.10356" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f9582d9ce59 code=0x7ffc0000 [ 1403.763195][T29332] loop0: detected capacity change from 0 to 32768 [ 1403.797937][ T28] audit: type=1326 audit(1781060835.021:3260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29349 comm="syz.1.10356" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9582d9ce59 code=0x7ffc0000 [ 1403.823523][ T28] audit: type=1326 audit(1781060835.021:3261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29349 comm="syz.1.10356" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9582d9ce59 code=0x7ffc0000 [ 1403.911099][T29332] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1404.023008][T29332] XFS (loop0): Ending clean mount [ 1404.100200][T29332] XFS (loop0): Quotacheck needed: Please wait. [ 1404.279052][T29332] XFS (loop0): Quotacheck: Done. [ 1404.415170][T29332] Process accounting resumed [ 1404.516554][ T5869] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1405.082101][T29394] loop1: detected capacity change from 0 to 2048 [ 1405.181448][ T28] audit: type=1326 audit(1781060836.499:3262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29395 comm="syz.2.10376" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1405.274860][T29401] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1405.301630][ T28] audit: type=1326 audit(1781060836.499:3263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29395 comm="syz.2.10376" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1405.397689][ T28] audit: type=1326 audit(1781060836.536:3264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29395 comm="syz.2.10376" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=111 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1405.422544][T29394] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=128, inode=7696581394448, rec_len=0, name_len=5 [ 1405.510113][T29394] Remounting filesystem read-only [ 1405.517224][ T28] audit: type=1326 audit(1781060836.536:3265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29395 comm="syz.2.10376" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1405.557358][ T28] audit: type=1326 audit(1781060836.536:3266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29395 comm="syz.2.10376" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1406.133211][T29429] Timeout policy `syz1' can only be used by L3 protocol number 2053 [ 1406.261509][T29432] netlink: 32 bytes leftover after parsing attributes in process `syz.1.10390'. [ 1406.297771][T29432] netlink: 32 bytes leftover after parsing attributes in process `syz.1.10390'. [ 1406.700103][T29451] comedi comedi4: bad chanlist[0]=0x0000c000 chan=49152 range length=2 [ 1407.018978][T29461] loop2: detected capacity change from 0 to 1024 [ 1407.090448][T29463] deleting an unspecified loop device is not supported. [ 1407.095532][T29465] loop3: detected capacity change from 0 to 512 [ 1407.195472][T29465] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1407.240795][T29465] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.10407: Failed to acquire dquot type 1 [ 1407.281303][T29465] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.10407: Failed to acquire dquot type 1 [ 1407.382612][T29465] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.10407: bg 0: block 248: padding at end of block bitmap is not set [ 1407.450557][T29465] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 1407.520885][T29465] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.10407: Failed to acquire dquot type 1 [ 1407.546508][T29465] EXT4-fs (loop3): 1 orphan inode deleted [ 1407.554256][T29465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1407.604960][T29478] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 1407.650533][T29465] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 1407.748962][T29465] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 1407.774356][T29465] ext4 filesystem being remounted at /2583/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1407.894654][T29488] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10417'. [ 1407.948098][ T5870] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1408.127772][T29495] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10422'. [ 1408.143238][T29496] loop0: detected capacity change from 0 to 512 [ 1408.159261][T29500] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10420'. [ 1408.187936][T29500] netlink: 28 bytes leftover after parsing attributes in process `syz.3.10420'. [ 1408.204024][T29500] netlink: 'syz.3.10420': attribute type 6 has an invalid length. [ 1408.236623][T29496] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1408.295054][T29496] ext4 filesystem being mounted at /2538/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1408.342979][T29504] netlink: 'syz.2.10424': attribute type 39 has an invalid length. [ 1408.375438][T29496] EXT4-fs error (device loop0): ext4_xattr_block_get:597: inode #12: comm syz.0.10421: corrupted xattr block 6: invalid header [ 1408.589424][T29510] xt_hashlimit: invalid interval [ 1408.612282][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1408.801754][T29520] netlink: 'syz.1.10432': attribute type 1 has an invalid length. [ 1408.810685][T29519] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1408.818645][T29520] netlink: 'syz.1.10432': attribute type 3 has an invalid length. [ 1408.839346][T29520] netlink: 132 bytes leftover after parsing attributes in process `syz.1.10432'. [ 1409.146577][T29528] loop1: detected capacity change from 0 to 2048 [ 1409.251868][T29528] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=18446736377128157191, rec_len=65535, name_len=255 [ 1409.360840][T29533] loop0: detected capacity change from 0 to 1764 [ 1409.452776][T29533] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 1409.780106][T29548] netlink: 36 bytes leftover after parsing attributes in process `syz.3.10445'. [ 1410.050873][T29558] x_tables: duplicate underflow at hook 4 [ 1410.157449][T29564] netlink: 'syz.2.10453': attribute type 25 has an invalid length. [ 1410.211098][T29564] netlink: 40 bytes leftover after parsing attributes in process `syz.2.10453'. [ 1410.264863][T29568] netlink: 'syz.0.10456': attribute type 8 has an invalid length. [ 1410.528439][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1410.528457][ T28] audit: type=1326 audit(1781060841.494:3267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29579 comm="syz.2.10462" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1410.658913][ T28] audit: type=1326 audit(1781060841.494:3268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29579 comm="syz.2.10462" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1410.752918][ T28] audit: type=1326 audit(1781060841.494:3269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29579 comm="syz.2.10462" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1410.805528][T29585] loop3: detected capacity change from 0 to 2048 [ 1410.828450][ T28] audit: type=1326 audit(1781060841.494:3270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29579 comm="syz.2.10462" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1410.858230][T29585] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1410.924423][ T28] audit: type=1326 audit(1781060841.494:3271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29579 comm="syz.2.10462" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f063e99ce59 code=0x7ffc0000 [ 1411.753769][T29610] netlink: 104 bytes leftover after parsing attributes in process `syz.1.10476'. [ 1411.808631][T29588] loop0: detected capacity change from 0 to 32768 [ 1412.118324][T29620] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10481'. [ 1413.109434][T29653] loop0: detected capacity change from 0 to 256 [ 1413.297817][T29653] FAT-fs (loop0): Directory bread(block 64) failed [ 1413.304499][T29653] FAT-fs (loop0): Directory bread(block 65) failed [ 1413.329583][T29653] FAT-fs (loop0): Directory bread(block 66) failed [ 1413.353835][T29653] FAT-fs (loop0): Directory bread(block 67) failed [ 1413.360580][T29653] FAT-fs (loop0): Directory bread(block 68) failed [ 1413.388239][T29653] FAT-fs (loop0): Directory bread(block 69) failed [ 1413.399425][T29653] FAT-fs (loop0): Directory bread(block 70) failed [ 1413.409038][T29653] FAT-fs (loop0): Directory bread(block 71) failed [ 1413.420965][T29653] FAT-fs (loop0): Directory bread(block 72) failed [ 1413.429016][T29653] FAT-fs (loop0): Directory bread(block 73) failed [ 1414.024646][ T5839] usb 2-1: new full-speed USB device number 51 using dummy_hcd [ 1414.100443][T29685] SET target dimension over the limit! [ 1414.241380][ T5839] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10 [ 1414.262476][ T5839] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1414.292980][ T5839] usb 2-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9 [ 1414.312857][ T5839] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1414.324003][ T5839] usb 2-1: Product: syz [ 1414.328252][ T5839] usb 2-1: Manufacturer: syz [ 1414.344218][ T5839] usb 2-1: SerialNumber: syz [ 1414.364509][ T5839] usb 2-1: config 0 descriptor?? [ 1414.388366][ T5839] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input69 [ 1414.717520][T12447] usb 2-1: USB disconnect, device number 51 [ 1415.298463][T29727] ip6t_rpfilter: unknown options [ 1415.387885][T29731] loop1: detected capacity change from 0 to 256 [ 1415.531734][ T787] usb 1-1: new high-speed USB device number 61 using dummy_hcd [ 1415.760017][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1415.789111][ T787] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1415.820373][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1415.830324][ T787] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 1415.861567][ T787] usb 1-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 1415.888500][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1415.917594][ T787] usb 1-1: config 0 descriptor?? [ 1416.008806][T29749] mmap: syz.2.10535 (29749): VmData 49217536 exceed data ulimit 2. Update limits or use boot option ignore_rlimit_data. [ 1416.147067][ T787] hdpvr 1-1:0.0: firmware version 0xd dated jl;S11!vOp [ 1416.147067][ T787] 4(r [ 1416.147067][ T787] d2}d~٭^r [ 1416.362227][ T787] hdpvr 1-1:0.0: device init failed [ 1416.370233][ T787] hdpvr: probe of 1-1:0.0 failed with error -12 [ 1416.397298][ T787] usb 1-1: USB disconnect, device number 61 [ 1416.411368][T29735] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1416.436950][T29735] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1416.449057][T29759] veth0_to_batadv: entered allmulticast mode [ 1416.455721][T29735] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 1416.466221][T29759] A link change request failed with some changes committed already. Interface veth0_to_batadv may have been left with an inconsistent configuration, please check. [ 1416.483682][T29735] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1416.619588][T29761] SET target dimension over the limit! [ 1416.762743][T29767] netlink: 'syz.2.10544': attribute type 7 has an invalid length. [ 1416.770669][T29767] netlink: 'syz.2.10544': attribute type 8 has an invalid length. [ 1416.812895][T29767] netlink: 'syz.2.10544': attribute type 15 has an invalid length. [ 1417.231702][T29781] loop3: detected capacity change from 0 to 256 [ 1417.776693][ T5872] Bluetooth: hci0: command 0x0406 tx timeout [ 1417.850536][T29802] loop3: detected capacity change from 0 to 256 [ 1418.006282][T29809] netlink: 'syz.0.10572': attribute type 46 has an invalid length. [ 1418.076418][T29809] netlink: 44 bytes leftover after parsing attributes in process `syz.0.10572'. [ 1418.239090][T29815] loop1: detected capacity change from 0 to 512 [ 1418.311600][T29815] EXT4-fs error (device loop1): ext4_orphan_get:1404: inode #15: comm syz.1.10567: inode has both inline data and extents flags [ 1418.418378][T29815] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.10567: couldn't read orphan inode 15 (err -117) [ 1418.467188][T29815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1418.546623][ T5910] usb 4-1: new high-speed USB device number 73 using dummy_hcd [ 1418.635425][ T5872] Bluetooth: hci3: command 0x0406 tx timeout [ 1418.641721][ T5872] Bluetooth: hci2: command 0x0406 tx timeout [ 1418.646957][ T51] Bluetooth: hci1: command 0x0406 tx timeout [ 1418.684844][ T5878] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1418.768249][ T5910] usb 4-1: Using ep0 maxpacket: 16 [ 1418.777434][ T5910] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 1418.802969][ T5910] usb 4-1: config 0 descriptor has 1 excess byte, ignoring [ 1418.836949][ T5910] usb 4-1: config 0 has no interface number 0 [ 1418.854612][ T5910] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1418.867959][ T5910] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1418.876044][ T5910] usb 4-1: Product: syz [ 1418.903476][ T5910] usb 4-1: Manufacturer: syz [ 1418.940638][ T5910] usb 4-1: SerialNumber: syz [ 1418.958284][ T5910] usb 4-1: config 0 descriptor?? [ 1418.990600][ T5910] usb 4-1: Found UVC 0.00 device syz (046d:08f3) [ 1419.021538][ T5910] usb 4-1: No valid video chain found. [ 1419.050884][T29836] loop0: detected capacity change from 0 to 256 [ 1419.099453][T29836] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1419.237038][T24251] usb 4-1: USB disconnect, device number 73 [ 1419.436280][T29846] loop0: detected capacity change from 0 to 16 [ 1419.701144][T29852] Timeout policy `syz1' can only be used by L3 protocol number 2053 [ 1419.738459][T29854] loop2: detected capacity change from 0 to 256 [ 1419.752616][T29854] exfat: Deprecated parameter 'namecase' [ 1419.764288][T29854] exfat: Deprecated parameter 'namecase' [ 1419.877229][T29854] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1419.899475][T29858] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10587'. [ 1419.913706][T29858] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10587'. [ 1420.189580][T29860] loop3: detected capacity change from 0 to 4096 [ 1420.225466][T29860] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1420.263940][T29860] ntfs3: loop3: It is recommened to use chkdsk. [ 1420.600374][T29869] bridge1: entered promiscuous mode [ 1420.732731][ T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1421.000490][ T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1421.167142][ T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1421.494619][ T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1421.791309][T29826] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 1421.811170][T29826] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 1421.821850][T29826] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 1421.831654][T29826] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 1421.852145][T29826] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 1421.859736][T29826] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 1422.651227][T29917] bridge4: entered promiscuous mode [ 1422.685435][T29917] bridge4: entered allmulticast mode [ 1422.949122][T29903] loop3: detected capacity change from 0 to 32768 [ 1422.995711][T29930] loop1: detected capacity change from 0 to 16 [ 1423.038737][T29930] erofs: (device loop1): mounted with root inode @ nid 36. [ 1423.053290][T29930] syz.1.10619: attempt to access beyond end of device [ 1423.053290][T29930] loop1: rw=0, sector=34359736320, nr_sectors = 8 limit=16 [ 1423.129890][T29903] JBD2: Ignoring recovery information on journal [ 1423.356845][T29903] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1423.837306][ T5870] ocfs2: Unmounting device (7,3) on (node local) [ 1424.105942][ T5872] Bluetooth: hci2: command tx timeout [ 1424.182041][T29899] chnl_net:caif_netlink_parms(): no params data found [ 1424.697609][T29972] loop0: detected capacity change from 0 to 1024 [ 1424.779500][T29972] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1424.889751][T29972] EXT4-fs error (device loop0): ext4_map_blocks:720: inode #3: block 1: comm syz.0.10635: lblock 1 mapped to illegal pblock 1 (length 1) [ 1424.907637][T29972] Quota error (device loop0): write_blk: dquota write failed [ 1424.916156][T29972] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1424.926341][T29972] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.10635: Failed to acquire dquot type 0 [ 1424.949310][T29972] EXT4-fs error (device loop0): ext4_free_blocks:6694: comm syz.0.10635: Freeing blocks not in datazone - block = 0, count = 4096 [ 1424.971839][T29972] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.10635: Invalid inode bitmap blk 0 in block_group 0 [ 1424.995109][T29986] loop1: detected capacity change from 0 to 1024 [ 1425.001819][ T1083] EXT4-fs error (device loop0): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 1425.017196][T29972] EXT4-fs error (device loop0) in ext4_free_inode:363: Corrupt filesystem [ 1425.051304][T29972] EXT4-fs (loop0): 1 orphan inode deleted [ 1425.069097][T29972] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1425.102531][ T1083] Quota error (device loop0): remove_tree: Can't read quota data block 1 [ 1425.113912][T29899] bridge0: port 1(bridge_slave_0) entered blocking state [ 1425.154115][T29986] hfsplus: catalog record size mismatch (type 2, got 88, expected 248) [ 1425.162644][T29899] bridge0: port 1(bridge_slave_0) entered disabled state [ 1425.164011][ T1083] EXT4-fs error (device loop0): ext4_release_dquot:6989: comm kworker/u4:8: Failed to release dquot type 0 [ 1425.196411][T29899] bridge_slave_0: entered allmulticast mode [ 1425.248688][T29899] bridge_slave_0: entered promiscuous mode [ 1425.284769][T29899] bridge0: port 2(bridge_slave_1) entered blocking state [ 1425.296595][ T574] EXT4-fs error (device loop0): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1) [ 1425.313025][T29899] bridge0: port 2(bridge_slave_1) entered disabled state [ 1425.330175][T29899] bridge_slave_1: entered allmulticast mode [ 1425.347180][ T574] Quota error (device loop0): remove_tree: Can't read quota data block 1 [ 1425.367127][T29899] bridge_slave_1: entered promiscuous mode [ 1425.375594][ T574] EXT4-fs error (device loop0): ext4_release_dquot:6989: comm kworker/u4:5: Failed to release dquot type 0 [ 1425.457577][ T5869] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1425.691108][T30000] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1425.766863][T29899] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1425.955329][T24251] usb 4-1: new low-speed USB device number 74 using dummy_hcd [ 1425.967404][T30006] ALSA: mixer_oss: invalid OSS volume ';ʸgԊ8\>Pxi9 h~)V' [ 1425.975861][T30006] ALSA: mixer_oss: invalid OSS volume '*bbX-]OF{T0pc' [ 1426.030895][T30006] ALSA: mixer_oss: invalid OSS volume 'gI"4-Z' [ 1426.038375][T30006] ALSA: mixer_oss: invalid OSS volume 'eQCȡ*qpAڜe T|K' [ 1426.050155][T29899] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1426.091880][T30006] ALSA: mixer_oss: invalid OSS volume ':az]qeXfb]݆B.' [ 1426.115485][T30006] ALSA: mixer_oss: invalid OSS volume 'j|q⩃˚[w3^.ג' [ 1426.124717][T30006] ALSA: mixer_oss: invalid OSS volume '"P޸ۜo[8>7|YMepq' [ 1426.155392][T30006] ALSA: mixer_oss: invalid OSS volume 'wI׷#t\W,bP=&e' [ 1426.168923][T30006] ALSA: mixer_oss: invalid OSS volume ']za-!)ϻvCYps' [ 1426.177379][T30006] ALSA: mixer_oss: invalid OSS volume 'LE]Dxt݂OY3fk$T "' [ 1426.196505][T30006] ALSA: mixer_oss: invalid OSS volume '[' [ 1426.223388][T30006] ALSA: mixer_oss: invalid OSS volume '3A14IN+|\' [ 1426.226108][T24251] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1426.252605][T30006] ALSA: mixer_oss: invalid OSS volume '$ffff888053bab000(4096) [ 1437.866851][T30262] cramfs: Error -3 while decompressing! [ 1437.872517][T30262] cramfs: ffffffff97406342(26)->ffff888053060000(4096) [ 1437.925243][T30262] cramfs: Error -3 while decompressing! [ 1437.933482][ T6908] udevd[6908]: incorrect cramfs checksum on /dev/loop4 [ 1437.971649][T30262] cramfs: ffffffff9740635c(16)->ffff888051c7d000(4096) [ 1437.978651][T30262] cramfs: Error -3 while decompressing! [ 1438.018113][T30262] cramfs: ffffffff97406328(26)->ffff888053bab000(4096) [ 1438.787389][T30301] loop3: detected capacity change from 0 to 64 [ 1439.050296][ T34] ------------[ cut here ]------------ [ 1439.056326][ T34] kernel BUG at fs/hfs/inode.c:449! [ 1439.078317][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 1439.085110][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 1439.103615][ T34] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 1439.109967][ T34] CPU: 0 PID: 34 Comm: kworker/u4:2 Not tainted syzkaller #0 [ 1439.117395][ T34] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 1439.127509][ T34] Workqueue: writeback wb_workfn (flush-7:3) [ 1439.133575][ T34] RIP: 0010:hfs_write_inode+0x87a/0x880 [ 1439.139232][ T34] Code: c7 c1 00 73 31 97 80 e1 07 80 c1 03 38 c1 0f 8c 73 fe ff ff 48 c7 c7 00 73 31 97 e8 f0 f2 83 ff e9 62 fe ff ff e8 e6 b2 2b ff <0f> 0b 0f 1f 40 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 [ 1439.158902][ T34] RSP: 0018:ffffc90000aaf340 EFLAGS: 00010293 [ 1439.165064][ T34] RAX: ffffffff825b78aa RBX: ffff888026d935a8 RCX: ffff8880186b9e00 [ 1439.173151][ T34] RDX: 0000000000000000 RSI: ffffffff8d33a040 RDI: 0000000000000000 [ 1439.181182][ T34] RBP: ffffc90000aaf4d0 R08: ffff8880186b9e00 R09: 0000000000000003 [ 1439.189464][ T34] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 1439.197508][ T34] R13: 1ffff92000155e6c R14: ffff888026d93558 R15: 0000000000000000 [ 1439.205542][ T34] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1439.214543][ T34] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1439.221193][ T34] CR2: 000020000000b8c0 CR3: 000000007e2a0000 CR4: 00000000003506f0 [ 1439.229243][ T34] Call Trace: [ 1439.232584][ T34] [ 1439.235574][ T34] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1439.241028][ T34] ? __rwlock_init+0x150/0x150 [ 1439.245874][ T34] __writeback_single_inode+0x705/0xec0 [ 1439.251509][ T34] writeback_sb_inodes+0x7cd/0xf50 [ 1439.256716][ T34] ? queue_io+0x550/0x550 [ 1439.261134][ T34] ? rcu_is_watching+0x15/0xb0 [ 1439.265978][ T34] wb_writeback+0x46a/0xbf0 [ 1439.270557][ T34] ? queue_io+0x3d1/0x550 [ 1439.274970][ T34] ? percpu_ref_tryget+0x250/0x250 [ 1439.280176][ T34] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1439.286234][ T34] ? _raw_spin_unlock_irq+0x23/0x50 [ 1439.291528][ T34] wb_workfn+0x400/0xe60 [ 1439.295931][ T34] ? inode_wait_for_writeback+0x230/0x230 [ 1439.301748][ T34] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1439.307805][ T34] ? read_lock_is_recursive+0x20/0x20 [ 1439.313262][ T34] ? _raw_spin_unlock_irq+0x23/0x50 [ 1439.318532][ T34] ? process_scheduled_works+0x96f/0x15d0 [ 1439.324334][ T34] ? process_scheduled_works+0x96f/0x15d0 [ 1439.330123][ T34] process_scheduled_works+0xa5d/0x15d0 [ 1439.335750][ T34] ? worker_attach_to_pool+0x380/0x380 [ 1439.341276][ T34] ? assign_work+0x3d2/0x5d0 [ 1439.345933][ T34] worker_thread+0xa55/0xfc0 [ 1439.350607][ T34] kthread+0x2fa/0x390 [ 1439.354729][ T34] ? pr_cont_work+0x560/0x560 [ 1439.359469][ T34] ? kthread_blkcg+0xd0/0xd0 [ 1439.364123][ T34] ret_from_fork+0x48/0x80 [ 1439.368648][ T34] ? kthread_blkcg+0xd0/0xd0 [ 1439.373305][ T34] ret_from_fork_asm+0x11/0x20 [ 1439.378191][ T34] [ 1439.381261][ T34] Modules linked in: [ 1439.388756][T30311] tmpfs: Unknown parameter 'func' [ 1439.438373][T30315] loop0: detected capacity change from 0 to 8 [ 1439.456567][ T34] ---[ end trace 0000000000000000 ]--- [ 1439.463024][ T34] RIP: 0010:hfs_write_inode+0x87a/0x880 [ 1439.472917][ T34] Code: c7 c1 00 73 31 97 80 e1 07 80 c1 03 38 c1 0f 8c 73 fe ff ff 48 c7 c7 00 73 31 97 e8 f0 f2 83 ff e9 62 fe ff ff e8 e6 b2 2b ff <0f> 0b 0f 1f 40 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 [ 1439.530861][ T34] RSP: 0018:ffffc90000aaf340 EFLAGS: 00010293 [ 1439.554585][ T34] RAX: ffffffff825b78aa RBX: ffff888026d935a8 RCX: ffff8880186b9e00 [ 1439.581832][ T34] RDX: 0000000000000000 RSI: ffffffff8d33a040 RDI: 0000000000000000 [ 1439.605795][ T34] RBP: ffffc90000aaf4d0 R08: ffff8880186b9e00 R09: 0000000000000003 [ 1439.618605][ T34] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 1439.626682][ T34] R13: 1ffff92000155e6c R14: ffff888026d93558 R15: 0000000000000000 [ 1439.634828][ T34] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 1439.658155][ T34] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1439.668640][ T34] CR2: 00007f471e20a6b0 CR3: 000000001a6e3000 CR4: 00000000003506e0 [ 1439.678665][ T34] Kernel panic - not syncing: Fatal exception [ 1439.685405][ T34] Kernel Offset: disabled [ 1439.689787][ T34] Rebooting in 86400 seconds..