last executing test programs: 2m30.683601368s ago: executing program 2 (id=1116): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x14, 0x28, 0xb, 0x0, 0x0, {0x2}}, 0x14}}, 0x0) 2m30.399124444s ago: executing program 2 (id=1120): r0 = openat$vsock(0xffffffffffffff9c, &(0x7f0000002380), 0x141000, 0x0) ioctl$sock_TIOCINQ(r0, 0x541b, 0x0) 2m30.159224918s ago: executing program 2 (id=1126): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000000)={@in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}, 0x0, 0x0, 0x46, 0x0, "2431d0edd9b36cb74d7df7671eacf04be3b08353efa3649b6bf9a0a6e5adaf13097bd0072577bc6fefb4cdc9e94e420b0ea4fbc5b07a32056eff5e6c42784b46ddab72b1b8fc87f208ad6db80d8dfe25"}, 0xd8) 2m29.914924473s ago: executing program 2 (id=1131): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@decrefs={0x4008630a, 0x2}], 0x0, 0x0, 0x0}) 2m29.622409269s ago: executing program 2 (id=1136): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$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") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m28.56902857s ago: executing program 2 (id=1150): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x20, 0x140b, 0xa0b, 0x170bd28, 0xa5dfdbfb, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x48010}, 0x20004000) 2m13.499337373s ago: executing program 32 (id=1150): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x20, 0x140b, 0xa0b, 0x170bd28, 0xa5dfdbfb, "", [@RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x20}, 0x1, 0x0, 0x0, 0x48010}, 0x20004000) 2.931718853s ago: executing program 4 (id=3174): write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x490420, 0xffff}}, 0x50) syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000049ffe840e5130100534e0000000109021b0001000000000904"], 0x0) 1.845872894s ago: executing program 5 (id=3188): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0) ioctl$TIOCCONS(r0, 0x541d) 1.53620061s ago: executing program 5 (id=3192): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8947, &(0x7f0000000000)={'vlan1\x00'}) 1.479541321s ago: executing program 3 (id=3193): r0 = openat$sequencer(0xffffff9c, &(0x7f0000001bc0), 0x88302, 0x0) ioctl$SNDCTL_SEQ_GETOUTCOUNT(r0, 0x4004510d, 0x0) 1.357965554s ago: executing program 1 (id=3194): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000080)=[{&(0x7f0000000200)="2e0400001c008102e00f80ecdb4cb9f207c804a00d00000088081afb0a0002000a0ada1b40d80800c500c50083b8", 0xfec9}], 0x1, 0x0, 0x0, 0x5865}, 0x0) 1.356216744s ago: executing program 0 (id=3195): r0 = syz_open_dev$usbmon(&(0x7f0000000040), 0x3, 0x100) ioctl$MON_IOCH_MFLUSH(r0, 0x9208, 0x0) 1.326095354s ago: executing program 5 (id=3196): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/rt_cache\x00') pread64(r0, &(0x7f0000000040)=""/25, 0x19, 0x40000000000000) 1.233486246s ago: executing program 3 (id=3197): syz_mount_image$cramfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000400)=ANY=[], 0xfe, 0x15f, &(0x7f0000000200)="$eJzs0M+LEnEYx/H3d+Y7aqRYZCBBKXSxJPAHdYtwIknIBoounQSbSlCMhPKWEt06CF09RF2Xhf0LdPWw7KKX3X9iL94W9ugyM+4uy/of7PO6zef5Pp8H5sXTeUZx7nm79eWr2+m4H9JvnGr57eFoVPLyEHS3LsyD9+MSfEYz1rDogxdPYxYfG03XqLeb3veiBGHAvo6XW0D89J6d0PQ15An2M/dhctt/Z3A5c4tY/t4dDXY8yHLAsnEt6LsZZF7fEWCCUqHVsbsmvyrZ1C0F3WF2c2Pv9Wy38ujhM/d3oTx4EE2a2R/wD1tFdqafDszV1nxWfeVUnXmxUHhSzOUNHu/7hb0B+mX0G7xXoL0+A78vRPKefgc/Ffzxby22VQyY/D12WuGzf937bqZBpYb1WtL6X0vcMDAz2pssWcOfEFk3EkIIIYQQQgghhBBCCCGEEEIIcdWdBAAA///mllHe") syz_mount_image$exfat(0x0, &(0x7f00000003c0)='./bus\x00', 0x31c5024, 0x0, 0x4, 0x0, &(0x7f0000000200)) 1.135568018s ago: executing program 4 (id=3198): r0 = socket$kcm(0x10, 0x3, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff0a, &(0x7f0000000080)=[{&(0x7f0000000040)="c018030030000b12d25a80648c2594f90224fc60100c034002000000053582c137153e370248078000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 1.117908828s ago: executing program 0 (id=3199): r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000001a40)=[@in={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x12}}, @in={0x2, 0x0, @dev}, @in={0x2, 0x0, @local}, @in={0x2, 0x0, @multicast1}], 0x40) 1.084882509s ago: executing program 1 (id=3200): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x14, 0x4, 0x4, 0x7}, 0x48) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000840)={{r0}, &(0x7f00000007c0), &(0x7f0000000800)='%pI4 \x00'}, 0x20) 1.084305649s ago: executing program 5 (id=3201): unshare(0x22020600) mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 951.157061ms ago: executing program 3 (id=3202): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000000c0)={'wlan0\x00', &(0x7f0000000300)=@ethtool_sset_info={0x48}}) 894.353833ms ago: executing program 1 (id=3203): mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x100) mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x30a0080, 0x0) 873.674313ms ago: executing program 0 (id=3204): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48) bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0d0000007f000000040000000800000001000000", @ANYRES32=r0], 0x50) 783.648595ms ago: executing program 5 (id=3205): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000080)=@sack_info={0x0, 0x0, 0x1000}, 0xc) 783.101615ms ago: executing program 4 (id=3206): r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000080), 0x80080, 0x0) preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000280)=""/154, 0x9a}], 0x1, 0x101, 0xe06) 714.769086ms ago: executing program 3 (id=3207): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWSET={0x44, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x1f}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x5}]}], {0x14, 0x10}}, 0x6c}}, 0x0) 634.504188ms ago: executing program 1 (id=3208): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_buf(r0, 0x29, 0xd4, 0x0, 0x4) 606.756918ms ago: executing program 0 (id=3209): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c80)=ANY=[@ANYBLOB="ec010000100013072cbd7000fcdbdf250a01fdff00000000000000000000000020010000000700000000000000000001000000204e2100020a0000203b000000", @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="fc010000000000000000000000000000000000fe32000000fe80000000000000000000000000001b400000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000050000000000000043050000000000000500000000000000ffffffffffffff7f000000000000000000000000000000000000000080ffffff0000000028bd700000350000020004000000000000000000600012007063727970742861656769733235362d6165736e6929000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000060"], 0x1ec}, 0x1, 0x0, 0x0, 0x880}, 0x0) 553.942069ms ago: executing program 5 (id=3210): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x2000082, &(0x7f00000003c0)={[{@utf8no}, {@shortname_mixed}, {@uni_xlate}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '862'}}, {@uni_xlate}, {@rodir}, {@uni_xlate}, {@numtail}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {@utf8no}, {@utf8}, {@fat=@check_strict}, {@fat=@usefree}, {@utf8}, {@utf8}]}, 0x9, 0x353, &(0x7f0000006280)="$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") openat(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0x82040, 0x0) 523.88452ms ago: executing program 4 (id=3211): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0xa, &(0x7f0000000040), &(0x7f0000000080)=0x4) 484.39818ms ago: executing program 3 (id=3212): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000017b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000700000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000000000000850000001c00000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 376.461153ms ago: executing program 0 (id=3213): r0 = socket$caif_stream(0x25, 0x1, 0x5) writev(r0, &(0x7f0000000c40)=[{&(0x7f0000000680)="bf", 0x1}], 0x1) 322.899274ms ago: executing program 1 (id=3214): r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000280)="240000001a005f3814f9f407000904018000000000000038000000000700020040000000", 0x24) 319.521494ms ago: executing program 4 (id=3215): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x1f, 0x13, &(0x7f0000000040)=ANY=[@ANYBLOB="180000000000000000000000000000001809000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000a40800008500000006000000180100002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 209.970116ms ago: executing program 3 (id=3216): mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x5, &(0x7f0000000000)=0x9, 0x8, 0x0) get_mempolicy(0x0, 0x0, 0x203, &(0x7f0000394000/0x3000)=nil, 0x2) 100.612968ms ago: executing program 0 (id=3217): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x4, 0x4, 0x4, 0xbf25, 0x800}, 0x48) close(r0) 61.219519ms ago: executing program 4 (id=3218): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x4, &(0x7f0000000340)={[{@uid}, {@type={'type', 0x3d, "0142bc05"}}, {@type={'type', 0x3d, ' qs!'}}, {@barrier}, {@part={'part', 0x3d, 0x7}}, {@force}, {@gid}, {@nls={'nls', 0x3d, 'koi8-ru'}}, {@nobarrier}, {@creator={'creator', 0x3d, "ef6a7415"}}]}, 0xfc, 0x6e0, &(0x7f0000000580)="$eJzs3c1vHGcdB/Dv7K7fUtE4bdIWVImoEQURkfhFKQQJJSCEfKhQBAckbiZxGiubtLJdcCME4f3aQ/+A9pAbJyTuQeUMFwRHi1MlRC+cfFs0s7Prje111nESx/D5VLPzzDzvv52Z3dnUmgD/txbOpnU/RRbOvrlebm/cm29v3JufqLPbScp0I2l1VyluJ8XHyeV0l3y23FmXL4b188Hyxe/9/T8bn3S3WvVSlW/srPfzTpIvjD6Lu/WS00ma9XqnsW3bE8nkw9u7OrS9fit9u8+/6OeUATvTCxwcts4Od/dTfej5DhwdRb7xmd32TyfH0v2YrD7n6qtD4+mO7vHb11UOAAAADtnCv0/N7af8VL0+vpnNrB/523gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4qoqk2V1VS6OXPp2i9/z/8Xpf6vSRdv+wBwAAAAAAAAAAO4w9sDWeZKK3cWn3Gp/fzGbW83xvu1NU/+b/WrVxsnp9Lu9mNUtZybmsZzFrWctKZpNMD3a2vri2tjI7Qs25XWvOPTiu5mgTnhytGAAAAAAAAAD8z/tlFrb+/R8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ4FRdLsrqrlZC89nUYryWSS8bLc3eSvvfQRUey28/7THwcAAAAcyOQj1Dm+mc2s5/nedqeo7vlfqu6XJ/Nubmcty1lLO0u5Vt9Dl3f9jY178+2Ne/O3yuXAQ69aTPe3h917fqUqMZXrWa72nMvVajDX0qhqlv6Z5FZvTDvH9YtPy7Yvdf1kxJFdq9dlZ+/3fkWYOPCEH4PppNXIWD8iM9XYugfBicEo7IzENz8d1ujl7qq1vacM9jSbRv+Xn5PdHsrkQ2N+acSZHavX5Xx+O+yXm8dtcqvTu0ML9SPRSBWJuYGj76W9Y5588Y+/f/9G+/bNG9dXzz6VKT1J24+J+YFIvDxCJH7wzEaitXd2Y/uOmWrnqd7mR88l+X7O5nSuZCXL+XEWs5alFPVMF+vjuXyd3jtSlx/YujJkAH3j9fvSrMv1x5SFfGfXMZ3Ot6vUYl6r6j6f5RR5O9eylDeq/+Yym6/mQi7k4sA7fGrouKu5VWd9Y39n/Zkv1YmpJL+r14ete1Eo43piIK6D19zpKm9rz9hAlF7Y+93deW18+JRbn6sTZR+/2vNoeNq2R2J2IBIv7h2Jjzrl62r79s2VG4vv7PLp2inGqvXfziSdTnff63VeecT95uFff/500Pk9xMB1rDxeXshkfSU5kbHu0Jq9vBf7V5kqXuOD9U728x78xB3PZHk+N7o9dc/U7w49U8fr73A7W5qr8l7eNW++yntlIG/w+1bydtr970MAPMOOffnY+NS/pv4y9eHUr6duTL05+a2Jr028Op6xP499vTXTfL3xavGHfJifbd3/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAj271vTs3F9vtpZXdE43m0KwhiXTu3FzsPcln1FpZLeon6eyrr8NK9B/584yM54kkih17yhk/ni56Tz7aX62ZnUfU5cMM1D/2WyuTA1NuDi18rE50jnejtK8uprcfmcmQwhPdYDaHnKf1W/QoDxcFjoTza7feOb/63p2vLN9afGvpraXbYxcuXJy5eOGN+fPXl9tLM93Xwx4l8CRsfW8HAAAAAAAAAAAAjooR/67gyg9/VP0fgo/09xKHPUcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgaFs4m9b9FJmdOTdTbm/cm2+XSy+9VbKVpNFIip8mxcfJ5XSXTA80Vwzr54Pli80kn2y11eqVb+xRrzMx0izu1ktOJ2nW6wN4oL2rB26v6M+wDNiZXuDgsP03AAD//9ev6fg=") mknod(&(0x7f00000003c0)='./bus\x00', 0xc000, 0xfff) 0s ago: executing program 1 (id=3219): socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) listen(r0, 0xb) kernel console output (not intermixed with test programs): to keep mac addresses unique to avoid problems! [ 191.024482][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.035514][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.046117][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 191.057417][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.086951][ T7453] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 191.115674][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 191.141103][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 191.152898][ T7638] loop3: detected capacity change from 0 to 256 [ 191.166581][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 191.179370][ T7638] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 191.192573][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 191.204421][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.247259][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.284665][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.324992][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.359338][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.403601][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.420313][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.432890][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.449807][ T7453] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 191.462216][ T7453] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 191.524261][ T7453] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 191.559945][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 191.571285][ T7646] netlink: 920 bytes leftover after parsing attributes in process `syz.0.1479'. [ 191.582032][ T51] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 191.596093][ T7453] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.620669][ T7646] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1479'. [ 191.634875][ T7453] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.643768][ T7453] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.664089][ T7453] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 191.916196][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 191.944065][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 191.952001][ T7654] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1482'. [ 192.010487][ T7654] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1482'. [ 192.046305][ T4357] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 192.087092][ T4357] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 192.104323][ T4357] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 192.123140][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 192.504828][ T4284] Bluetooth: hci5: command 0x0419 tx timeout [ 192.513513][ T7674] netlink: 'syz.0.1491': attribute type 46 has an invalid length. [ 192.549620][ T7674] netlink: 'syz.0.1491': attribute type 19 has an invalid length. [ 192.557946][ T7674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1491'. [ 192.656610][ T7672] loop3: detected capacity change from 0 to 4096 [ 192.664532][ T7672] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 192.773097][ T7672] ntfs3: loop3: failed to convert "c46c" to iso8859-9 [ 192.814348][ T7682] loop5: detected capacity change from 0 to 256 [ 192.846786][ T7682] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 192.939130][ T7688] netlink: 448 bytes leftover after parsing attributes in process `syz.4.1498'. [ 193.186466][ T7691] loop0: detected capacity change from 0 to 2048 [ 193.243899][ T7691] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 193.293639][ T7698] netlink: 148 bytes leftover after parsing attributes in process `syz.4.1502'. [ 193.329731][ T7698] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1502'. [ 193.640583][ T7709] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1507'. [ 193.951170][ T7718] loop4: detected capacity change from 0 to 128 [ 194.000785][ T7718] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 194.045519][ T7718] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 194.109096][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.115483][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.274815][ T4335] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 194.484766][ T4335] usb 1-1: Using ep0 maxpacket: 8 [ 194.493817][ T4335] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 194.521144][ T4335] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 194.530655][ T7702] loop3: detected capacity change from 0 to 32768 [ 194.588035][ T4335] usb 1-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 194.599001][ T7702] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.1504 (7702) [ 194.634836][ T4335] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 194.674548][ T4335] usb 1-1: Product: syz [ 194.704113][ T4335] usb 1-1: Manufacturer: syz [ 194.715039][ T4335] usb 1-1: SerialNumber: syz [ 194.722743][ T7738] netlink: 'syz.5.1522': attribute type 10 has an invalid length. [ 194.730840][ T4335] usb 1-1: config 0 descriptor?? [ 194.744360][ T7702] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 194.773091][ T7702] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 194.784102][ T7738] bridge0: port 2(bridge_slave_1) entered disabled state [ 194.792154][ T7738] bridge0: port 1(bridge_slave_0) entered disabled state [ 194.819139][ T7702] BTRFS info (device loop3): force zlib compression, level 3 [ 194.833118][ T7702] BTRFS info (device loop3): force clearing of disk cache [ 194.859587][ T7738] bridge0: port 2(bridge_slave_1) entered blocking state [ 194.864503][ T7702] BTRFS info (device loop3): setting nodatasum [ 194.866907][ T7738] bridge0: port 2(bridge_slave_1) entered forwarding state [ 194.873499][ T7702] BTRFS info (device loop3): allowing degraded mounts [ 194.880381][ T7738] bridge0: port 1(bridge_slave_0) entered blocking state [ 194.894348][ T7738] bridge0: port 1(bridge_slave_0) entered forwarding state [ 194.914927][ T7702] BTRFS info (device loop3): enabling disk space caching [ 194.922076][ T7702] BTRFS info (device loop3): disk space caching is enabled [ 194.961483][ T7738] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 195.159959][ T4863] usb 1-1: USB disconnect, device number 5 [ 195.181752][ T7702] BTRFS info (device loop3): rebuilding free space tree [ 195.241029][ T7702] BTRFS info (device loop3): disabling free space tree [ 195.255687][ T7702] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 195.274721][ T7702] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 195.407126][ T7702] BTRFS error (device loop3): balance: mixed groups data and metadata options must be the same [ 195.583603][ T4266] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 196.320991][ T7765] loop4: detected capacity change from 0 to 32768 [ 196.409104][ T7787] loop0: detected capacity change from 0 to 4096 [ 196.440204][ T7787] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 196.470424][ T7765] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 196.593268][ T7765] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 57088 but max bitmap bits of 2048 [ 196.678637][ T7787] ntfs3: loop0: failed to convert "c46c" to iso8859-9 [ 196.735445][ T7765] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 196.801049][ T7765] OCFS2: File system is now read-only. [ 196.824889][ T7765] (syz.4.1525,7765,1):ocfs2_search_chain:1761 ERROR: status = -30 [ 196.848899][ T7765] (syz.4.1525,7765,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 196.884749][ T7765] (syz.4.1525,7765,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 196.937375][ T7765] (syz.4.1525,7765,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 196.988266][ T7765] (syz.4.1525,7765,1):ocfs2_claim_new_inode:2216 ERROR: status = -30 [ 197.018366][ T7765] (syz.4.1525,7765,1):ocfs2_claim_new_inode:2231 ERROR: status = -30 [ 197.062524][ T7765] (syz.4.1525,7765,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 197.111451][ T7765] (syz.4.1525,7765,1):ocfs2_mknod:385 ERROR: status = -30 [ 197.146961][ T7765] (syz.4.1525,7765,0):ocfs2_mknod:502 ERROR: status = -30 [ 197.168615][ T7765] (syz.4.1525,7765,0):ocfs2_mkdir:659 ERROR: status = -30 [ 197.250859][ T4265] ocfs2: Unmounting device (7,4) on (node local) [ 197.352896][ T7778] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 197.558879][ T7778] usb 2-1: config 0 has an invalid interface number: 117 but max is 0 [ 197.572385][ T7824] cgroup: No subsys list or none specified [ 197.578106][ T7778] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 197.619617][ T7778] usb 2-1: config 0 has no interface number 0 [ 197.639924][ T7778] usb 2-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 197.670564][ T7778] usb 2-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 197.696150][ T7778] usb 2-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 197.716132][ T7778] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.724193][ T7778] usb 2-1: Product: syz [ 197.754761][ T7778] usb 2-1: Manufacturer: syz [ 197.764971][ T7778] usb 2-1: SerialNumber: syz [ 197.780098][ T7778] usb 2-1: config 0 descriptor?? [ 198.218027][ T7778] usbtouchscreen: probe of 2-1:0.117 failed with error -71 [ 198.253582][ T7778] usb 2-1: USB disconnect, device number 8 [ 198.464774][ T4268] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 198.666891][ T4268] usb 6-1: unable to get BOS descriptor or descriptor too short [ 198.686443][ T4268] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 198.727239][ T4268] usb 6-1: New USB device found, idVendor=04b8, idProduct=ef02, bcdDevice= 0.3f [ 198.772285][ T4268] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 198.806121][ T4268] usb 6-1: Product: syz [ 198.820971][ T4268] usb 6-1: Manufacturer: syz [ 198.836127][ T4268] usb 6-1: SerialNumber: syz [ 198.966017][ T7867] loop4: detected capacity change from 0 to 4096 [ 198.974524][ T7867] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 199.107137][ T4268] usb 6-1: USB disconnect, device number 2 [ 199.133032][ T7867] ntfs3: loop4: failed to convert "c46c" to iso8859-9 [ 199.657878][ T7890] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1585'. [ 199.716250][ T7893] netlink: 'syz.3.1583': attribute type 95 has an invalid length. [ 199.730362][ T7895] netlink: 'syz.0.1586': attribute type 30 has an invalid length. [ 199.761071][ T7895] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1586'. [ 199.818770][ T7895] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 199.865177][ T7899] cgroup: No subsys list or none specified [ 199.894860][ T7895] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 200.355695][ T7916] loop0: detected capacity change from 0 to 512 [ 200.383584][ T7916] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 200.523185][ T7916] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters [ 200.563015][ T7916] Quota error (device loop0): write_blk: dquota write failed [ 200.605544][ T7916] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 200.617090][ T7916] EXT4-fs error (device loop0): ext4_acquire_dquot:6816: comm syz.0.1595: Failed to acquire dquot type 0 [ 200.629355][ T7916] EXT4-fs (loop0): 1 truncate cleaned up [ 200.635174][ T7916] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 200.746194][ T7897] loop5: detected capacity change from 0 to 32768 [ 200.762063][ T7924] binder: 7923:7924 ioctl c018620c 200000000380 returned -22 [ 200.764103][ T7897] XFS: noikeep mount option is deprecated. [ 200.778502][ T7926] netlink: 'syz.1.1599': attribute type 10 has an invalid length. [ 200.787735][ T7926] bridge0: port 2(bridge_slave_1) entered disabled state [ 200.795241][ T7926] bridge0: port 1(bridge_slave_0) entered disabled state [ 200.860938][ T7926] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.868141][ T7926] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.875627][ T7926] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.882776][ T7926] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.938915][ T7897] XFS (loop5): Mounting V5 Filesystem [ 200.953050][ T7926] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 200.965624][ T4268] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 201.042948][ T7897] XFS (loop5): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 201.103120][ T7897] XFS (loop5): Starting recovery (logdev: internal) [ 201.134860][ T7897] XFS (loop5): Ending recovery (logdev: internal) [ 201.176759][ T4268] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 201.202374][ T7940] netlink: 448 bytes leftover after parsing attributes in process `syz.1.1601'. [ 201.213124][ T4268] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 62709, setting to 1024 [ 201.248101][ T4268] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 1024 [ 201.269243][ T4268] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 201.294112][ T7453] XFS (loop5): Unmounting Filesystem [ 201.299584][ T4268] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.307864][ T7916] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 201.313296][ T4268] usb 1-1: invalid MIDI out EP 0 [ 201.323783][ T4270] Bluetooth: hci1: command 0x0406 tx timeout [ 201.329903][ T4270] Bluetooth: hci3: command 0x0406 tx timeout [ 201.335279][ T4284] Bluetooth: hci4: command 0x0406 tx timeout [ 201.486672][ T4268] snd-usb-audio: probe of 1-1:27.0 failed with error -22 [ 201.516350][ T7946] netlink: 'syz.4.1606': attribute type 10 has an invalid length. [ 201.552863][ T4268] usb 1-1: USB disconnect, device number 6 [ 201.569350][ T4927] udevd[4927]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 202.121347][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 202.259936][ T7960] netlink: 'syz.3.1613': attribute type 10 has an invalid length. [ 202.286369][ T7960] bridge0: port 2(bridge_slave_1) entered disabled state [ 202.295270][ T7960] bridge0: port 1(bridge_slave_0) entered disabled state [ 202.365035][ T7960] bridge0: port 2(bridge_slave_1) entered blocking state [ 202.372285][ T7960] bridge0: port 2(bridge_slave_1) entered forwarding state [ 202.379777][ T7960] bridge0: port 1(bridge_slave_0) entered blocking state [ 202.386974][ T7960] bridge0: port 1(bridge_slave_0) entered forwarding state [ 202.420775][ T7960] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 202.920179][ T7954] loop1: detected capacity change from 0 to 40427 [ 202.926893][ T4268] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 202.948479][ T7985] 9pnet_fd: Insufficient options for proto=fd [ 203.124730][ T4268] usb 5-1: Using ep0 maxpacket: 8 [ 203.131759][ T4268] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 203.156806][ T4268] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 203.180487][ T7954] F2FS-fs (loop1): Found nat_bits in checkpoint [ 203.218878][ T4268] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 203.254713][ T4268] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 203.278932][ T4268] usb 5-1: Product: syz [ 203.284261][ T4268] usb 5-1: Manufacturer: syz [ 203.304510][ T4268] usb 5-1: SerialNumber: syz [ 203.327003][ T7954] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1 [ 203.333859][ T7954] F2FS-fs (loop1): Cannot turn on quotas: -2 on 2 [ 203.353295][ T4268] usb 5-1: config 0 descriptor?? [ 203.387464][ T7954] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 203.753339][ T8001] gfs2: not a GFS2 filesystem [ 203.789758][ T7778] usb 5-1: USB disconnect, device number 5 [ 204.016410][ T8009] netlink: 'syz.0.1631': attribute type 10 has an invalid length. [ 204.035818][ T8009] bridge0: port 1(bridge_slave_0) entered disabled state [ 204.090034][ T7987] loop3: detected capacity change from 0 to 32768 [ 204.110328][ T8009] bridge0: port 1(bridge_slave_0) entered blocking state [ 204.117746][ T8009] bridge0: port 1(bridge_slave_0) entered forwarding state [ 204.160712][ T7987] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode. [ 204.206301][ T7987] OCFS2: ERROR (device loop3): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 57088 but max bitmap bits of 2048 [ 204.290004][ T8009] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 204.299097][ T7987] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 204.324753][ T7987] OCFS2: File system is now read-only. [ 204.335021][ T7987] (syz.3.1624,7987,1):ocfs2_search_chain:1761 ERROR: status = -30 [ 204.427445][ T7987] (syz.3.1624,7987,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 204.503052][ T7987] (syz.3.1624,7987,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 204.582595][ T7987] (syz.3.1624,7987,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 204.625137][ T7987] (syz.3.1624,7987,1):ocfs2_claim_new_inode:2216 ERROR: status = -30 [ 204.633905][ T7987] (syz.3.1624,7987,1):ocfs2_claim_new_inode:2231 ERROR: status = -30 [ 204.685301][ T7987] (syz.3.1624,7987,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 204.693101][ T7987] (syz.3.1624,7987,1):ocfs2_mknod:385 ERROR: status = -30 [ 204.763574][ T7987] (syz.3.1624,7987,1):ocfs2_mknod:502 ERROR: status = -30 [ 204.801950][ T7987] (syz.3.1624,7987,1):ocfs2_mkdir:659 ERROR: status = -30 [ 204.958115][ T8031] netlink: 'syz.5.1642': attribute type 10 has an invalid length. [ 204.973125][ T4266] ocfs2: Unmounting device (7,3) on (node local) [ 205.487848][ T8043] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 206.081565][ T8065] netlink: 'syz.3.1660': attribute type 10 has an invalid length. [ 206.394039][ T8075] libceph: resolve '00' (ret=-3): failed [ 207.111721][ T8104] loop3: detected capacity change from 0 to 1024 [ 207.150467][ T8108] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1682'. [ 207.362313][ T51] hfsplus: b-tree write err: -5, ino 4 [ 207.494704][ T4325] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 207.697090][ T4325] usb 1-1: unable to get BOS descriptor or descriptor too short [ 207.739094][ T4325] usb 1-1: not running at top speed; connect to a high speed hub [ 207.761109][ T4325] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 207.796456][ T4325] usb 1-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 207.840943][ T4325] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 207.865835][ T4325] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 207.900382][ T4325] usb 1-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4 [ 207.931049][ T4325] usb 1-1: New USB device found, idVendor=045e, idProduct=043f, bcdDevice=fc.90 [ 207.971623][ T4325] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 207.971731][ T8134] netlink: 920 bytes leftover after parsing attributes in process `syz.3.1694'. [ 208.001965][ T4325] usb 1-1: Product: syz [ 208.008951][ T4325] usb 1-1: Manufacturer: syz [ 208.024942][ T8134] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1694'. [ 208.044195][ T4325] usb 1-1: SerialNumber: syz [ 208.079110][ T4325] ipaq 1-1:1.0: PocketPC PDA converter detected [ 208.288324][ T4325] usb 1-1: PocketPC PDA converter now attached to ttyUSB0 [ 208.517773][ T4268] usb 1-1: USB disconnect, device number 7 [ 208.547024][ T4268] ipaq ttyUSB0: PocketPC PDA converter now disconnected from ttyUSB0 [ 208.566641][ T4268] ipaq 1-1:1.0: device disconnected [ 208.667145][ T8130] loop5: detected capacity change from 0 to 32768 [ 208.746070][ T8130] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode. [ 208.861747][ T8130] OCFS2: ERROR (device loop5): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 57088 but max bitmap bits of 2048 [ 208.862450][ T8138] loop4: detected capacity change from 0 to 40427 [ 208.909362][ T8130] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 208.919728][ T8130] OCFS2: File system is now read-only. [ 208.925894][ T8130] (syz.5.1690,8130,0):ocfs2_search_chain:1761 ERROR: status = -30 [ 208.942339][ T8138] F2FS-fs (loop4): Found nat_bits in checkpoint [ 208.982710][ T8130] (syz.5.1690,8130,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 209.014010][ T8130] (syz.5.1690,8130,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 209.050590][ T8130] (syz.5.1690,8130,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 209.121571][ T8138] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1 [ 209.129949][ T8130] (syz.5.1690,8130,0):ocfs2_claim_new_inode:2216 ERROR: status = -30 [ 209.168031][ T8138] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2 [ 209.175036][ T8130] (syz.5.1690,8130,0):ocfs2_claim_new_inode:2231 ERROR: status = -30 [ 209.222622][ T8130] (syz.5.1690,8130,0):ocfs2_mknod_locked:639 ERROR: status = -30 [ 209.241203][ T8138] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 209.270674][ T8130] (syz.5.1690,8130,0):ocfs2_mknod:385 ERROR: status = -30 [ 209.301081][ T8130] (syz.5.1690,8130,0):ocfs2_mknod:502 ERROR: status = -30 [ 209.334674][ T8130] (syz.5.1690,8130,0):ocfs2_mkdir:659 ERROR: status = -30 [ 209.558763][ T7453] ocfs2: Unmounting device (7,5) on (node local) [ 209.658924][ T8174] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1712'. [ 209.892819][ T8180] loop1: detected capacity change from 0 to 512 [ 209.987454][ T8184] device netdevsim0 entered promiscuous mode [ 210.013510][ T8184] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 210.022512][ T8180] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 210.038865][ T8180] ext4 filesystem being mounted at /367/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 210.213629][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 210.228186][ T8193] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 210.552013][ T8205] loop0: detected capacity change from 0 to 1024 [ 210.759703][ T9] hfsplus: b-tree write err: -5, ino 4 [ 210.939287][ T8221] netlink: 64 bytes leftover after parsing attributes in process `syz.1.1733'. [ 211.070641][ T8223] loop3: detected capacity change from 0 to 64 [ 211.125077][ T8223] hfs: unable to locate alternate MDB [ 211.155024][ T8223] hfs: continuing without an alternate MDB [ 211.175847][ T8225] device netdevsim0 entered promiscuous mode [ 211.233006][ T8225] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 211.554969][ T8237] netlink: 'syz.4.1741': attribute type 1 has an invalid length. [ 211.589819][ T8237] netlink: 228 bytes leftover after parsing attributes in process `syz.4.1741'. [ 211.657857][ T8243] AppArmor: change_hat: Invalid input '' [ 212.100739][ T8263] netlink: 'syz.0.1763': attribute type 1 has an invalid length. [ 212.132892][ T8261] loop1: detected capacity change from 0 to 512 [ 212.164120][ T8261] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 212.210107][ T8263] netlink: 228 bytes leftover after parsing attributes in process `syz.0.1763'. [ 212.213472][ T8261] EXT4-fs (loop1): orphan cleanup on readonly fs [ 212.226647][ T8266] loop3: detected capacity change from 0 to 512 [ 212.293722][ T8261] EXT4-fs warning (device loop1): ext4_enable_quotas:7068: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 212.330197][ T8266] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 212.359551][ T8266] ext4 filesystem being mounted at /336/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 212.391790][ T8261] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 212.431680][ T8261] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #13: comm syz.1.1752: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 212.516974][ T8261] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1752: couldn't read orphan inode 13 (err -117) [ 212.568409][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 212.575345][ T8261] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 212.637065][ T8261] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 212.676195][ T8261] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 212.721088][ T8261] EXT4-fs warning (device loop1): ext4_enable_quotas:7068: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 212.754463][ T8258] loop4: detected capacity change from 0 to 32768 [ 212.811101][ T8258] XFS: noikeep mount option is deprecated. [ 212.887772][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 212.947036][ T8281] loop5: detected capacity change from 0 to 256 [ 212.950425][ T8258] XFS (loop4): Mounting V5 Filesystem [ 213.077537][ T8281] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d) [ 213.090541][ T8258] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 213.166608][ T8258] XFS (loop4): Starting recovery (logdev: internal) [ 213.202296][ T8281] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 213.267239][ T8258] XFS (loop4): Ending recovery (logdev: internal) [ 213.612036][ T4265] XFS (loop4): Unmounting Filesystem [ 213.858032][ T8313] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1784'. [ 214.545189][ T8335] loop5: detected capacity change from 0 to 2048 [ 214.566712][ T8339] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1785'. [ 214.634593][ T8340] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 214.657670][ T8335] NILFS error (device loop5): nilfs_check_page: bad entry in directory #2: disallowed inode number - offset=0, inode=7, rec_len=16, name_len=1 [ 214.727049][ T8335] Remounting filesystem read-only [ 215.182276][ T8360] loop3: detected capacity change from 0 to 64 [ 215.610594][ T8363] loop0: detected capacity change from 0 to 8192 [ 215.981224][ T8384] device vlan0 entered promiscuous mode [ 216.183655][ T8388] loop4: detected capacity change from 0 to 4096 [ 216.254698][ T4279] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 216.446324][ T4279] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 216.476943][ T4279] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 216.506227][ T4279] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 216.534683][ T4279] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 216.583726][ T4279] usb 4-1: config 0 descriptor?? [ 216.753521][ T8407] loop1: detected capacity change from 0 to 256 [ 216.838431][ T8407] FAT-fs (loop1): Directory bread(block 64) failed [ 216.865703][ T8407] FAT-fs (loop1): Directory bread(block 65) failed [ 216.914878][ T8407] FAT-fs (loop1): Directory bread(block 66) failed [ 216.927805][ T8407] FAT-fs (loop1): Directory bread(block 67) failed [ 216.954908][ T8407] FAT-fs (loop1): Directory bread(block 68) failed [ 216.961528][ T8407] FAT-fs (loop1): Directory bread(block 69) failed [ 216.985236][ T8412] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1822'. [ 217.004922][ T8407] FAT-fs (loop1): Directory bread(block 70) failed [ 217.005881][ T4279] Bluetooth: Can't get version to change to load ram patch err [ 217.011485][ T8407] FAT-fs (loop1): Directory bread(block 71) failed [ 217.011592][ T8407] FAT-fs (loop1): Directory bread(block 72) failed [ 217.044983][ T8407] FAT-fs (loop1): Directory bread(block 73) failed [ 217.064755][ T4279] Bluetooth: Loading patch file failed [ 217.070291][ T4279] ath3k: probe of 4-1:0.0 failed with error -71 [ 217.109642][ T4279] usb 4-1: USB disconnect, device number 8 [ 217.495694][ T8421] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1835'. [ 217.541173][ T8421] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1835'. [ 217.756363][ T8427] program syz.1.1829 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 217.771827][ T8432] misc userio: The device must be registered before sending interrupts [ 218.131185][ T8442] loop3: detected capacity change from 0 to 1024 [ 218.201427][ T8445] loop4: detected capacity change from 0 to 512 [ 218.256768][ T8445] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 1024: comm syz.4.1838: invalid block [ 218.296920][ T8445] EXT4-fs (loop4): Remounting filesystem read-only [ 218.303520][ T8445] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.1838: invalid indirect mapped block 1024 (level 0) [ 218.332719][ T8445] EXT4-fs (loop4): Remounting filesystem read-only [ 218.340166][ T8445] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.1838: bg 0: block 35: padding at end of block bitmap is not set [ 218.357858][ T8445] EXT4-fs (loop4): Remounting filesystem read-only [ 218.364463][ T8445] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 218.398067][ T8445] EXT4-fs (loop4): Remounting filesystem read-only [ 218.443453][ T8445] EXT4-fs (loop4): 1 truncate cleaned up [ 218.465651][ T26] audit: type=1326 audit(1758297439.341:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8452 comm="syz.0.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4678ec29 code=0x7ffc0000 [ 218.469372][ T8445] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 218.498659][ T8454] netlink: 5 bytes leftover after parsing attributes in process `syz.1.1841'. [ 218.543617][ T26] audit: type=1326 audit(1758297439.341:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8452 comm="syz.0.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=90 compat=0 ip=0x7f9c4678ec29 code=0x7ffc0000 [ 218.565871][ C0] vkms_vblank_simulate: vblank timer overrun [ 218.673273][ T26] audit: type=1326 audit(1758297439.341:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8452 comm="syz.0.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4678ec29 code=0x7ffc0000 [ 218.718720][ T8459] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1843'. [ 218.762923][ T8459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1843'. [ 218.771046][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 218.786451][ T26] audit: type=1326 audit(1758297439.341:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8452 comm="syz.0.1850" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4678ec29 code=0x7ffc0000 [ 218.838663][ T8462] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1844'. [ 218.914696][ T8462] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1844'. [ 218.934076][ T8462] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1844'. [ 219.373130][ T8483] loop5: detected capacity change from 0 to 512 [ 219.426607][ T8483] EXT4-fs (loop5): orphan cleanup on readonly fs [ 219.433039][ T8483] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -13 [ 219.487677][ T8483] EXT4-fs error (device loop5): ext4_clear_blocks:883: inode #13: comm syz.5.1855: attempt to clear invalid blocks 2 len 1 [ 219.506867][ T8483] EXT4-fs (loop5): Remounting filesystem read-only [ 219.513811][ T8483] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 219.530076][ T8483] EXT4-fs (loop5): Remounting filesystem read-only [ 219.536805][ T8483] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1855: invalid indirect mapped block 1819239214 (level 0) [ 219.559192][ T8483] EXT4-fs (loop5): Remounting filesystem read-only [ 219.566008][ T8483] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.1855: invalid indirect mapped block 1819239214 (level 1) [ 219.582496][ T8483] EXT4-fs (loop5): Remounting filesystem read-only [ 219.614801][ T8483] EXT4-fs (loop5): 1 truncate cleaned up [ 219.620673][ T8483] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 219.683815][ T8483] EXT4-fs (loop5): Quota file not on filesystem root. Journaled quota will not work [ 219.912194][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 220.107807][ T8506] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1867'. [ 220.134778][ T8506] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1867'. [ 220.354958][ T4335] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 220.437963][ T8521] loop1: detected capacity change from 0 to 512 [ 220.483618][ T8521] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 220.517192][ T8521] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 220.528051][ T8521] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1874: Corrupt directory, running e2fsck is recommended [ 220.542539][ T8521] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117 [ 220.553255][ T8521] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2195: inode #15: comm syz.1.1874: corrupted in-inode xattr [ 220.554789][ T4335] usb 6-1: Using ep0 maxpacket: 8 [ 220.573538][ T8521] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1874: couldn't read orphan inode 15 (err -117) [ 220.591148][ T8521] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 220.610297][ T8521] EXT4-fs warning (device loop1): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 220.621976][ T8521] EXT4-fs warning (device loop1): dx_probe:881: Enable large directory feature to access it [ 220.632521][ T8521] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1874: Corrupt directory, running e2fsck is recommended [ 220.649085][ T4335] usb 6-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11 [ 220.660572][ T8527] misc userio: The device must be registered before sending interrupts [ 220.686412][ T4335] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 220.724742][ T4335] usb 6-1: Product: syz [ 220.742875][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 220.753829][ T4335] usb 6-1: Manufacturer: syz [ 220.792169][ T4335] usb 6-1: SerialNumber: syz [ 220.815932][ T8531] program syz.4.1880 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 220.832235][ T4335] usb 6-1: config 0 descriptor?? [ 220.877831][ T4335] gspca_main: vc032x-2.14.0 probing 046d:0896 [ 221.282414][ T4335] gspca_vc032x: reg_w err -71 [ 221.287727][ T4335] vc032x: probe of 6-1:0.0 failed with error -71 [ 221.330212][ T4335] usb 6-1: USB disconnect, device number 3 [ 221.674154][ T8565] IPVS: set_ctl: invalid protocol: 108 172.20.20.170:20003 [ 221.714911][ T129] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 221.926521][ T129] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 221.960797][ T129] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 221.995620][ T129] usb 2-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 222.024723][ T129] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.086541][ T129] usb 2-1: config 0 descriptor?? [ 222.347591][ T8589] netlink: 'syz.4.1903': attribute type 8 has an invalid length. [ 222.520302][ T129] Bluetooth: Can't get version to change to load ram patch err [ 222.536697][ T129] Bluetooth: Loading patch file failed [ 222.565614][ T129] ath3k: probe of 2-1:0.0 failed with error -71 [ 222.586336][ T129] usb 2-1: USB disconnect, device number 9 [ 222.639005][ T8598] xt_l2tp: invalid flags combination: 8 [ 222.704887][ T8599] (unnamed net_device) (uninitialized): option ad_select: invalid value (105) [ 222.823204][ T8603] __nla_validate_parse: 5 callbacks suppressed [ 222.823223][ T8603] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1913'. [ 223.153857][ T8614] loop0: detected capacity change from 0 to 512 [ 223.237077][ T8614] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 1024: comm syz.0.1916: invalid block [ 223.313443][ T8625] loop4: detected capacity change from 0 to 128 [ 223.349887][ T8614] EXT4-fs (loop0): Remounting filesystem read-only [ 223.411571][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.414821][ T8614] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1916: invalid indirect mapped block 1024 (level 0) [ 223.460549][ T8625] FAT-fs (loop4): Filesystem has been set read-only [ 223.480924][ T8623] loop1: detected capacity change from 0 to 4096 [ 223.487764][ T8614] EXT4-fs (loop0): Remounting filesystem read-only [ 223.494376][ T8614] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1916: bg 0: block 35: padding at end of block bitmap is not set [ 223.501795][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.557854][ T8623] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match. Run ntfsfix or chkdsk. [ 223.572149][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.591187][ T8623] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 223.620690][ T8614] EXT4-fs (loop0): Remounting filesystem read-only [ 223.641042][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.663235][ T8614] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 223.667435][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.685363][ T8623] ntfs: volume version 3.1. [ 223.703122][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.716397][ T8614] EXT4-fs (loop0): Remounting filesystem read-only [ 223.729395][ T8623] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 223.736319][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.749833][ T8614] EXT4-fs (loop0): 1 truncate cleaned up [ 223.763415][ T8623] ntfs: (device loop1): load_and_init_quota(): Failed to find inode number for $Quota. [ 223.773492][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.781273][ T8614] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 223.807285][ T8623] ntfs: (device loop1): load_system_files(): Failed to load $Quota. Will not be able to remount read-write. Run chkdsk. [ 223.863747][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.869413][ T8623] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 223.915357][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.941658][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.953580][ T8623] ntfs: (device loop1): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl. [ 223.972456][ T8634] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1927'. [ 223.976632][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 223.999706][ T8623] ntfs: (device loop1): load_system_files(): Failed to load $UsnJrnl. Will not be able to remount read-write. Run chkdsk. [ 224.021451][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.035121][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 224.061698][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.122495][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.170905][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.190358][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.212431][ T8637] (unnamed net_device) (uninitialized): option ad_select: invalid value (105) [ 224.232222][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.284991][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.304465][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.334736][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.353547][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.373819][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.384845][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.411297][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.462697][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.532384][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.591463][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.654818][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.663331][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.714799][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.745040][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.773336][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.802433][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.846638][ T8625] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 52) [ 224.885784][ T26] audit: type=1800 audit(1758297445.761:17): pid=8625 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1923" name="file1" dev="loop4" ino=1048642 res=0 errno=0 [ 224.988098][ T8625] syz.4.1923 (8625) used greatest stack depth: 19696 bytes left [ 225.092291][ T8665] netlink: 'syz.3.1943': attribute type 8 has an invalid length. [ 225.201548][ T8669] loop5: detected capacity change from 0 to 512 [ 225.225687][ T8669] EXT4-fs: Ignoring removed oldalloc option [ 225.274457][ T8669] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 225.323499][ T8675] program syz.1.1947 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 225.334972][ T8669] ext4 filesystem being mounted at /85/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 225.576298][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 225.665663][ T26] audit: type=1326 audit(1758297446.541:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8684 comm="syz.1.1952" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 225.796305][ T8691] ieee802154 phy0 wpan0: encryption failed: -22 [ 225.952818][ T8697] loop5: detected capacity change from 0 to 128 [ 225.994074][ T8697] ufs: ufs_fill_super(): fragment size 2066844866 is not a power of 2 [ 226.142085][ T8705] loop1: detected capacity change from 0 to 256 [ 226.270951][ T8705] FAT-fs (loop1): Directory bread(block 64) failed [ 226.304338][ T8705] FAT-fs (loop1): Directory bread(block 65) failed [ 226.359115][ T8705] FAT-fs (loop1): Directory bread(block 66) failed [ 226.408209][ T8705] FAT-fs (loop1): Directory bread(block 67) failed [ 226.425014][ T8705] FAT-fs (loop1): Directory bread(block 68) failed [ 226.442986][ T8705] FAT-fs (loop1): Directory bread(block 69) failed [ 226.461216][ T8705] FAT-fs (loop1): Directory bread(block 70) failed [ 226.489875][ T8705] FAT-fs (loop1): Directory bread(block 71) failed [ 226.509579][ T8705] FAT-fs (loop1): Directory bread(block 72) failed [ 226.530414][ T8705] FAT-fs (loop1): Directory bread(block 73) failed [ 226.909186][ T8728] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1974'. [ 227.174764][ T129] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 227.343764][ T8737] loop3: detected capacity change from 0 to 4096 [ 227.384881][ T129] usb 2-1: Using ep0 maxpacket: 8 [ 227.394545][ T129] usb 2-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11 [ 227.417142][ T129] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 227.446464][ T129] usb 2-1: Product: syz [ 227.460953][ T129] usb 2-1: Manufacturer: syz [ 227.497252][ T129] usb 2-1: SerialNumber: syz [ 227.514111][ T129] usb 2-1: config 0 descriptor?? [ 227.533003][ T129] gspca_main: vc032x-2.14.0 probing 046d:0896 [ 227.558068][ T8737] ntfs3: loop3: try to read out of volume at offset 0x3fffffc7000 [ 227.884887][ T4279] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 227.925133][ T8754] ieee802154 phy0 wpan0: encryption failed: -22 [ 227.956497][ T129] gspca_vc032x: reg_w err -71 [ 227.961298][ T129] vc032x: probe of 2-1:0.0 failed with error -71 [ 228.016344][ T129] usb 2-1: USB disconnect, device number 10 [ 228.047068][ T8756] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1987'. [ 228.079105][ T4279] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 228.106321][ T4279] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 228.130077][ T4279] usb 5-1: Product: syz [ 228.134319][ T4279] usb 5-1: Manufacturer: syz [ 228.154692][ T4279] usb 5-1: SerialNumber: syz [ 228.189394][ T4279] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 228.269998][ T4279] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 228.501925][ C1] usb 5-1: ath: unknown panic pattern! [ 228.709783][ T7778] usb 5-1: USB disconnect, device number 6 [ 229.384961][ T4279] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 229.392054][ T4279] ath9k_htc: Failed to initialize the device [ 229.415930][ T7778] usb 5-1: ath9k_htc: USB layer deinitialized [ 229.637655][ T8809] loop4: detected capacity change from 0 to 512 [ 229.652670][ T8802] loop5: detected capacity change from 0 to 4096 [ 229.658357][ T8809] EXT4-fs: Ignoring removed oldalloc option [ 229.766688][ T8809] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 229.794726][ T8802] NILFS (loop5): mounting unchecked fs [ 229.800858][ T8802] NILFS (loop5): recovery required for readonly filesystem [ 229.859910][ T8809] ext4 filesystem being mounted at /437/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 229.884696][ T8802] NILFS (loop5): write access will be enabled during recovery [ 229.917382][ T8802] NILFS (loop5): invalid segment: Checksum error in segment payload [ 230.014717][ T8802] NILFS (loop5): trying rollback from an earlier position [ 230.092958][ T8802] NILFS (loop5): norecovery option specified, skipping roll-forward recovery [ 230.147397][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 230.303576][ T8822] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2019'. [ 230.365889][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 230.365905][ T26] audit: type=1800 audit(1758297451.241:22): pid=8802 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2010" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 230.714895][ T7778] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 230.782945][ T8834] xt_bpf: check failed: parse error [ 230.924727][ T7778] usb 5-1: Using ep0 maxpacket: 8 [ 230.931764][ T7778] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 230.950700][ T8818] loop3: detected capacity change from 0 to 32768 [ 230.972060][ T7778] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 231.010310][ T7778] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 231.033091][ T7778] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.041540][ T7778] usb 5-1: Product: syz [ 231.046095][ T7778] usb 5-1: Manufacturer: syz [ 231.051644][ T7778] usb 5-1: SerialNumber: syz [ 231.055427][ T8818] XFS (loop3): Mounting V5 Filesystem [ 231.058894][ T7778] usb 5-1: config 0 descriptor?? [ 231.317075][ T8818] XFS (loop3): Ending clean mount [ 231.353600][ T8856] tipc: Trying to set illegal importance in message [ 231.525951][ T4268] usb 5-1: USB disconnect, device number 7 [ 231.539500][ T4266] XFS (loop3): Unmounting Filesystem [ 231.783834][ T8866] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2037'. [ 231.841450][ T8866] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2037'. [ 232.149620][ T8874] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2041'. [ 232.271350][ T8882] loop4: detected capacity change from 0 to 22 [ 232.334524][ T8882] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 232.368953][ T8882] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 232.464939][ T8888] loop3: detected capacity change from 0 to 2048 [ 232.510048][ T8888] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 232.625041][ T8893] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 233.530282][ T8928] Cannot find del_set index 286 as target [ 233.564932][ T8929] trusted_key: encrypted_key: hex blob is missing [ 234.282636][ T8959] loop1: detected capacity change from 0 to 1024 [ 234.305896][ T8959] EXT4-fs: Ignoring removed bh option [ 234.319169][ T8959] EXT4-fs: inline encryption not supported [ 234.345941][ T8959] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 234.381088][ T8959] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 2: comm syz.1.2081: lblock 2 mapped to illegal pblock 2 (length 1) [ 234.604339][ T8971] x_tables: arp_tables: .0 target: invalid size 8 (kernel) != (user) 0 [ 234.609473][ T8959] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 234.649060][ T8959] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 48: comm syz.1.2081: lblock 0 mapped to illegal pblock 48 (length 1) [ 234.715672][ T8959] Quota error (device loop1): v2_write_file_info: Can't write info structure [ 234.724519][ T8959] EXT4-fs error (device loop1): ext4_acquire_dquot:6816: comm syz.1.2081: Failed to acquire dquot type 0 [ 234.790711][ T8959] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 234.867151][ T26] audit: type=1326 audit(1758297455.741:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8979 comm="syz.4.2092" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x0 [ 234.874978][ T8959] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #11: comm syz.1.2081: mark_inode_dirty error [ 234.954351][ T8959] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 234.976982][ T8959] EXT4-fs (loop1): 1 orphan inode deleted [ 234.983187][ T8959] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 234.994922][ T51] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:3: lblock 1 mapped to illegal pblock 1 (length 1) [ 235.055508][ T51] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 235.064018][ T51] EXT4-fs error (device loop1): ext4_release_dquot:6852: comm kworker/u4:3: Failed to release dquot type 0 [ 235.064889][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 235.165537][ T32] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #3: block 2: comm kworker/u4:2: lblock 2 mapped to illegal pblock 2 (length 1) [ 235.170704][ T8987] xt_nfacct: accounting object `syz0' does not exist [ 235.242641][ T32] Quota error (device loop1): qtree_write_dquot: dquota write failed [ 235.273205][ T32] EXT4-fs error (device loop1): ext4_write_dquot:6796: comm kworker/u4:2: Failed to commit dquot type 0 [ 235.385896][ T32] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync! [ 235.436207][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 235.474772][ T4269] EXT4-fs error (device loop1): __ext4_get_inode_loc:4507: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 235.499171][ T4269] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 235.518458][ T4269] EXT4-fs error (device loop1): ext4_quota_off:7122: inode #3: comm syz-executor: mark_inode_dirty error [ 236.217018][ T9027] netlink: 45 bytes leftover after parsing attributes in process `syz.3.2115'. [ 236.815254][ T9043] xt_CT: You must specify a L4 protocol and not use inversions on it [ 236.866284][ T26] audit: type=1326 audit(1758297457.741:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9045 comm="syz.5.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7aac18ec29 code=0x7ffc0000 [ 236.951755][ T26] audit: type=1326 audit(1758297457.781:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9045 comm="syz.5.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f7aac18ec29 code=0x7ffc0000 [ 237.114881][ T26] audit: type=1326 audit(1758297457.781:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9045 comm="syz.5.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7aac18ec29 code=0x7ffc0000 [ 237.185375][ T9011] loop1: detected capacity change from 0 to 32768 [ 237.193928][ T26] audit: type=1326 audit(1758297457.781:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9045 comm="syz.5.2125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7aac18ec29 code=0x7ffc0000 [ 237.300585][ T9011] XFS (loop1): Mounting V5 Filesystem [ 237.388796][ T9063] loop5: detected capacity change from 0 to 4096 [ 237.534439][ T9076] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 237.553606][ T9011] XFS (loop1): Ending clean mount [ 237.600908][ T9011] XFS (loop1): Quotacheck needed: Please wait. [ 237.735582][ T9011] XFS (loop1): Quotacheck: Done. [ 237.916994][ T4269] XFS (loop1): Unmounting Filesystem [ 237.936694][ T9084] loop3: detected capacity change from 0 to 1024 [ 238.076861][ T9084] hfsplus: keylen 65060 too large [ 238.082459][ T9084] hfsplus: keylen 65060 too large [ 239.054831][ T9115] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2148'. [ 239.500523][ T9095] loop3: detected capacity change from 0 to 32768 [ 239.544018][ T9095] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.2141 (9095) [ 239.625476][ T9095] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 239.675436][ T9095] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 239.712979][ T9095] BTRFS info (device loop3): using free space tree [ 239.740539][ T9134] netlink: 'syz.5.2158': attribute type 1 has an invalid length. [ 239.916099][ T9107] loop4: detected capacity change from 0 to 32768 [ 239.943586][ T9107] BTRFS warning: duplicate device /dev/loop4 devid 1 generation 8 scanned by syz.4.2146 (9107) [ 240.008988][ T9095] BTRFS info (device loop3): enabling ssd optimizations [ 240.252512][ T9164] loop0: detected capacity change from 0 to 256 [ 240.313593][ T4266] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 240.413612][ T9164] FAT-fs (loop0): Directory bread(block 64) failed [ 240.465887][ T9164] FAT-fs (loop0): Directory bread(block 65) failed [ 240.473239][ T9164] FAT-fs (loop0): Directory bread(block 66) failed [ 240.528115][ T4454] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by udevd (4454) [ 240.541977][ T9164] FAT-fs (loop0): Directory bread(block 67) failed [ 240.576648][ T9164] FAT-fs (loop0): Directory bread(block 68) failed [ 240.583342][ T9164] FAT-fs (loop0): Directory bread(block 69) failed [ 240.624403][ T9174] device bond0 entered promiscuous mode [ 240.634829][ T9164] FAT-fs (loop0): Directory bread(block 70) failed [ 240.641459][ T9164] FAT-fs (loop0): Directory bread(block 71) failed [ 240.684801][ T9174] device bond_slave_0 entered promiscuous mode [ 240.704884][ T9164] FAT-fs (loop0): Directory bread(block 72) failed [ 240.725489][ T9174] device bond_slave_1 entered promiscuous mode [ 240.742091][ T9164] FAT-fs (loop0): Directory bread(block 73) failed [ 240.753292][ T9174] 8021q: adding VLAN 0 to HW filter on device bond0 [ 241.696425][ T9208] netlink: 830 bytes leftover after parsing attributes in process `syz.0.2180'. [ 242.013623][ T9218] loop4: detected capacity change from 0 to 256 [ 242.071224][ T9218] exfat: Deprecated parameter 'namecase' [ 242.206386][ T9218] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 242.690604][ T9200] loop3: detected capacity change from 0 to 40427 [ 242.754730][ T9200] F2FS-fs (loop3): invalid crc value [ 242.830521][ T9200] F2FS-fs (loop3): Found nat_bits in checkpoint [ 242.888493][ T9247] usb usb1: usbfs: process 9247 (syz.1.2199) did not claim interface 63 before use [ 243.021980][ T9200] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 243.774748][ T4863] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 243.831986][ T9279] ptrace attach of "./syz-executor exec"[4267] was attempted by "./syz-executor exec"[9279] [ 243.868695][ T9281] loop4: detected capacity change from 0 to 16 [ 243.896905][ T9281] erofs: (device loop4): mounted with root inode @ nid 36. [ 243.944875][ T4270] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[9000] [ 243.964905][ T4863] usb 2-1: Using ep0 maxpacket: 32 [ 243.972990][ T9281] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -26 in[46, 4050] out[8192] [ 243.997265][ T4863] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 244.004870][ T129] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 244.016775][ T26] audit: type=1800 audit(1758297464.891:28): pid=9281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2216" name="file2" dev="loop4" ino=89 res=0 errno=0 [ 244.067522][ T4863] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 244.106949][ T4863] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83 [ 244.136574][ T4863] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 244.154696][ T4863] usb 2-1: Product: syz [ 244.171373][ T4863] usb 2-1: Manufacturer: syz [ 244.196670][ T129] usb 6-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e [ 244.197872][ T4863] usb 2-1: SerialNumber: syz [ 244.231040][ T129] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.242499][ T4863] usb 2-1: config 0 descriptor?? [ 244.283929][ T129] pwc: Logitech/Cisco VT Camera webcam detected. [ 244.313060][ T9283] loop0: detected capacity change from 0 to 4096 [ 244.363390][ T9289] netlink: 1 bytes leftover after parsing attributes in process `syz.4.2219'. [ 244.374656][ T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!! [ 244.382982][ T0] NOHZ tick-stop error: local softirq work is pending, handler #380!!! [ 244.403743][ T9290] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 244.474967][ T4863] snd-usb-6fire 2-1:0.0: unable to receive device firmware state. [ 244.505442][ T4863] snd-usb-6fire: probe of 2-1:0.0 failed with error -71 [ 244.523297][ T4863] usb 2-1: USB disconnect, device number 11 [ 244.690088][ T129] pwc: send_video_command error -71 [ 244.699206][ T129] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 244.730123][ T129] Philips webcam: probe of 6-1:127.0 failed with error -71 [ 244.775789][ T129] usb 6-1: USB disconnect, device number 4 [ 245.171896][ T9308] loop4: detected capacity change from 0 to 1764 [ 245.553973][ T9322] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2234'. [ 245.583908][ T9322] unsupported nlmsg_type 40 [ 245.744788][ T129] usb 2-1: new full-speed USB device number 12 using dummy_hcd [ 245.830746][ T9326] netlink: 'syz.0.2236': attribute type 12 has an invalid length. [ 245.936493][ T129] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 245.964672][ T129] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 245.994404][ T129] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 246.013514][ T129] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 246.022121][ T129] usb 2-1: SerialNumber: syz [ 246.047519][ T129] usb 2-1: 0:2 : does not exist [ 246.397054][ T9321] loop4: detected capacity change from 0 to 32768 [ 246.454158][ T129] usb 2-1: USB disconnect, device number 12 [ 246.506777][ T9321] XFS (loop4): Mounting V5 Filesystem [ 246.549190][ T9347] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2242'. [ 246.549224][ T9347] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2242'. [ 246.674434][ T9350] loop3: detected capacity change from 0 to 256 [ 246.714961][ T9321] XFS (loop4): Ending clean mount [ 246.885110][ T4265] XFS (loop4): Unmounting Filesystem [ 248.014474][ T9383] netlink: 'syz.0.2259': attribute type 21 has an invalid length. [ 248.034754][ T9383] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2259'. [ 248.620579][ T26] audit: type=1326 audit(1758297469.491:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 248.673577][ T26] audit: type=1326 audit(1758297469.511:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 248.730729][ T9373] loop3: detected capacity change from 0 to 32768 [ 248.770643][ T26] audit: type=1326 audit(1758297469.521:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 248.869727][ T9373] ERROR: (device loop3): dbAllocAG: unable to allocate blocks [ 248.869727][ T9373] [ 248.898930][ T26] audit: type=1326 audit(1758297469.521:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 248.921310][ C0] vkms_vblank_simulate: vblank timer overrun [ 248.947044][ T9373] jfs_create: dtInsert returned -EIO [ 248.954240][ T9373] ERROR: (device loop3): jfs_create: [ 248.954240][ T9373] [ 249.032499][ T26] audit: type=1326 audit(1758297469.521:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9404 comm="syz.1.2271" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9e3d8ec29 code=0x7ffc0000 [ 249.054722][ C0] vkms_vblank_simulate: vblank timer overrun [ 249.457885][ T9427] netlink: 1020 bytes leftover after parsing attributes in process `syz.0.2282'. [ 249.881542][ T9443] loop1: detected capacity change from 0 to 8 [ 249.905388][ T9442] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 250.154055][ T9412] loop5: detected capacity change from 0 to 32768 [ 250.322881][ T9412] ERROR: (device loop5): dbAllocNext: Corrupt dmap page [ 250.322881][ T9412] [ 250.379876][ T9412] ERROR: (device loop5): remounting filesystem as read-only [ 250.417982][ T9412] ialloc: diAlloc returned -5! [ 251.084011][ T9468] loop0: detected capacity change from 0 to 4096 [ 251.311285][ T9468] ntfs3: loop0: try to read out of volume at offset 0x3fffffc7000 [ 251.854929][ T7779] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 252.056752][ T7779] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 252.087535][ T7779] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.107834][ T7779] usb 1-1: Product: syz [ 252.112077][ T7779] usb 1-1: Manufacturer: syz [ 252.131544][ T7779] usb 1-1: SerialNumber: syz [ 252.134402][ T9477] loop4: detected capacity change from 0 to 32768 [ 252.163418][ T7779] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 252.258664][ T9180] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 252.295430][ T9477] XFS (loop4): Mounting V5 Filesystem [ 252.512680][ C0] usb 1-1: ath: unknown panic pattern! [ 252.516720][ T9523] loop3: detected capacity change from 0 to 1024 [ 252.626205][ T9477] XFS (loop4): Ending clean mount [ 252.722234][ T9523] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 252.759827][ T4863] usb 1-1: USB disconnect, device number 8 [ 252.788651][ T4265] XFS (loop4): Unmounting Filesystem [ 252.947937][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 253.078383][ T9542] loop1: detected capacity change from 0 to 256 [ 253.096644][ T9544] loop3: detected capacity change from 0 to 22 [ 253.128600][ T9544] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 253.213615][ T9544] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 253.315157][ T9180] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 253.326130][ T9180] ath9k_htc: Failed to initialize the device [ 253.353467][ T4863] usb 1-1: ath9k_htc: USB layer deinitialized [ 253.382034][ T9548] loop5: detected capacity change from 0 to 2048 [ 253.404199][ T9548] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 253.490132][ T9552] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 253.786483][ T9558] loop1: detected capacity change from 0 to 4096 [ 253.846670][ T9558] NILFS (loop1): mounting unchecked fs [ 253.852326][ T9558] NILFS (loop1): recovery required for readonly filesystem [ 253.874050][ T9558] NILFS (loop1): write access will be enabled during recovery [ 253.954859][ T9558] NILFS (loop1): invalid segment: Checksum error in segment payload [ 253.975015][ T9558] NILFS (loop1): trying rollback from an earlier position [ 254.035494][ T9558] NILFS (loop1): norecovery option specified, skipping roll-forward recovery [ 254.323234][ T9572] loop3: detected capacity change from 0 to 512 [ 254.391048][ T9572] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 254.436962][ T9572] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 254.449292][ T9576] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2351'. [ 254.474679][ T9572] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 254.489001][ T9576] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2351'. [ 254.495253][ T9572] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 254.508939][ T9576] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode balance-rr(0) [ 254.597803][ T9572] System zones: 0-2, 18-18, 34-35 [ 254.609337][ T26] audit: type=1800 audit(1758297475.481:34): pid=9558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2341" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 254.636504][ T9572] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 254.669957][ T9572] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended [ 254.744799][ T9583] xt_bpf: check failed: parse error [ 254.764992][ T9572] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 254.774205][ T9572] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 254.874263][ T9585] loop0: detected capacity change from 0 to 1024 [ 254.966501][ T9585] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 255.013441][ T9585] EXT4-fs error (device loop0): ext4_get_first_dir_block:3605: inode #11: comm syz.0.2353: directory missing '..' [ 255.036676][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 255.047257][ T9591] loop1: detected capacity change from 0 to 764 [ 255.109903][ T9591] rock: directory entry would overflow storage [ 255.124729][ T9591] rock: sig=0x4654, size=5, remaining=4 [ 255.258556][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 255.402195][ T9597] loop3: detected capacity change from 0 to 2048 [ 255.485792][ T9597] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 255.546939][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 255.553303][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.692165][ T9608] loop4: detected capacity change from 0 to 1024 [ 255.890039][ T26] audit: type=1800 audit(1758297476.761:35): pid=9608 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2364" name="file2" dev="loop4" ino=22 res=0 errno=0 [ 256.092196][ T56] hfsplus: b-tree write err: -5, ino 4 [ 256.207484][ T9627] loop5: detected capacity change from 0 to 64 [ 256.541979][ T9632] loop3: detected capacity change from 0 to 4096 [ 256.650575][ T9642] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 256.664955][ T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!! [ 256.818217][ T9650] loop1: detected capacity change from 0 to 512 [ 256.841580][ T9650] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 256.961044][ T9650] EXT4-fs (loop1): 1 truncate cleaned up [ 256.982632][ T9650] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 257.013646][ T9654] loop0: detected capacity change from 0 to 512 [ 257.139198][ T9654] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 257.225488][ T9654] ext4 filesystem being mounted at /531/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 257.324889][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 257.569179][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 257.750230][ T9674] netlink: 'syz.4.2393': attribute type 3 has an invalid length. [ 258.116745][ T9694] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 258.571647][ T9707] sctp: [Deprecated]: syz.5.2409 (pid 9707) Use of int in maxseg socket option. [ 258.571647][ T9707] Use struct sctp_assoc_value instead [ 258.692501][ T9710] netlink: 666 bytes leftover after parsing attributes in process `syz.4.2410'. [ 258.885482][ T9687] loop3: detected capacity change from 0 to 32768 [ 259.038875][ T9687] XFS (loop3): Mounting V5 Filesystem [ 259.270486][ T9687] XFS (loop3): Ending clean mount [ 259.447821][ T4266] XFS (loop3): Unmounting Filesystem [ 259.636345][ T9748] ipt_CLUSTERIP: Please specify destination IP [ 259.906709][ T9755] netlink: 'syz.1.2427': attribute type 2 has an invalid length. [ 259.914515][ T9755] netlink: 119 bytes leftover after parsing attributes in process `syz.1.2427'. [ 260.235359][ T9769] xt_cluster: you have exceeded the maximum number of cluster nodes (4095 > 32) [ 260.422071][ T9775] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2438'. [ 260.450285][ T9767] loop0: detected capacity change from 0 to 4096 [ 260.871693][ T9790] libceph: resolve '4.' (ret=-3): failed [ 261.110556][ T9796] loop5: detected capacity change from 0 to 512 [ 261.165533][ T9796] EXT4-fs: Ignoring removed i_version option [ 261.194633][ T9796] EXT4-fs (loop5): Test dummy encryption mode enabled [ 261.221643][ T9796] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 261.265757][ T9803] loop4: detected capacity change from 0 to 512 [ 261.279003][ T9796] EXT4-fs (loop5): 1 truncate cleaned up [ 261.287491][ T9803] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 261.434242][ T9813] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 261.442337][ T9813] IPv6: NLM_F_CREATE should be set when creating new route [ 261.445270][ T9796] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 261.449761][ T9813] IPv6: NLM_F_CREATE should be set when creating new route [ 261.468425][ T9803] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 261.513963][ T9803] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 261.563088][ T9803] System zones: 0-2, 18-18, 34-35 [ 261.569388][ T9807] loop1: detected capacity change from 0 to 4096 [ 261.580956][ T9803] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 261.634863][ T9807] ntfs3: loop1: Different NTFS' sector size (1024) and media sector size (512) [ 261.688561][ T9816] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 261.715545][ T9803] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 261.754950][ T9803] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 261.768307][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 261.794858][ T9807] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 261.818657][ T9803] EXT4-fs (loop4): re-mounted. Quota mode: none. [ 261.975709][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 262.284739][ T4863] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 262.474724][ T4863] usb 2-1: Using ep0 maxpacket: 32 [ 262.496451][ T4863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.510472][ T9839] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 262.529481][ T9839] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 262.538374][ T4863] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 262.545996][ T9839] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 262.570649][ T4863] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 262.593780][ T4863] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.638854][ T4863] usb 2-1: config 0 descriptor?? [ 262.673379][ T4863] hub 2-1:0.0: USB hub found [ 262.880435][ T4863] hub 2-1:0.0: 31 ports detected [ 262.892315][ T4863] hub 2-1:0.0: insufficient power available to use all downstream ports [ 262.905514][ T9852] loop0: detected capacity change from 0 to 64 [ 263.093558][ T4863] hub 2-1:0.0: hub_hub_status failed (err = -71) [ 263.105450][ T4863] hub 2-1:0.0: config failed, can't get hub status (err -71) [ 263.144250][ T4863] usbhid 2-1:0.0: can't add hid device: -71 [ 263.153618][ T4863] usbhid: probe of 2-1:0.0 failed with error -71 [ 263.204888][ T4863] usb 2-1: USB disconnect, device number 13 [ 263.257989][ T9860] loop0: detected capacity change from 0 to 2048 [ 263.314954][ T7] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 263.356822][ T9860] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 263.523366][ T7] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 263.547808][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 263.565608][ T7] usb 4-1: Product: syz [ 263.569978][ T7] usb 4-1: Manufacturer: syz [ 263.582539][ T7] usb 4-1: SerialNumber: syz [ 263.593490][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 263.850947][ T9866] loop4: detected capacity change from 0 to 32768 [ 263.968329][ T9866] ERROR: (device loop4): dbAllocNext: Corrupt dmap page [ 263.968329][ T9866] [ 264.014732][ T9866] ERROR: (device loop4): remounting filesystem as read-only [ 264.022828][ T7] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -71 [ 264.025958][ T9875] loop5: detected capacity change from 0 to 4096 [ 264.047917][ T9866] ialloc: diAlloc returned -5! [ 264.052987][ T7] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x00000098. ret = -71 [ 264.127932][ T7] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -71 [ 264.143984][ T9875] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 264.184888][ T7] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 264.200584][ T9875] ntfs3: loop5: ntfs_sync_fs r=9 failed, -22. [ 264.218853][ T7] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 264.230134][ T9875] ntfs3: loop5: ntfs_evict_inode r=9 failed, -22. [ 264.310195][ T7] lan78xx: probe of 4-1:1.0 failed with error -71 [ 264.372120][ T7] usb 4-1: USB disconnect, device number 9 [ 265.566256][ T4318] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 265.724091][ T9930] comedi comedi1: pcl726: I/O port conflict (0x8,16) [ 265.782236][ T4318] usb 1-1: Using ep0 maxpacket: 16 [ 265.814240][ T4318] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 265.843352][ T4318] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 265.900141][ T4318] usb 1-1: Product: syz [ 265.904505][ T4318] usb 1-1: Manufacturer: syz [ 265.915269][ T4318] usb 1-1: SerialNumber: syz [ 265.941170][ T4318] r8152-cfgselector 1-1: config 0 descriptor?? [ 266.021204][ T9938] loop4: detected capacity change from 0 to 512 [ 266.132325][ T9938] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 266.255748][ T9938] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 266.285889][ T9938] ext4 filesystem being mounted at /532/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 266.353926][ T9945] loop3: detected capacity change from 0 to 4096 [ 266.397603][ T4318] r8152-cfgselector 1-1: Unknown version 0x0000 [ 266.412668][ T4318] r8152-cfgselector 1-1: bad CDC descriptors [ 266.482633][ T9953] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 266.490648][ T4318] r8152-cfgselector 1-1: Unknown version 0x0000 [ 266.515708][ T9952] lo speed is unknown, defaulting to 1000 [ 266.516213][ T9945] NILFS error (device loop3): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 266.537616][ T4318] r8152-cfgselector 1-1: USB disconnect, device number 9 [ 266.602691][ T9945] Remounting filesystem read-only [ 266.636799][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 267.301969][ T9968] loop1: detected capacity change from 0 to 4096 [ 267.354023][ T9968] ntfs: (device loop1): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 267.372356][ T9969] loop4: detected capacity change from 0 to 4096 [ 267.396826][ T9968] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing. [ 267.433794][ T9968] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 267.480816][ T9977] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 267.537065][ T9968] ntfs: (device loop1): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 267.545113][ T9969] NILFS error (device loop4): nilfs_check_page: bad entry in directory #12: rec_len is smaller than minimal - offset=0, inode=60465086476, rec_len=0, name_len=0 [ 267.662095][ T9968] ntfs: volume version 3.1. [ 267.686570][ T9969] Remounting filesystem read-only [ 268.392724][ T9999] loop4: detected capacity change from 0 to 1024 [ 269.181885][ T4318] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 269.331382][T10032] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 269.377236][T10032] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 269.389618][ T4318] usb 1-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 269.410157][ T4318] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 269.441133][T10032] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 269.455742][ T4318] usb 1-1: Product: syz [ 269.459981][ T4318] usb 1-1: Manufacturer: syz [ 269.475100][ T4318] usb 1-1: SerialNumber: syz [ 269.519035][ T4318] r8152-cfgselector 1-1: config 0 descriptor?? [ 269.595117][ T4279] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 269.918533][ T26] audit: type=1326 audit(1758297490.791:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10047 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 269.940916][ C0] vkms_vblank_simulate: vblank timer overrun [ 269.976104][ T4318] r8152-cfgselector 1-1: Unknown version 0x0000 [ 269.992255][ T4318] r8152-cfgselector 1-1: USB disconnect, device number 10 [ 270.021480][ T26] audit: type=1326 audit(1758297490.791:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10047 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 270.096569][ T26] audit: type=1326 audit(1758297490.821:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10047 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 270.165003][ T26] audit: type=1326 audit(1758297490.821:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10047 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 270.204847][ T4279] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 270.212143][T10056] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check. [ 270.233050][ T26] audit: type=1326 audit(1758297490.821:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10047 comm="syz.4.2567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 270.628201][T10070] loop4: detected capacity change from 0 to 128 [ 270.687262][T10070] EXT4-fs: Ignoring removed nobh option [ 270.762855][T10070] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 270.840548][T10070] ext4 filesystem being mounted at /545/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 271.109224][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 271.146057][T10089] loop5: detected capacity change from 0 to 512 [ 271.162628][T10089] EXT4-fs: Ignoring removed orlov option [ 271.180581][T10092] loop3: detected capacity change from 0 to 256 [ 271.255279][T10089] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 271.291831][T10092] FAT-fs (loop3): Directory bread(block 64) failed [ 271.306935][T10089] EXT4-fs (loop5): orphan cleanup on readonly fs [ 271.322136][T10092] FAT-fs (loop3): Directory bread(block 65) failed [ 271.354791][T10092] FAT-fs (loop3): Directory bread(block 66) failed [ 271.361407][T10092] FAT-fs (loop3): Directory bread(block 67) failed [ 271.377416][T10089] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.2585: bg 0: block 248: padding at end of block bitmap is not set [ 271.459978][T10092] FAT-fs (loop3): Directory bread(block 68) failed [ 271.494841][T10092] FAT-fs (loop3): Directory bread(block 69) failed [ 271.512592][T10089] Quota error (device loop5): write_blk: dquota write failed [ 271.523432][T10089] EXT4-fs error (device loop5): ext4_acquire_dquot:6816: comm syz.5.2585: Failed to acquire dquot type 1 [ 271.533167][T10092] FAT-fs (loop3): Directory bread(block 70) failed [ 271.541380][T10092] FAT-fs (loop3): Directory bread(block 71) failed [ 271.607324][T10089] EXT4-fs (loop5): 1 truncate cleaned up [ 271.640855][T10092] FAT-fs (loop3): Directory bread(block 72) failed [ 271.644808][T10089] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 271.654779][T10092] FAT-fs (loop3): Directory bread(block 73) failed [ 271.739260][T10089] EXT4-fs: Ignoring removed orlov option [ 271.758041][T10089] EXT4-fs: can't change dax mount option while remounting [ 271.882567][T10108] lo speed is unknown, defaulting to 1000 [ 271.918293][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 272.364879][T10124] netlink: 88 bytes leftover after parsing attributes in process `syz.3.2602'. [ 272.446094][T10130] ubi0: attaching mtd0 [ 272.462235][T10130] ubi0 error: ubi_attach_mtd_dev: bad VID header (37978) or data offsets (38042) [ 272.495441][T10132] loop1: detected capacity change from 0 to 128 [ 272.556060][T10132] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 272.593324][T10136] netlink: 'syz.3.2607': attribute type 1 has an invalid length. [ 272.601265][T10136] netlink: 134744 bytes leftover after parsing attributes in process `syz.3.2607'. [ 272.612673][T10132] ext4 filesystem being mounted at /532/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 272.655074][T10126] loop5: detected capacity change from 0 to 4096 [ 272.766877][T10132] EXT4-fs error (device loop1): ext4_validate_inode_bitmap:106: comm syz.1.2606: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19 [ 272.916501][T10144] loop3: detected capacity change from 0 to 256 [ 273.005635][T10144] exfat: Deprecated parameter 'utf8' [ 273.066225][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 273.116959][T10144] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 273.130023][T10146] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2613'. [ 273.584275][T10160] lo speed is unknown, defaulting to 1000 [ 273.737413][T10154] loop0: detected capacity change from 0 to 8192 [ 273.784125][T10154] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 273.836183][T10154] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 273.862245][T10154] REISERFS (device loop0): using ordered data mode [ 273.869447][T10154] reiserfs: using flush barriers [ 273.955300][T10154] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 274.015689][T10154] REISERFS (device loop0): checking transaction log (loop0) [ 274.343112][T10154] REISERFS (device loop0): Using tea hash to sort names [ 274.385092][T10154] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 274.588064][T10190] cifs: Unknown parameter 'no'‘a£Nð[G¶zob,erèèµ;%j¸¼ [ 274.588064][T10190] ‡üzæ,€@q¬Ú÷ôÐåéJ#³"ŽÚh/.W1ȱ¨nNCº"†CÙ׈¡E)Ð8+€î¶á÷' [ 274.727047][T10195] loop1: detected capacity change from 0 to 16 [ 274.782235][T10195] erofs: (device loop1): mounted with root inode @ nid 36. [ 275.703712][T10229] overlayfs: conflicting options: nfs_export=on,index=off [ 275.773468][T10231] loop5: detected capacity change from 0 to 764 [ 275.844126][T10231] Symlink component flag not implemented [ 275.872093][T10231] Symlink component flag not implemented [ 275.905470][T10231] Symlink component flag not implemented (129) [ 275.934803][T10231] Symlink component flag not implemented (6) [ 275.973628][T10239] loop4: detected capacity change from 0 to 764 [ 276.037193][T10239] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 276.531508][T10256] netlink: 'syz.1.2665': attribute type 13 has an invalid length. [ 276.560796][T10256] device veth0_macvtap left promiscuous mode [ 276.628703][T10256] macvtap0: refused to change device tx_queue_len [ 277.316702][T10278] loop4: detected capacity change from 0 to 4096 [ 277.344803][T10278] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512) [ 277.402677][T10278] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 277.793057][T10295] delete_channel: no stack [ 278.406804][T10321] netlink: 'syz.1.2694': attribute type 1 has an invalid length. [ 278.408022][T10319] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2695'. [ 278.629186][T10326] loop0: detected capacity change from 0 to 256 [ 278.640447][T10324] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98 [ 278.702603][T10326] FAT-fs (loop0): Directory bread(block 64) failed [ 278.731111][T10326] FAT-fs (loop0): Directory bread(block 65) failed [ 278.763077][T10326] FAT-fs (loop0): Directory bread(block 66) failed [ 278.792521][T10326] FAT-fs (loop0): Directory bread(block 67) failed [ 278.804283][T10326] FAT-fs (loop0): Directory bread(block 68) failed [ 278.844269][T10326] FAT-fs (loop0): Directory bread(block 69) failed [ 278.868007][T10326] FAT-fs (loop0): Directory bread(block 70) failed [ 278.901872][T10326] FAT-fs (loop0): Directory bread(block 71) failed [ 278.914819][T10326] FAT-fs (loop0): Directory bread(block 72) failed [ 278.937736][T10326] FAT-fs (loop0): Directory bread(block 73) failed [ 278.964864][ T4318] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 279.044211][T10336] loop5: detected capacity change from 0 to 1024 [ 279.159827][ T4318] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 279.211958][ T4318] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.235279][ T4318] usb 2-1: Product: syz [ 279.239502][ T4318] usb 2-1: Manufacturer: syz [ 279.263037][ T4318] usb 2-1: SerialNumber: syz [ 279.301339][ T4348] hfsplus: b-tree write err: -5, ino 4 [ 279.307141][ T4318] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 279.332445][ T4318] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 279.754836][T10357] loop3: detected capacity change from 0 to 256 [ 279.762401][T10354] loop5: detected capacity change from 0 to 2048 [ 279.794793][T10358] libceph: resolve '4.' (ret=-3): failed [ 279.811674][ T129] usb 2-1: USB disconnect, device number 14 [ 279.856866][T10357] FAT-fs (loop3): Directory bread(block 64) failed [ 279.873955][T10354] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 279.877656][T10357] FAT-fs (loop3): Directory bread(block 65) failed [ 279.924780][T10357] FAT-fs (loop3): Directory bread(block 66) failed [ 279.941585][T10357] FAT-fs (loop3): Directory bread(block 67) failed [ 279.990485][T10357] FAT-fs (loop3): Directory bread(block 68) failed [ 280.019790][T10357] FAT-fs (loop3): Directory bread(block 69) failed [ 280.049601][T10357] FAT-fs (loop3): Directory bread(block 70) failed [ 280.069731][T10357] FAT-fs (loop3): Directory bread(block 71) failed [ 280.094889][T10357] FAT-fs (loop3): Directory bread(block 72) failed [ 280.102111][T10357] FAT-fs (loop3): Directory bread(block 73) failed [ 280.424892][ T4318] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 280.432380][ T4318] ath9k_htc: Failed to initialize the device [ 280.475236][ T129] usb 2-1: ath9k_htc: USB layer deinitialized [ 280.669092][T10379] loop1: detected capacity change from 0 to 256 [ 280.721257][T10379] FAT-fs (loop1): Directory bread(block 64) failed [ 280.752990][T10379] FAT-fs (loop1): Directory bread(block 65) failed [ 280.811265][T10379] FAT-fs (loop1): Directory bread(block 66) failed [ 280.831415][T10379] FAT-fs (loop1): Directory bread(block 67) failed [ 280.874947][T10379] FAT-fs (loop1): Directory bread(block 68) failed [ 280.881579][T10379] FAT-fs (loop1): Directory bread(block 69) failed [ 280.912789][T10384] 8021q: adding VLAN 0 to HW filter on device bond0 [ 280.952397][T10379] FAT-fs (loop1): Directory bread(block 70) failed [ 280.953642][T10384] bond0: (slave ip6gre0): The slave device specified does not support setting the MAC address [ 280.975934][T10379] FAT-fs (loop1): Directory bread(block 71) failed [ 280.982762][T10379] FAT-fs (loop1): Directory bread(block 72) failed [ 280.999105][T10387] loop3: detected capacity change from 0 to 512 [ 281.026007][T10384] bond0: (slave ip6gre0): Error -95 calling set_mac_address [ 281.046127][T10387] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 281.084877][T10379] FAT-fs (loop1): Directory bread(block 73) failed [ 281.179117][T10387] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 281.285039][T10387] EXT4-fs (loop3): 1 truncate cleaned up [ 281.290830][T10387] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 281.355668][T10387] cifs: Unknown parameter 'dioread_lock' [ 281.544547][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 282.010933][T10394] loop4: detected capacity change from 0 to 32768 [ 282.237310][T10422] loop1: detected capacity change from 0 to 2048 [ 282.327458][T10422] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 282.474896][T10433] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 282.554762][T10422] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=32, inode=11, rec_len=24, name_len=139 [ 282.654170][T10427] loop5: detected capacity change from 0 to 4096 [ 282.669854][T10422] Remounting filesystem read-only [ 282.700248][T10422] NILFS error (device loop1): nilfs_readdir: bad page in #2 [ 282.704382][T10427] ntfs3: loop5: Different NTFS' sector size (2048) and media sector size (512) [ 282.794223][T10441] loop0: detected capacity change from 0 to 256 [ 282.919154][T10441] FAT-fs (loop0): Directory bread(block 64) failed [ 282.964901][T10441] FAT-fs (loop0): Directory bread(block 65) failed [ 282.992788][T10441] FAT-fs (loop0): Directory bread(block 66) failed [ 283.054361][T10441] FAT-fs (loop0): Directory bread(block 67) failed [ 283.075176][T10441] FAT-fs (loop0): Directory bread(block 68) failed [ 283.112365][T10441] FAT-fs (loop0): Directory bread(block 69) failed [ 283.137532][T10441] FAT-fs (loop0): Directory bread(block 70) failed [ 283.198299][T10441] FAT-fs (loop0): Directory bread(block 71) failed [ 283.234831][T10441] FAT-fs (loop0): Directory bread(block 72) failed [ 283.241437][T10441] FAT-fs (loop0): Directory bread(block 73) failed [ 283.283767][T10451] usb usb7: usbfs: process 10451 (syz.1.2750) did not claim interface 0 before use [ 283.430239][T10453] loop3: detected capacity change from 0 to 512 [ 283.576138][T10453] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 283.642547][T10453] ext4 filesystem being mounted at /533/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 283.771570][T10453] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.2753: corrupted xattr block 33 [ 283.804834][T10464] loop1: detected capacity change from 0 to 256 [ 283.863814][T10472] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2756'. [ 283.884765][T10453] EXT4-fs error (device loop3): ext4_xattr_block_get:546: inode #15: comm syz.3.2753: corrupted xattr block 33 [ 283.959398][T10471] lo speed is unknown, defaulting to 1000 [ 283.965001][T10453] fscrypt (loop3, inode 15): Error -117 getting encryption context [ 283.971702][T10472] netlink: 'syz.0.2756': attribute type 2 has an invalid length. [ 284.030632][T10472] netlink: 'syz.0.2756': attribute type 1 has an invalid length. [ 284.076286][T10472] netlink: 120 bytes leftover after parsing attributes in process `syz.0.2756'. [ 284.161649][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 285.599392][T10519] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2777'. [ 286.154861][ T7] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 286.344920][ T7] usb 4-1: Using ep0 maxpacket: 8 [ 286.355756][ T7] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 286.401248][ T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 286.420236][ T7] usb 4-1: Product: syz [ 286.430365][ T7] usb 4-1: Manufacturer: syz [ 286.440480][ T7] usb 4-1: SerialNumber: syz [ 286.484270][ T7] usb 4-1: config 0 descriptor?? [ 286.523123][ T7] gspca_main: se401-2.14.0 probing 047d:5003 [ 286.794182][T10564] loop1: detected capacity change from 0 to 64 [ 286.920423][ T7] gspca_se401: write req failed req 0x57 val 0x00 error -71 [ 286.960393][ T7] se401: probe of 4-1:0.0 failed with error -71 [ 286.984300][ T7] usb 4-1: USB disconnect, device number 10 [ 287.687650][T10579] lo speed is unknown, defaulting to 1000 [ 287.773135][T10583] loop1: detected capacity change from 0 to 1024 [ 288.009963][T10591] loop4: detected capacity change from 0 to 256 [ 288.115725][T10591] exfat: Deprecated parameter 'namecase' [ 288.227825][T10591] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 288.474869][T10599] netlink: 'syz.1.2810': attribute type 1 has an invalid length. [ 288.572674][T10605] loop4: detected capacity change from 0 to 47 [ 288.683892][T10584] loop5: detected capacity change from 0 to 32768 [ 288.840260][T10604] loop3: detected capacity change from 0 to 4096 [ 288.920497][T10604] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512) [ 289.509086][T10627] loop0: detected capacity change from 0 to 256 [ 289.512750][T10629] loop4: detected capacity change from 0 to 512 [ 289.627377][T10629] EXT4-fs (loop4): orphan cleanup on readonly fs [ 289.629201][T10627] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb107716d, utbl_chksum : 0xe619d30d) [ 289.674181][T10629] __quota_error: 1 callbacks suppressed [ 289.674197][T10629] Quota error (device loop4): v2_read_file_info: Block with free entry 2 out of range (1, 0). [ 289.692540][T10629] EXT4-fs warning (device loop4): ext4_enable_quotas:7068: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 289.710288][T10629] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 289.764864][T10629] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.2825: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 289.784317][T10629] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2825: couldn't read orphan inode 13 (err -117) [ 289.785032][T10629] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 289.808766][T10634] loop1: detected capacity change from 0 to 1024 [ 289.824007][T10634] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 289.858916][T10634] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 289.859034][T10634] System zones: 0-1, 3-36 [ 289.887529][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 290.004862][T10634] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 290.230183][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 290.518960][T10654] loop0: detected capacity change from 0 to 4096 [ 290.601633][T10654] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 290.714977][T10668] comedi comedi2: dmm32at: I/O port conflict (0x4f27,16) [ 290.756840][T10654] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 290.764200][T10654] ntfs3: loop0: Failed to load $Extend. [ 291.127822][T10684] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 291.208689][T10684] bond0: (slave lo): Error: Device can not be enslaved while up [ 291.278966][ T26] audit: type=1326 audit(1758297512.151:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.4.2851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 291.394734][ T26] audit: type=1326 audit(1758297512.201:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.4.2851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 291.505132][ T26] audit: type=1326 audit(1758297512.201:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.4.2851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 291.594870][T10700] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2857'. [ 291.612585][ T26] audit: type=1326 audit(1758297512.201:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.4.2851" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6c1f8ec29 code=0x7ffc0000 [ 292.047588][T10717] netlink: 'syz.3.2863': attribute type 3 has an invalid length. [ 292.258237][T10721] loop1: detected capacity change from 0 to 256 [ 292.307731][T10721] exfat: Deprecated parameter 'namecase' [ 292.324722][T10721] exfat: Deprecated parameter 'namecase' [ 292.351011][T10721] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 292.429954][T10723] loop0: detected capacity change from 0 to 4096 [ 292.495285][T10723] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 292.632757][T10723] ntfs3: loop0: failed to convert "c46c" to cp869 [ 292.894745][T10741] netlink: 168 bytes leftover after parsing attributes in process `syz.5.2877'. [ 293.083127][T10746] loop3: detected capacity change from 0 to 256 [ 293.150088][T10746] FAT-fs (loop3): "posix" option is obsolete, not supported now [ 293.582965][T10759] loop3: detected capacity change from 0 to 2048 [ 293.637228][T10759] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 293.654957][T10761] loop5: detected capacity change from 0 to 1764 [ 293.715151][T10761] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 293.969692][T10765] loop0: detected capacity change from 0 to 4096 [ 294.019343][T10765] EXT4-fs: Ignoring removed nomblk_io_submit option [ 294.089699][T10765] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 294.211478][T10765] EXT4-fs: Ignoring removed nomblk_io_submit option [ 294.245460][T10765] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 294.336768][T10753] loop1: detected capacity change from 0 to 32768 [ 294.403088][T10753] [ 294.403088][T10753] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 294.403088][T10753] [ 294.483252][T10753] ERROR: (device loop1): dbAlloc: the hint is outside the map [ 294.483252][T10753] [ 294.545888][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 294.763588][ T56] read_mapping_page failed! [ 294.780312][ T56] ERROR: (device loop1): txCommit: [ 294.780312][ T56] [ 294.800579][ T56] jfs_write_inode: jfs_commit_inode failed! [ 294.870147][ T4269] [ 294.870147][ T4269] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 294.870147][ T4269] [ 294.919907][ T4269] [ 294.919907][ T4269] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 294.919907][ T4269] [ 295.146393][T10799] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2906'. [ 295.273495][T10802] loop3: detected capacity change from 0 to 512 [ 295.342694][T10802] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 295.353540][T10802] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 295.367112][T10802] System zones: 0-1, 15-15, 18-18, 34-34 [ 295.374098][T10802] EXT4-fs (loop3): orphan cleanup on readonly fs [ 295.381030][T10802] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 295.391395][T10802] EXT4-fs warning (device loop3): ext4_enable_quotas:7068: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 295.406506][T10802] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 295.425133][T10802] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.2907: bg 0: block 40: padding at end of block bitmap is not set [ 295.484795][T10802] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 295.537714][T10812] loop1: detected capacity change from 0 to 128 [ 295.543397][T10802] EXT4-fs (loop3): 1 truncate cleaned up [ 295.562374][T10802] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 295.578349][T10812] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 295.684066][T10802] EXT4-fs error (device loop3): ext4_encrypted_get_link:46: inode #16: comm syz.3.2907: bad symlink. [ 295.743384][T10812] ext4 filesystem being mounted at /584/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 295.820841][T10824] netlink: 'syz.0.2917': attribute type 5 has an invalid length. [ 295.906514][ T4266] EXT4-fs (loop3): unmounting filesystem. [ 295.977988][ T4269] EXT4-fs (loop1): unmounting filesystem. [ 296.237650][T10837] x_tables: unsorted underflow at hook 4 [ 296.480757][T10845] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2927'. [ 296.633534][T10853] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 296.730989][T10855] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2932'. [ 296.979209][T10866] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check. [ 297.122939][T10870] netlink: 'syz.4.2939': attribute type 1 has an invalid length. [ 297.468902][T10849] loop1: detected capacity change from 0 to 32768 [ 297.519149][T10849] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 297.578227][T10849] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 297.623769][T10849] BTRFS info (device loop1): using free space tree [ 297.819529][ T26] audit: type=1400 audit(1758297518.691:45): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=10902 comm="syz.4.2953" [ 297.946373][T10849] BTRFS info (device loop1): enabling ssd optimizations [ 297.991130][T10919] netlink: 'syz.4.2956': attribute type 10 has an invalid length. [ 297.999116][T10919] netlink: 55 bytes leftover after parsing attributes in process `syz.4.2956'. [ 298.153653][ T4269] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 298.449744][T10921] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2954'. [ 298.807652][T10935] program syz.5.2961 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 298.993509][T10940] netlink: 'syz.4.2966': attribute type 21 has an invalid length. [ 299.267538][T10953] loop0: detected capacity change from 0 to 64 [ 299.365395][ T4332] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 299.574662][ T4332] usb 6-1: Using ep0 maxpacket: 32 [ 299.584329][ T4332] usb 6-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 299.631926][ T4332] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 299.675072][ T4332] usb 6-1: config 0 descriptor?? [ 299.704321][ T4332] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 299.819628][T10963] loop0: detected capacity change from 0 to 2048 [ 299.889057][T10967] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 300.090775][T10967] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 300.111876][ T4332] gspca_nw80x: reg_r err -71 [ 300.119687][ T4332] nw80x: probe of 6-1:0.0 failed with error -71 [ 300.122934][T10936] loop1: detected capacity change from 0 to 40427 [ 300.146623][ T4332] usb 6-1: USB disconnect, device number 5 [ 300.177434][T10967] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 300.199993][T10936] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 300.231607][T10936] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 300.254861][T10967] Remounting filesystem read-only [ 300.276415][ T4267] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 300.297982][T10936] F2FS-fs (loop1): invalid crc value [ 300.351828][T10936] F2FS-fs (loop1): Found nat_bits in checkpoint [ 300.520127][T10980] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2978'. [ 300.554839][T10980] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2978'. [ 300.594514][T10936] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 300.621587][T10936] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 300.633529][T10983] loop4: detected capacity change from 0 to 256 [ 300.836120][T10936] syz.1.2963: attempt to access beyond end of device [ 300.836120][T10936] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 300.944139][T10987] loop0: detected capacity change from 0 to 1764 [ 300.986878][T10987] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 301.137385][T10991] loop5: detected capacity change from 0 to 16 [ 301.166001][T10971] loop3: detected capacity change from 0 to 32768 [ 301.189852][T10991] erofs: (device loop5): mounted with root inode @ nid 36. [ 301.255200][T10991] erofs: (device loop5): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 36 [ 301.321966][T10971] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 301.343595][T10991] erofs: (device loop5): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 301.354879][T10971] (syz.3.2977,10971,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is smaller than minimal - offset=0, inode=3298534883393, rec_len=0, name_len=1 [ 301.434201][T10991] erofs: (device loop5): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 36 [ 301.444362][T10971] (syz.3.2977,10971,1):ocfs2_prepare_dir_for_insert:4311 ERROR: status = -2 [ 301.474870][T10991] erofs: (device loop5): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 301.491314][T10971] (syz.3.2977,10971,1):ocfs2_mknod:298 ERROR: status = -2 [ 301.504929][T10991] erofs: (device loop5): z_erofs_read_folio: failed to read, err [-117] [ 301.521939][T10971] (syz.3.2977,10971,1):ocfs2_mknod:502 ERROR: status = -2 [ 301.574966][T11001] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check. [ 301.583747][T10971] (syz.3.2977,10971,1):ocfs2_create:676 ERROR: status = -2 [ 301.788155][ T4266] ocfs2: Unmounting device (7,3) on (node local) [ 302.003113][T11011] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2993'. [ 302.674483][T11037] netlink: 193 bytes leftover after parsing attributes in process `syz.1.3005'. [ 302.923559][T11045] netlink: 68 bytes leftover after parsing attributes in process `syz.0.3010'. [ 302.932885][ T4332] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 302.960158][T11047] syz.1.3009 (11047): /proc/11046/oom_adj is deprecated, please use /proc/11046/oom_score_adj instead. [ 302.982370][T11045] netlink: 'syz.0.3010': attribute type 1 has an invalid length. [ 303.134862][ T4332] usb 4-1: Using ep0 maxpacket: 32 [ 303.142615][ T4332] usb 4-1: New USB device found, idVendor=0458, idProduct=7006, bcdDevice=69.91 [ 303.164661][ T4332] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 303.196863][ T4332] usb 4-1: config 0 descriptor?? [ 303.222781][ T4332] gspca_main: sunplus-2.14.0 probing 0458:7006 [ 303.474891][T11064] comedi comedi4: bad chanlist[0]=0xfffffffd chan=65533 range length=2 [ 303.550357][T11068] loop5: detected capacity change from 0 to 256 [ 303.676542][ T4332] gspca_sunplus: reg_w_riv err -71 [ 303.681995][ T4332] sunplus: probe of 4-1:0.0 failed with error -71 [ 303.743919][ T4332] usb 4-1: USB disconnect, device number 11 [ 304.235858][T11084] loop1: detected capacity change from 0 to 4096 [ 304.427370][T11095] netlink: 129384 bytes leftover after parsing attributes in process `syz.0.3033'. [ 304.739872][T11107] loop3: detected capacity change from 0 to 1024 [ 304.883917][T11107] hfsplus: xattr searching failed [ 305.064516][T11118] loop5: detected capacity change from 0 to 512 [ 305.122437][T11118] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 305.238014][T11118] EXT4-fs (loop5): 1 truncate cleaned up [ 305.243737][T11118] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 305.454897][T11130] netlink: 'syz.4.3048': attribute type 7 has an invalid length. [ 305.486406][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 305.496041][T11130] netlink: 140 bytes leftover after parsing attributes in process `syz.4.3048'. [ 305.669408][T11134] netlink: 'syz.5.3049': attribute type 30 has an invalid length. [ 305.704244][T11136] openvswitch: netlink: ufid size 312 bytes exceeds the range (1, 16) [ 305.722067][T11136] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 305.748092][T11109] loop0: detected capacity change from 0 to 32768 [ 305.765121][T11109] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.3039 (11109) [ 305.801022][T11109] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 305.824037][T11109] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 305.865042][ T4318] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 305.884333][T11109] BTRFS info (device loop0): using free space tree [ 305.980733][T11146] netlink: 1 bytes leftover after parsing attributes in process `syz.3.3055'. [ 306.047844][T11152] netlink: 'syz.5.3056': attribute type 21 has an invalid length. [ 306.055913][T11152] netlink: 128 bytes leftover after parsing attributes in process `syz.5.3056'. [ 306.065761][T11152] netlink: 'syz.5.3056': attribute type 4 has an invalid length. [ 306.073799][T11152] netlink: 'syz.5.3056': attribute type 5 has an invalid length. [ 306.104857][T11152] netlink: 3 bytes leftover after parsing attributes in process `syz.5.3056'. [ 306.109711][ T4318] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 306.154706][ T4318] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 306.165110][ T4318] usb 2-1: Product: syz [ 306.169338][ T4318] usb 2-1: Manufacturer: syz [ 306.174055][ T4318] usb 2-1: SerialNumber: syz [ 306.182099][T11160] loop3: detected capacity change from 0 to 2048 [ 306.258418][ T4318] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 306.310383][T11109] BTRFS info (device loop0): enabling ssd optimizations [ 306.311882][T11171] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 306.347923][T11160] NILFS error (device loop3): nilfs_check_page: bad entry in directory #2: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, name_len=0 [ 306.392616][ T4318] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 306.474709][T11160] Remounting filesystem read-only [ 306.489942][ T4267] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 306.878079][ T4279] usb 2-1: USB disconnect, device number 15 [ 307.219769][T11189] xt_CONNSECMARK: invalid mode: 0 [ 307.465194][ T4318] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 307.472274][ T4318] ath9k_htc: Failed to initialize the device [ 307.490699][ T4279] usb 2-1: ath9k_htc: USB layer deinitialized [ 307.576347][T11199] usb usb8: usbfs: process 11199 (syz.5.3072) did not claim interface 0 before use [ 308.257777][T11228] netlink: 'syz.4.3086': attribute type 3 has an invalid length. [ 308.274386][T11230] loop0: detected capacity change from 0 to 512 [ 308.341887][T11230] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 308.445891][T11230] EXT4-fs (loop0): 1 truncate cleaned up [ 308.467217][T11230] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 308.665337][ T4267] EXT4-fs (loop0): unmounting filesystem. [ 308.824795][ T4270] Bluetooth: hci5: command 0x0406 tx timeout [ 309.083392][T11260] loop3: detected capacity change from 0 to 256 [ 309.149800][T11260] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 309.784120][T11286] netlink: 'syz.5.3113': attribute type 2 has an invalid length. [ 309.870405][T11282] loop4: detected capacity change from 0 to 4096 [ 309.904117][T11282] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 310.808579][T11314] loop5: detected capacity change from 0 to 512 [ 310.808781][T11319] netlink: 'syz.0.3128': attribute type 2 has an invalid length. [ 310.827936][T11317] comedi comedi0: dt2815: I/O port conflict (0x3,2) [ 310.838054][T11319] netlink: 'syz.0.3128': attribute type 8 has an invalid length. [ 310.862819][T11319] netlink: 132 bytes leftover after parsing attributes in process `syz.0.3128'. [ 310.912592][T11314] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 310.978537][T11325] netlink: 72 bytes leftover after parsing attributes in process `syz.0.3131'. [ 310.987192][T11314] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 311.067724][T11314] Quota error (device loop5): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 311.111816][T11314] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0 [ 311.139134][T11329] loop3: detected capacity change from 0 to 1024 [ 311.152216][T11314] EXT4-fs error (device loop5): ext4_acquire_dquot:6816: comm syz.5.3126: Failed to acquire dquot type 0 [ 311.182540][T11300] loop1: detected capacity change from 0 to 32768 [ 311.237471][T11300] ea_get: invalid extended attribute [ 311.244486][T11329] syz.3.3130: attempt to access beyond end of device [ 311.244486][T11329] loop3: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 311.283867][T11300] ffff888071695fb0: 04 00 00 00 .... [ 311.293810][T11329] Buffer I/O error on dev loop3, logical block 100663296, async page read [ 311.323033][ T7453] EXT4-fs (loop5): unmounting filesystem. [ 311.347941][T11329] hfsplus: unable to mark blocks free: error -5 [ 311.354259][T11329] hfsplus: can't free extent [ 311.364047][T11331] loop0: detected capacity change from 0 to 64 [ 311.403056][T11331] MINIX-fs: mounting file system with errors, running fsck is recommended [ 312.837025][T11381] loop0: detected capacity change from 0 to 256 [ 312.896671][T11383] netlink: 'syz.1.3159': attribute type 7 has an invalid length. [ 313.197628][T11393] loop4: detected capacity change from 0 to 8 [ 313.222397][T11395] netlink: 'syz.1.3164': attribute type 10 has an invalid length. [ 313.244667][T11395] netlink: 55 bytes leftover after parsing attributes in process `syz.1.3164'. [ 313.259863][ T4454] udevd[4454]: incorrect cramfs checksum on /dev/loop4 [ 313.309965][T11393] cramfs: Error -5 while decompressing! [ 313.341003][T11393] cramfs: ffffffff96d7a1a8(26)->ffff88804ecd6000(4096) [ 313.349817][ T4277] udevd[4277]: incorrect cramfs checksum on /dev/loop4 [ 313.373037][T11393] cramfs: Error -5 while decompressing! [ 313.397602][T11393] cramfs: ffffffff96d7a1c2(26)->ffff88804ecb6000(4096) [ 313.436578][T11393] cramfs: Error -3 while decompressing! [ 313.468780][T11393] cramfs: ffffffff96d7a1dc(16)->ffff88804ecd0000(4096) [ 313.476369][T11393] cramfs: Error -5 while decompressing! [ 313.512686][T11393] cramfs: ffffffff96d7a1a8(26)->ffff88804ecd6000(4096) [ 313.633260][T11371] loop3: detected capacity change from 0 to 32768 [ 313.699098][T11399] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3166'. [ 313.797841][ T26] audit: type=1400 audit(1758297534.671:46): apparmor="DENIED" operation="change_profile" info="label not found" error=-2 profile="unconfined" name=3AF4F9904E7FDB3635A70D23C73EEAF23A3F503280080CA26230668AD9DCF8B061228F8599D34E45087D21AA56759E1651B3DD467BDEF390C76D pid=11402 comm="syz.4.3168" [ 314.082074][T11411] loop1: detected capacity change from 0 to 256 [ 314.136098][T11411] exfat: Deprecated parameter 'namecase' [ 314.141866][T11411] exfat: Deprecated parameter 'namecase' [ 314.174751][T11411] exfat: Deprecated parameter 'utf8' [ 314.202689][T11415] loop3: detected capacity change from 0 to 8 [ 314.216113][T11411] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012366, chksum : 0xd06b6363, utbl_chksum : 0xe619d30d) [ 314.238409][T11414] syz.5.3175 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 314.491732][T11425] loop3: detected capacity change from 0 to 8 [ 314.515483][T11425] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 314.554749][T11425] cramfs: Error -5 while decompressing! [ 314.573139][ T4340] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 314.587773][ T4277] udevd[4277]: incorrect cramfs checksum on /dev/loop3 [ 314.595796][T11425] cramfs: ffffffff96d761a8(26)->ffff888050f81000(4096) [ 314.619325][T11425] cramfs: Error -3 while decompressing! [ 314.639265][T11425] cramfs: ffffffff96d761c2(26)->ffff888052b97000(4096) [ 314.667557][T11425] cramfs: Error -3 while decompressing! [ 314.680937][ T4277] udevd[4277]: incorrect cramfs checksum on /dev/loop3 [ 314.688007][T11425] cramfs: ffffffff96d761dc(16)->ffff88806a6a7000(4096) [ 314.720606][T11425] cramfs: Error -5 while decompressing! [ 314.745112][T11425] cramfs: ffffffff96d761a8(26)->ffff888050f81000(4096) [ 314.773376][ T4277] udevd[4277]: incorrect cramfs checksum on /dev/loop3 [ 314.782586][ T4340] usb 5-1: config 0 has an invalid interface number: 4 but max is 0 [ 314.799740][ T26] audit: type=1800 audit(1758297535.671:47): pid=11425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3178" name="file2" dev="loop3" ino=348 res=0 errno=0 [ 314.820765][ T4340] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 314.841111][ T4340] usb 5-1: config 0 has no interface number 0 [ 314.875285][ T4340] usb 5-1: config 0 interface 4 has no altsetting 0 [ 314.878407][T11433] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3183'. [ 314.887689][ T4277] udevd[4277]: incorrect cramfs checksum on /dev/loop3 [ 314.908141][ T4340] usb 5-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 314.929372][ T4340] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.956510][ T4340] usb 5-1: config 0 descriptor?? [ 314.987541][ T4340] usb 5-1: selecting invalid altsetting 0 [ 315.102865][T11439] loop3: detected capacity change from 0 to 1024 [ 315.224872][ T4318] usb 5-1: USB disconnect, device number 8 [ 315.283305][T11439] hfsplus: extend alloc file! (8192,512,16777721) [ 315.705488][T11455] netlink: 830 bytes leftover after parsing attributes in process `syz.1.3194'. [ 315.813882][T11461] loop3: detected capacity change from 0 to 16 [ 315.864527][T11461] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 315.940342][T11463] netlink: 'syz.4.3198': attribute type 3 has an invalid length. [ 315.976610][T11463] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.3198'. [ 316.466628][T11484] netlink: 156 bytes leftover after parsing attributes in process `syz.0.3209'. [ 316.509277][T11487] loop5: detected capacity change from 0 to 256 [ 316.586051][T11487] FAT-fs (loop5): Directory bread(block 64) failed [ 316.634934][T11487] FAT-fs (loop5): Directory bread(block 65) failed [ 316.695514][T11487] FAT-fs (loop5): Directory bread(block 66) failed [ 316.702128][T11487] FAT-fs (loop5): Directory bread(block 67) failed [ 316.774873][T11487] FAT-fs (loop5): Directory bread(block 68) failed [ 316.781488][T11487] FAT-fs (loop5): Directory bread(block 69) failed [ 316.795454][T11497] netlink: 'syz.1.3214': attribute type 2 has an invalid length. [ 316.804719][T11487] FAT-fs (loop5): Directory bread(block 70) failed [ 316.816484][T11487] FAT-fs (loop5): Directory bread(block 71) failed [ 316.841723][T11487] FAT-fs (loop5): Directory bread(block 72) failed [ 316.880035][T11487] FAT-fs (loop5): Directory bread(block 73) failed [ 316.987207][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 316.993567][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 316.999359][ T27] INFO: task syz-executor:4271 blocked for more than 143 seconds. [ 317.042696][ T27] Not tainted syzkaller #0 [ 317.067349][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 317.082986][T11503] loop4: detected capacity change from 0 to 1024 [ 317.122787][ T27] task:syz-executor state:D stack:22144 pid:4271 ppid:1 flags:0x00004004 [ 317.166317][ T27] Call Trace: [ 317.186186][ T27] [ 317.189198][ T27] __schedule+0x10ec/0x40b0 [ 317.193773][ T27] ? __sched_text_start+0x8/0x8 [ 317.242625][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 317.255842][ T27] ? lock_chain_count+0x20/0x20 [ 317.260772][ T27] ? _raw_spin_lock_irq+0xab/0xe0 [ 317.267424][ T27] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 317.281858][ T27] schedule+0xb9/0x180 [ 317.289098][ T27] io_schedule+0x7c/0xd0 [ 317.293413][ T27] folio_wait_bit_common+0x6e1/0xf60 [ 317.305479][ T27] ? folio_wait_bit+0x30/0x30 [ 317.310321][ T27] ? migration_entry_wait_on_locked+0xe50/0xe50 [ 317.316734][ T27] ? folio_mapping+0x1ba/0x4d0 [ 317.321565][ T27] truncate_inode_pages_range+0x9a2/0xff0 [ 317.327425][ T27] ? mapping_evict_folio+0x520/0x520 [ 317.332771][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 317.338895][ T27] ? _raw_spin_unlock_irq+0x1f/0x40 [ 317.344137][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 317.349428][ T27] evict+0x498/0x870 [ 317.353373][ T27] ? proc_nr_inodes+0x2f0/0x2f0 [ 317.358400][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 317.363661][ T27] ? _raw_spin_unlock+0x24/0x40 [ 317.369338][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 317.375405][ T27] evict_inodes+0x604/0x690 [ 317.379971][ T27] ? clear_inode+0x150/0x150 [ 317.384880][ T27] ? dput+0x1c9/0x1d0 [ 317.389091][ T27] ? sync_filesystem+0x103/0x220 [ 317.394089][ T27] generic_shutdown_super+0x93/0x340 [ 317.399904][ T27] kill_block_super+0x7c/0xe0 [ 317.404998][ T27] deactivate_locked_super+0x93/0xf0 [ 317.410333][ T27] cleanup_mnt+0x463/0x4f0 [ 317.414860][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 317.420118][ T27] task_work_run+0x1ca/0x250 [ 317.424802][ T27] ? task_work_cancel+0x230/0x230 [ 317.429867][ T27] ? exit_to_user_mode_loop+0x3b/0x110 [ 317.435441][ T27] exit_to_user_mode_loop+0xe6/0x110 [ 317.440777][ T27] exit_to_user_mode_prepare+0xee/0x180 [ 317.446442][ T27] syscall_exit_to_user_mode+0x16/0x40 [ 317.451946][ T27] do_syscall_64+0x58/0xa0 [ 317.456476][ T27] ? clear_bhb_loop+0x60/0xb0 [ 317.461180][ T27] ? clear_bhb_loop+0x60/0xb0 [ 317.466127][ T27] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 317.472061][ T27] RIP: 0033:0x7f9d9cf8ff57 [ 317.477364][ T27] RSP: 002b:00007ffde2855678 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 317.485896][ T27] RAX: 0000000000000000 RBX: 00007f9d9d011c2d RCX: 00007f9d9cf8ff57 [ 317.493951][ T27] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffde2855730 [ 317.502118][ T27] RBP: 00007ffde2855730 R08: 0000000000000000 R09: 0000000000000000 [ 317.510158][ T27] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffde28567c0 [ 317.518402][ T27] R13: 00007f9d9d011c2d R14: 000000000002915c R15: 00007ffde2856800 [ 317.526489][ T27] [ 317.529691][ T27] [ 317.529691][ T27] Showing all locks held in the system: [ 317.539113][ T27] 2 locks held by kworker/u4:0/9: [ 317.544259][ T27] 1 lock held by rcu_tasks_kthre/12: [ 317.550611][ T27] #0: ffffffff8cb2b570 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 317.564207][ T27] 1 lock held by rcu_tasks_trace/13: [ 317.569861][ T27] #0: ffffffff8cb2bd90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 317.582672][ T27] 1 lock held by khungtaskd/27: [ 317.588547][ T27] #0: ffffffff8cb2abe0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 317.600057][ T27] 2 locks held by getty/4029: [ 317.606060][ T27] #0: ffff88814d1d3098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 317.624907][ T27] #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380 [ 317.637622][ T27] 1 lock held by syz-executor/4271: [ 317.643225][ T27] #0: ffff8880516440e0 (&type->s_umount_key#57){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0 [ 317.657754][ T27] 2 locks held by kworker/u4:7/4364: [ 317.663160][ T27] #0: ffff8880b8f3aad8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 317.673208][ T27] #1: ffff8880b8f27848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x398/0x6d0 [ 317.685288][ T27] [ 317.687638][ T27] ============================================= [ 317.687638][ T27] [ 317.701547][ T27] NMI backtrace for cpu 0 [ 317.705943][ T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 [ 317.713177][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 317.723335][ T27] Call Trace: [ 317.726625][ T27] [ 317.729565][ T27] dump_stack_lvl+0x168/0x22e [ 317.734343][ T27] ? irq_work_queue+0xb8/0x140 [ 317.739210][ T27] ? show_regs_print_info+0x12/0x12 [ 317.744424][ T27] ? load_image+0x3b0/0x3b0 [ 317.748999][ T27] ? vprintk_emit+0x571/0x680 [ 317.753694][ T27] ? printk_sprint+0x460/0x460 [ 317.758497][ T27] nmi_cpu_backtrace+0x3f4/0x470 [ 317.763477][ T27] ? nmi_trigger_cpumask_backtrace+0x450/0x450 [ 317.769657][ T27] ? _printk+0xcc/0x110 [ 317.773832][ T27] ? load_image+0x3b0/0x3b0 [ 317.778350][ T27] ? load_image+0x3b0/0x3b0 [ 317.782878][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 317.788980][ T27] nmi_trigger_cpumask_backtrace+0x1d4/0x450 [ 317.794978][ T27] watchdog+0xeee/0xf30 [ 317.799168][ T27] ? watchdog+0x1ed/0xf30 [ 317.803522][ T27] kthread+0x29d/0x330 [ 317.807602][ T27] ? hungtask_pm_notify+0x40/0x40 [ 317.812631][ T27] ? kthread_blkcg+0xd0/0xd0 [ 317.817237][ T27] ret_from_fork+0x1f/0x30 [ 317.821669][ T27] [ 317.825844][ T27] Sending NMI from CPU 0 to CPUs 1: [ 317.831461][ C1] NMI backtrace for cpu 1 [ 317.831472][ C1] CPU: 1 PID: 4348 Comm: kworker/u4:5 Not tainted syzkaller #0 [ 317.831489][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 317.831499][ C1] Workqueue: phy8 ieee80211_iface_work [ 317.831524][ C1] RIP: 0010:cfg80211_update_known_bss+0x3b5/0xa20 [ 317.831553][ C1] Code: 08 4c 89 e7 e8 ac da 5a f8 4d 8b 34 24 4c 8d 63 10 4c 89 e0 48 c1 e8 03 80 3c 28 00 74 08 4c 89 e7 e8 8f da 5a f8 4d 8b 2c 24 <4d> 39 e5 0f 84 86 00 00 00 49 8d 5d 70 48 89 dd 48 c1 ed 03 48 b8 [ 317.831569][ C1] RSP: 0018:ffffc9000470f300 EFLAGS: 00000246 [ 317.831583][ C1] RAX: 1ffff1100f2e7902 RBX: ffff88807973c800 RCX: ffff8880554e3b80 [ 317.831596][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 317.831607][ C1] RBP: dffffc0000000000 R08: 0000000000000000 R09: 0000000000000002 [ 317.831618][ C1] R10: 0000000000000002 R11: 0000000000000000 R12: ffff88807973c810 [ 317.831628][ C1] R13: ffff88807973c810 R14: ffff888079c6f000 R15: ffff888079c6f300 [ 317.831641][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 317.831655][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 317.831667][ C1] CR2: 00007fb9e3fa4198 CR3: 000000000c88e000 CR4: 00000000003506e0 [ 317.831682][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 317.831691][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 317.831701][ C1] Call Trace: [ 317.831706][ C1] [ 317.831715][ C1] cfg80211_bss_update+0x15f/0x2250 [ 317.831738][ C1] ? __kmem_cache_alloc_node+0x140/0x260 [ 317.831757][ C1] ? cfg80211_inform_bss_frame_data+0x6a0/0x1370 [ 317.831774][ C1] ? rcu_is_watching+0x11/0xa0 [ 317.831798][ C1] ? cfg80211_inform_bss_frame_data+0x6a0/0x1370 [ 317.831818][ C1] cfg80211_inform_bss_frame_data+0x9f4/0x1370 [ 317.831844][ C1] ? cfg80211_parse_mbssid_data+0x2320/0x2320 [ 317.831870][ C1] ? __lock_acquire+0x7c50/0x7c50 [ 317.831899][ C1] ieee80211_bss_info_update+0x734/0xbc0 [ 317.831930][ C1] ? ieee80211_rx_bss_put+0x60/0x60 [ 317.831961][ C1] ? ieee80211_ibss_rx_queued_mgmt+0xdad/0x2b10 [ 317.831983][ C1] ? ieee80211_vif_get_shift+0x22b/0x290 [ 317.832005][ C1] ? ieee80211_mandatory_rates+0x1c8/0x230 [ 317.832029][ C1] ieee80211_ibss_rx_queued_mgmt+0x17b4/0x2b10 [ 317.832058][ C1] ? ieee80211_ibss_rx_queued_mgmt+0xdad/0x2b10 [ 317.832081][ C1] ? ieee80211_ibss_rx_no_sta+0x770/0x770 [ 317.832100][ C1] ? mark_lock+0x94/0x320 [ 317.832126][ C1] ? mark_lock+0x94/0x320 [ 317.832150][ C1] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 317.832174][ C1] ? lock_chain_count+0x20/0x20 [ 317.832195][ C1] ? __rwlock_init+0x140/0x140 [ 317.832229][ C1] ? lockdep_hardirqs_on+0x94/0x140 [ 317.832254][ C1] ? skb_dequeue+0x10a/0x140 [ 317.832278][ C1] ieee80211_iface_work+0x726/0xc80 [ 317.832300][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 317.832327][ C1] ? process_one_work+0x7a1/0x1160 [ 317.832344][ C1] process_one_work+0x898/0x1160 [ 317.832370][ C1] ? worker_detach_from_pool+0x240/0x240 [ 317.832391][ C1] ? _raw_spin_lock_irq+0xab/0xe0 [ 317.832415][ C1] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 317.832439][ C1] ? kthread_data+0x4b/0xc0 [ 317.832465][ C1] worker_thread+0xaa2/0x1250 [ 317.832492][ C1] ? __kthread_parkme+0x162/0x1c0 [ 317.832518][ C1] kthread+0x29d/0x330 [ 317.832541][ C1] ? worker_clr_flags+0x1a0/0x1a0 [ 317.832558][ C1] ? kthread_blkcg+0xd0/0xd0 [ 317.832583][ C1] ret_from_fork+0x1f/0x30 [ 317.832613][ C1] [ 317.836020][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 317.836036][ T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 [ 317.836058][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 317.836072][ T27] Call Trace: [ 317.836080][ T27] [ 317.836089][ T27] dump_stack_lvl+0x168/0x22e [ 317.836120][ T27] ? memcpy+0x3c/0x60 [ 317.836160][ T27] ? show_regs_print_info+0x12/0x12 [ 317.836187][ T27] ? load_image+0x3b0/0x3b0 [ 317.836235][ T27] panic+0x2c9/0x710 [ 317.836265][ T27] ? schedule_preempt_disabled+0x20/0x20 [ 317.836298][ T27] ? bpf_jit_dump+0xd0/0xd0 [ 317.836335][ T27] ? nmi_trigger_cpumask_backtrace+0x35b/0x450 [ 317.836364][ T27] ? nmi_trigger_cpumask_backtrace+0x360/0x450 [ 317.836393][ T27] watchdog+0xf2d/0xf30 [ 317.836424][ T27] ? watchdog+0x1ed/0xf30 [ 317.836454][ T27] kthread+0x29d/0x330 [ 317.836486][ T27] ? hungtask_pm_notify+0x40/0x40 [ 317.836511][ T27] ? kthread_blkcg+0xd0/0xd0 [ 317.836548][ T27] ret_from_fork+0x1f/0x30 [ 317.836594][ T27] [ 317.839280][ T27] Kernel Offset: disabled [ 318.286051][ T27] Rebooting in 86400 seconds..