last executing test programs: 3m7.280457635s ago: executing program 3 (id=3626): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) setsockopt$netrom_NETROM_IDLE(r0, 0x103, 0x7, &(0x7f0000000700)=0xf5500, 0x4) 3m6.571782833s ago: executing program 3 (id=3631): r0 = syz_open_procfs(0x0, &(0x7f0000000bc0)='timerslack_ns\x00') writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="dc", 0x1}], 0x8) 3m6.082466165s ago: executing program 3 (id=3636): syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2000c8, &(0x7f00000005c0)=ANY=[@ANYBLOB='codepage=874,nodots,dots,tz=UTC,dots,nodots,codepage=862,dots,dots,check=strict,allow_utime=000000000000000000001,sys_immutable,nodots,nfs,quiet,dots,nodots,nodots,debug,usefree,tz=UTC,flush,nodots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$eJzs3TGL02AYB/Cn9bzmnG4TRCHg4nSon+BEThADgtJBJ4XT5SqCt0SX9mP4Af0A0qmLRGrSxkaHWmxS6++39En/edvnHZp26ZNXN99dnL+/fPvl+udIkl70T+M0Zr04jn4sTAIA2CezooivRanrXgCAdqzx/f+t5ZYAgC17/uLlkwdZdvYsTZOI6SQf5sPyscwfPc7O7qY/HNerpnk+vLLM76XN3w7z/Gpcq/L75fp0NT+MO7fLfJ49fJo18kGcb3frAAAAAAAAAAAAAAAAAAAAAADQmVuRLvx2vs/JSTM/qvLy6Kf5QI35PQdx46A6rMcDFeM2NgUAAAAAAAAAAAAAAAAAAAD/mMuPny5ej0ZvPtTFICJWn/mTole98IbL2y76sRNtKP5qke5GG6MNPwWHEbGtxmZFUax1cn2NGHR1cQIAAAAAAAAAAAAAAAAAgP9M/affX7Oki4YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoAP1/f83KMYRscbJyzc76nSrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7LHvAQAA///DgjXa") rename(&(0x7f000001fb40)='./file0/file0\x00', &(0x7f000001fb80)='./file2\x00') 3m5.275532376s ago: executing program 3 (id=3641): syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000003540)={[{@dmask={'dmask', 0x3d, 0x7}}, {@namecase}, {@dmask={'dmask', 0x3d, 0x400005}}, {@sys_tz}, {@errors_remount}, {@discard}, {@keep_last_dots}, {@umask={'umask', 0x3d, 0x200}}, {@namecase}, {@namecase}]}, 0x1, 0x153b, &(0x7f0000001f80)="$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") mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 3m3.983126346s ago: executing program 3 (id=3650): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800f87d, 0x2) ioctl$vim2m_VIDIOC_TRY_FMT(r0, 0xc0cc5640, &(0x7f00000000c0)={0x1, @raw_data="219f345a535f7fd848535633c36c394a1de003201d326f685d1def32fecaedfe67bff9eeb734503985716e328e346cac5c7a6e58049538bc972fd0823c58cc1f150eed627008c13a01db5216271eeb2a5b3f12a1c282d5b2aeb1c73a453e206bdfbf1fce95eca828f959c0de120fcd60bf43e078e971056e757561871a313686345cac5da6d85a04ec47052dd06bd49003379826c60141df097d118c2444c57b085012adef590a7b8e0ea4889f6a3f026ffe08cbedab37b9ee80be9247a4689e6ba32e2f44298657"}) 3m3.316856307s ago: executing program 3 (id=3654): r0 = syz_open_dev$video(&(0x7f0000000080), 0x7, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000100)={0x0, 0x42474752, 0x140, 0x2, 0x1, @stepwise={{0xff, 0x20003}, {0x6, 0x7}, {0x140000}}}) 3m1.760084183s ago: executing program 32 (id=3654): r0 = syz_open_dev$video(&(0x7f0000000080), 0x7, 0x0) ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000100)={0x0, 0x42474752, 0x140, 0x2, 0x1, @stepwise={{0xff, 0x20003}, {0x6, 0x7}, {0x140000}}}) 4.676834168s ago: executing program 4 (id=4806): r0 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 4.264519948s ago: executing program 0 (id=4808): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'veth0_macvtap\x00', 0x2}) 4.136624713s ago: executing program 4 (id=4810): openat$nvram(0xffffffffffffff9c, &(0x7f00000000c0), 0x8882, 0x0) openat$nvram(0xffffffffffffff9c, &(0x7f0000000200), 0x181242, 0x0) 3.68509391s ago: executing program 4 (id=4812): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@ipv6_getaddrlabel={0x24, 0x18, 0x1, 0x0, 0x0, {0xa, 0x0, 0x80}, [@IFAL_LABEL={0x8}]}, 0x24}}, 0x0) 3.654324243s ago: executing program 5 (id=4813): setrlimit(0x7, &(0x7f0000000000)={0x4, 0x6}) syz_init_net_socket$x25(0x9, 0x5, 0x0) 3.456455177s ago: executing program 1 (id=4814): r0 = request_key(&(0x7f0000000040)='blacklist\x00', &(0x7f0000000000)={'syz', 0x3}, 0x0, 0xffffffffffffffff) request_key(&(0x7f0000000100)='cifs.spnego\x00', &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000001580)='\x1c\x0f\x8dglgs\n\x1a\xed\xb1\xfb0\xc4\xca.\x10\' \xd23b\xf2aP+I\x1d\x96`j\xad\xf9\xff_@&\xc5Q\xe1\x9bqZ\xee\x99\xe1F\x03Z\xfeD,\xc8\x82NPQ1\xff<\xd1\xdfmJ\xe6t(\xdc\xab\xffyG\x01\xcbb%\t\xd49\x16\xbe\x85\xc9Vp\xe2\xfa\xd9\xb85\xa2\xf5\xc9\n\x8bw\n\x94Xq\xb0\x88J\xcc\x96\xc1\x03\x00\n%Q\va\xf4\xf9\xc18\x99\xbe\xea}Y!CDK\f\xcaV\xf3\xc2\xa3\xf6\x069\xb2\x80U\xf3\xdbz&\xae\xf1\xd2\x93\x9a\x0e7?9\xc3`\xb1a6\xb0U3\a\xea\x88_\xe3%\x85z$\xa2L\x0fy\x19s7\x1b\xf5p#+\xd1@\xc0\xb3\xd0\xc8VhK\xfe?}\xaek\x8c\xd0\x8ds\x89\xf3\xd7\x84\x10q|m\x0e:\xe1|\x0f\x02Y!\xe8\\6\x87\x12G\xbf\x98\xf2B\x01\xf6t\x1a\f\xaa\x01\x0e\xc5\x9bh\x06\xbb\x99\xcf\xe9:\x84\x00\x00d\xfcY\xcf4\xe1\x8d8\xb1\x1cBm\xda\xdf\xee\x1dS\x84\x19[\x9dO\x12z\x9a\x01\xa5u\x83#\xc5d7\xfc!\xf0B\xd3\xa6\xdc\xec`\x1e]x\x19)~\x00\x98\xa1\xabz\xcc:\xdd\xabA)_\xd3\xbb\xfdL\v\xcc\xa9I\x91rp\xf0\x0f\x85\x8b\xfc\x92c|u\xb2R\xfe\x01\xf8\xa6+\xd2\x17\xd5\x02ye\xbae\xf9\\8\x1b\b\xc5|\xd7\xad\xdc\xa9\xf3L\xdbK\xe5\xe4\xfe@\xc6AB\x1f\xb9\x7f\x1a\xe5?\'\x87\xae\x9f\xe9\xa0\xc6\xb8\x81j\xae\x9e\xcb\x13j\fZ\x06\x00\x00\x00\xd0\xc9\x00[K\xac\xa6\x84\x11\v\xee\xb9\x96\xf3\xd4\xbdM\x1fv\x02\xdb\x8d\xc5\xa6\xa8r\x06g%\xb2co?\xf9\xe1\xcdMr\x02\x88e\xab\xf2\x97\x0f\x94\xf3Pi\tN\xa0T\xf2\xac\xe9\xed\x00', r0) 3.426773042s ago: executing program 0 (id=4815): r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) keyctl$read(0xb, r0, &(0x7f0000000200)=""/134, 0x86) 3.414084574s ago: executing program 2 (id=4816): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, 0x0, 0x0) 3.104304347s ago: executing program 4 (id=4817): r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000001c80)={{0x12, 0x1, 0x300, 0xc8, 0x5f, 0x62, 0x8, 0x423, 0xc, 0x2ebf, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x8, 0x6, 0x0, 0x22, [{{0x9, 0x4, 0xff, 0x1, 0x0, 0x71, 0xc0, 0xd9, 0x8}}]}}]}}, &(0x7f00000023c0)={0x0, 0x0, 0x0, 0x0, 0x63}) syz_usb_control_io$hid(r0, 0x0, 0x0) 2.853762214s ago: executing program 1 (id=4818): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000440)=ANY=[@ANYBLOB="300000000301010200000000000000000a00fffe0c001980080002002c080000100002"], 0x30}, 0x1, 0x0, 0x0, 0x8004}, 0x24000800) 2.824589088s ago: executing program 0 (id=4819): r0 = socket$l2tp6(0xa, 0x2, 0x73) getsockopt$inet6_int(r0, 0x29, 0x5, 0x0, &(0x7f00000004c0)) 2.796189697s ago: executing program 5 (id=4820): r0 = syz_open_dev$MSR(&(0x7f0000000000), 0x1, 0x0) preadv2(r0, &(0x7f0000000440)=[{0x0}, {&(0x7f00000001c0)=""/8, 0x8}], 0x2, 0x2, 0x10, 0x0) 2.76148248s ago: executing program 2 (id=4821): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x6, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x63d, 0x0, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x2c}]}, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2107, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 2.230578516s ago: executing program 5 (id=4822): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=@gettaction={0x20, 0x5a, 0x1, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}]}, 0x20}}, 0x800) 2.218145423s ago: executing program 0 (id=4823): r0 = socket$rxrpc(0x21, 0x2, 0x2) bind$rxrpc(r0, &(0x7f0000000040)=@in4={0x21, 0x2, 0x2, 0x3, {0x2, 0x4e21, @rand_addr=0x64010100}}, 0x24) 2.150078222s ago: executing program 2 (id=4824): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_CHECK_EXTENSION(r0, 0xae03, 0xa7) 2.012205593s ago: executing program 1 (id=4825): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) migrate_pages(0x0, 0x3, 0x0, &(0x7f0000000300)=0xa) 1.577956099s ago: executing program 2 (id=4826): r0 = socket$can_raw(0x1d, 0x3, 0x1) sendmmsg$sock(r0, &(0x7f0000000780)=[{{&(0x7f0000000040)=@isdn={0x22, 0xd, 0xeb, 0x2, 0x9}, 0x80, &(0x7f00000001c0)=[{&(0x7f0000000180)="f5f546e49728418e665b2690a0", 0xd}], 0x1}}], 0x1, 0x20004814) 1.518877498s ago: executing program 0 (id=4827): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) pause() 1.506712795s ago: executing program 5 (id=4828): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f0000000000)) 1.267540021s ago: executing program 1 (id=4829): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWSET={0x54, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x110}, @NFTA_SET_POLICY={0x8, 0x8, 0x1, 0x0, 0x1}, @NFTA_SET_GC_INTERVAL={0x8, 0xc, 0x1, 0x0, 0x10001}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x7c}}, 0x20050800) 816.378308ms ago: executing program 4 (id=4830): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="636f6465706167653d757466382c66696c655f756d61736b3d30303030303030303030303030303030303030303030332c696f636861727365743d63703737352c71756965742c008f7881d185c35a6a28ef06c5b85628f12a02248de249c2a338d049166371583781680d171f47"], 0x1, 0x2e8, &(0x7f0000000400)="$eJzs3T9v004cx/HPOUmb/lF//rVFSCygQiVYKgoMiCUIZWVnQkCTShVREW2RgIWCGBEPgJ2nwINgAfEEYGLiAXQzusvFcVLbaaCJm/J+SXGd8935e/U5vnOVWgD+WXfq3z9e/2lfRiqpJOmWFEiqSmVJZ3S2+mx7b2uv1WzkVVRyJezLqF3SHMqzsd1MK2rLuRJeaN+VNZ9Mw2hEUXT7h/sRFR0KCuTO/hSBNO3PQ7e9Oua4RmVfOl90DOOWPMDmQAd6roUCwwEAnAD++h/4y8S8SzIKAmnVX/ZP1fX/oOgAjteN1qGk/PF84vrvRneRscf3P7epO99zUzi7PejMEo8STKXv/ZTaPatngGkGzSpdLMHM5lZZaxuv1Qj0RjUvkW3ZLRvtrtsxINqVlLlpjuzaKro7226NG1H264S0udVqTtuVlPiXhtvj3zOfzVdz34T6oEY8/itHxh4m4xvRc6SCio3/anaNc3YR2lzy0/5arRb0ZPnf7eSc7wvegFZW02ckyTo7Nwj24wjy4nT7XlTvbYV269YHlFpKKxXG7zJKLfeUKvmesLbxpJV7K2U0Ok007809s6Jf+qR6Yvwf2PhWlTgz8z7qjcvpe0a7PVPpOePfTV913dPlQn/O6aHaBW+4u2Xv9Eg3tbD74uXjUqvV3LErD1NWns7vGJ9SeSul5hn9Skk5ebTfTYmsV1HUTQlza45GGfyVY63Qfn7EKfb0Sctsz7I4JRj3YZrYlUpW15KUsqn+RXkdcnJWokjK2DSqjymcJLumc9B9wkzBAWHc7LjLRMaOyNxI3o/q3BTJLsKccfrAPxolalyPZ3C9Q8FFt5wdagY3lz2DS+zxWsac0c25Ll6WLiUSjXL3GPo4TwlT1zc94P4/AAAAAAAAAAAAAAAAAADApDnGrxN0vsl4aFPBTQQAAAAAAAAAAAAAAAAAAAAAYOL90fN/0/5HvHv+bziu5//mPxkIwJH8DgAA//+YG3eD") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) 808.588617ms ago: executing program 2 (id=4831): r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) ioctl$VIDIOC_G_SELECTION(r0, 0xc0405668, &(0x7f0000000380)={0x1, 0x100, 0x4, {0x4, 0x7, 0x780000, 0xfcad}}) 758.947665ms ago: executing program 5 (id=4832): r0 = syz_open_dev$dri(&(0x7f0000000180), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000240)={0x1, 0x1f, 0x200008}) 684.487643ms ago: executing program 1 (id=4833): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0) write$tcp_mem(r0, &(0x7f0000000280)={0x2000007, 0x2d, 0xffffffffffffffff, 0x3a, 0x20000000, 0x2c}, 0x48) 215.073343ms ago: executing program 2 (id=4834): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x20802, 0x0) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000e40)='\b', 0x17ff}], 0x5) 173.698919ms ago: executing program 5 (id=4835): r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv(r0, &(0x7f0000000a40)=[{&(0x7f00000003c0)=""/240, 0xf0}], 0x1) 116.208552ms ago: executing program 0 (id=4836): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000001800128008000100707070000c0002"], 0x40}}, 0x0) 63.657885ms ago: executing program 4 (id=4837): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg$inet_sctp(r0, &(0x7f0000003480)=[{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000540)="11", 0x1}], 0x1, &(0x7f00000002c0)=[@sndrcv={0x2c, 0x84, 0x1, {0x0, 0x0, 0xa}}, @prinfo={0x14}], 0x40}], 0x1, 0x0) 0s ago: executing program 1 (id=4838): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x48, &(0x7f0000000040)=0x5, 0x4) kernel console output (not intermixed with test programs): uid=0 gid=0 ses=4294967295 subj=unconfined pid=11670 comm="syz.2.2696" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 620.718236][ T30] audit: type=1326 audit(1760030659.992:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11670 comm="syz.2.2696" exe="/root/syz-executor" sig=0 arch=40000003 syscall=399 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 620.740664][ T30] audit: type=1326 audit(1760030659.992:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11670 comm="syz.2.2696" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 621.177958][T11677] loop1: detected capacity change from 0 to 512 [ 621.265726][T11677] EXT4-fs: inline encryption not supported [ 621.271869][T11677] EXT4-fs: Ignoring removed mblk_io_submit option [ 621.371347][T11677] EXT4-fs (loop1): Test dummy encryption mode enabled [ 621.515696][T11677] EXT4-fs (loop1): orphan cleanup on readonly fs [ 621.522433][T11677] EXT4-fs error (device loop1): ext4_orphan_get:1392: comm syz.1.2699: inode #13: comm syz.1.2699: iget: illegal inode # [ 621.558506][T11677] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2699: couldn't read orphan inode 13 (err -117) [ 621.578503][T11677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 621.678357][T11685] 9pnet: Found fid 0 not clunked [ 621.791489][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 623.589992][T11713] Cannot find del_set index 65533 as target [ 623.673749][T11715] netlink: 'syz.4.2717': attribute type 2 has an invalid length. [ 623.681834][T11715] netlink: 244 bytes leftover after parsing attributes in process `syz.4.2717'. [ 623.779039][T11717] loop2: detected capacity change from 0 to 256 [ 624.480187][T11723] loop1: detected capacity change from 0 to 2048 [ 624.599218][T11723] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 627.364316][T11771] netlink: 'syz.1.2745': attribute type 1 has an invalid length. [ 627.372245][T11771] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2745'. [ 627.454967][T11773] netlink: 'syz.4.2746': attribute type 1 has an invalid length. [ 627.817942][T11776] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 628.069211][T11783] loop4: detected capacity change from 0 to 64 [ 629.825862][T11806] loop2: detected capacity change from 0 to 512 [ 630.093648][T11806] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.2762: corrupted in-inode xattr: invalid ea_ino [ 630.152221][T11806] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2762: couldn't read orphan inode 15 (err -117) [ 630.179669][T11816] loop3: detected capacity change from 0 to 256 [ 630.180968][T11806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 630.648487][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 632.380679][T11843] loop2: detected capacity change from 0 to 256 [ 632.433445][T11843] exfat: Deprecated parameter 'utf8' [ 632.439343][T11843] exfat: Deprecated parameter 'utf8' [ 632.565649][T11843] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 633.813374][ T5853] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 633.925100][ T24] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 633.966663][T11867] loop2: detected capacity change from 0 to 256 [ 634.006348][ T5853] usb 4-1: Using ep0 maxpacket: 16 [ 634.059650][ T5853] usb 4-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0 [ 634.070623][ T5853] usb 4-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0 [ 634.080921][ T5853] usb 4-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 634.096984][ T5853] usb 4-1: config 1 interface 0 has no altsetting 0 [ 634.158316][ T24] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 634.168908][ T24] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 634.178306][ T24] usb 1-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 634.191940][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 634.231627][ T5853] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 634.244070][ T5853] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 634.252297][ T5853] usb 4-1: Product: syz [ 634.257157][ T5853] usb 4-1: Manufacturer: syz [ 634.261923][ T5853] usb 4-1: SerialNumber: syz [ 634.275898][ T24] usb 1-1: config 0 descriptor?? [ 634.502040][T11867] FAT-fs (loop2): Directory bread(block 64) failed [ 634.509305][T11867] FAT-fs (loop2): Directory bread(block 65) failed [ 634.516652][T11867] FAT-fs (loop2): Directory bread(block 66) failed [ 634.523596][T11867] FAT-fs (loop2): Directory bread(block 67) failed [ 634.530757][T11867] FAT-fs (loop2): Directory bread(block 68) failed [ 634.537765][T11867] FAT-fs (loop2): Directory bread(block 69) failed [ 634.545219][T11867] FAT-fs (loop2): Directory bread(block 70) failed [ 634.552413][T11867] FAT-fs (loop2): Directory bread(block 71) failed [ 634.561258][T11867] FAT-fs (loop2): Directory bread(block 72) failed [ 634.568255][T11867] FAT-fs (loop2): Directory bread(block 73) failed [ 634.666145][ T5853] usblp 4-1:1.0: usblp0: USB Unidirectional printer dev 11 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8 [ 634.765837][ T24] Bluetooth: Can't get version to change to load ram patch err [ 634.773920][ T24] Bluetooth: Loading patch file failed [ 634.779586][ T24] ath3k 1-1:0.0: probe with driver ath3k failed with error -71 [ 634.827729][ T24] usb 1-1: USB disconnect, device number 10 [ 634.880293][ T5858] usb 4-1: USB disconnect, device number 11 [ 634.945645][ T5858] usblp0: removed [ 635.570604][T11880] loop2: detected capacity change from 0 to 128 [ 635.992453][ T30] audit: type=1326 audit(1760030675.302:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 636.143181][ T30] audit: type=1326 audit(1760030675.332:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 636.152620][T11886] loop4: detected capacity change from 0 to 64 [ 636.168820][ T30] audit: type=1326 audit(1760030675.362:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11883 comm="syz.3.2799" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 636.350513][T11888] loop2: detected capacity change from 0 to 16 [ 636.750582][ T6092] udevd[6092]: incorrect cramfs checksum on /dev/loop2 [ 637.474004][T11904] netlink: 'syz.2.2807': attribute type 5 has an invalid length. [ 638.223325][T11916] loop1: detected capacity change from 0 to 512 [ 638.276105][T11916] EXT4-fs: Ignoring removed nomblk_io_submit option [ 638.394688][T11916] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2803: inode #11: comm syz.1.2814: corrupted xattr block 95: invalid header [ 638.517129][T11916] EXT4-fs (loop1): Remounting filesystem read-only [ 638.524697][T11916] EXT4-fs warning (device loop1): ext4_evict_inode:257: couldn't mark inode dirty (err -30) [ 638.535353][T11916] EXT4-fs (loop1): 1 orphan inode deleted [ 638.543437][T11916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 638.564725][T11921] netlink: 'syz.0.2817': attribute type 1 has an invalid length. [ 638.915356][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.558906][T11935] loop4: detected capacity change from 0 to 1024 [ 639.722086][T11935] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 640.235440][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.250091][ T5807] Bluetooth: hci4: unexpected event for opcode 0x200a [ 640.977750][T11959] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 640.986897][T11959] overlayfs: missing 'lowerdir' [ 641.898411][ T5807] Bluetooth: hci2: unexpected event for opcode 0x200a [ 643.393806][ T30] audit: type=1326 audit(1760030682.672:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11995 comm="syz.0.2852" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 643.493566][ T30] audit: type=1326 audit(1760030682.732:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11995 comm="syz.0.2852" exe="/root/syz-executor" sig=0 arch=40000003 syscall=150 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 643.519235][ T30] audit: type=1326 audit(1760030682.732:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11995 comm="syz.0.2852" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 643.542661][ T30] audit: type=1326 audit(1760030682.732:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11995 comm="syz.0.2852" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 644.283598][T12014] loop2: detected capacity change from 0 to 1024 [ 644.314137][ T24] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 644.518635][ T24] usb 2-1: New USB device found, idVendor=05d1, idProduct=2021, bcdDevice=31.00 [ 644.528096][ T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 644.540103][ T24] usb 2-1: Product: syz [ 644.544627][ T24] usb 2-1: Manufacturer: syz [ 644.549408][ T24] usb 2-1: SerialNumber: syz [ 644.648335][ T24] usb 2-1: config 0 descriptor?? [ 644.687109][ T24] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected [ 644.698081][ T24] usb 2-1: Detected FT4232HP [ 644.742066][T12017] syz.0.2862 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 644.814379][T12019] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.2863'. [ 644.824348][T12019] netlink: zone id is out of range [ 644.829637][T12019] netlink: zone id is out of range [ 644.893771][ T24] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 644.922620][ T24] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 644.948513][ T24] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 644.999232][ T24] usb 2-1: USB disconnect, device number 8 [ 645.055817][ T24] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 645.067607][ T24] ftdi_sio 2-1:0.0: device disconnected [ 646.228922][T12038] netlink: 2 bytes leftover after parsing attributes in process `syz.3.2873'. [ 646.888175][T12049] loop4: detected capacity change from 0 to 256 [ 646.914858][T12049] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 647.978385][T12062] loop2: detected capacity change from 0 to 16 [ 648.074616][T12062] erofs (device loop2): mounted with root inode @ nid 36. [ 648.146406][T12062] erofs (device loop2): inline data across blocks @ nid 36 [ 648.333271][ T24] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 648.561697][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 648.572532][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7 [ 648.644087][T12071] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2888'. [ 648.669116][ T24] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 648.679011][ T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 648.687577][ T24] usb 2-1: Product: syz [ 648.694310][ T24] usb 2-1: Manufacturer: syz [ 648.699102][ T24] usb 2-1: SerialNumber: syz [ 648.796000][ T24] usb 2-1: config 0 descriptor?? [ 648.845755][ T24] usb 2-1: 0:0 : invalid sync pipe. is_playback 1, ep 0a, bSynchAddress 07 [ 649.065028][T12078] loop2: detected capacity change from 0 to 512 [ 649.265874][T12078] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 649.279245][T12078] ext4 filesystem being mounted at /559/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 649.285732][ T24] usb 2-1: USB disconnect, device number 9 [ 649.580787][ T6038] udevd[6038]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 649.823955][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 649.881363][ T5858] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 650.111523][ T5858] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 650.121052][ T5858] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 650.132251][ T5858] usb 1-1: config 220 has no interface number 2 [ 650.139795][ T5858] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 650.153954][ T5858] usb 1-1: config 220 interface 0 has no altsetting 0 [ 650.161191][ T5858] usb 1-1: config 220 interface 76 has no altsetting 0 [ 650.171710][ T5858] usb 1-1: config 220 interface 1 has no altsetting 0 [ 650.194442][ T5858] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 650.204318][ T5858] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 650.212518][ T5858] usb 1-1: Product: syz [ 650.217034][ T5858] usb 1-1: Manufacturer: syz [ 650.221827][ T5858] usb 1-1: SerialNumber: syz [ 650.556882][ T5858] usb 1-1: selecting invalid altsetting 0 [ 650.564294][ T5858] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 650.576898][ T5858] uvcvideo 1-1:220.0: No valid video chain found. [ 650.629124][T12099] loop3: detected capacity change from 0 to 128 [ 650.729816][ T5858] usb 1-1: selecting invalid altsetting 0 [ 650.736486][ T5858] usbtest 1-1:220.1: probe with driver usbtest failed with error -22 [ 650.763159][ T5858] usb 1-1: USB disconnect, device number 11 [ 651.998895][T12115] new mount options do not match the existing superblock, will be ignored [ 652.261944][T12119] loop4: detected capacity change from 0 to 512 [ 652.452676][T12119] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 652.521035][T12119] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2907: invalid indirect mapped block 8 (level 2) [ 652.552967][T12119] EXT4-fs (loop4): Remounting filesystem read-only [ 652.560539][T12119] EXT4-fs (loop4): 1 truncate cleaned up [ 652.569009][T12119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 652.700831][T12119] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 653.504976][T12140] xt_TPROXY: Can be used only with -p tcp or -p udp [ 654.035661][T12147] loop3: detected capacity change from 0 to 47 [ 654.502192][T12154] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 655.271706][T12159] loop3: detected capacity change from 0 to 4096 [ 656.791046][T12187] loop2: detected capacity change from 0 to 1024 [ 656.816063][T12187] EXT4-fs: Ignoring removed orlov option [ 656.875356][T12187] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 656.991212][T12191] loop4: detected capacity change from 0 to 256 [ 657.075176][T12187] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 657.201327][ T5807] Bluetooth: hci3: unexpected cc 0x204b length: 9 > 3 [ 657.208764][ T5807] Bluetooth: hci3: unexpected event for opcode 0x204b [ 657.631989][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 658.441481][T12214] overlayfs: conflicting options: nfs_export=on,index=off [ 658.829812][T12218] loop3: detected capacity change from 0 to 256 [ 658.875850][T12218] exfat: Deprecated parameter 'utf8' [ 659.017039][T12218] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd9b3646f, utbl_chksum : 0xe619d30d) [ 659.152988][ T30] audit: type=1800 audit(1760030698.452:81): pid=12218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2954" name="file1" dev="loop3" ino=1048653 res=0 errno=0 [ 659.294308][ T30] audit: type=1326 audit(1760030698.572:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12225 comm="syz.0.2957" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x0 [ 659.728516][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 659.735565][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 659.832739][T12228] loop1: detected capacity change from 0 to 2048 [ 659.944569][T12228] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 660.061346][T12228] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 660.510396][T12242] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2964'. [ 661.163042][T12251] loop3: detected capacity change from 0 to 512 [ 661.195468][T12251] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 661.242225][T12251] EXT4-fs (loop3): warning: maximal mount count reached, running e2fsck is recommended [ 661.281920][T12251] EXT4-fs error (device loop3): ext4_orphan_get:1392: comm syz.3.2969: inode #15: comm syz.3.2969: iget: illegal inode # [ 661.432048][T12251] EXT4-fs (loop3): Remounting filesystem read-only [ 661.441015][T12251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 661.865665][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 662.501171][T12270] loop2: detected capacity change from 0 to 1764 [ 663.175576][T12282] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2983'. [ 663.184901][T12282] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 664.735606][T12303] loop2: detected capacity change from 0 to 1764 [ 664.862320][T12303] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 665.158720][T12313] netlink: 84 bytes leftover after parsing attributes in process `syz.3.2999'. [ 665.359322][T12315] loop1: detected capacity change from 0 to 16 [ 665.458433][T12315] erofs (device loop1): mounted with root inode @ nid 36. [ 665.766362][T12318] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3002'. [ 667.196534][T12343] sctp: [Deprecated]: syz.4.3013 (pid 12343) Use of int in max_burst socket option. [ 667.196534][T12343] Use struct sctp_assoc_value instead [ 668.209156][T12353] loop4: detected capacity change from 0 to 4096 [ 668.375447][T12362] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 668.514635][T12353] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 668.598209][T12353] Remounting filesystem read-only [ 669.427162][T12377] loop1: detected capacity change from 0 to 256 [ 669.657286][T12377] FAT-fs (loop1): Directory bread(block 64) failed [ 669.664410][T12377] FAT-fs (loop1): Directory bread(block 65) failed [ 669.671389][T12377] FAT-fs (loop1): Directory bread(block 66) failed [ 669.678430][T12377] FAT-fs (loop1): Directory bread(block 67) failed [ 669.685507][T12377] FAT-fs (loop1): Directory bread(block 68) failed [ 669.692277][T12377] FAT-fs (loop1): Directory bread(block 69) failed [ 669.703219][T12377] FAT-fs (loop1): Directory bread(block 70) failed [ 669.709977][T12377] FAT-fs (loop1): Directory bread(block 71) failed [ 669.717276][T12377] FAT-fs (loop1): Directory bread(block 72) failed [ 669.729389][T12377] FAT-fs (loop1): Directory bread(block 73) failed [ 670.372248][T12390] netlink: 72 bytes leftover after parsing attributes in process `syz.4.3033'. [ 670.880954][T12394] loop1: detected capacity change from 0 to 512 [ 670.941916][T12394] EXT4-fs: Ignoring removed nomblk_io_submit option [ 671.047220][T12394] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 671.064475][T12394] ext4 filesystem being mounted at /603/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 671.295817][T12394] Quota error (device loop1): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0 [ 671.307176][T12394] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0 [ 671.317013][T12394] EXT4-fs error (device loop1): ext4_acquire_dquot:6945: comm syz.1.3036: Failed to acquire dquot type 1 [ 671.629684][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 673.584078][T12437] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3056'. [ 673.662450][T12441] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.3057'. [ 673.852607][T12444] netlink: 'syz.1.3059': attribute type 6 has an invalid length. [ 674.253958][T12450] netlink: 'syz.2.3061': attribute type 3 has an invalid length. [ 674.923164][T12462] loop4: detected capacity change from 0 to 8 [ 675.009940][T12462] SQUASHFS error: Failed to read block 0x63a: -5 [ 675.016788][T12462] SQUASHFS error: Unable to read metadata cache entry [638] [ 675.024474][T12462] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 675.194868][T12467] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3070'. [ 676.344112][T12481] sctp: [Deprecated]: syz.3.3076 (pid 12481) Use of struct sctp_assoc_value in delayed_ack socket option. [ 676.344112][T12481] Use struct sctp_sack_info instead [ 677.484560][T12500] netlink: 'syz.2.3086': attribute type 1 has an invalid length. [ 678.102333][T12511] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3091'. [ 678.809168][T12519] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 678.844112][T11353] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 679.043158][T11353] usb 5-1: Using ep0 maxpacket: 32 [ 679.066930][T11353] usb 5-1: config 0 has an invalid interface number: 9 but max is 0 [ 679.075343][T11353] usb 5-1: config 0 has no interface number 0 [ 679.124984][T11353] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 679.137142][T11353] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 679.149071][T11353] usb 5-1: Product: syz [ 679.154347][T11353] usb 5-1: Manufacturer: syz [ 679.159132][T11353] usb 5-1: SerialNumber: syz [ 679.206063][T11353] usb 5-1: config 0 descriptor?? [ 679.225925][T11353] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 679.688714][T11353] gspca_topro: reg_w err -71 [ 679.723340][T11353] gspca_topro: Sensor soi763a [ 679.786210][T11353] usb 5-1: USB disconnect, device number 5 [ 680.874672][T12545] loop4: detected capacity change from 0 to 256 [ 681.058167][T12545] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 681.084370][ T30] audit: type=1326 audit(1760030720.342:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12546 comm="syz.0.3108" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 681.110171][ T30] audit: type=1326 audit(1760030720.372:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12546 comm="syz.0.3108" exe="/root/syz-executor" sig=0 arch=40000003 syscall=323 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 681.133386][ T30] audit: type=1326 audit(1760030720.382:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12546 comm="syz.0.3108" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 681.455211][T12553] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3111'. [ 681.716550][T12555] loop1: detected capacity change from 0 to 1024 [ 681.772980][T12555] EXT4-fs: Ignoring removed nobh option [ 681.778799][T12555] EXT4-fs: Ignoring removed bh option [ 681.873934][T12558] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3113'. [ 681.883635][T12558] bridge_slave_1: left allmulticast mode [ 681.889464][T12558] bridge_slave_1: left promiscuous mode [ 681.896601][T12558] bridge0: port 2(bridge_slave_1) entered disabled state [ 681.987585][T12558] bridge_slave_0: left allmulticast mode [ 681.993629][T12558] bridge_slave_0: left promiscuous mode [ 681.996179][T12555] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 682.000474][T12558] bridge0: port 1(bridge_slave_0) entered disabled state [ 682.020419][T12550] loop2: detected capacity change from 0 to 4096 [ 682.077477][T12550] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 682.472466][T12550] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 682.544921][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 683.823281][T12584] netlink: 512 bytes leftover after parsing attributes in process `syz.3.3123'. [ 684.441603][T12594] loop3: detected capacity change from 0 to 256 [ 684.877901][T12594] FAT-fs (loop3): Directory bread(block 64) failed [ 684.885873][T12594] FAT-fs (loop3): Directory bread(block 65) failed [ 684.893244][T12594] FAT-fs (loop3): Directory bread(block 66) failed [ 684.899959][T12594] FAT-fs (loop3): Directory bread(block 67) failed [ 684.908248][T12594] FAT-fs (loop3): Directory bread(block 68) failed [ 684.915134][T12594] FAT-fs (loop3): Directory bread(block 69) failed [ 684.921997][T12594] FAT-fs (loop3): Directory bread(block 70) failed [ 684.928930][T12594] FAT-fs (loop3): Directory bread(block 71) failed [ 684.935924][T12594] FAT-fs (loop3): Directory bread(block 72) failed [ 684.942653][T12594] FAT-fs (loop3): Directory bread(block 73) failed [ 685.000581][T12599] loop1: detected capacity change from 0 to 512 [ 685.068952][T12599] EXT4-fs: Ignoring removed mblk_io_submit option [ 685.298980][T12599] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 685.318298][T12599] ext4 filesystem being mounted at /623/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 685.505019][T12599] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 685.520937][T12599] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2967: inode #15: comm syz.1.3131: corrupted xattr block 33: e_value out of bounds [ 685.555301][T12599] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117) [ 685.878956][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 686.024340][T12612] comedi comedi1: s526: I/O port conflict (0x7,64) [ 686.286696][T12616] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3139'. [ 687.263763][T12622] loop4: detected capacity change from 0 to 4096 [ 687.292220][T12622] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 687.303155][T11353] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 687.481371][T11353] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 687.491874][T11353] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 687.501316][T11353] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 687.613660][T12622] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 687.651794][T11353] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 688.683188][T11353] stv0680 1-1:4.0: STV(e): camera ping failed!! [ 688.899578][T11353] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 688.909085][T11353] stv0680 1-1:4.0: last error: 0, command = 0x0 [ 688.966059][T11353] usb 1-1: USB disconnect, device number 12 [ 690.106742][T12664] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3161'. [ 690.116167][T12664] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3161'. [ 690.339629][T12665] loop1: detected capacity change from 0 to 2048 [ 690.527561][T12665] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 694.072213][T12726] veth1_macvtap: left promiscuous mode [ 694.853981][ C1] sd 0:0:1:0: [sda] tag#584 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 694.864999][ C1] sd 0:0:1:0: [sda] tag#584 CDB: Read(6) 08 00 0c 6a 08 48 [ 695.504450][T12750] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 696.811618][ T30] audit: type=1326 audit(1760030736.122:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12768 comm="syz.0.3215" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 696.834324][ T30] audit: type=1326 audit(1760030736.122:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12768 comm="syz.0.3215" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 697.003290][ T30] audit: type=1326 audit(1760030736.212:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12768 comm="syz.0.3215" exe="/root/syz-executor" sig=0 arch=40000003 syscall=101 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 697.026160][ T30] audit: type=1326 audit(1760030736.212:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12768 comm="syz.0.3215" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 698.088695][T12790] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3224'. [ 698.228950][T12793] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3226'. [ 698.502074][ T24] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 698.687080][ T24] usb 3-1: Using ep0 maxpacket: 8 [ 698.745808][ T24] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 698.758632][ T24] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 698.796985][ T24] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 698.808925][ T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 698.821003][ T24] usb 3-1: Product: syz [ 698.826309][ T24] usb 3-1: Manufacturer: syz [ 698.831117][ T24] usb 3-1: SerialNumber: syz [ 698.959359][ T24] usb 3-1: config 0 descriptor?? [ 699.259020][T12805] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3231'. [ 699.269762][T12805] bridge0: port 3(team0) entered disabled state [ 699.361487][T12805] bridge_slave_1: left allmulticast mode [ 699.368058][T12805] bridge_slave_1: left promiscuous mode [ 699.375686][T12805] bridge0: port 2(bridge_slave_1) entered disabled state [ 699.411771][T11353] usb 3-1: USB disconnect, device number 10 [ 699.509241][T12805] bridge_slave_0: left allmulticast mode [ 699.516330][T12805] bridge_slave_0: left promiscuous mode [ 699.527213][T12805] bridge0: port 1(bridge_slave_0) entered disabled state [ 699.545959][T12810] netlink: 712 bytes leftover after parsing attributes in process `syz.3.3234'. [ 699.875503][T12812] loop1: detected capacity change from 0 to 1024 [ 699.993338][T12812] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 700.047877][T12812] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002] [ 700.060133][T12812] System zones: 0-1, 3-36 [ 700.088118][T12812] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 700.171566][T12812] EXT4-fs warning (device loop1): empty_inline_dir:1749: bad inline directory (dir #12) - no `..' [ 700.480552][T12820] loop2: detected capacity change from 0 to 512 [ 700.550292][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 700.607779][T12820] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 700.618109][T12820] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 701.056801][ T4105] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 701.124222][T12828] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3242'. [ 701.321966][T12830] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 701.559801][T12835] loop2: detected capacity change from 0 to 64 [ 701.598692][T12836] loop3: detected capacity change from 0 to 512 [ 701.900556][T12836] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 701.913934][T12836] ext4 filesystem being mounted at /655/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 702.325460][ T5808] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 702.535330][T12849] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3251'. [ 702.544797][T12849] bridge_slave_1: left allmulticast mode [ 702.550613][T12849] bridge_slave_1: left promiscuous mode [ 702.557861][T12849] bridge0: port 2(bridge_slave_1) entered disabled state [ 702.743563][T12849] bridge_slave_0: left allmulticast mode [ 702.751818][T12849] bridge_slave_0: left promiscuous mode [ 702.758846][T12849] bridge0: port 1(bridge_slave_0) entered disabled state [ 703.174225][T12859] netlink: 'syz.2.3255': attribute type 1 has an invalid length. [ 703.324287][T12861] loop4: detected capacity change from 0 to 256 [ 704.375088][T12865] loop1: detected capacity change from 0 to 4096 [ 704.443068][T12865] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 704.807954][T12865] ntfs3(loop1): ino=19, mi_enum_attr [ 704.813921][T12865] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 704.966706][T12865] ntfs3(loop1): failed to convert "c46c" to cp862 [ 704.987916][T12865] ntfs3(loop1): ino=20, mi_enum_attr [ 705.071005][ T30] audit: type=1326 audit(1760030744.382:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 705.193838][ T30] audit: type=1326 audit(1760030744.432:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=120 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 705.283278][ T30] audit: type=1326 audit(1760030744.542:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12884 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 705.306021][ T30] audit: type=1326 audit(1760030744.552:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 705.328513][ T30] audit: type=1326 audit(1760030744.552:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 705.538401][ T30] audit: type=1326 audit(1760030744.712:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12884 comm="syz.4.3266" exe="/root/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 706.016515][T12893] loop1: detected capacity change from 0 to 256 [ 706.803982][T12903] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3277'. [ 707.447064][T12915] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3281'. [ 707.694071][T11353] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 707.883424][T11353] usb 5-1: Using ep0 maxpacket: 8 [ 707.910666][T11353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 707.924648][T11353] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 708.011112][T11353] usb 5-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 708.024030][T11353] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 708.033251][T11353] usb 5-1: Product: syz [ 708.037595][T11353] usb 5-1: Manufacturer: syz [ 708.042366][T11353] usb 5-1: SerialNumber: syz [ 708.158235][T11353] usb 5-1: config 0 descriptor?? [ 708.241027][T12927] netlink: 'syz.3.3287': attribute type 41 has an invalid length. [ 708.663639][T11353] usb 5-1: USB disconnect, device number 6 [ 708.868551][T12937] veth1_virt_wifi: entered promiscuous mode [ 708.876014][T12937] netlink: 48 bytes leftover after parsing attributes in process `syz.0.3292'. [ 708.885771][T12937] A link change request failed with some changes committed already. Interface veth1_virt_wifi may have been left with an inconsistent configuration, please check. [ 708.971589][T12936] loop1: detected capacity change from 0 to 2048 [ 709.071782][T12936] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 710.361550][T12955] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3300'. [ 710.733148][T12961] netdevsim netdevsim4: loading /lib/firmware/. failed with error -22 [ 710.741625][T12961] netdevsim netdevsim4: Direct firmware load for . failed with error -22 [ 710.750618][T12961] netdevsim netdevsim4: Falling back to sysfs fallback for: . [ 712.093130][T12976] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3310'. [ 712.102445][T12976] netlink: 'syz.4.3310': attribute type 1 has an invalid length. [ 714.971679][T13000] syz.4.3321 (13000): drop_caches: 2 [ 715.144532][T13018] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3329'. [ 715.153942][T13018] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3329'. [ 715.163559][T13018] netlink: 60 bytes leftover after parsing attributes in process `syz.1.3329'. [ 715.240157][T13020] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3331'. [ 715.551860][T13022] sctp: [Deprecated]: syz.4.3332 (pid 13022) Use of int in maxseg socket option. [ 715.551860][T13022] Use struct sctp_assoc_value instead [ 715.636518][T13024] syz.3.3333 uses obsolete (PF_INET,SOCK_PACKET) [ 715.869404][T13028] loop1: detected capacity change from 0 to 256 [ 715.927559][T13028] exfat: Deprecated parameter 'namecase' [ 715.934158][T13028] exfat: Deprecated parameter 'utf8' [ 716.093957][T13028] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x3f800a9b, utbl_chksum : 0xe619d30d) [ 718.493240][T13067] program syz.2.3354 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 719.015221][T13074] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3358'. [ 720.116555][T13092] loop1: detected capacity change from 0 to 1024 [ 720.273551][T11353] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 720.294873][T13087] loop2: detected capacity change from 0 to 4096 [ 720.373219][T13087] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 720.514137][T11353] usb 5-1: Using ep0 maxpacket: 16 [ 720.561840][T11353] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 720.571457][T11353] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 720.579923][T11353] usb 5-1: Product: syz [ 720.584588][T11353] usb 5-1: Manufacturer: syz [ 720.589455][T11353] usb 5-1: SerialNumber: syz [ 720.644168][T13087] ntfs3(loop2): Failed to load $Extend (-22). [ 720.650464][T13087] ntfs3(loop2): Failed to initialize $Extend. [ 720.755427][T11353] r8152-cfgselector 5-1: Unknown version 0x0000 [ 720.761915][T11353] r8152-cfgselector 5-1: config 0 descriptor?? [ 721.206555][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 721.213731][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 721.309305][ T24] r8152-cfgselector 5-1: USB disconnect, device number 7 [ 722.477053][T13117] loop4: detected capacity change from 0 to 8 [ 722.803607][ T6092] udevd[6092]: incorrect cramfs checksum on /dev/loop4 [ 723.706265][T13135] loop1: detected capacity change from 0 to 164 [ 724.553670][T13151] Illegal XDP return value 4294967274 on prog (id 99) dev N/A, expect packet loss! [ 724.675891][T13153] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 724.683180][ T24] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 724.685815][T13153] overlayfs: missing 'lowerdir' [ 724.903235][ T24] usb 5-1: Using ep0 maxpacket: 8 [ 724.943249][ T24] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 724.951867][ T24] usb 5-1: config 179 has no interface number 0 [ 724.959123][ T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 724.970622][ T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 724.982313][ T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 724.993992][ T24] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 725.005869][ T24] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 725.022018][ T24] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 725.032251][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 725.061704][T13155] netlink: 'syz.1.3398': attribute type 1 has an invalid length. [ 725.070567][T13155] netlink: 5 bytes leftover after parsing attributes in process `syz.1.3398'. [ 725.271021][T13148] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 725.830658][ C1] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 725.830658][T11353] usb 5-1: USB disconnect, device number 8 [ 725.830846][ C1] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 726.304125][T13170] bond1: option lacp_active: invalid value (40) [ 726.374960][T13170] bond1 (unregistering): Released all slaves [ 726.530230][T13173] loop1: detected capacity change from 0 to 512 [ 726.725158][T13173] EXT4-fs error (device loop1): ext4_iget_extra_inode:5075: inode #15: comm syz.1.3406: corrupted in-inode xattr: invalid ea_ino [ 726.745126][T13173] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.3406: couldn't read orphan inode 15 (err -117) [ 726.815793][T13173] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 727.187219][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 727.376754][T13187] loop2: detected capacity change from 0 to 128 [ 727.433106][T13187] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 727.492365][T13187] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 728.371457][T13199] loop2: detected capacity change from 0 to 64 [ 729.914606][T13215] loop2: detected capacity change from 0 to 4096 [ 730.013257][T13215] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 730.445824][T13215] ntfs3(loop2): ino=1a, mi_enum_attr [ 730.451366][T13215] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 730.690468][T13215] ntfs3(loop2): ino=1e, "file1" ntfs_sync_inode failed, -22. [ 731.025733][ T1130] ntfs3(loop2): ino=1e, ntfs3_write_inode failed, -22. [ 731.428805][T13240] loop1: detected capacity change from 0 to 16 [ 731.527821][T13240] erofs (device loop1): mounted with root inode @ nid 36. [ 731.594461][T13240] erofs (device loop1): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 731.634386][T13240] erofs (device loop1): read error -117 @ 43 of nid 36 [ 732.617071][T13253] loop4: detected capacity change from 0 to 2048 [ 732.814829][T13260] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 732.943151][T13253] NILFS error (device loop4): nilfs_lookup: deleted inode referenced: 12 [ 732.979023][T13253] Remounting filesystem read-only [ 733.485966][T13270] loop1: detected capacity change from 0 to 16 [ 733.556921][T13270] erofs (device loop1): mounted with root inode @ nid 36. [ 734.051466][T13276] loop2: detected capacity change from 0 to 1024 [ 734.119069][T13278] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3457'. [ 734.154980][T13276] EXT4-fs: Ignoring removed bh option [ 734.160939][T13276] EXT4-fs: inline encryption not supported [ 734.204509][T13276] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 734.214079][T13276] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 734.294441][T13276] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 2: comm syz.2.3456: lblock 2 mapped to illegal pblock 2 (length 1) [ 734.310460][T13276] EXT4-fs (loop2): Remounting filesystem read-only [ 734.317429][T13276] Quota error (device loop2): qtree_write_dquot: dquota write failed [ 734.326129][T13276] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 734.340906][T13276] EXT4-fs (loop2): 1 orphan inode deleted [ 734.349996][T13276] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 734.387408][T13276] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 735.333317][ T24] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 735.564906][ T24] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 735.575427][ T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 735.584223][ T24] usb 1-1: Product: syz [ 735.588583][ T24] usb 1-1: Manufacturer: syz [ 735.593537][ T24] usb 1-1: SerialNumber: syz [ 735.671229][ T30] audit: type=1326 audit(1760030774.982:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13301 comm="syz.2.3468" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 735.694131][ T30] audit: type=1326 audit(1760030774.982:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13301 comm="syz.2.3468" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 735.703609][ T24] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 735.850939][ T5853] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 736.012692][ T30] audit: type=1326 audit(1760030775.072:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13301 comm="syz.2.3468" exe="/root/syz-executor" sig=0 arch=40000003 syscall=249 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 736.040493][ T30] audit: type=1326 audit(1760030775.072:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13301 comm="syz.2.3468" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 736.191486][T11353] usb 1-1: USB disconnect, device number 13 [ 736.920918][ T5853] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 736.928878][ T5853] ath9k_htc: Failed to initialize the device [ 737.001458][T11353] usb 1-1: ath9k_htc: USB layer deinitialized [ 737.344754][T13317] loop1: detected capacity change from 0 to 512 [ 737.491773][T13317] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.3474: casefold flag without casefold feature [ 737.521303][T13317] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.3474: couldn't read orphan inode 15 (err -117) [ 737.645856][T13317] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 737.939729][T13325] loop4: detected capacity change from 0 to 256 [ 738.059367][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 738.091120][T13325] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d) [ 738.230493][T13325] exFAT-fs (loop4): start_clu is invalid cluster(0xffffffff) [ 739.198475][T13344] rtc_cmos 00:00: Alarms can be up to one day in the future [ 739.274945][T13342] loop1: detected capacity change from 0 to 1024 [ 739.412453][T13342] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 739.970829][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 740.285497][T13360] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3496'. [ 741.464583][T13380] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3504'. [ 742.184059][T13390] program syz.4.3510 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 742.506075][T13394] loop1: detected capacity change from 0 to 256 [ 742.579973][T13394] exfat: Deprecated parameter 'namecase' [ 742.587375][T13394] exfat: Deprecated parameter 'utf8' [ 742.698710][T13394] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 742.882430][T13394] fuse: Bad value for 'fd' [ 743.305514][T13405] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3517'. [ 743.675414][T13411] loop1: detected capacity change from 0 to 512 [ 743.822320][T13411] EXT4-fs warning (device loop1): ext4_xattr_inode_get:560: inode #11: comm syz.1.3519: EA inode hash validation failed [ 743.836501][T13411] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #15: comm syz.1.3519: corrupted inode contents [ 743.909120][T13411] EXT4-fs error (device loop1): ext4_dirty_inode:6509: inode #15: comm syz.1.3519: mark_inode_dirty error [ 744.003525][T13411] EXT4-fs error (device loop1): ext4_do_update_inode:5624: inode #15: comm syz.1.3519: corrupted inode contents [ 744.091028][T13411] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2996: inode #15: comm syz.1.3519: mark_inode_dirty error [ 744.124511][T13411] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2999: inode #15: comm syz.1.3519: mark inode dirty (error -117) [ 744.159281][T13411] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117) [ 744.172149][T13411] EXT4-fs (loop1): 1 orphan inode deleted [ 744.181166][T13411] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 744.315843][T13422] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3526'. [ 744.330311][T13420] binder: 13419:13420 ioctl c018620b 0 returned -14 [ 744.356329][T13422] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap2 [ 744.376718][T13422] gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue [ 744.385001][T13422] gretap2: entered promiscuous mode [ 744.390379][T13422] gretap2: entered allmulticast mode [ 744.656109][ T30] audit: type=1326 audit(1760030783.952:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.3523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 744.662967][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 744.681232][ T30] audit: type=1326 audit(1760030783.952:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.3523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 744.728604][T13426] loop2: detected capacity change from 0 to 764 [ 744.797028][ T30] audit: type=1326 audit(1760030784.032:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.3523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 744.821995][ T30] audit: type=1326 audit(1760030784.032:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.3523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 744.845248][ T30] audit: type=1326 audit(1760030784.032:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13423 comm="syz.3.3523" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 744.898267][T13428] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3527'. [ 745.296671][T13432] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3529'. [ 746.544910][T13453] ieee802154 phy0 wpan0: encryption failed: -22 [ 747.578545][T13468] loop4: detected capacity change from 0 to 256 [ 747.877901][T13468] FAT-fs (loop4): Directory bread(block 64) failed [ 747.884813][T13468] FAT-fs (loop4): Directory bread(block 65) failed [ 747.891940][T13468] FAT-fs (loop4): Directory bread(block 66) failed [ 747.898954][T13468] FAT-fs (loop4): Directory bread(block 67) failed [ 747.906102][T13468] FAT-fs (loop4): Directory bread(block 68) failed [ 747.913009][T13468] FAT-fs (loop4): Directory bread(block 69) failed [ 747.920274][T13468] FAT-fs (loop4): Directory bread(block 70) failed [ 747.927177][T13468] FAT-fs (loop4): Directory bread(block 71) failed [ 747.934181][T13468] FAT-fs (loop4): Directory bread(block 72) failed [ 747.940898][T13468] FAT-fs (loop4): Directory bread(block 73) failed [ 748.149838][ T30] audit: type=1800 audit(1760030787.452:105): pid=13468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3546" name="file1" dev="loop4" ino=1048660 res=0 errno=0 [ 748.341452][T13479] loop1: detected capacity change from 0 to 512 [ 748.353692][T13479] EXT4-fs: Ignoring removed bh option [ 748.391638][T13479] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 748.476633][T13479] EXT4-fs (loop1): 1 truncate cleaned up [ 748.485383][T13479] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 748.967417][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 749.391758][T13493] loop4: detected capacity change from 0 to 512 [ 749.471155][T13493] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 749.549466][T13493] EXT4-fs (loop4): 1 truncate cleaned up [ 749.557995][T13493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 749.774718][T13493] EXT4-fs error (device loop4): ext4_get_verity_descriptor_location:298: inode #15: comm syz.4.3556: verity file has no extents [ 749.834733][T13493] EXT4-fs (loop4): Remounting filesystem read-only [ 749.841664][T13493] fs-verity (loop4, inode 15): Error -117 getting verity descriptor size [ 750.356542][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 750.471516][T13505] loop3: detected capacity change from 0 to 1024 [ 751.399418][T13517] loop2: detected capacity change from 0 to 512 [ 751.586120][T13517] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 751.599580][T13517] ext4 filesystem being mounted at /693/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 751.831622][T13517] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.3568: corrupted xattr block 19: overlapping e_value [ 751.909075][T13517] EXT4-fs (loop2): Remounting filesystem read-only [ 752.176951][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 752.228185][T13533] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3574'. [ 752.752672][T13539] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3577'. [ 753.399754][T13547] loop4: detected capacity change from 0 to 512 [ 753.489341][T13547] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 753.854054][T11353] usb 2-1: new full-speed USB device number 10 using dummy_hcd [ 753.886440][T13547] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 753.900043][T13547] FAT-fs (loop4): Filesystem has been set read-only [ 753.943679][T13547] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548) [ 753.983395][T13547] FAT-fs (loop4): error, fat_free: invalid cluster chain (i_pos 548) [ 754.082347][T11353] usb 2-1: config 0 has an invalid interface number: 203 but max is 0 [ 754.091084][T11353] usb 2-1: config 0 has no interface number 0 [ 754.188000][T11353] usb 2-1: New USB device found, idVendor=110a, idProduct=1653, bcdDevice=4b.66 [ 754.197682][T11353] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 754.209542][T11353] usb 2-1: Product: syz [ 754.214837][T11353] usb 2-1: Manufacturer: syz [ 754.219617][T11353] usb 2-1: SerialNumber: syz [ 754.288025][T11353] usb 2-1: config 0 descriptor?? [ 754.770184][T11353] mxuport 2-1:0.203: mxuport_recv_ctrl_urb - usb_control_msg failed (-71) [ 754.780252][T11353] mxuport 2-1:0.203: probe with driver mxuport failed with error -5 [ 754.915167][T11353] usb 2-1: USB disconnect, device number 10 [ 755.913237][T13583] loop1: detected capacity change from 0 to 16 [ 756.212538][T13583] erofs (device loop1): mounted with root inode @ nid 36. [ 756.278732][T13575] loop3: detected capacity change from 0 to 4096 [ 756.307943][T13575] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 756.444609][T13575] ntfs3(loop3): ino=19, mi_enum_attr [ 756.450353][T13575] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 761.395415][T13658] loop3: detected capacity change from 0 to 256 [ 762.144262][T13666] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3640'. [ 762.308333][T13668] loop3: detected capacity change from 0 to 256 [ 762.359168][T13668] exfat: Deprecated parameter 'namecase' [ 762.365806][T13668] exfat: Deprecated parameter 'namecase' [ 762.371968][T13668] exfat: Deprecated parameter 'namecase' [ 762.452289][T13668] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 762.511495][T13672] loop2: detected capacity change from 0 to 64 [ 762.660136][T13668] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 763.490558][T13684] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3648'. [ 763.814335][ T3916] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 764.169935][ T3916] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 764.350601][ T3916] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 764.560747][ T3916] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 764.846910][ T3916] bridge_slave_1: left allmulticast mode [ 764.857463][ T3916] bridge_slave_1: left promiscuous mode [ 764.864244][ T3916] bridge0: port 2(bridge_slave_1) entered disabled state [ 764.896247][ T3916] bridge_slave_0: left allmulticast mode [ 764.902116][ T3916] bridge_slave_0: left promiscuous mode [ 764.909545][ T3916] bridge0: port 1(bridge_slave_0) entered disabled state [ 765.466187][ T3916] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 765.507175][ T3916] bond_slave_0: left promiscuous mode [ 765.518643][ T3916] bond0 (unregistering): Released all slaves [ 765.663351][T13696] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 766.827546][T13712] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 766.835562][ T3916] hsr_slave_0: left promiscuous mode [ 766.858072][T13712] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 766.873118][ T3916] hsr_slave_1: left promiscuous mode [ 766.881128][ T3916] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 766.888902][ T3916] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 766.900457][T13712] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 766.976717][ T3916] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 766.984699][ T3916] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 767.008518][T13712] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 767.020423][ T3916] veth1_macvtap: left promiscuous mode [ 767.026416][ T3916] veth0_macvtap: left promiscuous mode [ 767.032269][ T3916] veth1_vlan: left promiscuous mode [ 767.038571][ T3916] veth0_vlan: left promiscuous mode [ 767.050700][T13712] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 767.353502][ T30] audit: type=1326 audit(1760030806.652:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13716 comm="syz.0.3664" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 767.378541][ T30] audit: type=1326 audit(1760030806.652:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13716 comm="syz.0.3664" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 767.401341][ T30] audit: type=1326 audit(1760030806.672:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13716 comm="syz.0.3664" exe="/root/syz-executor" sig=0 arch=40000003 syscall=231 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 767.425456][ T30] audit: type=1326 audit(1760030806.672:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13716 comm="syz.0.3664" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70bd539 code=0x7ffc0000 [ 767.744431][T13725] xt_NFQUEUE: number of queues (65349) out of range (got 65604) [ 768.925662][ T3916] team_slave_1 (unregistering): left promiscuous mode [ 769.059280][ T3916] team0 (unregistering): Port device team_slave_1 removed [ 769.094959][T13744] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3673'. [ 769.126817][ T3916] team_slave_0 (unregistering): left promiscuous mode [ 769.143972][T13712] Bluetooth: hci3: command tx timeout [ 769.203451][ T3916] team0 (unregistering): Port device team_slave_0 removed [ 770.369819][T13759] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3679'. [ 770.566499][ T3916] IPVS: stop unused estimator thread 0... [ 770.723311][T13764] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3680'. [ 771.228618][T13712] Bluetooth: hci3: command tx timeout [ 771.474034][T13710] chnl_net:caif_netlink_parms(): no params data found [ 772.378980][ T5858] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 772.613039][ T5858] usb 1-1: Using ep0 maxpacket: 32 [ 772.641799][ T5858] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 772.650725][ T5858] usb 1-1: config 0 has no interface number 0 [ 772.657265][ T5858] usb 1-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 772.667559][ T5858] usb 1-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 772.797061][ T5858] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 772.806466][ T5858] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 772.814927][ T5858] usb 1-1: Product: syz [ 772.819279][ T5858] usb 1-1: Manufacturer: syz [ 772.824260][ T5858] usb 1-1: SerialNumber: syz [ 772.926242][ T5858] usb 1-1: config 0 descriptor?? [ 773.000970][ T5858] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 773.190626][ T5858] usb 1-1: qt2_setup_urbs - submit read urb failed -90 [ 773.203572][ T5858] quatech2 1-1:0.51: probe with driver quatech2 failed with error -90 [ 773.258612][T13710] bridge0: port 1(bridge_slave_0) entered blocking state [ 773.266551][T13710] bridge0: port 1(bridge_slave_0) entered disabled state [ 773.274575][T13710] bridge_slave_0: entered allmulticast mode [ 773.284278][T13710] bridge_slave_0: entered promiscuous mode [ 773.323562][T13712] Bluetooth: hci3: command tx timeout [ 773.404448][ T24] usb 1-1: USB disconnect, device number 14 [ 773.414723][T13710] bridge0: port 2(bridge_slave_1) entered blocking state [ 773.422447][T13710] bridge0: port 2(bridge_slave_1) entered disabled state [ 773.430338][T13710] bridge_slave_1: entered allmulticast mode [ 773.442134][T13710] bridge_slave_1: entered promiscuous mode [ 773.764101][T13710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 773.833174][T13710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 774.237602][T13710] team0: Port device team_slave_0 added [ 774.344219][T13710] team0: Port device team_slave_1 added [ 774.357068][T13816] cgroup: Unexpected value for 'cpuset_v2_mode' [ 774.650900][T13710] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 774.658519][T13710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 774.688346][T13710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 774.879117][T13710] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 774.889781][T13710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 774.916709][T13710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 775.402430][T13712] Bluetooth: hci3: command tx timeout [ 775.480241][T13710] hsr_slave_0: entered promiscuous mode [ 775.490733][T13710] hsr_slave_1: entered promiscuous mode [ 775.503978][T13710] debugfs: 'hsr0' already exists in 'hsr' [ 775.509894][T13710] Cannot create hsr debugfs directory [ 777.198120][T13710] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 777.303579][T13710] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 777.400730][T13710] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 777.545621][T13710] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 778.249858][T13871] @’: renamed from veth0_vlan (while UP) [ 778.680052][T13710] 8021q: adding VLAN 0 to HW filter on device bond0 [ 778.847764][T13710] 8021q: adding VLAN 0 to HW filter on device team0 [ 778.947698][ T3916] bridge0: port 1(bridge_slave_0) entered blocking state [ 778.955362][ T3916] bridge0: port 1(bridge_slave_0) entered forwarding state [ 779.078078][ T3916] bridge0: port 2(bridge_slave_1) entered blocking state [ 779.085693][ T3916] bridge0: port 2(bridge_slave_1) entered forwarding state [ 779.400952][T13882] loop2: detected capacity change from 0 to 1764 [ 780.382627][T13901] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3729'. [ 780.975268][T13905] gre0: entered promiscuous mode [ 781.353499][T13710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 781.750921][T13916] netlink: 'syz.1.3734': attribute type 3 has an invalid length. [ 782.072968][T13923] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3737'. [ 782.612685][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 782.621956][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 782.861966][T13936] loop2: detected capacity change from 0 to 512 [ 782.987624][T13936] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 783.139865][T13936] EXT4-fs (loop2): 1 orphan inode deleted [ 783.146418][T13936] EXT4-fs (loop2): 1 truncate cleaned up [ 783.154616][T13936] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 783.598784][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 783.993540][T13710] veth0_vlan: entered promiscuous mode [ 784.110491][T13710] veth1_vlan: entered promiscuous mode [ 784.430057][T13710] veth0_macvtap: entered promiscuous mode [ 784.515739][T13710] veth1_macvtap: entered promiscuous mode [ 784.580062][T13959] loop2: detected capacity change from 0 to 2048 [ 784.811201][T13710] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 784.959936][T13710] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 785.276869][ T3916] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 785.364483][ T3916] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 785.428601][ T3916] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 785.508478][ T3916] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 786.463938][T13987] netlink: 'syz.0.3757': attribute type 30 has an invalid length. [ 789.671508][T14037] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3773'. [ 789.708105][T14041] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3774'. [ 789.717720][T14041] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3774'. [ 789.783800][T14042] loop4: detected capacity change from 0 to 512 [ 789.915273][T14042] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #15: comm syz.4.3775: casefold flag without casefold feature [ 790.034386][T14042] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.3775: couldn't read orphan inode 15 (err -117) [ 790.115098][T14042] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 790.419272][T14051] netlink: 'syz.0.3778': attribute type 1 has an invalid length. [ 790.445723][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 790.940108][T14057] loop2: detected capacity change from 0 to 1024 [ 791.491460][ T3738] hfsplus: b-tree write err: -5, ino 4 [ 791.549403][T14067] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3784'. [ 791.587959][T14067] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 792.478194][ T3738] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 792.486402][ T3738] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 792.820604][ T3916] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 792.831466][ T3916] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 793.703867][T14095] netlink: 'syz.1.3796': attribute type 21 has an invalid length. [ 794.310490][T14105] loop4: detected capacity change from 0 to 64 [ 795.511570][T14126] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3810'. [ 795.521047][T14126] netlink: 32 bytes leftover after parsing attributes in process `syz.1.3810'. [ 795.814507][T14128] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3811'. [ 795.823809][T14128] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3811'. [ 796.735674][T14143] netlink: 84 bytes leftover after parsing attributes in process `syz.0.3817'. [ 797.668701][T14157] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3824'. [ 797.868318][T14161] program syz.2.3826 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 798.262618][T14166] loop1: detected capacity change from 0 to 512 [ 798.351809][T14166] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 798.361263][T14166] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 798.479616][T14166] EXT4-fs (loop1): warning: mounting unchecked fs, running e2fsck is recommended [ 798.533109][T14166] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 798.633889][T14166] System zones: 0-2, 18-18, 34-35 [ 798.715363][T14166] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 799.240863][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 802.071528][T14222] loop1: detected capacity change from 0 to 2048 [ 802.203260][T14222] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 802.323694][T14222] syz.1.3849: attempt to access beyond end of device [ 802.323694][T14222] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 802.354521][T14230] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 802.483990][T14222] syz.1.3849: attempt to access beyond end of device [ 802.483990][T14222] loop1: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 802.498362][T14222] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=0) [ 804.002341][T14254] bond0: option xmit_hash_policy: invalid value (14) [ 804.114188][T14249] loop1: detected capacity change from 0 to 4096 [ 804.153341][T14249] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 804.584305][T14249] ntfs3(loop1): ino=19, mi_enum_attr [ 804.592958][T14249] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 804.757456][T14249] ntfs3(loop1): ino=5, "/" ntfs_readdir [ 807.514020][ T5858] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 807.711872][ T5858] usb 1-1: Using ep0 maxpacket: 8 [ 807.744500][ T5858] usb 1-1: unable to get BOS descriptor or descriptor too short [ 807.796461][ T5858] usb 1-1: config 0 has no interfaces? [ 807.839966][ T5858] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 807.849710][ T5858] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 807.860768][ T5858] usb 1-1: Product: syz [ 807.860874][ T5858] usb 1-1: Manufacturer: syz [ 807.860978][ T5858] usb 1-1: SerialNumber: syz [ 807.871557][T11353] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 807.976271][ T5858] usb 1-1: config 0 descriptor?? [ 808.033127][T11353] usb 3-1: Using ep0 maxpacket: 32 [ 808.071172][T11353] usb 3-1: config 0 has an invalid interface number: 146 but max is 0 [ 808.079963][T11353] usb 3-1: config 0 has no interface number 0 [ 808.087628][T11353] usb 3-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 808.098867][T11353] usb 3-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 808.110965][T11353] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024 [ 808.122845][T11353] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 808.133401][T11353] usb 3-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82 [ 808.145506][T11353] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 808.155748][T11353] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 808.168548][T11353] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1 [ 808.179278][T11353] usb 3-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 808.259465][ T5858] usb 1-1: USB disconnect, device number 15 [ 808.372661][T11353] usb 3-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95 [ 808.382488][T11353] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 808.390982][T11353] usb 3-1: Product: syz [ 808.395450][T11353] usb 3-1: Manufacturer: syz [ 808.400220][T11353] usb 3-1: SerialNumber: syz [ 808.445678][T11353] usb 3-1: config 0 descriptor?? [ 808.454674][T14311] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 808.465716][T14311] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 808.489217][T11353] microtek usb (rev 0.4.3): will this work? Response EP is not usually 3 [ 808.497956][T11353] microtek usb (rev 0.4.3): will this work? Image data EP is not usually 2 [ 808.552511][T11353] scsi host1: microtekX6 [ 808.803572][T14326] loop5: detected capacity change from 0 to 64 [ 808.915448][T11353] usb 3-1: USB disconnect, device number 11 [ 809.735175][T14329] loop4: detected capacity change from 0 to 4096 [ 810.199106][T14341] netlink: 'syz.2.3892': attribute type 1 has an invalid length. [ 810.207268][T14341] netlink: 'syz.2.3892': attribute type 101 has an invalid length. [ 810.219632][T14341] netlink: 564 bytes leftover after parsing attributes in process `syz.2.3892'. [ 810.594687][T14345] qrtr: Invalid version 0 [ 812.802260][T14375] loop2: detected capacity change from 0 to 1764 [ 812.973643][T14375] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 813.102088][T14384] loop1: detected capacity change from 0 to 256 [ 813.568048][T14384] FAT-fs (loop1): Directory bread(block 64) failed [ 813.575270][T14384] FAT-fs (loop1): Directory bread(block 65) failed [ 813.582142][T14384] FAT-fs (loop1): Directory bread(block 66) failed [ 813.589199][T14384] FAT-fs (loop1): Directory bread(block 67) failed [ 813.599371][T14384] FAT-fs (loop1): Directory bread(block 68) failed [ 813.606821][T14384] FAT-fs (loop1): Directory bread(block 69) failed [ 813.613925][T14384] FAT-fs (loop1): Directory bread(block 70) failed [ 813.620628][T14384] FAT-fs (loop1): Directory bread(block 71) failed [ 813.627670][T14384] FAT-fs (loop1): Directory bread(block 72) failed [ 813.634591][T14384] FAT-fs (loop1): Directory bread(block 73) failed [ 814.055825][ T30] audit: type=1400 audit(1760030853.362:110): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A273A02 pid=14393 comm="syz.4.3914" [ 815.870328][T14418] loop4: detected capacity change from 0 to 2048 [ 816.043352][T14418] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 817.069557][T14440] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3931'. [ 817.134010][T14441] rtc_cmos 00:00: Alarms can be up to one day in the future [ 817.702312][ T30] audit: type=1326 audit(1760030857.012:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14446 comm="syz.4.3937" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 817.814473][ T30] audit: type=1326 audit(1760030857.052:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14446 comm="syz.4.3937" exe="/root/syz-executor" sig=0 arch=40000003 syscall=184 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 817.837301][ T30] audit: type=1326 audit(1760030857.052:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14446 comm="syz.4.3937" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 819.048304][T14470] loop1: detected capacity change from 0 to 256 [ 819.450747][T14470] FAT-fs (loop1): Directory bread(block 64) failed [ 819.458547][T14470] FAT-fs (loop1): Directory bread(block 65) failed [ 819.466389][T14470] FAT-fs (loop1): Directory bread(block 66) failed [ 819.473348][T14470] FAT-fs (loop1): Directory bread(block 67) failed [ 819.480219][T14470] FAT-fs (loop1): Directory bread(block 68) failed [ 819.487071][T14470] FAT-fs (loop1): Directory bread(block 69) failed [ 819.494087][T14470] FAT-fs (loop1): Directory bread(block 70) failed [ 819.500802][T14470] FAT-fs (loop1): Directory bread(block 71) failed [ 819.507898][T14470] FAT-fs (loop1): Directory bread(block 72) failed [ 819.514758][T14470] FAT-fs (loop1): Directory bread(block 73) failed [ 820.617489][T14487] netlink: 188 bytes leftover after parsing attributes in process `syz.1.3957'. [ 820.942025][T14493] netlink: 24 bytes leftover after parsing attributes in process `syz.5.3960'. [ 822.069837][T14511] netlink: 32 bytes leftover after parsing attributes in process `syz.5.3969'. [ 822.564392][T14515] loop1: detected capacity change from 0 to 512 [ 822.666876][T14515] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 822.680662][T14515] ext4 filesystem being mounted at /790/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 822.923740][T14515] EXT4-fs error (device loop1): ext4_empty_dir:3086: inode #12: block 32: comm syz.1.3971: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=12, rec_len=106, size=2048 fake=1 [ 822.981373][T14515] EXT4-fs warning (device loop1): ext4_empty_dir:3089: inode #12: comm syz.1.3971: directory missing '.' [ 823.341988][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 823.735311][T14536] netlink: 60 bytes leftover after parsing attributes in process `syz.0.3978'. [ 825.111301][T14556] loop1: detected capacity change from 0 to 256 [ 825.137244][T14556] exfat: Deprecated parameter 'utf8' [ 825.251372][T14559] IPv6: addrconf: prefix option has invalid lifetime [ 825.272196][T14556] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 825.383685][T14556] exFAT-fs (loop1): error, in sector 160, dentry 12 should be unused, but 0x85 [ 826.230091][T14571] loop1: detected capacity change from 0 to 128 [ 826.357647][T14571] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 826.453339][T14571] hpfs: filesystem error: improperly stopped [ 826.459593][T14571] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 826.467935][T14571] hpfs: You really don't want any checks? You are crazy... [ 826.558102][T14571] hpfs: hpfs_map_sector(): read error [ 826.563856][T14571] hpfs: code page support is disabled [ 826.593733][T14571] hpfs: hpfs_map_4sectors(): unaligned read [ 826.649399][T14571] hpfs: hpfs_map_4sectors(): unaligned read [ 826.655754][T14571] hpfs: filesystem error: unable to find root dir [ 827.084894][T14583] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4003'. [ 827.179774][T14585] loop4: detected capacity change from 0 to 512 [ 827.189966][T14585] EXT4-fs: Ignoring removed nomblk_io_submit option [ 827.226182][T14585] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 827.234496][T14585] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c000e128, mo2=0002] [ 827.399425][T14585] EXT4-fs (loop4): orphan cleanup on readonly fs [ 827.407401][T14585] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=0 [ 827.420479][T14585] EXT4-fs warning (device loop4): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 827.436276][T14585] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 827.556500][T14585] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.4005: bg 0: block 40: padding at end of block bitmap is not set [ 827.666405][T14585] EXT4-fs (loop4): Remounting filesystem read-only [ 827.673523][T14585] EXT4-fs (loop4): 1 truncate cleaned up [ 827.681290][T14585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 828.175480][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 829.285488][T14617] loop1: detected capacity change from 0 to 64 [ 829.393901][T14617] hfs: unable to locate alternate MDB [ 829.399605][T14617] hfs: continuing without an alternate MDB [ 829.632914][T14622] overlayfs: unescaped trailing colons in lowerdir mount option. [ 829.926088][T14620] loop4: detected capacity change from 0 to 4096 [ 830.003540][T14620] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 830.298702][T14620] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 830.884560][T14636] ./file0: Can't lookup blockdev [ 830.974851][T11353] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 831.203794][T11353] usb 1-1: Using ep0 maxpacket: 32 [ 831.223280][ T5858] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 831.252276][T11353] usb 1-1: config 0 has an invalid interface number: 166 but max is 0 [ 831.260842][T11353] usb 1-1: config 0 has no interface number 0 [ 831.267362][T11353] usb 1-1: config 0 interface 166 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 831.344407][T11353] usb 1-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a [ 831.353944][T11353] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 831.362152][T11353] usb 1-1: Product: syz [ 831.366809][T11353] usb 1-1: Manufacturer: syz [ 831.371594][T11353] usb 1-1: SerialNumber: syz [ 831.453240][ T5858] usb 3-1: Using ep0 maxpacket: 16 [ 831.487189][ T5858] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 831.526583][T11353] usb 1-1: config 0 descriptor?? [ 831.534978][T14632] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 831.573054][ T5858] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 831.582499][ T5858] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 831.591455][ T5858] usb 3-1: Product: syz [ 831.596085][ T5858] usb 3-1: Manufacturer: syz [ 831.600994][ T5858] usb 3-1: SerialNumber: syz [ 831.643798][T14644] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4033'. [ 831.654090][T14644] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 831.700475][ T5858] usb 3-1: config 0 descriptor?? [ 831.734670][ T5858] hub 3-1:0.0: bad descriptor, ignoring hub [ 831.740987][ T5858] hub 3-1:0.0: probe with driver hub failed with error -5 [ 831.764085][ T5858] input: syz syz as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input14 [ 831.822946][T14632] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 831.931883][T11353] net1080 1-1:0.166 usb0: register 'net1080' at usb-dummy_hcd.0-1, NetChip TurboCONNECT, ea:38:93:01:6f:df [ 832.118211][ T5853] usb 1-1: USB disconnect, device number 16 [ 832.130904][ T5853] net1080 1-1:0.166 usb0: unregister 'net1080' usb-dummy_hcd.0-1, NetChip TurboCONNECT [ 832.221877][T14648] netlink: 72 bytes leftover after parsing attributes in process `syz.1.4035'. [ 832.235558][T14648] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4035'. [ 832.246890][T14648] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4035'. [ 832.263982][ T24] usb 3-1: USB disconnect, device number 12 [ 832.452411][T14650] loop5: detected capacity change from 0 to 22 [ 832.547124][T14650] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 833.060586][T14654] sctp: [Deprecated]: syz.1.4038 (pid 14654) Use of int in maxseg socket option. [ 833.060586][T14654] Use struct sctp_assoc_value instead [ 835.210652][T14686] loop5: detected capacity change from 0 to 1024 [ 835.385820][T14686] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 835.628136][T14686] EXT4-fs error (device loop5): ext4_generic_delete_entry:2668: inode #2: block 16: comm syz.5.4054: bad entry in directory: inode out of bounds - offset=12, inode=1282, rec_len=12, size=1024 fake=1 [ 835.715330][T14686] EXT4-fs error (device loop5) in ext4_delete_entry:2739: Corrupt filesystem [ 835.786073][T14686] EXT4-fs warning (device loop5): ext4_rename_delete:3731: inode #2: comm syz.5.4054: Deleting old file: nlink 4, error=-117 [ 836.215716][T13710] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 836.803932][T14713] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4065'. [ 837.399427][T14714] loop2: detected capacity change from 0 to 4096 [ 837.470324][T14714] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 837.714213][T14714] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 838.544755][T14730] loop4: detected capacity change from 0 to 4096 [ 838.633047][T14730] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 839.059042][T14730] ntfs3(loop4): ino=19, mi_enum_attr [ 839.064805][T14730] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 839.409810][T14748] comedi comedi3: aio_iiro_16: a I/O base address must be specified [ 840.313049][ T5853] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 840.533154][ T5853] usb 6-1: Using ep0 maxpacket: 32 [ 840.565294][ T5853] usb 6-1: config 0 has an invalid interface number: 166 but max is 0 [ 840.574082][ T5853] usb 6-1: config 0 has no interface number 0 [ 840.583301][ T5853] usb 6-1: config 0 interface 166 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 840.685162][ T5853] usb 6-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a [ 840.695775][ T5853] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 840.704187][ T5853] usb 6-1: Product: syz [ 840.708522][ T5853] usb 6-1: Manufacturer: syz [ 840.713455][ T5853] usb 6-1: SerialNumber: syz [ 840.795665][ T5853] usb 6-1: config 0 descriptor?? [ 840.804070][T14757] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 841.086526][T14757] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 841.147264][ T5853] net1080 6-1:0.166 usb0: register 'net1080' at usb-dummy_hcd.5-1, NetChip TurboCONNECT, 46:6d:e1:1d:58:55 [ 841.337506][ T5858] usb 6-1: USB disconnect, device number 2 [ 841.348871][ T5858] net1080 6-1:0.166 usb0: unregister 'net1080' usb-dummy_hcd.5-1, NetChip TurboCONNECT [ 841.793713][T14779] netlink: 44 bytes leftover after parsing attributes in process `syz.0.4096'. [ 842.384550][T14785] netlink: 'syz.2.4100': attribute type 1 has an invalid length. [ 842.392617][T14785] netlink: 10916 bytes leftover after parsing attributes in process `syz.2.4100'. [ 842.402471][T14785] nbd: couldn't find device at index 53 [ 842.693029][ T30] audit: type=1326 audit(1760030881.982:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.5.4102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 842.815022][ T30] audit: type=1326 audit(1760030882.072:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.5.4102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 842.838152][ T30] audit: type=1326 audit(1760030882.072:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.5.4102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=132 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 842.860649][ T30] audit: type=1326 audit(1760030882.072:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.5.4102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 842.885537][ T30] audit: type=1326 audit(1760030882.082:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14790 comm="syz.5.4102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 842.961295][T14793] Non-string source [ 843.376292][T14800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4106'. [ 843.387781][T14800] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4106'. [ 843.400831][T14800] netlink: 20 bytes leftover after parsing attributes in process `syz.4.4106'. [ 843.934466][T14807] xt_CT: You must specify a L4 protocol and not use inversions on it [ 844.060727][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 844.067773][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 844.464168][ T5853] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 844.643805][ T5853] usb 5-1: Using ep0 maxpacket: 32 [ 844.688693][ T5853] usb 5-1: config 0 has an invalid interface number: 166 but max is 0 [ 844.697528][ T5853] usb 5-1: config 0 has no interface number 0 [ 844.704123][ T5853] usb 5-1: config 0 interface 166 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 844.838863][ T5853] usb 5-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a [ 844.848519][ T5853] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 844.856985][ T5853] usb 5-1: Product: syz [ 844.861320][ T5853] usb 5-1: Manufacturer: syz [ 844.866278][ T5853] usb 5-1: SerialNumber: syz [ 844.995692][ T5853] usb 5-1: config 0 descriptor?? [ 845.004753][T14811] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 845.290904][T14811] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 845.395261][ T5853] net1080 5-1:0.166 usb0: register 'net1080' at usb-dummy_hcd.4-1, NetChip TurboCONNECT, ea:0e:61:c9:38:ec [ 845.589643][ T5853] usb 5-1: USB disconnect, device number 9 [ 845.598718][ T5853] net1080 5-1:0.166 usb0: unregister 'net1080' usb-dummy_hcd.4-1, NetChip TurboCONNECT [ 848.134774][T14868] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4140'. [ 848.248026][ T5853] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 848.443631][ T5853] usb 3-1: Using ep0 maxpacket: 32 [ 848.487967][ T5853] usb 3-1: config 0 has an invalid interface number: 166 but max is 0 [ 848.496850][ T5853] usb 3-1: config 0 has no interface number 0 [ 848.506068][ T5853] usb 3-1: config 0 interface 166 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 848.546207][ T5853] usb 3-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a [ 848.557012][ T5853] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 848.566344][ T5853] usb 3-1: Product: syz [ 848.570685][ T5853] usb 3-1: Manufacturer: syz [ 848.575672][ T5853] usb 3-1: SerialNumber: syz [ 848.586918][ T5853] usb 3-1: config 0 descriptor?? [ 848.595992][T14865] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 848.882602][T14865] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 848.918111][T14880] loop1: detected capacity change from 0 to 512 [ 848.957089][ T5853] net1080 3-1:0.166 usb0: register 'net1080' at usb-dummy_hcd.2-1, NetChip TurboCONNECT, 7e:7b:84:ed:82:b8 [ 849.037895][T14880] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 849.157218][T14880] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 849.166461][T14880] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 849.195012][T14880] System zones: 0-1, 15-15, 18-18, 34-34 [ 849.202014][T14880] EXT4-fs (loop1): orphan cleanup on readonly fs [ 849.212152][T14880] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 849.221882][T14880] EXT4-fs warning (device loop1): ext4_enable_quotas:7180: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 849.240102][T14880] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 849.284423][ T5858] usb 3-1: USB disconnect, device number 13 [ 849.293153][ T5858] net1080 3-1:0.166 usb0: unregister 'net1080' usb-dummy_hcd.2-1, NetChip TurboCONNECT [ 849.309783][T14880] EXT4-fs (loop1): 1 truncate cleaned up [ 849.318233][T14880] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 849.423504][T14880] fscrypt (loop1, inode 16): Error -61 getting encryption context [ 849.711540][ T5803] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 850.725774][T14900] xt_CT: You must specify a L4 protocol and not use inversions on it [ 851.609701][T14910] loop4: detected capacity change from 0 to 2048 [ 851.673114][T14916] qnx6: unable to read the first superblock [ 851.679657][T14916] qnx6: unable to read the first superblock [ 851.689459][T14916] qnx6: unable to read the first superblock [ 851.750394][T14910] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 852.695130][T14928] loop4: detected capacity change from 0 to 256 [ 853.054156][T14928] FAT-fs (loop4): Directory bread(block 64) failed [ 853.060928][T14928] FAT-fs (loop4): Directory bread(block 65) failed [ 853.068041][T14928] FAT-fs (loop4): Directory bread(block 66) failed [ 853.075194][T14928] FAT-fs (loop4): Directory bread(block 67) failed [ 853.082053][T14928] FAT-fs (loop4): Directory bread(block 68) failed [ 853.088897][T14928] FAT-fs (loop4): Directory bread(block 69) failed [ 853.095920][T14928] FAT-fs (loop4): Directory bread(block 70) failed [ 853.102609][T14928] FAT-fs (loop4): Directory bread(block 71) failed [ 853.109671][T14928] FAT-fs (loop4): Directory bread(block 72) failed [ 853.116606][T14928] FAT-fs (loop4): Directory bread(block 73) failed [ 853.295443][ T30] audit: type=1326 audit(1760030892.592:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14932 comm="syz.5.4171" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 853.404896][ T30] audit: type=1326 audit(1760030892.662:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14932 comm="syz.5.4171" exe="/root/syz-executor" sig=0 arch=40000003 syscall=428 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 853.429792][ T30] audit: type=1326 audit(1760030892.662:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14932 comm="syz.5.4171" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ed539 code=0x7ffc0000 [ 853.984198][T14939] x_tables: duplicate underflow at hook 2 [ 854.867502][T14952] vxcan2: entered promiscuous mode [ 854.873013][T14952] vxcan2: entered allmulticast mode [ 855.031808][T14952] vxcan3: entered promiscuous mode [ 855.037369][T14952] vxcan3: entered allmulticast mode [ 856.174623][T14962] loop2: detected capacity change from 0 to 4096 [ 856.267450][T14962] ntfs3(loop2): ino=3, Correct links count -> 2. [ 857.253831][T14978] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4193'. [ 857.394634][T14980] loop4: detected capacity change from 0 to 512 [ 857.519739][T14980] EXT4-fs error (device loop4): ext4_map_blocks:778: inode #2: block 3: comm syz.4.4194: lblock 0 mapped to illegal pblock 3 (length 1) [ 857.660125][T14980] EXT4-fs (loop4): Remounting filesystem read-only [ 857.667190][T14980] EXT4-fs warning (device loop4): dx_probe:791: inode #2: lblock 0: comm syz.4.4194: error -117 reading directory block [ 857.763332][T14980] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 857.774155][T14980] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 858.002552][T14991] loop1: detected capacity change from 0 to 256 [ 858.104789][T14992] [U] ^C [ 858.215460][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 859.165276][T15005] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4206'. [ 859.174944][T15005] netlink: 104 bytes leftover after parsing attributes in process `syz.2.4206'. [ 859.930500][T15015] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4211'. [ 860.004175][T15017] netlink: 'syz.5.4212': attribute type 5 has an invalid length. [ 861.963494][T15048] QAT: failed to copy from user cfg_data. [ 862.526203][ T5853] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 862.578359][ T30] audit: type=1326 audit(1760030901.882:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 862.579589][T15060] loop1: detected capacity change from 0 to 8 [ 862.601208][ T30] audit: type=1326 audit(1760030901.882:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 862.679633][ T30] audit: type=1326 audit(1760030901.992:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 862.690414][ T5974] udevd[5974]: incorrect cramfs checksum on /dev/loop1 [ 862.702399][ T30] audit: type=1326 audit(1760030901.992:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 862.732061][ T30] audit: type=1326 audit(1760030901.992:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15056 comm="syz.2.4233" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 862.823059][T15060] cramfs: Error -3 while decompressing! [ 862.828792][T15060] cramfs: ffffffff94e280e8(26)->ffff88801f920000(4096) [ 862.836746][T15060] cramfs: Error -3 while decompressing! [ 862.842453][T15060] cramfs: ffffffff94e28102(26)->ffff88801fb27000(4096) [ 862.853425][T15060] cramfs: Error -3 while decompressing! [ 862.859131][T15060] cramfs: ffffffff94e2811c(16)->ffff888020435000(4096) [ 862.867111][T15060] cramfs: Error -3 while decompressing! [ 862.873081][T15060] cramfs: ffffffff94e280e8(26)->ffff88801f920000(4096) [ 862.882548][ T5853] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 862.892160][ T5853] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 862.900501][ T5853] usb 6-1: Product: syz [ 862.905092][ T5853] usb 6-1: Manufacturer: syz [ 862.909871][ T5853] usb 6-1: SerialNumber: syz [ 863.009806][ T30] audit: type=1800 audit(1760030902.192:127): pid=15060 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.4232" name="file2" dev="loop1" ino=348 res=0 errno=0 [ 863.042284][ T6092] udevd[6092]: incorrect cramfs checksum on /dev/loop1 [ 863.067185][ T5853] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 863.184486][ T24] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 863.710958][ T5858] usb 6-1: USB disconnect, device number 3 [ 863.734925][ C1] dummy_hcd dummy_hcd.5: timer fired with no URBs pending? [ 864.252536][T15072] loop4: detected capacity change from 0 to 256 [ 864.269027][ T24] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 864.277189][ T24] ath9k_htc: Failed to initialize the device [ 864.349841][ T5858] usb 6-1: ath9k_htc: USB layer deinitialized [ 864.429331][T15072] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x2e76b09e, utbl_chksum : 0xe619d30d) [ 865.799737][T15092] loop2: detected capacity change from 0 to 1024 [ 865.971955][T15092] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 866.060367][T15092] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.4248: missing EA_INODE flag [ 866.141569][T15092] EXT4-fs (loop2): Remounting filesystem read-only [ 866.587269][ T5813] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 867.244804][T15118] netlink: 16 bytes leftover after parsing attributes in process `syz.1.4260'. [ 868.310432][T15135] netlink: 260 bytes leftover after parsing attributes in process `syz.2.4268'. [ 868.380771][T15136] netlink: 'syz.4.4269': attribute type 1 has an invalid length. [ 868.389153][T15136] netlink: 216 bytes leftover after parsing attributes in process `syz.4.4269'. [ 868.434424][T15138] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4270'. [ 871.262522][T15179] bond1 (unregistering): Released all slaves [ 871.697276][T15188] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 871.923027][ T30] audit: type=1326 audit(1760030911.202:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4297" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 872.021881][ T30] audit: type=1326 audit(1760030911.272:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4297" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 872.045136][ T30] audit: type=1326 audit(1760030911.292:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm="syz.2.4297" exe="/root/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 872.070081][ T30] audit: type=1326 audit(1760030911.292:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 872.093259][ T30] audit: type=1326 audit(1760030911.292:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15192 comm=77DEA305FF07 exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fc1539 code=0x7ffc0000 [ 872.483689][T15201] netlink: 'syz.5.4300': attribute type 11 has an invalid length. [ 872.603914][T15204] netlink: 'syz.2.4302': attribute type 20 has an invalid length. [ 874.058805][T15224] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 876.034529][T15256] afs: Bad value for 'source' [ 876.324823][T15262] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4330'. [ 876.334494][T15262] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4330'. [ 876.343838][T15262] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4330'. [ 876.957616][T15273] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4335'. [ 877.624022][T15284] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4342'. [ 878.158805][T15292] loop1: detected capacity change from 0 to 8 [ 878.362871][T15292] SQUASHFS error: lzo decompression failed, data probably corrupt [ 878.371067][T15292] SQUASHFS error: Failed to read block 0x1c0: -5 [ 878.378209][T15292] SQUASHFS error: Unable to read metadata cache entry [1be] [ 879.264039][T15310] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4355'. [ 879.992914][T15322] netlink: get zone limit has 8 unknown bytes [ 881.161478][T15341] loop4: detected capacity change from 0 to 256 [ 881.549601][T15341] FAT-fs (loop4): Directory bread(block 64) failed [ 881.557801][T15341] FAT-fs (loop4): Directory bread(block 65) failed [ 881.565297][T15341] FAT-fs (loop4): Directory bread(block 66) failed [ 881.572032][T15341] FAT-fs (loop4): Directory bread(block 67) failed [ 881.579214][T15341] FAT-fs (loop4): Directory bread(block 68) failed [ 881.589648][T15341] FAT-fs (loop4): Directory bread(block 69) failed [ 881.597669][T15341] FAT-fs (loop4): Directory bread(block 70) failed [ 881.604570][T15341] FAT-fs (loop4): Directory bread(block 71) failed [ 881.611438][T15341] FAT-fs (loop4): Directory bread(block 72) failed [ 881.619105][T15341] FAT-fs (loop4): Directory bread(block 73) failed [ 883.006644][T15363] loop2: detected capacity change from 0 to 1024 [ 883.518037][ T4105] hfsplus: b-tree write err: -5, ino 4 [ 885.676535][T15410] No control pipe specified [ 887.064984][ T30] audit: type=1326 audit(1760030926.382:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15431 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.082213][T15424] loop5: detected capacity change from 0 to 4096 [ 887.173030][ T30] audit: type=1326 audit(1760030926.432:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15431 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.177908][T15424] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 887.195256][ C0] vkms_vblank_simulate: vblank timer overrun [ 887.274764][ T30] audit: type=1326 audit(1760030926.572:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15431 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.297280][ T30] audit: type=1326 audit(1760030926.572:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15431 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.321683][ T30] audit: type=1326 audit(1760030926.582:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15433 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.343954][ C0] vkms_vblank_simulate: vblank timer overrun [ 887.585791][ T30] audit: type=1326 audit(1760030926.742:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15433 comm="syz.1.4415" exe="/root/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 887.607942][ C0] vkms_vblank_simulate: vblank timer overrun [ 887.723993][T15424] ntfs3(loop5): ino=19, mi_enum_attr [ 887.805799][T15424] ntfs3(loop5): failed to convert "c46c" to iso8859-15 [ 887.860958][T15424] ntfs3(loop5): ino=20, mi_enum_attr [ 888.171869][T15443] loop1: detected capacity change from 0 to 256 [ 888.265831][T15443] exfat: Deprecated parameter 'namecase' [ 888.470084][T15443] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x52c1951d, utbl_chksum : 0xe619d30d) [ 888.786468][T15452] netlink: 20 bytes leftover after parsing attributes in process `syz.5.4423'. [ 891.444090][ T24] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 891.581960][T15497] ksmbd: Unknown IPC event: 3, ignore. [ 891.610873][T15498] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4445'. [ 891.659368][ T24] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e [ 891.669659][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 891.756584][ T24] usb 5-1: config 0 descriptor?? [ 892.210411][T15505] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap3 [ 892.236602][ T24] ath6kl: Failed to read usb control message: -71 [ 892.243623][ T24] ath6kl: Unable to read the bmi data from the device: -71 [ 892.251128][ T24] ath6kl: Unable to recv target info: -71 [ 892.294579][ T24] ath6kl: Failed to init ath6kl core: -71 [ 892.303112][ T24] ath6kl_usb 5-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 892.388280][ T24] usb 5-1: USB disconnect, device number 10 [ 892.964822][ T5858] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 893.204410][ T5858] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 893.213902][ T5858] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 893.222101][ T5858] usb 2-1: Product: syz [ 893.226910][ T5858] usb 2-1: Manufacturer: syz [ 893.231684][ T5858] usb 2-1: SerialNumber: syz [ 893.366095][T15520] loop5: detected capacity change from 0 to 1024 [ 893.377821][ T5858] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 893.480845][T11353] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 894.043380][ T24] usb 2-1: USB disconnect, device number 11 [ 894.069334][ C0] vkms_vblank_simulate: vblank timer overrun [ 894.583579][T11353] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 894.593488][T11353] ath9k_htc: Failed to initialize the device [ 894.644126][ T24] usb 2-1: ath9k_htc: USB layer deinitialized [ 895.236116][T15540] trusted_key: encrypted_key: keyword 'eŠ' not recognized [ 895.423443][ T24] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 895.688620][ T24] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 895.698323][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 895.706929][ T24] usb 6-1: Product: syz [ 895.711281][ T24] usb 6-1: Manufacturer: syz [ 895.718573][ T24] usb 6-1: SerialNumber: syz [ 895.825135][ T24] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 895.914306][T11863] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 896.296364][ C1] usb 6-1: ath9k_htc: invalid pkt_len (e4e6) [ 896.617677][ T24] usb 6-1: USB disconnect, device number 4 [ 896.998188][T11863] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 897.006102][T11863] ath9k_htc: Failed to initialize the device [ 897.062030][ T24] usb 6-1: ath9k_htc: USB layer deinitialized [ 898.020744][T15574] loop4: detected capacity change from 0 to 512 [ 898.238314][T15574] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 898.251553][T15574] ext4 filesystem being mounted at /898/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 898.453185][T15574] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 898.464727][T15574] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 898.475374][T15574] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.4482: Failed to acquire dquot type 0 [ 898.659883][T15585] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4487'. [ 898.815742][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 899.327126][T15598] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4490'. [ 899.356696][T15594] loop1: detected capacity change from 0 to 256 [ 899.540072][T15594] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d) [ 899.737575][T15594] overlay: filesystem on ./file0 not supported [ 899.779552][T15603] loop5: detected capacity change from 0 to 64 [ 900.783988][T15617] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4500'. [ 900.793594][T15617] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4500'. [ 900.888356][T15619] netlink: 36 bytes leftover after parsing attributes in process `syz.2.4503'. [ 901.496709][T15627] program syz.0.4506 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 901.529622][T15627] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 901.563967][T15628] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4507'. [ 901.573645][T15628] netlink: 28 bytes leftover after parsing attributes in process `syz.5.4507'. [ 902.137794][T15636] netlink: 'syz.4.4510': attribute type 1 has an invalid length. [ 902.800510][T15650] netlink: 'syz.0.4517': attribute type 7 has an invalid length. [ 902.808943][T15650] netlink: 'syz.0.4517': attribute type 8 has an invalid length. [ 902.837683][T15649] loop4: detected capacity change from 0 to 256 [ 903.217174][T15654] bridge0: entered promiscuous mode [ 904.657539][T15667] loop2: detected capacity change from 0 to 4096 [ 904.763428][T15667] NILFS (loop2): mounting unchecked fs [ 904.769173][T15667] NILFS (loop2): recovery required for readonly filesystem [ 904.776970][T15667] NILFS (loop2): write access will be enabled during recovery [ 904.864115][T15667] NILFS (loop2): invalid segment: Checksum error in segment payload [ 904.872352][T15667] NILFS (loop2): trying rollback from an earlier position [ 904.973824][T15667] NILFS (loop2): norecovery option specified, skipping roll-forward recovery [ 905.335777][ T30] audit: type=1800 audit(1760030944.642:139): pid=15667 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4525" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 905.491895][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 905.499318][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 906.809580][T15703] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 906.836983][T15703] CIFS mount error: No usable UNC path provided in device string! [ 906.836983][T15703] [ 906.847532][T15703] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 908.803076][ T30] audit: type=1326 audit(1760030948.102:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15735 comm="syz.4.4559" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 908.888929][ T30] audit: type=1326 audit(1760030948.162:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15735 comm="syz.4.4559" exe="/root/syz-executor" sig=0 arch=40000003 syscall=278 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 908.913054][ T30] audit: type=1326 audit(1760030948.162:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15735 comm="syz.4.4559" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 908.937628][ T30] audit: type=1326 audit(1760030948.162:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15735 comm="syz.4.4559" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x7ffc0000 [ 909.603929][T15745] netlink: 'syz.4.4563': attribute type 1 has an invalid length. [ 909.611863][T15745] netlink: 244 bytes leftover after parsing attributes in process `syz.4.4563'. [ 910.034171][T15753] ieee802154 phy0 wpan0: encryption failed: -22 [ 910.326792][T15758] usb usb5: usbfs: process 15758 (syz.0.4569) did not claim interface 0 before use [ 910.587507][T15760] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT [ 910.912912][T15768] netlink: 'syz.0.4574': attribute type 4 has an invalid length. [ 910.920939][T15768] netlink: 17 bytes leftover after parsing attributes in process `syz.0.4574'. [ 912.111658][T15785] loop4: detected capacity change from 0 to 256 [ 912.322227][T15785] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 912.331026][T15785] FAT-fs (loop4): Filesystem has been set read-only [ 912.721679][T15792] RDS: rds_bind could not find a transport for fc02::, load rds_tcp or rds_rdma? [ 914.219084][T15817] loop5: detected capacity change from 0 to 16 [ 916.449580][T15853] netlink: 20 bytes leftover after parsing attributes in process `syz.1.4616'. [ 917.696451][T15871] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4625'. [ 918.112451][T15877] netlink: 60 bytes leftover after parsing attributes in process `syz.4.4628'. [ 918.247005][T15881] netlink: 'syz.2.4630': attribute type 30 has an invalid length. [ 918.679307][T15888] x_tables: ip_tables: ah match: only valid for protocol 51 [ 919.768748][T15907] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4643'. [ 919.786495][T13712] Bluetooth: hci1: unexpected event for opcode 0x202a [ 920.695984][T15919] netlink: 10 bytes leftover after parsing attributes in process `syz.2.4649'. [ 921.545029][T15932] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4655'. [ 921.779758][T15936] loop5: detected capacity change from 0 to 1024 [ 921.826873][T15936] EXT4-fs: Ignoring removed nomblk_io_submit option [ 921.959137][T15936] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 922.006606][T15936] System zones: 0-1, 3-36 [ 922.079010][T15936] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 922.376647][T15947] netlink: 'syz.1.4660': attribute type 25 has an invalid length. [ 922.496361][T13710] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 923.644481][T15962] loop5: detected capacity change from 0 to 256 [ 925.113175][T15982] veth3: entered promiscuous mode [ 925.118646][T15982] veth3: entered allmulticast mode [ 925.963744][T16000] trusted_key: encrypted_key: keylen parameter is missing [ 927.080347][T16013] loop5: detected capacity change from 0 to 1024 [ 927.165489][T16013] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 928.785337][T16044] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4708'. [ 929.436144][T16051] loop2: detected capacity change from 0 to 764 [ 929.964641][T16056] loop4: detected capacity change from 0 to 1764 [ 930.168219][T16056] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 930.620786][T16066] xt_CONNSECMARK: invalid mode: 5 [ 930.861085][T16070] loop4: detected capacity change from 0 to 512 [ 930.956083][T16070] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 931.719101][T16083] loop2: detected capacity change from 0 to 256 [ 931.818397][T16083] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 931.871594][T16085] trusted_key: encrypted_key: keylen parameter is missing [ 933.779831][T16113] tmpfs: Bad value for 'mpol' [ 934.194003][T16120] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 934.289534][T16120] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 934.413088][T16126] loop2: detected capacity change from 0 to 64 [ 935.433530][T11863] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 935.675381][T11863] usb 6-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1 [ 935.684871][T11863] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 935.693295][T11863] usb 6-1: Product: syz [ 935.697638][T11863] usb 6-1: Manufacturer: syz [ 935.702413][T11863] usb 6-1: SerialNumber: syz [ 935.803655][T11863] usb 6-1: config 0 descriptor?? [ 936.100581][T11863] int51x1 6-1:0.0: probe with driver int51x1 failed with error -22 [ 936.314575][T11353] usb 6-1: USB disconnect, device number 5 [ 936.335217][T16148] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4760'. [ 937.396337][T16164] loop1: detected capacity change from 0 to 64 [ 937.441348][T16164] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 937.556048][T16166] loop5: detected capacity change from 0 to 2048 [ 937.622001][T16166] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 938.333211][T16179] loop1: detected capacity change from 0 to 256 [ 938.395821][T16179] exfat: Deprecated parameter 'namecase' [ 938.402179][T16179] exfat: Deprecated parameter 'namecase' [ 938.599369][T11353] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 938.636294][T16179] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104f5, chksum : 0x60296b7b, utbl_chksum : 0xe619d30d) [ 938.807036][T11353] usb 3-1: Using ep0 maxpacket: 16 [ 938.846961][T11353] usb 3-1: config 0 has an invalid interface number: 67 but max is 0 [ 938.855410][T11353] usb 3-1: config 0 has no interface number 0 [ 938.932094][T11353] usb 3-1: New USB device found, idVendor=0458, idProduct=704c, bcdDevice= 9.d1 [ 938.942029][T11353] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 938.950502][T11353] usb 3-1: Product: syz [ 938.955148][T11353] usb 3-1: Manufacturer: syz [ 938.959921][T11353] usb 3-1: SerialNumber: syz [ 939.067654][T11353] usb 3-1: config 0 descriptor?? [ 939.125429][T11353] gspca_main: gspca_sn9c20x-2.14.0 probing 0458:704c [ 939.242358][T16189] netlink: 64985 bytes leftover after parsing attributes in process `syz.0.4780'. [ 939.599998][T11353] gspca_sn9c20x: Write register 1001 failed -71 [ 939.606740][T11353] gspca_sn9c20x: Device initialization failed [ 939.613398][T11353] gspca_sn9c20x 3-1:0.67: probe with driver gspca_sn9c20x failed with error -71 [ 939.715946][T11353] usb 3-1: USB disconnect, device number 14 [ 939.733570][ T6092] udevd[6092]: setting mode of /dev/bus/usb/003/014 to 020664 failed: No such file or directory [ 939.790084][ T6092] udevd[6092]: setting owner of /dev/bus/usb/003/014 to uid=0, gid=0 failed: No such file or directory [ 939.819037][T16195] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 939.826609][T16195] IPv6: NLM_F_CREATE should be set when creating new route [ 939.834154][T16195] IPv6: NLM_F_CREATE should be set when creating new route [ 942.762438][T16239] loop5: detected capacity change from 0 to 1024 [ 942.794886][T16239] EXT4-fs: Ignoring removed oldalloc option [ 942.801214][T16239] EXT4-fs: Ignoring removed bh option [ 942.807081][T16239] EXT4-fs: Ignoring removed nobh option [ 942.965775][T16239] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 943.126155][T16239] EXT4-fs error (device loop5): ext4_lookup:1787: inode #15: comm syz.5.4805: iget: bad i_size value: -72057594037927926 [ 943.576075][T13710] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 944.623088][T11863] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 944.742918][T16275] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4818'. [ 944.833155][T11863] usb 5-1: Using ep0 maxpacket: 8 [ 944.862595][T11863] usb 5-1: unable to get BOS descriptor or descriptor too short [ 944.890571][T11863] usb 5-1: config 8 has an invalid interface number: 255 but max is 0 [ 944.899254][T11863] usb 5-1: config 8 has no interface number 0 [ 944.905866][T11863] usb 5-1: config 8 interface 255 has no altsetting 0 [ 944.933784][T11863] usb 5-1: string descriptor 0 read error: -22 [ 944.940690][T11863] usb 5-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice=2e.bf [ 944.953256][T11863] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 945.363914][T16280] netlink: 'syz.5.4822': attribute type 2 has an invalid length. [ 945.564527][ T30] audit: type=1326 audit(1760030984.882:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16283 comm="syz.1.4825" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 945.589877][ T30] audit: type=1326 audit(1760030984.882:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16283 comm="syz.1.4825" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 945.647271][T11863] eth%d: CATC EL1210A NetMate USB Ethernet at usb-dummy_hcd.4-1, f8:36:07:4e:80:88. [ 945.754721][T11863] usb 5-1: USB disconnect, device number 11 [ 945.798484][ T30] audit: type=1326 audit(1760030984.962:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16283 comm="syz.1.4825" exe="/root/syz-executor" sig=0 arch=40000003 syscall=294 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 945.821808][ T30] audit: type=1326 audit(1760030984.962:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16283 comm="syz.1.4825" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 945.844907][ T30] audit: type=1326 audit(1760030984.962:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16283 comm="syz.1.4825" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fd539 code=0x7ffc0000 [ 946.703944][T16295] loop4: detected capacity change from 0 to 64 [ 946.812197][T16300] kernel profiling enabled (shift: 63) [ 946.820775][T16300] profiling shift: 63 too large [ 947.403875][ T4105] ===================================================== [ 947.411983][ T4105] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0xfe/0x9a0 [ 947.421003][ T4105] n_tty_receive_buf_closing+0xfe/0x9a0 [ 947.427687][ T4105] n_tty_receive_buf_common+0x19d5/0x2540 [ 947.437653][ T4105] n_tty_receive_buf2+0x4c/0x60 [ 947.444068][ T4105] tty_ldisc_receive_buf+0xc3/0x2c0 [ 947.449772][ T4105] tty_port_default_receive_buf+0xd7/0x1a0 [ 947.456367][ T4105] flush_to_ldisc+0x43b/0xe30 [ 947.461725][ T4105] process_scheduled_works+0xb91/0x1d80 [ 947.468389][ T4105] worker_thread+0xedf/0x1590 [ 947.473946][ T4105] kthread+0xd59/0xf00 [ 947.478655][ T4105] ret_from_fork+0x233/0x380 [ 947.484037][ T4105] ret_from_fork_asm+0x1a/0x30 [ 947.489473][ T4105] [ 947.492351][ T4105] Uninit was stored to memory at: [ 947.498325][ T4105] n_tty_receive_buf_closing+0xf7/0x9a0 [ 947.504684][ T4105] n_tty_receive_buf_common+0x19d5/0x2540 [ 947.511057][ T4105] n_tty_receive_buf2+0x4c/0x60 [ 947.516646][ T4105] tty_ldisc_receive_buf+0xc3/0x2c0 [ 947.522728][ T4105] tty_port_default_receive_buf+0xd7/0x1a0 [ 947.529269][ T4105] flush_to_ldisc+0x43b/0xe30 [ 947.538188][ T4105] process_scheduled_works+0xb91/0x1d80 [ 947.545457][ T4105] worker_thread+0xedf/0x1590 [ 947.550583][ T4105] kthread+0xd59/0xf00 [ 947.556418][ T4105] ret_from_fork+0x233/0x380 [ 947.561419][ T4105] ret_from_fork_asm+0x1a/0x30 [ 947.566952][ T4105] [ 947.569817][ T4105] Uninit was created at: [ 947.574885][ T4105] __kmalloc_noprof+0xabb/0x1b40 [ 947.580549][ T4105] __tty_buffer_request_room+0x3d4/0x7a0 [ 947.587157][ T4105] __tty_insert_flip_string_flags+0x157/0x6f0 [ 947.594034][ T4105] uart_insert_char+0x368/0x930 [ 947.599560][ T4105] serial8250_read_char+0x1ba/0x670 [ 947.605619][ T4105] serial8250_handle_irq+0x930/0x1110 [ 947.611817][ T4105] serial8250_default_handle_irq+0x116/0x370 [ 947.618647][ T4105] serial8250_interrupt+0xc8/0x430 [ 947.624522][ T4105] __handle_irq_event_percpu+0x11b/0xf80 [ 947.630834][ T4105] handle_irq_event+0xe0/0x2a0 [ 947.639706][ T4105] handle_edge_irq+0x2a9/0xb50 [ 947.646866][ T4105] __common_interrupt+0x9a/0x180 [ 947.652461][ T4105] common_interrupt+0x94/0xb0 [ 947.657908][ T4105] asm_common_interrupt+0x2b/0x40 [ 947.663677][ T4105] [ 947.666579][ T4105] CPU: 0 UID: 0 PID: 4105 Comm: kworker/u8:24 Not tainted syzkaller #0 PREEMPT(none) [ 947.676979][ T4105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 947.687770][ T4105] Workqueue: events_unbound flush_to_ldisc [ 947.694385][ T4105] ===================================================== [ 947.701955][ T4105] Disabling lock debugging due to kernel taint [ 947.708921][ T4105] Kernel panic - not syncing: kmsan.panic set ... [ 947.715486][ T4105] CPU: 0 UID: 0 PID: 4105 Comm: kworker/u8:24 Tainted: G B syzkaller #0 PREEMPT(none) [ 947.726803][ T4105] Tainted: [B]=BAD_PAGE [ 947.731049][ T4105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 947.741242][ T4105] Workqueue: events_unbound flush_to_ldisc [ 947.747302][ T4105] Call Trace: [ 947.750690][ T4105] [ 947.753740][ T4105] __dump_stack+0x26/0x30 [ 947.758514][ T4105] dump_stack_lvl+0x53/0x270 [ 947.763291][ T4105] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 947.769325][ T4105] dump_stack+0x1e/0x25 [ 947.773663][ T4105] vpanic+0x435/0xd30 [ 947.777846][ T4105] panic+0x15d/0x160 [ 947.781970][ T4105] kmsan_report+0x31c/0x320 [ 947.786678][ T4105] ? __msan_warning+0x1b/0x30 [ 947.791533][ T4105] ? n_tty_receive_buf_closing+0xfe/0x9a0 [ 947.797431][ T4105] ? n_tty_receive_buf_common+0x19d5/0x2540 [ 947.803532][ T4105] ? n_tty_receive_buf2+0x4c/0x60 [ 947.808732][ T4105] ? tty_ldisc_receive_buf+0xc3/0x2c0 [ 947.814325][ T4105] ? tty_port_default_receive_buf+0xd7/0x1a0 [ 947.820545][ T4105] ? flush_to_ldisc+0x43b/0xe30 [ 947.825592][ T4105] ? process_scheduled_works+0xb91/0x1d80 [ 947.831487][ T4105] ? worker_thread+0xedf/0x1590 [ 947.836511][ T4105] ? kthread+0xd59/0xf00 [ 947.840935][ T4105] ? ret_from_fork+0x233/0x380 [ 947.845871][ T4105] ? ret_from_fork_asm+0x1a/0x30 [ 947.851007][ T4105] ? ret_from_fork_asm+0x1a/0x30 [ 947.856141][ T4105] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 947.862161][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.867476][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.872798][ T4105] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 947.878809][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.884125][ T4105] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 947.890155][ T4105] ? __update_load_avg_cfs_rq+0xc30/0x1010 [ 947.896151][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.901467][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.906877][ T4105] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 947.912910][ T4105] ? kmsan_get_metadata+0xfb/0x160 [ 947.918229][ T4105] __msan_warning+0x1b/0x30 [ 947.922919][ T4105] n_tty_receive_buf_closing+0xfe/0x9a0 [ 947.928701][ T4105] n_tty_receive_buf_common+0x19d5/0x2540 [ 947.934702][ T4105] n_tty_receive_buf2+0x4c/0x60 [ 947.939721][ T4105] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 947.945426][ T4105] tty_ldisc_receive_buf+0xc3/0x2c0 [ 947.950859][ T4105] tty_port_default_receive_buf+0xd7/0x1a0 [ 947.956904][ T4105] flush_to_ldisc+0x43b/0xe30 [ 947.961794][ T4105] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 947.968412][ T4105] ? __pfx_flush_to_ldisc+0x10/0x10 [ 947.973804][ T4105] process_scheduled_works+0xb91/0x1d80 [ 947.979569][ T4105] worker_thread+0xedf/0x1590 [ 947.984430][ T4105] kthread+0xd59/0xf00 [ 947.988712][ T4105] ? __pfx_worker_thread+0x10/0x10 [ 947.994003][ T4105] ? __pfx_kthread+0x10/0x10 [ 947.998748][ T4105] ret_from_fork+0x233/0x380 [ 948.003496][ T4105] ? __pfx_kthread+0x10/0x10 [ 948.008250][ T4105] ret_from_fork_asm+0x1a/0x30 [ 948.013235][ T4105] [ 948.016721][ T4105] Kernel Offset: disabled [ 948.021125][ T4105] Rebooting in 86400 seconds..