last executing test programs: 2m42.371497111s ago: executing program 2 (id=9763): r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) pwritev2(r0, &(0x7f0000000140)=[{0x0, 0xfffffd2e}, {&(0x7f0000000240)="d31af2ead25dacac075ceb2f2d22a561c8152e68e82001a432644cdc99e98c710e5ec7e3df35d58d4d297ec52f96ddd7dfb8405b9aad921e659e5443f0d6aa5e194e28cf1969085fcb7eb1cfab6ca2312340ca353df147bf1f0f84d8eb5a12e135db326856030f1ff87a63ead8767ec79c6a94077ad220684fe03f2f6fe9d97d61a3c550b775add2ef33eab192a9c1b61700134ef684b1d3f0671d30b660202b6e79f1ad5d0cde8157cdde60287e97c1e467b136"}], 0x1, 0x1, 0x4, 0x11) 2m42.060076745s ago: executing program 2 (id=9765): r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x10001, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000240)={0x1, @raw_data="a425e2f1a54d24f14152323460608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"}) 2m41.909847401s ago: executing program 2 (id=9768): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000600)="2e00000010008188040f80ec59acbc0413a1f8480d0000005e140602000000000e000a00100000000280607ee622", 0x2e}], 0x1}, 0x24000044) 2m41.145889204s ago: executing program 2 (id=9783): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]}) setuid(0xee01) 2m40.941207853s ago: executing program 2 (id=9787): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$eJzskr9rFEEUx7+zO3fuaUIOORBFEDVoLJLbbDT+KBRsDCoIohADgsfdJS5u/JE90DsOXKsUNoIiJIiFIElhIf4DLqiN2CgEuxBJnSKFjSSsvNm3mwnY28ynuO/NvLfvve/M3A4fhDsAbK5360AZhEQF338JSAAHhNpCw07VYb3MWuT4BSvVmPUP6+bJzvgEIPxDy6NWvKdxUJTRU/n9dQV19N3E6deX3v24WnixtHvt7UfKv3i9/QHiaKPvzav3z87P9ary4saEXseO9887VAjA843x5RW5165ktfxoiVoXkPFyEsKddwAMfR6cO+v2PrW4Ztju3KkFQXMmPPfEwppq9XO9W6c/twAkBPsbA6DnkP1FzqG9fRK4BsBGkudIbFFtTd+vhu3OoD9dm2pONe963sioe9x1T3jVST9ouvQLcDf1OZ8gSI8BoGsq0QhCxXdRbINzdmI7VIfmivK496XE45fQrRe1qxs4jHRb65fZylQgZluOmgPKKlk+Ajrah5HQdvtVFQllbAwCNi+GpTZf2stRgaFP94LGLMgbf7YAmdcYXkUhX3j6YuRU5hCzrP3YujFigXWVNXvR2UuVqoLF73kgAop4VGu1kiR5jMUeXPmWRmhvxivm/8qRfmDUtWxvN3fG/setGAwGg8FgMBgMBsN/4m8AAAD//4Hjlpw=") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m39.826802491s ago: executing program 2 (id=9811): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="4000000010003b15ef0000000000000000004888", @ANYRES32=0x0, @ANYBLOB="d530d995212cf95a2000128008000100687372"], 0x40}}, 0x4004040) 2m35.310275385s ago: executing program 4 (id=9879): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$SNDCTL_SEQ_NRSYNTHS(r0, 0xc0045401, &(0x7f0000001280)) 2m34.989662709s ago: executing program 4 (id=9883): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind(r0, &(0x7f0000000d80)=@l2tp={0x2, 0x0, @loopback}, 0x80) 2m34.891876213s ago: executing program 4 (id=9886): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000540)=@migrate={0x138, 0x21, 0x1, 0x70bd2a, 0x25dfdbfe, {{@in6=@private2={0xfc, 0x2, '\x00', 0x1}, @in=@multicast2, 0x4e24, 0x1, 0x7, 0x0, 0xa, 0x80, 0x80, 0x3b}, 0x6e6baf, 0x1}, [@migrate={0xe8, 0x11, [{@in=@rand_addr=0x64010100, @in=@broadcast, @in=@multicast1, @in6=@remote, 0xff, 0x4, 0x0, 0x3505, 0xa, 0x8}, {@in=@local, @in=@loopback, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in=@local, 0x6c, 0x0, 0x0, 0x0, 0x2, 0xf}, {@in=@rand_addr=0x64010100, @in=@private=0xa010102, @in=@loopback, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x2b, 0x4, 0x0, 0x3504, 0x2, 0xa}]}]}, 0x138}, 0x1, 0x0, 0x0, 0x400c000}, 0x20000000) 2m34.797635497s ago: executing program 3 (id=9887): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xf, 0x4, 0x4, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r0, &(0x7f00000000c0), 0x0}, 0x20) 2m34.685489922s ago: executing program 4 (id=9890): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000001200)={&(0x7f00000013c0)=@newpolicy={0x27c, 0x13, 0x429, 0x0, 0x0, {{@in6=@empty, @in=@local, 0x0, 0x0, 0x0, 0x0, 0xa}}, [@algo_auth={0x1c4, 0x5, {{'streebog512-generic\x00'}, 0xbe0, "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"}}]}, 0x27c}}, 0x0) 2m34.638688643s ago: executing program 3 (id=9892): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) sendto$inet6(r0, &(0x7f0000000000)="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", 0x219, 0x4080, 0x0, 0x0) 2m34.596227466s ago: executing program 4 (id=9894): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="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", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$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") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m34.506923139s ago: executing program 3 (id=9895): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="18030000000000000000000000000000850000002e000000850000000700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0xe40, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 2m34.369566215s ago: executing program 3 (id=9897): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0xc02, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}, {}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@keep_last_dots}, {@keep_last_dots}, {@namecase}, {@errors_continue}, {}]}, 0x1, 0x1524, &(0x7f0000007640)="$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") mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x1480, 0x0) 2m34.177106034s ago: executing program 3 (id=9899): r0 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) lseek(r0, 0xfffff7fffffffffc, 0x4) 2m33.812853779s ago: executing program 3 (id=9905): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005d00000095", @ANYRES16], &(0x7f0000000300)='GPL\x00', 0x2, 0x230, &(0x7f0000002500)=""/4106, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffdf8, 0x10, 0x0, 0x34, 0x0, 0x0, 0xfffffffffffffe65}, 0x4a) 2m33.56548056s ago: executing program 32 (id=9905): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0xd, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b705000008000000850000005d00000095", @ANYRES16], &(0x7f0000000300)='GPL\x00', 0x2, 0x230, &(0x7f0000002500)=""/4106, 0x0, 0x5, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0xfffffffffffffdf8, 0x10, 0x0, 0x34, 0x0, 0x0, 0xfffffffffffffe65}, 0x4a) 2m33.55161297s ago: executing program 4 (id=9909): r0 = socket$packet(0x11, 0x2, 0x300) recvfrom$packet(r0, 0x0, 0x0, 0x40010121, 0x0, 0x0) 2m23.576483229s ago: executing program 33 (id=9811): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="4000000010003b15ef0000000000000000004888", @ANYRES32=0x0, @ANYBLOB="d530d995212cf95a2000128008000100687372"], 0x40}}, 0x4004040) 2m17.421163223s ago: executing program 34 (id=9909): r0 = socket$packet(0x11, 0x2, 0x300) recvfrom$packet(r0, 0x0, 0x0, 0x40010121, 0x0, 0x0) 2.622473447s ago: executing program 0 (id=12104): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000640)={0x44, &(0x7f0000000280)={0x0, 0xf, 0x21, "03914ea04f52a0756debe60a459882da488c80ca5127fbb863e339481efa5557ad"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 1.625567591s ago: executing program 7 (id=12122): capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19, 0x0, 0xffffffffffffffff, 0x54}, 0x42) 1.39225908s ago: executing program 7 (id=12126): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="5800000002060500000000000000000000000000140007800500140080ff00000800124008001f000500010006000000050005000200000005000400000000000900020073797a31000000000c000300686173683a6970"], 0x58}}, 0x0) 1.238678357s ago: executing program 7 (id=12130): r0 = socket(0x1d, 0x2, 0x6) getsockopt$nfc_llcp(r0, 0x6a, 0x2, 0x0, 0xffffffffffffff33) 1.178504919s ago: executing program 6 (id=12132): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newspdinfo={0x1c, 0x24, 0x801, 0x70bd2d, 0x25dfdbfa, 0xc, [@XFRMA_SPD_IPV6_HTHRESH={0x6, 0x4, {0xfd}}]}, 0x1c}}, 0x40050) 1.076011154s ago: executing program 7 (id=12134): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0) ioctl$TIOCGWINSZ(r0, 0x5413, &(0x7f00000000c0)) 1.008768457s ago: executing program 5 (id=12135): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f00000003c0)={'ip6gre0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x10, 0xfd, 0x4, 0x22, @ipv4={'\x00', '\xff\xff', @loopback}, @loopback={0xfec0ffff00000000, 0xffff8881114a4aa8}, 0x40, 0x0, 0x204, 0x1}}) 1.008208917s ago: executing program 6 (id=12136): r0 = syz_open_dev$admmidi(&(0x7f0000000080), 0x2, 0x40000) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0xc0245720, &(0x7f00000010c0)) 889.344302ms ago: executing program 1 (id=12137): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x1f, 0x4, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x75}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x34}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 887.989962ms ago: executing program 0 (id=12138): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0xb, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000004b40)={0x1, @vbi={0x0, 0x0, 0x56595559}}) 874.536253ms ago: executing program 7 (id=12139): syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, &(0x7f0000000380)={0xffffff01, 0x0, 0x0, 0x0, &(0x7f0000000540)={0x20, 0x80, 0x1c, {0xf, 0x1, 0x10000009, 0x7, 0x2, 0x7ffb, 0x1fd, 0x3, 0x2006, 0xfffc, 0x22, 0xf8}}, 0x0, 0x0, 0x0, 0x0}) syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e1f0a"], 0x22) 805.863996ms ago: executing program 6 (id=12140): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000540)=@ipv6_newrule={0x2c, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_PRIORITY={0x8}, @FIB_RULE_POLICY=@FRA_SUPPRESS_IFGROUP={0x8, 0xd, 0x80a}]}, 0x2c}, 0x1, 0x0, 0x0, 0x2000c0d1}, 0x0) 756.813227ms ago: executing program 5 (id=12141): r0 = socket(0x2a, 0x2, 0x0) bind$unix(r0, &(0x7f0000000040)=@file={0x1, './file0\x00'}, 0x6e) 730.635099ms ago: executing program 1 (id=12142): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000300)="5c00000015006b05c84e21000ab16d6e2306750900000000440002005817d30461bc24eeb556080000000000000036c23d3b48dfd8cdbf9367b098fa51f60a64c922c56ce67956b3eebb312ffeeff408000000e786a6d0bd03003275", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 609.217324ms ago: executing program 1 (id=12143): mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) 608.606324ms ago: executing program 0 (id=12144): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0xa4, 0x0, 0x1, 0x505, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @mcast2}, {0x14, 0x4, @loopback}}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x1}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'Q.931\x00'}}]}, 0xa4}}, 0x0) 607.995394ms ago: executing program 5 (id=12145): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_GETMODE(r0, 0x5601, &(0x7f00000000c0)) 589.050205ms ago: executing program 6 (id=12146): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=@newlink={0x3c, 0x10, 0x40d, 0x400000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x6821, 0x8}, [@IFLA_PROTO_DOWN={0x5, 0x27, 0xe}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x3c}}, 0x8050) 503.745239ms ago: executing program 5 (id=12147): setitimer(0x0, &(0x7f0000003380)={{0x0, 0x1}, {0x6}}, 0x0) setitimer(0x0, 0x0, &(0x7f0000003440)) 483.48966ms ago: executing program 1 (id=12148): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_ACTIVATE(r0, 0x541c, 0x10000000000004) 361.847245ms ago: executing program 6 (id=12149): r0 = syz_open_dev$usbfs(&(0x7f0000000200), 0x76, 0x103901) ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f0000000000)={0xcdd}) 361.131775ms ago: executing program 0 (id=12150): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=@newtaction={0x48, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x34, 0x1, [@m_ctinfo={0x30, 0x1, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc}, {0xc, 0x2}}}]}]}, 0x48}}, 0x0) 344.073035ms ago: executing program 1 (id=12151): r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000200)={0xc, @raw_data="79637198d32e6015de707a33e6afd0d76ae6226c3f46120c25b22513e86de63b9a23c4834e8b73f4b8d11ec154ea65d383a1d166971bcef01f5afcbf3da6528bb3e0546ced49ceef3d78a9947949ed2e9e5e3c5c4c6fff25d55e7408c8843e222c9993c4a7bd414b4ad4c43d34ddd29bc8f8a5d41d7f100c125e248cb7f741b1aef2a525929ff9c8f188c6a99880397fc18c00e40b8692510f7243d8534fbc8fd6fb71ca122d9dd6dafe49f51fbbb5bc9e7a068864868e4cd21892675ea3f105d3dc27b74169fc54"}) 333.026876ms ago: executing program 5 (id=12152): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000001400)={0x18, 0x1, 0x2, 0x201, 0x0, 0x0, {0xa, 0x0, 0x7}, [@CTA_EXPECT_MASTER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x48004}, 0x40008004) 229.42218ms ago: executing program 0 (id=12153): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000a80)=@newtaction={0x68, 0x30, 0x109, 0x70bd26, 0x0, {}, [{0x54, 0x1, [@m_skbedit={0x50, 0x1, 0x0, 0x0, {{0xc}, {0x24, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PARMS={0x18, 0x2, {0x3, 0x7, 0x1, 0x10, 0x8}}, @TCA_SKBEDIT_MARK={0x8}]}, {0x4}, {0xc, 0xa}, {0xc, 0x9}}}]}]}, 0x68}}, 0x0) 209.942931ms ago: executing program 6 (id=12154): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x348, 0xe0, 0x43, 0xa0, 0xe0, 0x98, 0x2b0, 0x178, 0x178, 0x2b0, 0x178, 0x49, 0x0, {[{{@ip={@empty=0x5107, @local, 0x0, 0x0, 'veth0_to_bond\x00', 'ip6erspan0\x00'}, 0x12a, 0xc0, 0xe0, 0x0, {0x0, 0x7a010000}, [@common=@inet=@ecn={{0x28}}, @inet=@rpfilter={{0x28}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x168, 0x1d0, 0x0, {}, [@common=@unspec=@connbytes={{0x38}, {[], 0x0, 0x3}}, @common=@unspec=@conntrack2={{0xc0}, {{@ipv4=@remote, [], @ipv4=@multicast1, [], @ipv4=@multicast1, [], @ipv4=@multicast2}}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x3a8) 117.566785ms ago: executing program 7 (id=12155): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000940), 0x0) ioctl$SNDRV_TIMER_IOCTL_GINFO(r0, 0xc0505405, &(0x7f0000000000)={{0x3, 0x0, 0x1, 0x1, 0x401}, 0x0, 0x0, 'id0\x00', 'timer0\x00'}) 117.344635ms ago: executing program 5 (id=12156): r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000140)={0x2, 0x3, 0x0, 0xff81, 0x0, 0x3, 0x0}) 104.088196ms ago: executing program 1 (id=12157): rseq(&(0x7f0000000080)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0) futex(&(0x7f0000000040)=0x2, 0x80, 0x2, &(0x7f0000000180)={0x0, 0x3938700}, 0x0, 0x0) 0s ago: executing program 0 (id=12158): r0 = add_key$fscrypt_v1(&(0x7f00000019c0), &(0x7f0000001a00)={'fscrypt:', @desc2}, &(0x7f0000001a40)={0x0, "9c47c334a3945f4b2d62c04748d71761fe4648141da3805a07a0717de4f1fc60232911a0212ac55852bd2c365f928d585eddaf2310978508ba4364db4188c77a", 0x32}, 0x48, 0xfffffffffffffffe) keyctl$KEYCTL_PKEY_QUERY(0x18, r0, 0x0, &(0x7f0000004f40)='\x00', 0x0) kernel console output (not intermixed with test programs): 39) failed [ 1070.616099][T28018] FAT-fs (loop6): Directory bread(block 40) failed [ 1070.693004][T28018] FAT-fs (loop6): Directory bread(block 41) failed [ 1070.838619][T28029] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1070.905291][T28029] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1070.969094][T28029] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1071.010219][T28029] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1071.062979][T28018] syz.6.10395: attempt to access beyond end of device [ 1071.062979][T28018] loop6: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 1071.063423][T28029] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1071.115238][T28018] FAT-fs (loop6): Filesystem has been set read-only [ 1071.165168][T28018] FAT-fs (loop6): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1071.364611][T28044] sctp: [Deprecated]: syz.7.10407 (pid 28044) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1071.364611][T28044] Use struct sctp_sack_info instead [ 1072.348365][T28047] loop5: detected capacity change from 0 to 32768 [ 1072.365434][T28083] __nla_validate_parse: 144 callbacks suppressed [ 1072.365451][T28083] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10424'. [ 1072.407074][T28047] (syz.5.10406,28047,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1072.441914][T28047] (syz.5.10406,28047,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1072.516773][T28047] JBD2: Ignoring recovery information on journal [ 1072.674275][T28047] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1072.857870][T28090] loop0: detected capacity change from 0 to 4096 [ 1072.887440][T28090] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512) [ 1072.911231][T26643] ocfs2: Unmounting device (7,5) on (node local) [ 1072.938587][T28073] loop1: detected capacity change from 0 to 32768 [ 1072.998872][T28073] (syz.1.10420,28073,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1073.027198][T28079] loop7: detected capacity change from 0 to 32768 [ 1073.047017][T28095] netlink: 'syz.6.10430': attribute type 1 has an invalid length. [ 1073.055141][T28073] (syz.1.10420,28073,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1073.071239][T28079] (syz.7.10421,28079,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1073.103671][T28095] netlink: 'syz.6.10430': attribute type 1 has an invalid length. [ 1073.122090][T28079] (syz.7.10421,28079,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1073.143541][T28095] netlink: 180 bytes leftover after parsing attributes in process `syz.6.10430'. [ 1073.152710][T28095] NCSI netlink: No device for ifindex 2151022881 [ 1073.164492][T28073] JBD2: Ignoring recovery information on journal [ 1073.195366][T28079] debugfs: Directory '9357E9D751824C228242B9B0D0FB6750' with parent 'ocfs2' already present! [ 1073.289076][T28073] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1073.390216][T28079] JBD2: Ignoring recovery information on journal [ 1073.548067][T28079] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode. [ 1073.717946][T28108] loop5: detected capacity change from 0 to 1764 [ 1073.746021][T28111] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10436'. [ 1073.781116][ T4805] ocfs2: Unmounting device (7,1) on (node local) [ 1073.905750][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1073.966359][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1073.985444][T27154] ocfs2: Unmounting device (7,7) on (node local) [ 1073.993926][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1074.029351][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1074.077704][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1074.122659][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1074.137226][T28121] xt_ecn: cannot match TCP bits for non-tcp packets [ 1074.179704][T28114] netlink: 8 bytes leftover after parsing attributes in process `syz.6.10438'. [ 1074.218077][T28114] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1074.246745][T28114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1074.272187][T28114] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1074.398614][ T126] usb 8-1: new high-speed USB device number 3 using dummy_hcd [ 1074.617952][ T126] usb 8-1: Using ep0 maxpacket: 32 [ 1074.625472][ T126] usb 8-1: unable to get BOS descriptor or descriptor too short [ 1074.642097][ T126] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1074.653044][ T126] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1074.663563][ T126] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1074.681950][ T126] usb 8-1: string descriptor 0 read error: -22 [ 1074.692880][ T126] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1074.707954][ T126] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1074.732808][ T126] usb 8-1: 0:2 : does not exist [ 1074.816884][T28139] loop6: detected capacity change from 0 to 4096 [ 1074.825446][T28139] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512) [ 1074.897178][T28139] ntfs3: loop6: failed to convert "c46c" to cp869 [ 1074.916933][T28141] loop5: detected capacity change from 0 to 4096 [ 1075.014355][T28141] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 1075.035178][ T126] usb 8-1: USB disconnect, device number 3 [ 1075.193475][T26643] EXT4-fs (loop5): unmounting filesystem. [ 1075.586410][T28161] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744071562330114) [ 1075.595964][T28160] loop0: detected capacity change from 0 to 256 [ 1075.662331][T28160] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 1075.669896][T28164] cifs: Unknown parameter 'no9 PG!8E8- ŖEeլ' [ 1075.684060][T28161] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647 [ 1075.733268][T28165] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1075.779395][T28165] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1075.823795][T28165] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1075.864160][T28165] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1075.943778][T28165] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1076.659994][ T126] usb 1-1: new high-speed USB device number 125 using dummy_hcd [ 1076.866359][ T126] usb 1-1: config 0 has an invalid interface number: 199 but max is 1 [ 1076.890448][ T126] usb 1-1: config 0 has no interface number 1 [ 1076.900981][ T126] usb 1-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1076.912306][ T126] usb 1-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 1076.933407][ T126] usb 1-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 1076.945124][ T126] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1076.967753][ T126] usb 1-1: SerialNumber: syz [ 1077.010211][ T126] usb 1-1: config 0 descriptor?? [ 1077.034051][T20872] usb 8-1: new high-speed USB device number 4 using dummy_hcd [ 1077.241330][ T126] usb 1-1: Found UVC 0.00 device (0002:0000) [ 1077.248338][T20872] usb 8-1: Using ep0 maxpacket: 16 [ 1077.255614][T20872] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1077.270893][ T126] usb 1-1: No valid video chain found. [ 1077.306843][ T126] usb 1-1: USB disconnect, device number 125 [ 1077.323867][T20872] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1077.359113][T20872] usb 8-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 1077.409060][T20872] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1077.436087][T20872] usb 8-1: config 0 descriptor?? [ 1077.458162][T20872] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/input/input91 [ 1077.666372][ T5850] usb 8-1: USB disconnect, device number 4 [ 1077.682574][T28226] loop1: detected capacity change from 0 to 1024 [ 1077.738632][T28226] EXT4-fs: Ignoring removed orlov option [ 1077.756448][T28226] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1077.864659][T28226] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 1078.073070][ T4805] EXT4-fs (loop1): unmounting filesystem. [ 1078.198144][T28245] IPVS: set_ctl: invalid protocol: 108 172.20.20.170:20003 [ 1078.322645][T28225] loop5: detected capacity change from 0 to 32768 [ 1078.396567][T28225] ERROR: (device loop5): dbAlloc: the hint is outside the map [ 1078.396567][T28225] [ 1078.443034][T28225] ialloc: diAlloc returned -5! [ 1078.835348][T28265] usb usb9: usbfs: process 28265 (syz.5.10510) did not claim interface 0 before use [ 1078.881629][T28267] __nla_validate_parse: 146 callbacks suppressed [ 1078.881645][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1078.946846][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.011869][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.032626][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.100753][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.147450][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.189564][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.225472][T28248] loop0: detected capacity change from 0 to 32768 [ 1079.247493][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.257114][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.278732][T28267] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10508'. [ 1079.289831][T28267] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1079.299640][T28267] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1079.308969][T28248] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1079.311721][T28267] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1079.344877][T28248] OCFS2: ERROR (device loop0): int ocfs2_validate_xattr_block(struct super_block *, struct buffer_head *): Extended attribute block #2304 has bad signature [ 1079.364754][T28248] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 1079.407508][T28248] OCFS2: Returning error to the calling process. [ 1079.413916][T28248] (syz.0.10501,28248,1):ocfs2_xattr_block_find:2835 ERROR: status = -5 [ 1079.608392][ T4801] ocfs2: Unmounting device (7,0) on (node local) [ 1079.698224][T28283] loop6: detected capacity change from 0 to 4096 [ 1079.759447][T28283] __ntfs_error: 11 callbacks suppressed [ 1079.759465][T28283] ntfs: (device loop6): check_mft_mirror(): Incomplete multi sector transfer detected in mft record 2. [ 1079.803213][T28283] ntfs: (device loop6): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1079.852223][T28294] netlink: 'syz.7.10525': attribute type 1 has an invalid length. [ 1079.918718][T28283] ntfs: volume version 3.1. [ 1079.931939][T28283] ntfs: (device loop6): map_mft_record_page(): Mft record 0x2 is corrupt. Run chkdsk. [ 1079.966597][T28297] loop5: detected capacity change from 0 to 512 [ 1079.981980][T28283] ntfs: (device loop6): map_mft_record(): Failed with error code 5. [ 1080.027803][T28283] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x2 as bad. Run chkdsk. [ 1080.068717][T28283] ntfs: (device loop6): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1080.070387][T28297] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1080.237052][T28308] netlink: 'syz.7.10530': attribute type 1 has an invalid length. [ 1080.263554][T28283] ntfs: (device loop6): ntfs_nlstoucs(): Name using character set utf8 contains characters that cannot be converted to Unicode. [ 1080.294797][T28283] ntfs: (device loop6): ntfs_lookup(): Failed to convert name to Unicode. [ 1080.311397][T28297] EXT4-fs error (device loop5): ext4_quota_enable:7017: inode #15: comm syz.5.10526: iget: bad i_size value: 360287970189639690 [ 1080.418607][T28297] EXT4-fs error (device loop5): ext4_quota_enable:7020: comm syz.5.10526: Bad quota inode: 15, type: 2 [ 1080.458145][T28297] EXT4-fs warning (device loop5): ext4_enable_quotas:7061: Failed to enable quota tracking (type=2, err=-117, ino=15). Please run e2fsck to fix. [ 1080.530230][T28297] EXT4-fs (loop5): Cannot turn on quotas: error -117 [ 1080.536972][T28297] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 1080.561301][T28317] loop1: detected capacity change from 0 to 64 [ 1080.615110][T28317] overlayfs: filesystem on './file0' not supported [ 1080.792173][T28297] EXT4-fs error (device loop5): ext4_lookup:1862: inode #2: comm syz.5.10526: deleted inode referenced: 12 [ 1081.056618][T26643] EXT4-fs (loop5): unmounting filesystem. [ 1081.449299][ T4823] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 1081.646399][T28361] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1081.653913][ T4823] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1081.687158][ T4823] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1081.719593][T28361] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1081.735460][ T4823] usb 7-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 1081.753697][T28361] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1081.755398][ T4823] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1081.787898][ T4823] usb 7-1: config 0 descriptor?? [ 1082.049428][ T4823] usb 7-1: USB disconnect, device number 5 [ 1082.076628][T28375] mmap: syz.0.10563 (28375): VmData 37470208 exceed data ulimit 1023. Update limits or use boot option ignore_rlimit_data. [ 1082.316026][ T8791] udevd[8791]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1082.514499][T28393] loop0: detected capacity change from 0 to 1024 [ 1082.549211][T28393] EXT4-fs: Ignoring removed orlov option [ 1082.566358][T28393] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1082.601179][T28395] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1082.643779][T28393] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1082.674378][T28395] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1082.700289][ T4820] usb 2-1: new high-speed USB device number 121 using dummy_hcd [ 1082.700914][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1082.721904][T28395] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1082.866452][T28405] loop0: detected capacity change from 0 to 256 [ 1082.903242][ T4820] usb 2-1: Using ep0 maxpacket: 16 [ 1082.910330][ T4820] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 1082.916579][T28405] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1082.940562][ T4820] usb 2-1: config 0 descriptor has 1 excess byte, ignoring [ 1082.967412][ T4820] usb 2-1: config 0 has no interface number 0 [ 1082.987138][ T4820] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1083.017808][ T4820] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1083.035653][ T4820] usb 2-1: Product: syz [ 1083.040437][ T4820] usb 2-1: Manufacturer: syz [ 1083.048473][ T4820] usb 2-1: SerialNumber: syz [ 1083.060801][ T4820] usb 2-1: config 0 descriptor?? [ 1083.217893][T28417] delete_channel: no stack [ 1083.249024][T28419] netlink: 'syz.0.10582': attribute type 21 has an invalid length. [ 1083.319680][ T4820] usb 2-1: Found UVC 0.00 device syz (046d:08f3) [ 1083.331122][ T4820] usb 2-1: No valid video chain found. [ 1083.358512][ T4820] usb 2-1: USB disconnect, device number 121 [ 1083.638137][T28436] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1083.649797][T20872] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 1083.679797][T28436] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1083.687732][T28436] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1083.850510][T20872] usb 6-1: config 0 has an invalid interface number: 36 but max is 0 [ 1083.882420][T20872] usb 6-1: config 0 has no interface number 0 [ 1083.894318][T20872] usb 6-1: New USB device found, idVendor=0733, idProduct=0430, bcdDevice=ce.72 [ 1083.952218][T20872] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1083.985069][T20872] usb 6-1: Product: syz [ 1083.989305][T20872] usb 6-1: Manufacturer: syz [ 1084.013314][T28448] loop6: detected capacity change from 0 to 1764 [ 1084.014879][T20872] usb 6-1: SerialNumber: syz [ 1084.044985][T20872] usb 6-1: config 0 descriptor?? [ 1084.082756][T20872] gspca_main: spca505-2.14.0 probing 0733:0430 [ 1084.233327][ T4820] usb 8-1: new high-speed USB device number 5 using dummy_hcd [ 1084.360696][T28458] loop6: detected capacity change from 0 to 4096 [ 1084.374412][T28458] ntfs3: loop6: Different NTFS' sector size (4096) and media sector size (512) [ 1084.437184][ T4820] usb 8-1: Using ep0 maxpacket: 32 [ 1084.450720][ T4820] usb 8-1: config 0 has an invalid interface number: 35 but max is 0 [ 1084.469258][T28458] ntfs3: loop6: failed to convert "c46c" to macinuit [ 1084.479154][ T4820] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1084.499368][ T4820] usb 8-1: config 0 has no interface number 0 [ 1084.514820][T20872] gspca_spca505: reg write: error -71 [ 1084.528304][ T4820] usb 8-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1084.531564][T20872] spca505: probe of 6-1:0.36 failed with error -5 [ 1084.590909][T20872] usb 6-1: USB disconnect, device number 5 [ 1084.606344][ T4820] usb 8-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 1084.642078][ T4820] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1084.664874][ T4820] usb 8-1: Product: syz [ 1084.682858][ T4820] usb 8-1: Manufacturer: syz [ 1084.691708][ T4820] usb 8-1: SerialNumber: syz [ 1084.722018][ T4820] usb 8-1: config 0 descriptor?? [ 1084.744496][ T4820] radio-si470x 8-1:0.35: could not find interrupt in endpoint [ 1084.790270][ T4820] radio-si470x: probe of 8-1:0.35 failed with error -5 [ 1084.941153][T28477] netlink: 'syz.0.10611': attribute type 46 has an invalid length. [ 1084.950164][T28477] __nla_validate_parse: 286 callbacks suppressed [ 1084.950178][T28477] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10611'. [ 1084.955063][ T4820] radio-raremono 8-1:0.35: this is not Thanko's Raremono. [ 1084.981303][ T4820] usbhid 8-1:0.35: couldn't find an input interrupt endpoint [ 1085.121955][T28483] loop0: detected capacity change from 0 to 256 [ 1085.154259][ T26] audit: type=1400 audit(1051.294:65): apparmor="DENIED" operation="stack" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=28484 comm="syz.1.10615" [ 1085.183925][ C1] vkms_vblank_simulate: vblank timer overrun [ 1085.238468][ T4820] usb 8-1: USB disconnect, device number 5 [ 1085.835119][ T26] audit: type=1400 audit(1051.930:66): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=28512 comm="syz.0.10630" [ 1086.230899][T28532] netlink: 12 bytes leftover after parsing attributes in process `syz.5.10639'. [ 1086.439715][T28541] loop5: detected capacity change from 0 to 256 [ 1086.509763][T28541] FAT-fs (loop5): Directory bread(block 64) failed [ 1086.554413][T28541] FAT-fs (loop5): Directory bread(block 65) failed [ 1086.569192][T28541] FAT-fs (loop5): Directory bread(block 66) failed [ 1086.588496][T28541] FAT-fs (loop5): Directory bread(block 67) failed [ 1086.601227][T28541] FAT-fs (loop5): Directory bread(block 68) failed [ 1086.639160][T28541] FAT-fs (loop5): Directory bread(block 69) failed [ 1086.668885][T28541] FAT-fs (loop5): Directory bread(block 70) failed [ 1086.698123][T28541] FAT-fs (loop5): Directory bread(block 71) failed [ 1086.712151][T28541] FAT-fs (loop5): Directory bread(block 72) failed [ 1086.718704][T28541] FAT-fs (loop5): Directory bread(block 73) failed [ 1086.826739][ T5176] usb 8-1: new high-speed USB device number 6 using dummy_hcd [ 1086.848835][T28554] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 1086.899510][T28554] bond0: (slave lo): Error: Device can not be enslaved while up [ 1086.929577][T28530] loop6: detected capacity change from 0 to 32768 [ 1086.980913][T28530] jfs_strtoUCS: char2uni returned -22. [ 1087.018439][T28530] charset = euc-jp, char = 0xd4 [ 1087.062144][ T5176] usb 8-1: Using ep0 maxpacket: 16 [ 1087.077307][ T5176] usb 8-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1087.103473][ T5176] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1087.123103][ T5176] usb 8-1: Product: syz [ 1087.133876][ T5176] usb 8-1: Manufacturer: syz [ 1087.144659][ T5176] usb 8-1: SerialNumber: syz [ 1087.157190][ T5176] r8152-cfgselector 8-1: config 0 descriptor?? [ 1087.254292][ T26] audit: type=1326 audit(1053.249:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28562 comm="syz.1.10655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18aad8f749 code=0x7ffc0000 [ 1087.319639][ T26] audit: type=1326 audit(1053.287:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28562 comm="syz.1.10655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f18aad8f749 code=0x7ffc0000 [ 1087.350480][T20872] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 1087.433789][ T26] audit: type=1326 audit(1053.287:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28562 comm="syz.1.10655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18aad8f749 code=0x7ffc0000 [ 1087.520329][ T26] audit: type=1326 audit(1053.287:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28562 comm="syz.1.10655" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18aad8f749 code=0x7ffc0000 [ 1087.585951][T20872] usb 6-1: Using ep0 maxpacket: 32 [ 1087.614452][T20872] usb 6-1: config index 0 descriptor too short (expected 35577, got 27) [ 1087.624183][ T5176] r8152-cfgselector 8-1: Unknown version 0x0000 [ 1087.641420][ T5176] r8152-cfgselector 8-1: bad CDC descriptors [ 1087.668159][ T5176] r8152-cfgselector 8-1: Unknown version 0x0000 [ 1087.674716][T20872] usb 6-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 1087.697306][ T5176] r8152-cfgselector 8-1: USB disconnect, device number 6 [ 1087.713915][T20872] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 1087.736724][T20872] usb 6-1: config 1 has no interface number 0 [ 1087.743116][T20872] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1087.761355][T20872] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1087.779034][T20872] usb 6-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 1087.803151][T20872] usb 6-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 1087.803291][T28580] tmpfs: Bad value for 'mpol' [ 1087.817879][T20872] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1087.847255][T20872] snd_usb_pod 6-1:1.1: Line 6 Pocket POD found [ 1088.000248][T28584] loop6: detected capacity change from 0 to 4096 [ 1088.063808][T20872] snd_usb_pod 6-1:1.1: cannot start listening: -90 [ 1088.071282][T20872] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now disconnected [ 1088.092456][T20872] snd_usb_pod: probe of 6-1:1.1 failed with error -90 [ 1088.126799][T28591] IPVS: length: 151 != 8 [ 1088.179778][T28593] loop1: detected capacity change from 0 to 256 [ 1088.219002][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 1088.225347][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 1088.266450][T28584] ntfs: (device loop6): parse_options(): NLS character set is not found. Using previous one default. [ 1088.282746][T28593] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1088.306256][T28584] ntfs: (device loop6): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 1088.344539][T20872] usb 6-1: USB disconnect, device number 6 [ 1088.398962][T28584] ntfs: volume version 3.1. [ 1089.053316][T28616] netlink: 4 bytes leftover after parsing attributes in process `syz.7.10679'. [ 1089.317410][T28629] sctp: [Deprecated]: syz.7.10685 (pid 28629) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1089.317410][T28629] Use struct sctp_sack_info instead [ 1089.983277][T28657] netlink: 'syz.6.10699': attribute type 1 has an invalid length. [ 1090.016021][T28657] netlink: 'syz.6.10699': attribute type 2 has an invalid length. [ 1090.051102][T28661] loop0: detected capacity change from 0 to 1024 [ 1090.056157][T28659] loop1: detected capacity change from 0 to 2048 [ 1090.120108][T28662] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1090.141006][ T4445] usb 8-1: new high-speed USB device number 7 using dummy_hcd [ 1090.192485][T28661] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 1090.205240][T28659] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=203 [ 1090.343903][ T4445] usb 8-1: Using ep0 maxpacket: 32 [ 1090.350852][ T4445] usb 8-1: config 0 has an invalid interface number: 2 but max is 0 [ 1090.375943][ T4445] usb 8-1: config 0 has no interface number 0 [ 1090.409003][ T4445] usb 8-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2 [ 1090.424011][T28659] Remounting filesystem read-only [ 1090.431190][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1090.461814][ T4445] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1090.491441][ T4445] usb 8-1: Product: syz [ 1090.503477][ T4445] usb 8-1: Manufacturer: syz [ 1090.514414][ T4445] usb 8-1: SerialNumber: syz [ 1090.547878][ T4445] usb 8-1: config 0 descriptor?? [ 1090.587022][ T4445] etas_es58x 8-1:0.2: Starting syz syz (Serial Number syz) [ 1090.663395][T28681] loop1: detected capacity change from 0 to 128 [ 1090.722833][T28681] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 1090.777071][ T4445] etas_es58x 8-1:0.2: Product info: 424242424242 [ 1090.927419][ T4805] EXT4-fs (loop1): unmounting filesystem. [ 1091.042527][ T5850] usb 8-1: USB disconnect, device number 7 [ 1091.049230][ T5850] etas_es58x 8-1:0.2: Disconnecting syz syz [ 1091.561829][T28715] netlink: 8 bytes leftover after parsing attributes in process `syz.5.10722'. [ 1091.804238][T28726] xt_cluster: node mask cannot exceed total number of nodes [ 1092.278896][ T126] usb 2-1: new high-speed USB device number 122 using dummy_hcd [ 1092.408990][T28755] netlink: 20 bytes leftover after parsing attributes in process `syz.6.10739'. [ 1092.450681][T28755] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0 [ 1092.519275][ T126] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1092.535652][ T126] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1092.556206][ T126] usb 2-1: config 0 descriptor?? [ 1092.568361][ T126] cp210x 2-1:0.0: cp210x converter detected [ 1092.714834][T28768] (unnamed net_device) (uninitialized): option tlb_dynamic_lb: invalid value (253) [ 1092.792070][ T4751] usb 8-1: new high-speed USB device number 8 using dummy_hcd [ 1092.934135][T28776] loop5: detected capacity change from 0 to 1024 [ 1093.009074][ T4751] usb 8-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 1093.019535][ T126] cp210x 2-1:0.0: failed to get vendor val 0x000e size 3: -71 [ 1093.034655][ T4751] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1093.043360][ T126] cp210x 2-1:0.0: failed to get vendor val 0x370c size 73: -71 [ 1093.044254][T28776] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 1093.070039][ T126] cp210x 2-1:0.0: GPIO initialisation failed: -71 [ 1093.088308][ T4751] usb 8-1: config 0 descriptor?? [ 1093.104115][ T126] usb 2-1: cp210x converter now attached to ttyUSB0 [ 1093.139700][ T126] usb 2-1: USB disconnect, device number 122 [ 1093.195688][ T126] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1093.227990][ T126] cp210x 2-1:0.0: device disconnected [ 1093.290123][T26643] EXT4-fs (loop5): unmounting filesystem. [ 1093.548555][ T4751] usb 8-1: Cannot set MAC address [ 1093.553827][ T4751] MOSCHIP usb-ethernet driver: probe of 8-1:0.0 failed with error -71 [ 1093.594202][ T4751] usb 8-1: USB disconnect, device number 8 [ 1093.808760][T28811] netlink: 'syz.6.10759': attribute type 1 has an invalid length. [ 1093.833290][T28811] netlink: 'syz.6.10759': attribute type 2 has an invalid length. [ 1094.085764][ T126] usb 1-1: new high-speed USB device number 126 using dummy_hcd [ 1094.312429][ T126] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1094.342259][ T126] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1094.361685][ T126] usb 1-1: Product: syz [ 1094.375215][ T126] usb 1-1: Manufacturer: syz [ 1094.379891][ T126] usb 1-1: SerialNumber: syz [ 1094.394288][ T126] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1094.423806][ T4751] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1094.921449][ T4445] usb 1-1: USB disconnect, device number 126 [ 1095.613973][T28889] netlink: 16 bytes leftover after parsing attributes in process `syz.0.10796'. [ 1095.809112][T28897] netlink: 12 bytes leftover after parsing attributes in process `syz.0.10801'. [ 1095.828251][ T4751] usb 1-1: Service connection timeout for: 256 [ 1095.834448][ T4751] ath9k_htc 1-1:1.0: ath9k_htc: Unable to initialize HTC services [ 1095.872180][ T4751] ath9k_htc: Failed to initialize the device [ 1095.881711][ T4445] usb 1-1: ath9k_htc: USB layer deinitialized [ 1096.652013][T28934] loop1: detected capacity change from 0 to 1024 [ 1096.673704][T28934] EXT4-fs: Ignoring removed bh option [ 1096.734931][T28934] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 1096.777435][T28934] EXT4-fs warning (device loop1): ext4_empty_dir:3147: inode #11: comm syz.1.10818: directory missing '.' [ 1097.005516][ T4805] EXT4-fs (loop1): unmounting filesystem. [ 1097.190002][T28961] loop5: detected capacity change from 0 to 256 [ 1097.268580][T28961] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 1097.578255][T28929] loop0: detected capacity change from 0 to 32768 [ 1097.959125][T28986] loop5: detected capacity change from 0 to 256 [ 1098.033715][T28986] FAT-fs (loop5): Directory bread(block 64) failed [ 1098.060342][T28986] FAT-fs (loop5): Directory bread(block 65) failed [ 1098.084126][T28986] FAT-fs (loop5): Directory bread(block 66) failed [ 1098.090755][T28986] FAT-fs (loop5): Directory bread(block 67) failed [ 1098.132643][T28986] FAT-fs (loop5): Directory bread(block 68) failed [ 1098.158834][T28986] FAT-fs (loop5): Directory bread(block 69) failed [ 1098.165526][T28986] FAT-fs (loop5): Directory bread(block 70) failed [ 1098.201671][T28986] FAT-fs (loop5): Directory bread(block 71) failed [ 1098.244356][T28986] FAT-fs (loop5): Directory bread(block 72) failed [ 1098.251422][T28986] FAT-fs (loop5): Directory bread(block 73) failed [ 1098.366523][ T26] audit: type=1800 audit(1063.651:71): pid=28986 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.10841" name="file1" dev="loop5" ino=1048690 res=0 errno=0 [ 1098.764917][T29014] netlink: 'syz.1.10857': attribute type 3 has an invalid length. [ 1099.011919][T29024] [U]  [ 1099.224904][T29036] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 2 [ 1099.239869][T29037] xt_bpf: check failed: parse error [ 1099.910687][T29063] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1099.932152][T29070] loop1: detected capacity change from 0 to 1024 [ 1100.060415][ T11] hfsplus: b-tree write err: -5, ino 4 [ 1100.063780][T29073] netlink: 1372 bytes leftover after parsing attributes in process `syz.5.10886'. [ 1100.124923][T29071] loop7: detected capacity change from 0 to 4096 [ 1100.163862][T29071] ntfs3: loop7: Different NTFS' sector size (2048) and media sector size (512) [ 1100.179265][ T5850] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 1100.289858][T29077] loop0: detected capacity change from 0 to 2048 [ 1100.337310][T29077] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1100.393134][ T5850] usb 7-1: Using ep0 maxpacket: 32 [ 1100.400162][T29077] syz.0.10888: attempt to access beyond end of device [ 1100.400162][T29077] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1100.415624][ T5850] usb 7-1: config 0 has an invalid interface number: 2 but max is 0 [ 1100.423632][ T5850] usb 7-1: config 0 has no interface number 0 [ 1100.435774][T29081] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1100.464895][ T5850] usb 7-1: New USB device found, idVendor=108c, idProduct=0168, bcdDevice=84.b2 [ 1100.481248][ T5850] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1100.489800][T29077] syz.0.10888: attempt to access beyond end of device [ 1100.489800][T29077] loop0: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 1100.521367][ T5850] usb 7-1: Product: syz [ 1100.540107][ T5850] usb 7-1: Manufacturer: syz [ 1100.553506][T29077] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=0) [ 1100.567175][ T5850] usb 7-1: SerialNumber: syz [ 1100.603247][ T5850] usb 7-1: config 0 descriptor?? [ 1100.612961][ T5850] etas_es58x 7-1:0.2: Starting syz syz (Serial Number syz) [ 1100.832788][ T5850] etas_es58x 7-1:0.2: Product info: 424242424242 [ 1101.058239][T29102] loop7: detected capacity change from 0 to 256 [ 1101.087499][ T5850] usb 7-1: USB disconnect, device number 6 [ 1101.095628][ T5850] etas_es58x 7-1:0.2: Disconnecting syz syz [ 1101.157899][T29102] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 1101.587210][T29114] Cannot find add_set index 0 as target [ 1102.280665][T29141] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10913'. [ 1102.317319][T29141] netlink: 28 bytes leftover after parsing attributes in process `syz.1.10913'. [ 1102.351434][T29147] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1102.531785][T29150] netlink: 'syz.7.10917': attribute type 26 has an invalid length. [ 1102.536793][T29152] netlink: 36 bytes leftover after parsing attributes in process `syz.1.10918'. [ 1102.549290][T29152] netlink: 'syz.1.10918': attribute type 1 has an invalid length. [ 1102.814099][T29161] xt_TPROXY: Can be used only with -p tcp or -p udp [ 1102.997095][T29168] netlink: 'syz.1.10925': attribute type 21 has an invalid length. [ 1103.014611][T29168] IPv6: NLM_F_CREATE should be specified when creating new route [ 1103.044072][T29168] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1103.049440][T29173] netlink: 192 bytes leftover after parsing attributes in process `syz.7.10926'. [ 1103.051345][T29168] IPv6: NLM_F_CREATE should be set when creating new route [ 1103.067853][T29168] IPv6: NLM_F_CREATE should be set when creating new route [ 1103.075088][T29168] IPv6: NLM_F_CREATE should be set when creating new route [ 1103.830987][T29209] loop6: detected capacity change from 0 to 256 [ 1103.874300][T29211] loop0: detected capacity change from 0 to 16 [ 1103.923810][T29211] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1105.145772][T29258] loop1: detected capacity change from 0 to 2048 [ 1105.228470][T29258] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 1105.271323][T29258] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1105.327340][T29228] loop5: detected capacity change from 0 to 32768 [ 1105.333931][ T26] audit: type=1800 audit(1070.171:72): pid=29258 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.10963" name="file1" dev="loop1" ino=1367 res=0 errno=0 [ 1105.446740][T29228] ocfs2: Slot 0 on device (7,5) was already allocated to this node! [ 1105.622090][T29228] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1105.803000][T26643] ocfs2: Unmounting device (7,5) on (node local) [ 1105.813499][T29289] netlink: 'syz.6.10977': attribute type 2 has an invalid length. [ 1105.933428][T29289] device .*! entered promiscuous mode [ 1105.991022][T29295] loop7: detected capacity change from 0 to 764 [ 1106.090273][T29295] ISOFS: unable to read i-node block [ 1106.114706][T29295] isofs_fill_super: get root inode failed [ 1106.623805][T29318] netlink: 'syz.0.10991': attribute type 13 has an invalid length. [ 1106.686364][T29318] netlink: 'syz.0.10991': attribute type 14 has an invalid length. [ 1106.708946][T29318] netlink: 156 bytes leftover after parsing attributes in process `syz.0.10991'. [ 1106.729055][T29322] netlink: 224 bytes leftover after parsing attributes in process `syz.6.10993'. [ 1106.969356][T29331] loop5: detected capacity change from 0 to 1024 [ 1107.069679][T29334] loop0: detected capacity change from 0 to 2048 [ 1107.090340][T29334] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1107.101804][T29331] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 1107.121809][T29340] netlink: 'syz.6.11002': attribute type 1 has an invalid length. [ 1107.321376][T26643] EXT4-fs (loop5): unmounting filesystem. [ 1107.543557][T29357] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11007'. [ 1107.847272][ T26] audit: type=1326 audit(1072.519:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29372 comm="syz.5.11017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1107.869449][T29368] loop0: detected capacity change from 0 to 4096 [ 1107.906799][ T26] audit: type=1326 audit(1072.519:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29372 comm="syz.5.11017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1107.915100][T29368] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512) [ 1108.007622][ T26] audit: type=1326 audit(1072.565:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29372 comm="syz.5.11017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=25 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1108.030972][ T5850] usb 8-1: new high-speed USB device number 9 using dummy_hcd [ 1108.077661][ T26] audit: type=1326 audit(1072.565:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29372 comm="syz.5.11017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1108.116149][ T26] audit: type=1326 audit(1072.565:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29372 comm="syz.5.11017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1108.241759][ T5850] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1108.272328][ T5850] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 1108.304190][ T5850] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1108.335058][ T5850] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1108.380445][T29365] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22 [ 1108.787015][T29403] netlink: 40 bytes leftover after parsing attributes in process `syz.1.11030'. [ 1108.818027][ T4751] usb 8-1: USB disconnect, device number 9 [ 1108.894205][T29407] CIFS mount error: No usable UNC path provided in device string! [ 1108.894205][T29407] [ 1108.945616][T29407] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1109.149173][T29417] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11040'. [ 1109.247989][T29421] netlink: 2 bytes leftover after parsing attributes in process `syz.0.11041'. [ 1109.547511][T29433] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11047'. [ 1109.580082][T29433] netlink: 28 bytes leftover after parsing attributes in process `syz.7.11047'. [ 1109.751921][T29443] netlink: 292 bytes leftover after parsing attributes in process `syz.1.11052'. [ 1109.979034][T29451] overlayfs: conflicting options: metacopy=on,redirect_dir=follow [ 1110.390174][T29469] loop0: detected capacity change from 0 to 128 [ 1110.478296][T29469] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 1110.655685][T29439] loop5: detected capacity change from 0 to 32768 [ 1110.722669][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1110.761596][T29439] XFS (loop5): Mounting V5 Filesystem [ 1110.813739][T29492] Lens A: ================= START STATUS ================= [ 1110.821285][T29492] Lens A: Focus, Absolute: 0 [ 1110.826731][T29492] Lens A: ================== END STATUS ================== [ 1110.901233][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1110.927116][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1110.936846][T29439] XFS (loop5): Ending clean mount [ 1110.947184][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1111.156028][T26643] XFS (loop5): Unmounting Filesystem [ 1111.291761][T29508] loop7: detected capacity change from 0 to 64 [ 1111.363640][T29498] infiniband syz1: set active [ 1111.383570][T20872] vcan0 speed is unknown, defaulting to 1000 [ 1111.406067][T29498] infiniband syz1: added vcan0 [ 1111.424386][T29510] loop0: detected capacity change from 0 to 16 [ 1111.490307][T29498] RDS/IB: syz1: added [ 1111.495377][T29498] smc: adding ib device syz1 with port count 1 [ 1111.496293][T29510] erofs: (device loop0): mounted with root inode @ nid 36. [ 1111.501887][T29498] smc: ib device syz1 port 1 has pnetid [ 1111.525421][T20872] vcan0 speed is unknown, defaulting to 1000 [ 1111.539112][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1111.930977][T29522] x_tables: duplicate underflow at hook 4 [ 1112.167739][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1112.413532][T29537] loop0: detected capacity change from 0 to 4096 [ 1112.438716][T29543] loop5: detected capacity change from 0 to 2048 [ 1112.451438][T29537] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512) [ 1112.516563][T29543] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1112.584366][T29537] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1112.650758][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1113.119230][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1113.489967][T29579] loop0: detected capacity change from 0 to 512 [ 1113.518927][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1113.586572][T29579] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1113.603449][T29579] Quota error (device loop0): v2_read_file_info: Block with free entry 2 out of range (1, 0). [ 1113.702238][T29579] EXT4-fs warning (device loop0): ext4_enable_quotas:7061: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 1113.745821][T29579] EXT4-fs (loop0): Cannot turn on quotas: error -117 [ 1113.783709][T29579] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #13: comm syz.0.11115: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 1113.842166][T29579] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.11115: couldn't read orphan inode 13 (err -117) [ 1113.885798][T29579] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1114.079464][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1114.130012][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1114.227964][T29607] netlink: 'syz.7.11129': attribute type 1 has an invalid length. [ 1114.245326][T29607] netlink: 'syz.7.11129': attribute type 3 has an invalid length. [ 1114.273105][T29607] netlink: 132 bytes leftover after parsing attributes in process `syz.7.11129'. [ 1114.679744][T29498] vcan0 speed is unknown, defaulting to 1000 [ 1115.147572][T29636] loop5: detected capacity change from 0 to 4096 [ 1115.190286][T29636] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 1115.212847][T29646] device geneve3 entered promiscuous mode [ 1115.362396][T29636] ntfs3: loop5: failed to convert "c46c" to cp1251 [ 1115.488406][T29656] netlink: 108 bytes leftover after parsing attributes in process `syz.7.11151'. [ 1115.592430][T29660] netlink: 40 bytes leftover after parsing attributes in process `syz.0.11154'. [ 1115.640398][T29660] netlink: 40 bytes leftover after parsing attributes in process `syz.0.11154'. [ 1115.908355][T29674] vim2m vim2m.0: Fourcc format (0x31384142) invalid. [ 1115.960046][ T26] audit: type=1326 audit(1080.114:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29675 comm="syz.7.11163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1115.985359][T29678] netlink: 'syz.5.11162': attribute type 5 has an invalid length. [ 1116.044099][ T26] audit: type=1326 audit(1080.142:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29675 comm="syz.7.11163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1116.065963][ C0] vkms_vblank_simulate: vblank timer overrun [ 1116.121507][ T26] audit: type=1326 audit(1080.142:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29675 comm="syz.7.11163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1116.225808][ T26] audit: type=1326 audit(1080.142:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29675 comm="syz.7.11163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1116.408108][T29696] syz.6.11172 (29696): /proc/29695/oom_adj is deprecated, please use /proc/29695/oom_score_adj instead. [ 1116.518139][T29700] x_tables: duplicate underflow at hook 3 [ 1117.064190][T29723] loop7: detected capacity change from 0 to 4096 [ 1117.106847][T29729] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1117.180270][T20872] usb 2-1: new high-speed USB device number 123 using dummy_hcd [ 1117.400637][T29742] IPv6: NLM_F_REPLACE set, but no existing node found! [ 1117.419833][T20872] usb 2-1: Using ep0 maxpacket: 8 [ 1117.429076][T20872] usb 2-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 1117.463087][T20872] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1117.519595][T20872] usb 2-1: Product: syz [ 1117.523900][T20872] usb 2-1: Manufacturer: syz [ 1117.528507][T20872] usb 2-1: SerialNumber: syz [ 1117.583543][T20872] usb 2-1: config 0 descriptor?? [ 1117.644439][T20872] radio-usb-si4713 2-1:0.0: Si4713 development board discovered: (10C4:8244) [ 1117.757829][T29756] netlink: 72 bytes leftover after parsing attributes in process `syz.7.11195'. [ 1117.860243][T29761] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11196'. [ 1118.079695][T20872] radio-usb-si4713: probe of 2-1:0.0 failed with error -71 [ 1118.118415][T20872] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1118.131546][T20872] usb 2-1: USB disconnect, device number 123 [ 1118.174345][T29772] netlink: 'syz.7.11202': attribute type 30 has an invalid length. [ 1118.214167][T29772] netlink: 24 bytes leftover after parsing attributes in process `syz.7.11202'. [ 1118.233058][T29772] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 1118.242983][T29772] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 1118.425377][T29782] netlink: 'syz.5.11207': attribute type 10 has an invalid length. [ 1118.455259][T29782] team0: Device macvlan1 is up. Set it down before adding it as a team port [ 1118.833132][T29764] loop0: detected capacity change from 0 to 32768 [ 1118.836226][T29794] loop5: detected capacity change from 0 to 64 [ 1118.966204][T29764] XFS (loop0): Mounting V5 Filesystem [ 1118.976878][T29794] hfs: keylen 94 too large [ 1119.144778][T29764] XFS (loop0): Ending clean mount [ 1119.216476][T29814] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11219'. [ 1119.256535][T29814] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11219'. [ 1119.266094][ T4801] XFS (loop0): Unmounting Filesystem [ 1119.757645][T29825] loop5: detected capacity change from 0 to 8192 [ 1119.810421][T29825] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1119.964229][T29796] loop1: detected capacity change from 0 to 32768 [ 1119.972811][T29825] REISERFS (device loop5): found reiserfs format "3.5" with non-standard journal [ 1119.983024][T29825] REISERFS (device loop5): using ordered data mode [ 1120.030786][T29825] reiserfs: using flush barriers [ 1120.071372][T29825] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1120.099516][T29796] ERROR: (device loop1): duplicateIXtree: [ 1120.099516][T29796] [ 1120.117747][T29825] REISERFS (device loop5): checking transaction log (loop5) [ 1120.138106][T29796] ERROR: (device loop1): remounting filesystem as read-only [ 1120.168531][T29825] REISERFS (device loop5): Using rupasov hash to sort names [ 1120.240811][T29825] REISERFS (device loop5): using 3.5.x disk format [ 1120.298566][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.345289][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.365302][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.384371][T29825] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 1120.498813][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.534743][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.555584][T29825] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1120.696613][T29848] sock: sock_timestamping_bind_phc: sock not bind to device [ 1120.949636][T29853] loop0: detected capacity change from 0 to 512 [ 1120.969240][T29855] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11236'. [ 1121.067973][T29853] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 1121.273858][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1121.423355][T29880] rdma_rxe: rxe_register_device failed with error -23 [ 1121.443229][T29880] rdma_rxe: failed to add vcan0 [ 1121.528600][ T4823] usb 8-1: new high-speed USB device number 10 using dummy_hcd [ 1121.605817][T29885] device geneve2 entered promiscuous mode [ 1121.731507][ T4823] usb 8-1: Using ep0 maxpacket: 8 [ 1121.740191][ T4823] usb 8-1: New USB device found, idVendor=046d, idProduct=0896, bcdDevice=3a.11 [ 1121.781604][ T4823] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1121.798083][T29894] netlink: 16 bytes leftover after parsing attributes in process `syz.6.11255'. [ 1121.813860][ T4823] usb 8-1: Product: syz [ 1121.820888][ T4823] usb 8-1: Manufacturer: syz [ 1121.825503][ T4823] usb 8-1: SerialNumber: syz [ 1121.854354][ T4823] usb 8-1: config 0 descriptor?? [ 1121.876031][ T4823] gspca_main: vc032x-2.14.0 probing 046d:0896 [ 1121.995330][T29899] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11258'. [ 1122.015698][T29899] (unnamed net_device) (uninitialized): option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 1122.348087][ T4823] gspca_vc032x: reg_w err -71 [ 1122.356857][ T4823] vc032x: probe of 8-1:0.0 failed with error -71 [ 1122.406400][ T4823] usb 8-1: USB disconnect, device number 10 [ 1122.445321][T29888] loop0: detected capacity change from 0 to 32768 [ 1122.517082][T29888] __jfs_setxattr: xattr_size = 72, new_size = 12051 [ 1122.686027][T29920] netlink: 28 bytes leftover after parsing attributes in process `syz.6.11268'. [ 1123.121718][T29928] loop5: detected capacity change from 0 to 4096 [ 1123.169409][T29928] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 1123.822734][T29922] loop1: detected capacity change from 0 to 40427 [ 1123.891518][T29922] F2FS-fs (loop1): invalid crc value [ 1123.919582][T29922] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 1124.017874][T29965] loop7: detected capacity change from 0 to 512 [ 1124.051860][T29965] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1124.135644][T29922] F2FS-fs (loop1): recover fsync data on readonly fs [ 1124.166789][T29965] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 1124.183571][T29922] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1124.275836][ T4751] usb 1-1: new high-speed USB device number 127 using dummy_hcd [ 1124.396895][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1124.496516][ T4751] usb 1-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 1124.516657][ T4751] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1124.541798][T29979] loop7: detected capacity change from 0 to 1024 [ 1124.550619][ T4751] usb 1-1: Product: syz [ 1124.559775][T29981] netlink: 52 bytes leftover after parsing attributes in process `syz.5.11297'. [ 1124.572205][ T4751] usb 1-1: Manufacturer: syz [ 1124.577861][T29979] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1124.596156][ T4751] usb 1-1: SerialNumber: syz [ 1124.602578][T29979] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1124.625553][ T4751] usb 1-1: config 0 descriptor?? [ 1124.638284][ T4751] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 1124.676811][T29979] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1124.739698][T29979] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 1124.865303][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1124.868991][T29990] netlink: 144 bytes leftover after parsing attributes in process `syz.1.11300'. [ 1125.091992][ T126] usb 1-1: USB disconnect, device number 127 [ 1125.095990][T29998] CIFS mount error: No usable UNC path provided in device string! [ 1125.095990][T29998] [ 1125.112950][T29998] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1125.124498][ T4445] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 1125.188981][T30001] loop1: detected capacity change from 0 to 16 [ 1125.217614][T30001] erofs: (device loop1): mounted with root inode @ nid 36. [ 1125.242703][T30001] erofs: (device loop1): z_erofs_read_folio: failed to read, err [-22] [ 1125.351807][ T4445] usb 7-1: Using ep0 maxpacket: 32 [ 1125.360614][ T4445] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 1125.394979][ T4445] usb 7-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a [ 1125.417138][ T4445] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1125.428026][T30008] cgroup: none used incorrectly [ 1125.428820][T30010] loop1: detected capacity change from 0 to 8 [ 1125.440610][ T4445] usb 7-1: Product: syz [ 1125.445235][ T4445] usb 7-1: Manufacturer: syz [ 1125.463537][ T4445] usb 7-1: SerialNumber: syz [ 1125.480229][ T4445] usb 7-1: config 0 descriptor?? [ 1125.496861][T29987] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 1125.748867][T29987] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 1125.778143][ T4445] net1080 7-1:0.0 usb0: register 'net1080' at usb-dummy_hcd.6-1, NetChip TurboCONNECT, c2:ed:88:66:af:77 [ 1126.022891][ T126] usb 7-1: USB disconnect, device number 7 [ 1126.046783][ T126] net1080 7-1:0.0 usb0: unregister 'net1080' usb-dummy_hcd.6-1, NetChip TurboCONNECT [ 1126.155097][T30034] loop5: detected capacity change from 0 to 16 [ 1126.201140][T30034] erofs: (device loop5): mounted with root inode @ nid 36. [ 1126.257644][T30034] syz.5.11322: attempt to access beyond end of device [ 1126.257644][T30034] loop5: rw=524288, sector=7864328, nr_sectors = 8 limit=16 [ 1126.319986][T30034] syz.5.11322: attempt to access beyond end of device [ 1126.319986][T30034] loop5: rw=0, sector=7864328, nr_sectors = 8 limit=16 [ 1126.367004][T30043] ipt_REJECT: TCP_RESET invalid for non-tcp [ 1126.377748][ T26] audit: type=1800 audit(1089.853:82): pid=30034 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.11322" name="file3" dev="loop5" ino=89 res=0 errno=0 [ 1126.454547][T30045] loop0: detected capacity change from 0 to 8192 [ 1126.520992][T30045] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1126.538688][T30045] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 1126.548519][T30045] REISERFS (device loop0): using ordered data mode [ 1126.555413][T30045] reiserfs: using flush barriers [ 1126.573300][T30045] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1126.596811][T30045] REISERFS (device loop0): checking transaction log (loop0) [ 1126.621682][T30045] REISERFS (device loop0): Using rupasov hash to sort names [ 1126.638724][T30045] REISERFS (device loop0): using 3.5.x disk format [ 1126.677051][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1126.732746][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1126.799312][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1126.842942][T30045] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 1126.959646][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1127.041471][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1127.086070][T30045] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1127.112232][ T126] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 1127.336445][ T126] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1127.345018][T30073] loop1: detected capacity change from 0 to 1764 [ 1127.357399][ T126] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1127.378294][ T126] usb 6-1: Product: syz [ 1127.393688][ T126] usb 6-1: Manufacturer: syz [ 1127.398652][ T126] usb 6-1: SerialNumber: syz [ 1127.443895][ T126] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1127.503988][ T126] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1127.661260][T30083] xt_TCPMSS: Only works on TCP SYN packets [ 1127.861684][T30089] netlink: 28 bytes leftover after parsing attributes in process `syz.1.11343'. [ 1127.983944][ T4823] usb 6-1: USB disconnect, device number 7 [ 1128.651783][T30127] netlink: 28 bytes leftover after parsing attributes in process `syz.5.11357'. [ 1128.676448][ T126] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 1128.687721][ T126] ath9k_htc: Failed to initialize the device [ 1128.719570][ T4823] usb 6-1: ath9k_htc: USB layer deinitialized [ 1129.748070][T30171] loop5: detected capacity change from 0 to 4096 [ 1129.811611][T30178] loop0: detected capacity change from 0 to 164 [ 1129.849647][T30178] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1129.884602][T30180] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1130.198329][T30185] loop1: detected capacity change from 0 to 4096 [ 1130.248982][T30185] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 1130.663318][T30207] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11395'. [ 1130.672597][T30206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1130.715302][T30206] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1130.944043][T30215] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11398'. [ 1131.074339][T30191] loop6: detected capacity change from 0 to 32768 [ 1131.195071][T30233] netlink: 36 bytes leftover after parsing attributes in process `syz.1.11406'. [ 1131.241287][T30191] XFS (loop6): Mounting V5 Filesystem [ 1131.382350][T30236] loop1: detected capacity change from 0 to 4096 [ 1131.390474][T30236] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 1131.412493][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. deltaxcn = 0x1, max_cluster = 0x0 [ 1131.429267][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 1131.445936][T30236] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 1131.466707][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. deltaxcn = 0x1, max_cluster = 0x0 [ 1131.471299][T30191] XFS (loop6): Ending clean mount [ 1131.492094][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 1131.514300][T30236] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 1131.690373][T30236] ntfs: (device loop1): check_mft_mirror(): Failed to read $MFTMirr. [ 1131.742082][T30236] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Will not be able to remount read-write. Run ntfsfix and/or chkdsk. [ 1131.804641][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 1131.862794][T26933] XFS (loop6): Unmounting Filesystem [ 1131.888932][T30236] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 1131.950302][T30253] netlink: 6 bytes leftover after parsing attributes in process `syz.5.11414'. [ 1131.994526][T30236] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 1132.003844][T30253] netlink: 6 bytes leftover after parsing attributes in process `syz.5.11414'. [ 1132.043870][T30236] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 1132.066289][T30236] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1132.149621][T30236] ntfs: volume version 3.1. [ 1132.170527][T30236] ntfs: (device loop1): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 1132.172351][T30258] delete_channel: no stack [ 1132.232273][T30236] ntfs: (device loop1): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1132.302381][T30236] ntfs: (device loop1): ntfs_lookup_inode_by_name(): No index allocation attribute but index entry requires one. Directory inode 0x5 is corrupt or driver bug. [ 1132.358060][T30236] ntfs: (device loop1): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1132.614985][T30269] loop0: detected capacity change from 0 to 512 [ 1132.622619][T30269] EXT4-fs: Ignoring removed bh option [ 1132.712443][T30269] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 1132.755634][T30269] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 1132.780096][T30269] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 1132.802197][T30272] loop7: detected capacity change from 0 to 4096 [ 1132.809174][T30269] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 1132.844621][T30272] ntfs: volume version 3.1. [ 1132.868099][T30269] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 1133.122044][ T4801] EXT4-fs (loop0): unmounting filesystem. [ 1133.528920][T30297] loop7: detected capacity change from 0 to 512 [ 1133.570317][T30297] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode [ 1133.616136][T30297] EXT4-fs error (device loop7): ext4_read_block_bitmap_nowait:477: comm syz.7.11435: Invalid block bitmap block 0 in block_group 0 [ 1133.699065][T30308] kcapi: manufacturer command 18446744073709551608 unknown. [ 1133.715368][T30267] loop5: detected capacity change from 0 to 32768 [ 1133.793383][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1133.820941][T30297] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 1133.855790][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1133.862641][T30297] EXT4-fs error (device loop7): ext4_clear_blocks:883: inode #11: comm syz.7.11435: attempt to clear invalid blocks 983261 len 1 [ 1133.888779][ T4751] usb 7-1: new high-speed USB device number 8 using dummy_hcd [ 1133.904950][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1133.906695][T30267] XFS (loop5): Mounting V5 Filesystem [ 1133.918204][T30297] EXT4-fs error (device loop7): __ext4_get_inode_loc:4513: comm syz.7.11435: Invalid inode table block 0 in block_group 0 [ 1133.961083][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.008315][T30326] netlink: 'syz.1.11446': attribute type 1 has an invalid length. [ 1134.017084][T30326] netlink: 224 bytes leftover after parsing attributes in process `syz.1.11446'. [ 1134.039542][T30297] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 1134.080484][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.087059][T30297] EXT4-fs error (device loop7) in ext4_orphan_del:301: Corrupt filesystem [ 1134.097635][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.104260][T30297] EXT4-fs error (device loop7): __ext4_get_inode_loc:4513: comm syz.7.11435: Invalid inode table block 0 in block_group 0 [ 1134.118767][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.126960][ T4751] usb 7-1: Using ep0 maxpacket: 16 [ 1134.140532][ T4751] usb 7-1: config index 0 descriptor too short (expected 16456, got 72) [ 1134.172401][ T4751] usb 7-1: config 0 has an invalid interface number: 125 but max is 1 [ 1134.207620][T30297] EXT4-fs error (device loop7) in ext4_reserve_inode_write:5929: Corrupt filesystem [ 1134.214857][ T4751] usb 7-1: config 0 has an invalid interface number: 125 but max is 1 [ 1134.247319][ T4751] usb 7-1: config 0 has an invalid interface number: 125 but max is 1 [ 1134.248956][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.258121][ T4751] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1134.298871][ T4751] usb 7-1: config 0 has no interface number 0 [ 1134.299584][T30297] EXT4-fs error (device loop7): ext4_truncate:4318: inode #11: comm syz.7.11435: mark_inode_dirty error [ 1134.309710][ T4751] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 1134.360478][ T4751] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 1134.374880][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.395060][T30297] EXT4-fs error (device loop7) in ext4_process_orphan:343: Corrupt filesystem [ 1134.400114][ T4751] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1134.426414][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.432003][ T4751] usb 7-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1134.447648][T30297] EXT4-fs error (device loop7): __ext4_get_inode_loc:4513: comm syz.7.11435: Invalid inode table block 0 in block_group 0 [ 1134.462448][ T4751] usb 7-1: config 0 interface 125 has no altsetting 0 [ 1134.491272][ T4751] usb 7-1: config 0 interface 125 has no altsetting 2 [ 1134.492127][T30297] EXT4-fs (loop7): Remounting filesystem read-only [ 1134.518298][ T4751] usb 7-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 1134.518887][T30267] XFS (loop5): Ending clean mount [ 1134.538359][ T4751] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1134.545044][T30297] EXT4-fs (loop7): 1 truncate cleaned up [ 1134.552059][ T4751] usb 7-1: Product: syz [ 1134.552084][ T4751] usb 7-1: Manufacturer: syz [ 1134.552099][ T4751] usb 7-1: SerialNumber: syz [ 1134.558498][ T4751] usb 7-1: config 0 descriptor?? [ 1134.574930][ T4751] usb 7-1: selecting invalid altsetting 2 [ 1134.584015][T30297] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 1134.629023][T30267] XFS (loop5): Quotacheck needed: Please wait. [ 1134.716674][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1134.796748][T30267] XFS (loop5): Quotacheck: Done. [ 1134.891019][T30345] loop1: detected capacity change from 0 to 64 [ 1135.031644][ C1] usb 7-1: async_complete: urb error -71 [ 1135.037408][ C1] usb 7-1: async_complete: urb error -71 [ 1135.043135][ C1] usb 7-1: async_complete: urb error -71 [ 1135.049161][ T4751] get_1284_register: usb error -71 [ 1135.054673][ T4751] uss720: probe of 7-1:0.125 failed with error -71 [ 1135.071959][ T4751] usb 7-1: USB disconnect, device number 8 [ 1135.126562][T26643] XFS (loop5): Unmounting Filesystem [ 1135.451343][T30359] netlink: 'syz.1.11462': attribute type 19 has an invalid length. [ 1135.461700][T30359] netlink: 5 bytes leftover after parsing attributes in process `syz.1.11462'. [ 1135.605861][T30363] loop1: detected capacity change from 0 to 512 [ 1135.650664][T30363] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.11464: inode has both inline data and extents flags [ 1135.673082][T30363] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.11464: couldn't read orphan inode 15 (err -117) [ 1135.735797][T30363] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 1135.840494][T30374] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.11459'. [ 1135.859749][T30374] netlink: zone id is out of range [ 1135.871061][T30374] netlink: del zone limit has 4 unknown bytes [ 1135.871868][ T4805] EXT4-fs (loop1): unmounting filesystem. [ 1136.127305][T30380] netlink: 'syz.0.11471': attribute type 10 has an invalid length. [ 1136.179948][T30380] bridge0: port 3(dummy0) entered disabled state [ 1136.188350][T30380] bridge0: port 2(bridge_slave_1) entered disabled state [ 1136.195851][T30380] bridge0: port 1(bridge_slave_0) entered disabled state [ 1136.327744][T30380] bridge0: port 3(dummy0) entered blocking state [ 1136.334205][T30380] bridge0: port 3(dummy0) entered forwarding state [ 1136.340968][T30380] bridge0: port 2(bridge_slave_1) entered blocking state [ 1136.348138][T30380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1136.355539][T30380] bridge0: port 1(bridge_slave_0) entered blocking state [ 1136.362735][T30380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1136.402342][T30380] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 1136.664575][T30405] ipt_CLUSTERIP: bad local_nodes[1] 0 [ 1136.680508][T30406] loop0: detected capacity change from 0 to 1764 [ 1136.827088][T30410] netlink: 'syz.1.11486': attribute type 2 has an invalid length. [ 1136.835350][T30410] netlink: 164 bytes leftover after parsing attributes in process `syz.1.11486'. [ 1137.402407][T30432] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11497'. [ 1137.432468][T30431] loop0: detected capacity change from 0 to 2048 [ 1137.507588][T30431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1137.536751][T30400] loop6: detected capacity change from 0 to 32768 [ 1137.595777][T30400] (syz.6.11480,30400,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1137.638283][T30438] sock: sock_timestamping_bind_phc: sock not bind to device [ 1137.670816][T30400] (syz.6.11480,30400,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1137.760565][T30400] JBD2: Ignoring recovery information on journal [ 1137.824490][T30446] [U] v3f"S/4:XTzWtlW= [ 1137.832047][T30446] [U] J"e:" [ 1137.908209][T30400] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1138.213816][T26933] ocfs2: Unmounting device (7,6) on (node local) [ 1138.536198][T30475] loop7: detected capacity change from 0 to 1024 [ 1138.717144][T30475] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 1138.786991][T30475] EXT4-fs error (device loop7): ext4_empty_dir:3166: inode #11: block 623: comm syz.7.11518: Attempting to read directory block (623) that is past i_size (638464) [ 1138.997809][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1139.103267][T30464] loop5: detected capacity change from 0 to 32768 [ 1139.186152][T30471] loop1: detected capacity change from 0 to 40427 [ 1139.217635][T30500] loop7: detected capacity change from 0 to 64 [ 1139.225686][T30464] XFS (loop5): Mounting V5 Filesystem [ 1139.234542][T30497] loop6: detected capacity change from 0 to 2048 [ 1139.253801][T30471] F2FS-fs (loop1): invalid crc value [ 1139.264845][T30497] loop6: p2 < > [ 1139.327044][ T3638] loop6: p2 < > [ 1139.386547][ T4445] XFS (loop5): Metadata corruption detected at xfs_agf_verify+0x208/0xa70, xfs_agf block 0x1 [ 1139.396782][T30471] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1139.446071][ T4445] XFS (loop5): Unmount and run xfs_repair [ 1139.467597][ T4445] XFS (loop5): First 128 bytes of corrupted metadata buffer: [ 1139.507828][ T4445] 00000000: 58 41 47 46 00 00 00 00 00 00 00 00 00 00 20 00 XAGF.......... . [ 1139.528333][ T4817] udevd[4817]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory [ 1139.566790][ T4445] 00000010: 00 00 00 01 00 00 00 02 00 00 00 05 00 00 00 01 ................ [ 1139.611851][T30471] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1139.638565][ T4445] 00000020: 00 00 00 01 00 00 00 01 00 00 00 01 00 00 00 06 ................ [ 1139.674412][ T4445] 00000030: 00 00 00 06 00 00 0d cb 00 00 0d b8 00 00 00 00 ................ [ 1139.715859][ T4445] 00000040: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 1139.745349][ T4445] 00000050: 00 00 00 01 00 00 00 01 00 00 00 06 00 00 00 01 ................ [ 1139.770125][ T4445] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1139.827564][ T4445] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1139.858227][T30464] XFS (loop5): metadata I/O error in "xfs_read_agf+0x2a0/0x620" at daddr 0x1 len 1 error 117 [ 1139.884246][T30464] XFS (loop5): Error -117 reserving per-AG metadata reserve pool. [ 1139.892888][T30464] XFS (loop5): Corruption of in-memory data (0x8) detected at xfs_fs_reserve_ag_blocks+0x1c6/0x1f0 (fs/xfs/xfs_fsops.c:587). Shutting down filesystem. [ 1139.934323][T30464] XFS (loop5): Please unmount the filesystem and rectify the problem(s) [ 1139.948129][T30464] XFS (loop5): Ending clean mount [ 1139.972450][T30519] xt_hashlimit: overflow, try lower: 0/0 [ 1140.194350][T26643] XFS (loop5): Unmounting Filesystem [ 1140.321055][T30521] loop7: detected capacity change from 0 to 4096 [ 1140.396783][T30521] ntfs3: loop7: Different NTFS' sector size (1024) and media sector size (512) [ 1140.450895][T30531] netlink: 'syz.1.11538': attribute type 10 has an invalid length. [ 1140.512433][T30531] bridge0: port 2(bridge_slave_1) entered disabled state [ 1140.519951][T30531] bridge0: port 1(bridge_slave_0) entered disabled state [ 1140.586192][T30531] bridge0: port 2(bridge_slave_1) entered blocking state [ 1140.593367][T30531] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1140.600821][T30531] bridge0: port 1(bridge_slave_0) entered blocking state [ 1140.607941][T30531] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1140.649142][T30531] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 1140.737875][T30537] binder: BC_ACQUIRE_RESULT not supported [ 1140.750971][T30521] ntfs3: loop7: ntfs3_write_inode r=1e failed, -22. [ 1140.782246][T30537] binder: 30536:30537 ioctl c0306201 200000000500 returned -22 [ 1140.902971][T27154] ntfs3: loop7: ntfs_evict_inode r=1e failed, -22. [ 1140.925010][T30539] xt_l2tp: v2 sid > 0xffff: 262144 [ 1140.930268][T27154] ntfs3: loop7: Mark volume as dirty due to NTFS errors [ 1141.126986][T30547] loop7: detected capacity change from 0 to 256 [ 1141.186122][T30547] autofs4:pid:30547:autofs_fill_super: called with bogus options [ 1141.695143][T30565] loop0: detected capacity change from 0 to 2048 [ 1141.739217][T30565] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1142.001012][ T4751] usb 2-1: new full-speed USB device number 124 using dummy_hcd [ 1142.017064][T30582] ieee802154 phy0 wpan0: encryption failed: -22 [ 1142.214871][ T4751] usb 2-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 1142.235666][ T4751] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1142.259009][ T4751] usb 2-1: Product: syz [ 1142.270201][ T4751] usb 2-1: Manufacturer: syz [ 1142.280642][ T4751] usb 2-1: SerialNumber: syz [ 1142.296893][ T4751] usb 2-1: config 0 descriptor?? [ 1142.305244][T30594] netlink: 'syz.0.11567': attribute type 21 has an invalid length. [ 1142.308335][ T4751] gspca_main: sq930x-2.14.0 probing 2770:930c [ 1142.319919][T30594] netlink: 128 bytes leftover after parsing attributes in process `syz.0.11567'. [ 1142.329494][T30594] netlink: 'syz.0.11567': attribute type 4 has an invalid length. [ 1142.338043][T30594] netlink: 'syz.0.11567': attribute type 3 has an invalid length. [ 1142.352916][T30594] netlink: 3 bytes leftover after parsing attributes in process `syz.0.11567'. [ 1142.394848][T30596] netlink: 12 bytes leftover after parsing attributes in process `syz.5.11569'. [ 1142.736569][ T4751] gspca_sq930x: ucbus_write failed -71 [ 1142.779735][T30611] netlink: 24 bytes leftover after parsing attributes in process `syz.6.11577'. [ 1142.813615][T30611] netlink: 24 bytes leftover after parsing attributes in process `syz.6.11577'. [ 1143.010973][ T4751] gspca_sq930x: Sensor ov9630 not yet treated [ 1143.035297][ T4751] sq930x: probe of 2-1:0.0 failed with error -22 [ 1143.055310][ T4751] usb 2-1: USB disconnect, device number 124 [ 1143.087833][T30626] loop6: detected capacity change from 0 to 512 [ 1143.095073][T30626] EXT4-fs: Ignoring removed oldalloc option [ 1143.116224][T30626] EXT4-fs (loop6): 1 truncate cleaned up [ 1143.121903][T30626] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 1143.231111][T26933] EXT4-fs (loop6): unmounting filesystem. [ 1143.417661][T30637] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11589'. [ 1143.427210][T30637] netlink: 8 bytes leftover after parsing attributes in process `syz.6.11589'. [ 1143.741037][T30653] x_tables: duplicate underflow at hook 4 [ 1144.283604][T30670] netlink: 'syz.5.11605': attribute type 10 has an invalid length. [ 1144.329308][T30670] bridge0: port 2(bridge_slave_1) entered disabled state [ 1144.336837][T30670] bridge0: port 1(bridge_slave_0) entered disabled state [ 1144.398898][T30670] bridge0: port 2(bridge_slave_1) entered blocking state [ 1144.406062][T30670] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1144.413550][T30670] bridge0: port 1(bridge_slave_0) entered blocking state [ 1144.420692][T30670] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1144.479937][T30670] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 1144.522850][T30659] loop0: detected capacity change from 0 to 32768 [ 1144.546967][T30656] loop6: detected capacity change from 0 to 32768 [ 1144.576340][T30659] (syz.0.11600,30659,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1144.608330][T30659] (syz.0.11600,30659,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1144.619187][T30656] ocfs2: Slot 0 on device (7,6) was already allocated to this node! [ 1144.678134][T30656] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1144.689079][T30659] JBD2: Ignoring recovery information on journal [ 1144.738607][ T9] (kworker/u4:0,9,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214 [ 1144.799917][T30671] loop1: detected capacity change from 0 to 32768 [ 1144.875744][T30659] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1144.934302][T30671] XFS (loop1): Mounting V5 Filesystem [ 1144.936193][T26933] ocfs2: Unmounting device (7,6) on (node local) [ 1145.058388][T30671] XFS (loop1): Ending clean mount [ 1145.065697][T30671] XFS (loop1): Quotacheck needed: Please wait. [ 1145.084198][ T4801] ocfs2: Unmounting device (7,0) on (node local) [ 1145.158150][T30671] XFS (loop1): Quotacheck: Done. [ 1145.429280][ T4805] XFS (loop1): Unmounting Filesystem [ 1145.894973][T30683] loop5: detected capacity change from 0 to 32768 [ 1146.065874][T30701] loop0: detected capacity change from 0 to 4096 [ 1146.081416][T30701] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 1146.527378][T30691] loop6: detected capacity change from 0 to 32768 [ 1146.689473][T30691] XFS (loop6): Mounting V5 Filesystem [ 1146.767163][T30730] IPv6: ADDRCONF(NETDEV_CHANGE): wireguard0: link becomes ready [ 1146.893568][T30691] XFS (loop6): Ending clean mount [ 1146.925460][T30691] XFS (loop6): Quotacheck needed: Please wait. [ 1146.957117][T30737] netlink: 'syz.7.11627': attribute type 10 has an invalid length. [ 1147.013925][T30737] bridge0: port 2(bridge_slave_1) entered disabled state [ 1147.021419][T30737] bridge0: port 1(bridge_slave_0) entered disabled state [ 1147.030986][T30691] XFS (loop6): Quotacheck: Done. [ 1147.108274][T30737] bridge0: port 2(bridge_slave_1) entered blocking state [ 1147.115477][T30737] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1147.122954][T30737] bridge0: port 1(bridge_slave_0) entered blocking state [ 1147.130072][T30737] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1147.141633][T26933] XFS (loop6): Unmounting Filesystem [ 1147.153306][T30737] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 1147.405160][T30750] loop7: detected capacity change from 0 to 512 [ 1147.549638][T30750] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback. [ 1147.670062][T30750] EXT4-fs (loop7): re-mounted. Quota mode: writeback. [ 1147.701842][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1148.139420][T30776] netlink: 2 bytes leftover after parsing attributes in process `syz.7.11643'. [ 1148.577093][T30793] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1148.818083][T30800] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode 802.3ad(4) [ 1149.218896][T30820] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11665'. [ 1149.893804][T30852] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 1150.286259][T20872] usb 2-1: new full-speed USB device number 125 using dummy_hcd [ 1150.501309][T20872] usb 2-1: not running at top speed; connect to a high speed hub [ 1150.522710][T20872] usb 2-1: config 95 has an invalid interface number: 1 but max is 0 [ 1150.540393][T30883] netlink: 92 bytes leftover after parsing attributes in process `syz.6.11691'. [ 1150.553796][T20872] usb 2-1: config 95 has no interface number 0 [ 1150.560028][T20872] usb 2-1: config 95 interface 1 has no altsetting 0 [ 1150.599535][T20872] usb 2-1: string descriptor 0 read error: -22 [ 1150.599899][T30883] netlink: 12 bytes leftover after parsing attributes in process `syz.6.11691'. [ 1150.616691][T20872] usb 2-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 1150.641412][T20872] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1150.651120][T30883] netlink: 20 bytes leftover after parsing attributes in process `syz.6.11691'. [ 1150.677528][T30883] netlink: 20 bytes leftover after parsing attributes in process `syz.6.11691'. [ 1150.888062][T30889] loop5: detected capacity change from 0 to 512 [ 1150.979292][T30889] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 1151.022794][T30889] EXT4-fs (loop5): orphan cleanup on readonly fs [ 1151.071423][T30889] EXT4-fs error (device loop5): mb_free_blocks:1810: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 1151.110467][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.137321][ T5850] usb 2-1: USB disconnect, device number 125 [ 1151.162608][T30889] EXT4-fs error (device loop5): ext4_do_update_inode:5268: inode #11: comm syz.5.11693: corrupted inode contents [ 1151.256005][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.262887][ T4823] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 1151.280587][T30889] EXT4-fs error (device loop5): ext4_dirty_inode:6133: inode #11: comm syz.5.11693: mark_inode_dirty error [ 1151.315787][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.337701][T30889] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.11693: invalid indirect mapped block 327680 (level 0) [ 1151.400013][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.422968][T30889] EXT4-fs error (device loop5): ext4_do_update_inode:5268: inode #11: comm syz.5.11693: corrupted inode contents [ 1151.454317][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.461289][T30889] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem [ 1151.465720][T30879] loop0: detected capacity change from 0 to 32768 [ 1151.480608][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.489327][T30889] EXT4-fs error (device loop5): ext4_do_update_inode:5268: inode #11: comm syz.5.11693: corrupted inode contents [ 1151.505067][ T4823] usb 7-1: Using ep0 maxpacket: 32 [ 1151.516853][ T4823] usb 7-1: unable to get BOS descriptor or descriptor too short [ 1151.540935][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.547759][T30889] EXT4-fs error (device loop5): ext4_truncate:4318: inode #11: comm syz.5.11693: mark_inode_dirty error [ 1151.563034][ T4823] usb 7-1: config 7 has an invalid interface number: 187 but max is 0 [ 1151.580476][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.591283][T30889] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem [ 1151.608719][ T4823] usb 7-1: config 7 has no interface number 0 [ 1151.625112][T30889] EXT4-fs (loop5): Remounting filesystem read-only [ 1151.632155][T30889] EXT4-fs (loop5): 1 truncate cleaned up [ 1151.633374][ T4823] usb 7-1: config 7 interface 187 altsetting 6 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1151.649068][T30889] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 1151.658228][ T4823] usb 7-1: config 7 interface 187 altsetting 6 bulk endpoint 0x3 has invalid maxpacket 0 [ 1151.668543][ T4823] usb 7-1: config 7 interface 187 has no altsetting 0 [ 1151.679530][T30879] XFS (loop0): Mounting V5 Filesystem [ 1151.688244][ T4823] usb 7-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1151.727391][ T4823] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1151.762862][ T4823] usb 7-1: Product: syz [ 1151.767054][ T4823] usb 7-1: Manufacturer: syz [ 1151.812525][ T4823] usb 7-1: SerialNumber: syz [ 1151.836371][T30879] XFS (loop0): Ending clean mount [ 1151.845235][T30879] XFS (loop0): Quotacheck needed: Please wait. [ 1151.906461][T26643] EXT4-fs (loop5): unmounting filesystem. [ 1151.993954][T30879] XFS (loop0): Quotacheck: Done. [ 1152.061874][ T26] kauditd_printk_skb: 11 callbacks suppressed [ 1152.061889][ T26] audit: type=1326 audit(1113.883:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30921 comm="syz.5.11700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1152.128942][ T4823] usb 7-1: Unknown endpoint type found, address 0x07 [ 1152.164592][ T4823] usb 7-1: Not enough endpoints found in device, aborting! [ 1152.222413][ T26] audit: type=1326 audit(1113.958:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30921 comm="syz.5.11700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1152.291682][ T4801] XFS (loop0): Unmounting Filesystem [ 1152.410233][ T26] audit: type=1326 audit(1113.958:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30921 comm="syz.5.11700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1152.497278][ T5850] usb 7-1: USB disconnect, device number 9 [ 1152.508730][ T26] audit: type=1326 audit(1113.958:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30921 comm="syz.5.11700" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1152.685688][T30937] loop5: detected capacity change from 0 to 256 [ 1152.742551][T30937] exfat: Deprecated parameter 'utf8' [ 1152.819274][T30937] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1152.837981][T30916] loop7: detected capacity change from 0 to 32768 [ 1152.889672][T30916] XFS: noikeep mount option is deprecated. [ 1153.119114][T30916] XFS (loop7): Mounting V5 Filesystem [ 1153.233820][T30916] XFS (loop7): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 1153.295213][T30916] XFS (loop7): Starting recovery (logdev: internal) [ 1153.370649][T30916] XFS (loop7): Ending recovery (logdev: internal) [ 1153.487532][T30960] loop5: detected capacity change from 0 to 4096 [ 1153.534389][T30960] ntfs3: loop5: Different NTFS' sector size (1024) and media sector size (512) [ 1153.573797][T27154] XFS (loop7): Unmounting Filesystem [ 1153.921443][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 1153.927809][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 1154.014673][T30978] netlink: 'syz.0.11719': attribute type 32 has an invalid length. [ 1154.392344][T30986] loop5: detected capacity change from 0 to 4096 [ 1154.428403][T30986] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 1154.485310][T30995] netlink: 32 bytes leftover after parsing attributes in process `syz.1.11725'. [ 1155.186382][T31018] xt_CONNSECMARK: invalid mode: 0 [ 1155.451281][T31030] loop6: detected capacity change from 0 to 16 [ 1155.571449][T31030] erofs: (device loop6): mounted with root inode @ nid 36. [ 1156.605314][T31080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11764'. [ 1156.626777][T31080] netlink: zone id is out of range [ 1156.669838][T31080] netlink: zone id is out of range [ 1156.678177][T31080] netlink: zone id is out of range [ 1156.683705][T31080] netlink: zone id is out of range [ 1156.700371][T31080] netlink: zone id is out of range [ 1156.733579][T31080] netlink: zone id is out of range [ 1156.764931][T31080] netlink: zone id is out of range [ 1156.771508][T31080] netlink: zone id is out of range [ 1156.786082][T31080] netlink: zone id is out of range [ 1156.818122][T31080] netlink: zone id is out of range [ 1157.265594][T31107] loop7: detected capacity change from 0 to 128 [ 1157.297109][T31109] netlink: 20 bytes leftover after parsing attributes in process `syz.6.11778'. [ 1157.320887][T31109] netlink: 20 bytes leftover after parsing attributes in process `syz.6.11778'. [ 1157.358277][T31107] EXT4-fs (loop7): Test dummy encryption mode enabled [ 1157.416544][T31107] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none. [ 1157.564651][T31121] netlink: 'syz.6.11780': attribute type 2 has an invalid length. [ 1157.726837][T31127] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1157.917456][T31134] autofs4:pid:31134:autofs_fill_super: called with bogus options [ 1158.172327][T31139] loop0: detected capacity change from 0 to 4096 [ 1158.208034][T31145] ip6t_srh: unknown srh match flags 4000 [ 1158.279682][T31139] ntfs: volume version 3.1. [ 1158.624363][T31161] comedi comedi0: das16m1: I/O port conflict (0x501,8) [ 1158.668490][T31163] loop6: detected capacity change from 0 to 64 [ 1158.853351][T31169] netlink: 32 bytes leftover after parsing attributes in process `syz.0.11806'. [ 1158.920882][T31171] loop6: detected capacity change from 0 to 8 [ 1158.945880][ T126] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 1158.965386][T31173] netlink: 132 bytes leftover after parsing attributes in process `syz.0.11808'. [ 1158.995030][T31171] SQUASHFS error: Failed to read block 0x2fc: -5 [ 1159.002945][T31171] SQUASHFS error: Unable to read metadata cache entry [2fa] [ 1159.011139][T31171] SQUASHFS error: Unable to read directory block [247:26] [ 1159.159471][ T126] usb 6-1: Using ep0 maxpacket: 16 [ 1159.189529][T31179] loop1: detected capacity change from 0 to 64 [ 1159.192456][ T126] usb 6-1: config 0 has an invalid interface number: 1 but max is 0 [ 1159.236404][ T126] usb 6-1: config 0 has no interface number 0 [ 1159.268135][ T126] usb 6-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88 [ 1159.290805][ T126] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1159.312071][ T126] usb 6-1: Product: syz [ 1159.318519][T31183] comedi comedi0: das16m1: I/O port conflict (0x3,16) [ 1159.325759][ T126] usb 6-1: Manufacturer: syz [ 1159.330655][ T126] usb 6-1: SerialNumber: syz [ 1159.353441][ T126] usb 6-1: config 0 descriptor?? [ 1159.475772][T31186] loop1: detected capacity change from 0 to 2048 [ 1159.518709][T31186] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1159.580028][ T126] usb 6-1: selecting invalid altsetting 1 [ 1159.598053][ T126] speedtch 6-1:0.1: speedtch_bind: setting interface to 1 failed (-22)! [ 1159.606548][ T126] speedtch 6-1:0.1: usbatm_usb_probe: bind failed: -22! [ 1159.654995][ T126] speedtch: probe of 6-1:0.1 failed with error -22 [ 1159.682112][ T126] usb 6-1: USB disconnect, device number 8 [ 1160.003993][ T7] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 1160.220725][ T7] usb 7-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1160.239599][ T7] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1160.260625][ T126] usb 2-1: new high-speed USB device number 126 using dummy_hcd [ 1160.264062][ T7] usb 7-1: Product: syz [ 1160.281565][ T7] usb 7-1: Manufacturer: syz [ 1160.287325][ T7] usb 7-1: SerialNumber: syz [ 1160.309928][ T7] usb 7-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1160.315776][T31217] loop5: detected capacity change from 0 to 8 [ 1160.381879][ T7] usb 7-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1160.398026][T31217] SQUASHFS error: Unable to read inode 0xa7 [ 1160.476062][ T126] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1160.492107][ T126] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1160.518086][ T126] usb 2-1: config 0 descriptor?? [ 1160.534429][T27154] EXT4-fs (loop7): unmounting filesystem. [ 1160.758003][ T126] [drm] vendor descriptor length:6 data:06 5f 01 03 00 00 00 00 00 00 00 [ 1160.777879][ T126] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 1160.906445][T22588] usb 7-1: USB disconnect, device number 10 [ 1160.983185][ T126] [drm:udl_init] *ERROR* Selecting channel failed [ 1161.021443][T31234] netdevsim netdevsim0 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0 [ 1161.026005][ T126] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2 [ 1161.040547][T31234] netdevsim netdevsim0 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0 [ 1161.083744][ T126] [drm] Initialized udl on minor 2 [ 1161.089345][T31234] netdevsim netdevsim0 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0 [ 1161.092807][ T126] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1161.115249][T31234] netdevsim netdevsim0 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0 [ 1161.120649][ T126] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1161.134226][ T126] usb 2-1: USB disconnect, device number 126 [ 1161.168603][ T4751] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed [ 1161.187471][ T4751] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed [ 1161.211991][ T4751] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 1161.486039][T31248] loop5: detected capacity change from 0 to 1024 [ 1161.511414][ T7] ath9k_htc 7-1:1.0: ath9k_htc: Target is unresponsive [ 1161.522985][ T7] ath9k_htc: Failed to initialize the device [ 1161.535737][T22588] usb 7-1: ath9k_htc: USB layer deinitialized [ 1161.556170][T31248] hfsplus: Filesystem is marked locked, mounting read-only. [ 1161.607628][ T4808] Bluetooth: hci3: command 0x0406 tx timeout [ 1161.615432][T31248] hfsplus: filesystem is marked locked, leaving read-only. [ 1161.803767][T31259] loop7: detected capacity change from 0 to 2048 [ 1161.877585][T31259] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1161.956059][T31266] loop1: detected capacity change from 0 to 128 [ 1162.330225][T31278] netlink: 68 bytes leftover after parsing attributes in process `syz.1.11860'. [ 1162.376333][T31278] netlink: 'syz.1.11860': attribute type 1 has an invalid length. [ 1162.456161][T31284] loop5: detected capacity change from 0 to 128 [ 1162.614053][T31292] netlink: 8 bytes leftover after parsing attributes in process `syz.7.11867'. [ 1162.812853][T31295] loop0: detected capacity change from 0 to 256 [ 1162.817966][T31296] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11868'. [ 1162.911119][T31295] FAT-fs (loop0): Directory bread(block 64) failed [ 1162.926275][T31295] FAT-fs (loop0): Directory bread(block 65) failed [ 1162.968301][T31295] FAT-fs (loop0): Directory bread(block 66) failed [ 1162.989455][T31295] FAT-fs (loop0): Directory bread(block 67) failed [ 1162.996122][T31295] FAT-fs (loop0): Directory bread(block 68) failed [ 1163.039212][T31295] FAT-fs (loop0): Directory bread(block 69) failed [ 1163.047219][T31295] FAT-fs (loop0): Directory bread(block 70) failed [ 1163.060907][T31295] FAT-fs (loop0): Directory bread(block 71) failed [ 1163.069727][T31295] FAT-fs (loop0): Directory bread(block 72) failed [ 1163.115113][T31295] FAT-fs (loop0): Directory bread(block 73) failed [ 1163.603987][T31324] xt_hashlimit: overflow, try lower: 18446744073709551615/9 [ 1163.914985][T31338] netlink: 1 bytes leftover after parsing attributes in process `syz.0.11889'. [ 1164.444355][T31365] loop0: detected capacity change from 0 to 256 [ 1164.463716][T31366] loop6: detected capacity change from 0 to 2048 [ 1164.480831][T31365] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1164.508648][T31365] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 1164.535381][T31367] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1164.557763][T31365] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 1164.570167][T22588] usb 2-1: new full-speed USB device number 127 using dummy_hcd [ 1164.597892][T31366] CPU: 0 PID: 31366 Comm: syz.6.11902 Not tainted syzkaller #0 [ 1164.605890][T31366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1164.615958][T31366] Call Trace: [ 1164.619250][T31366] [ 1164.622193][T31366] dump_stack_lvl+0x168/0x22e [ 1164.626900][T31366] ? show_regs_print_info+0x12/0x12 [ 1164.632115][T31366] ? kmem_cache_alloc+0x151/0x2f0 [ 1164.637157][T31366] ? memset+0x1e/0x40 [ 1164.641155][T31366] ? nilfs_btree_alloc_path+0x5e5/0x600 [ 1164.646728][T31366] nilfs_btree_last_key+0x485/0x610 [ 1164.651957][T31366] nilfs_bmap_last_key+0x70/0x120 [ 1164.657000][T31366] nilfs_truncate_bmap+0xfb/0x340 [ 1164.662050][T31366] ? rcu_is_watching+0x11/0xa0 [ 1164.666832][T31366] ? nilfs_update_inode+0x1d0/0x1d0 [ 1164.672047][T31366] ? block_truncate_page+0x1f3/0x680 [ 1164.677347][T31366] ? nilfs_transaction_begin+0x525/0x700 [ 1164.682990][T31366] ? nilfs_inode_sub_blocks+0xe0/0xe0 [ 1164.688391][T31366] nilfs_truncate+0x263/0x4c0 [ 1164.693094][T31366] ? nilfs_write_failed+0x90/0x90 [ 1164.698135][T31366] ? preempt_count_add+0x8d/0x190 [ 1164.703187][T31366] ? unmap_mapping_range+0x91/0x100 [ 1164.708407][T31366] nilfs_setattr+0x20d/0x2a0 [ 1164.713020][T31366] ? nilfs_clear_inode+0x280/0x280 [ 1164.718154][T31366] ? evm_inode_setattr+0x91/0x790 [ 1164.723202][T31366] ? bpf_lsm_inode_setattr+0x5/0x10 [ 1164.728407][T31366] ? security_inode_setattr+0xd8/0x140 [ 1164.733876][T31366] ? try_break_deleg+0x79/0x120 [ 1164.738736][T31366] ? nilfs_clear_inode+0x280/0x280 [ 1164.743872][T31366] notify_change+0xc74/0xf40 [ 1164.748492][T31366] do_truncate+0x197/0x220 [ 1164.752927][T31366] ? aa_get_current_label+0x110/0x1d0 [ 1164.758334][T31366] ? put_page_bootmem+0x2c0/0x2c0 [ 1164.763381][T31366] ? ima_bprm_check+0x1f0/0x1f0 [ 1164.768256][T31366] ? bpf_lsm_path_truncate+0x5/0x10 [ 1164.773468][T31366] path_openat+0x27f2/0x2e70 [ 1164.778101][T31366] ? do_filp_open+0x3c0/0x3c0 [ 1164.782816][T31366] do_filp_open+0x1c1/0x3c0 [ 1164.787339][T31366] ? vfs_tmpfile+0x480/0x480 [ 1164.791966][T31366] ? _raw_spin_unlock+0x24/0x40 [ 1164.796842][T31366] ? alloc_fd+0x58f/0x630 [ 1164.801196][T31366] do_sys_openat2+0x142/0x490 [ 1164.805907][T31366] ? do_sys_open+0xe0/0xe0 [ 1164.810338][T31366] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1164.816339][T31366] ? lock_chain_count+0x20/0x20 [ 1164.821213][T31366] __x64_sys_openat+0x135/0x160 [ 1164.826085][T31366] do_syscall_64+0x4c/0xa0 [ 1164.830512][T31366] ? clear_bhb_loop+0x60/0xb0 [ 1164.835197][T31366] ? clear_bhb_loop+0x60/0xb0 [ 1164.839886][T31366] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1164.845793][T31366] RIP: 0033:0x7fd71e38f749 [ 1164.850220][T31366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1164.869839][T31366] RSP: 002b:00007fd71f28f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1164.871983][T22588] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1164.878251][T31366] RAX: ffffffffffffffda RBX: 00007fd71e5e5fa0 RCX: 00007fd71e38f749 [ 1164.878319][T31366] RDX: 00000000000a2281 RSI: 0000200000000040 RDI: ffffffffffffff9c [ 1164.899922][T22588] usb 2-1: New USB device found, idVendor=0403, idProduct=fa78, bcdDevice= 1.ff [ 1164.904291][T31366] RBP: 00007fd71e413f91 R08: 0000000000000000 R09: 0000000000000000 [ 1164.904308][T31366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1164.904318][T31366] R13: 00007fd71e5e6038 R14: 00007fd71e5e5fa0 R15: 00007ffe4d1fcd08 [ 1164.904345][T31366] [ 1164.962530][T31366] NILFS (loop6): btree level mismatch (ino=16): 1 != 7 [ 1164.971720][T31366] NILFS error (device loop6): nilfs_bmap_last_key: broken bmap (inode number=16) [ 1165.000006][T31366] Remounting filesystem read-only [ 1165.005112][T31366] NILFS (loop6): error -5 truncating bmap (ino=16) [ 1165.055044][T22588] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1165.074654][T22588] usb 2-1: SerialNumber: syz [ 1165.093180][T22588] usb 2-1: config 0 descriptor?? [ 1165.106284][T26933] NILFS (loop6): disposed unprocessed dirty file(s) when detaching log writer [ 1165.133067][T22588] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected [ 1165.142245][T22588] usb 2-1: Detected SIO [ 1165.157083][T22588] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1165.199818][T31384] netlink: 'syz.0.11911': attribute type 1 has an invalid length. [ 1165.413493][T31390] netlink: 80 bytes leftover after parsing attributes in process `syz.0.11914'. [ 1165.436852][T22588] usb 2-1: USB disconnect, device number 127 [ 1165.450574][T22588] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1165.482948][T22588] ftdi_sio 2-1:0.0: device disconnected [ 1166.011472][T31398] loop0: detected capacity change from 0 to 40427 [ 1166.036718][T31398] F2FS-fs (loop0): Fix alignment : internally, start(4096) end(16896) block(12288) [ 1166.083564][T31398] F2FS-fs (loop0): invalid crc value [ 1166.107166][T31398] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1166.226764][T31398] F2FS-fs (loop0): recover fsync data on readonly fs [ 1166.261601][T31398] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1166.403630][T31398] F2FS-fs (loop0): Try to recover all the superblocks, ret: 0 [ 1166.610898][ T4820] usb 2-1: new full-speed USB device number 2 using dummy_hcd [ 1166.818239][ T4820] usb 2-1: config 0 has an invalid interface number: 11 but max is 0 [ 1166.843883][ T4820] usb 2-1: config 0 has no interface number 0 [ 1166.863338][ T4820] usb 2-1: config 0 interface 11 altsetting 253 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1166.895517][ T4820] usb 2-1: config 0 interface 11 has no altsetting 0 [ 1166.934631][ T4820] usb 2-1: New USB device found, idVendor=06cd, idProduct=010f, bcdDevice=d5.1b [ 1166.967104][ T4820] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=32 [ 1166.987916][ T4820] usb 2-1: SerialNumber: syz [ 1167.011277][ T4820] usb 2-1: config 0 descriptor?? [ 1167.030065][ T4820] keyspan 2-1:0.11: Keyspan 2 port adapter converter detected [ 1167.037705][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 87 [ 1167.061543][ T4820] keyspan 2-1:0.11: unsupported endpoint type 0 [ 1167.094621][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 81 [ 1167.145806][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 82 [ 1167.153619][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 1 [ 1167.158982][ T26] audit: type=1326 audit(1127.989:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31440 comm="syz.7.11938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1167.183866][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 2 [ 1167.216249][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 85 [ 1167.241452][ T26] audit: type=1326 audit(1128.026:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31440 comm="syz.7.11938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1167.265440][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 5 [ 1167.285594][ T4820] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB0 [ 1167.304777][ T26] audit: type=1326 audit(1128.026:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31440 comm="syz.7.11938" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb0d718f749 code=0x7ffc0000 [ 1167.355160][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 83 [ 1167.365212][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 84 [ 1167.381491][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 3 [ 1167.400460][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 4 [ 1167.415110][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 86 [ 1167.430317][ T4820] keyspan 2-1:0.11: found no endpoint descriptor for endpoint 6 [ 1167.451126][ T4820] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB1 [ 1167.502358][ T4820] usb 2-1: USB disconnect, device number 2 [ 1167.542166][ T4820] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0 [ 1167.596450][ T4820] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1 [ 1167.608438][T31459] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11948'. [ 1167.628671][T31461] loop6: detected capacity change from 0 to 256 [ 1167.638021][ T4820] keyspan 2-1:0.11: device disconnected [ 1168.229693][T31486] loop0: detected capacity change from 0 to 256 [ 1168.261140][ T26] audit: type=1326 audit(1129.037:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1168.338081][ T26] audit: type=1326 audit(1129.037:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f67d878f749 code=0x7ffc0000 [ 1168.393815][ T26] audit: type=1326 audit(1129.055:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f67d8791667 code=0x7ffc0000 [ 1168.480705][ T26] audit: type=1326 audit(1129.055:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f67d87915dc code=0x7ffc0000 [ 1168.510722][ T26] audit: type=1326 audit(1129.055:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f67d8791514 code=0x7ffc0000 [ 1168.556377][ T26] audit: type=1326 audit(1129.055:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f67d8791514 code=0x7ffc0000 [ 1168.597580][ T26] audit: type=1326 audit(1129.055:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31487 comm="syz.5.11960" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f67d878e3aa code=0x7ffc0000 [ 1168.650030][T31482] loop1: detected capacity change from 0 to 32768 [ 1169.035625][T31504] loop6: detected capacity change from 0 to 128 [ 1169.089033][T31508] netlink: 'syz.5.11971': attribute type 3 has an invalid length. [ 1169.098873][T31508] netlink: 132 bytes leftover after parsing attributes in process `syz.5.11971'. [ 1169.226459][T31507] loop0: detected capacity change from 0 to 4096 [ 1169.251137][T31512] loop6: detected capacity change from 0 to 256 [ 1169.262804][T31507] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 1169.322900][T31512] FAT-fs (loop6): Directory bread(block 64) failed [ 1169.350546][T31512] FAT-fs (loop6): Directory bread(block 65) failed [ 1169.367347][T31512] FAT-fs (loop6): Directory bread(block 66) failed [ 1169.389591][T31512] FAT-fs (loop6): Directory bread(block 67) failed [ 1169.426468][T31512] FAT-fs (loop6): Directory bread(block 68) failed [ 1169.432428][T31507] ntfs3: loop0: failed to convert "c46c" to maccyrillic [ 1169.454883][T31512] FAT-fs (loop6): Directory bread(block 69) failed [ 1169.466247][T31512] FAT-fs (loop6): Directory bread(block 70) failed [ 1169.492505][T31512] FAT-fs (loop6): Directory bread(block 71) failed [ 1169.535724][T31512] FAT-fs (loop6): Directory bread(block 72) failed [ 1169.568833][T31512] FAT-fs (loop6): Directory bread(block 73) failed [ 1169.831190][T31522] lo speed is unknown, defaulting to 1000 [ 1169.846151][T31522] lo speed is unknown, defaulting to 1000 [ 1169.860656][ T4820] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 1169.875575][T31522] lo speed is unknown, defaulting to 1000 [ 1169.890480][T31522] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1169.930402][T31524] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1169.944642][T31522] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1169.997416][T31522] lo speed is unknown, defaulting to 1000 [ 1170.008112][T31522] lo speed is unknown, defaulting to 1000 [ 1170.024768][T31522] lo speed is unknown, defaulting to 1000 [ 1170.031847][T31522] lo speed is unknown, defaulting to 1000 [ 1170.038564][T31522] lo speed is unknown, defaulting to 1000 [ 1170.052729][T31522] lo speed is unknown, defaulting to 1000 [ 1170.060362][T31522] lo speed is unknown, defaulting to 1000 [ 1170.074558][ T4820] usb 6-1: Using ep0 maxpacket: 16 [ 1170.088966][ T4820] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1170.117243][ T4820] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1170.146929][ T4820] usb 6-1: Product: syz [ 1170.168480][ T4820] usb 6-1: Manufacturer: syz [ 1170.179288][ T4820] usb 6-1: SerialNumber: syz [ 1170.207364][ T4820] r8152-cfgselector 6-1: config 0 descriptor?? [ 1170.237562][T31519] loop1: detected capacity change from 0 to 32768 [ 1170.258472][T31519] XFS: noikeep mount option is deprecated. [ 1170.292757][T31531] net_ratelimit: 42 callbacks suppressed [ 1170.292774][T31531] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1170.358908][T31519] XFS (loop1): Mounting V5 Filesystem [ 1170.492504][T31519] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 1170.611165][T31519] XFS (loop1): Starting recovery (logdev: internal) [ 1170.643277][T31519] XFS (loop1): Ending recovery (logdev: internal) [ 1170.727882][ T4820] r8152-cfgselector 6-1: Unknown version 0x0000 [ 1170.736197][ T4820] r8152-cfgselector 6-1: bad CDC descriptors [ 1170.761729][ T4820] r8152-cfgselector 6-1: Unknown version 0x0000 [ 1170.797113][ T4820] r8152-cfgselector 6-1: USB disconnect, device number 9 [ 1170.859505][ T4805] XFS (loop1): Unmounting Filesystem [ 1170.928184][T31550] netlink: 140 bytes leftover after parsing attributes in process `syz.6.11987'. [ 1171.114995][T31556] tmpfs: Bad value for 'size' [ 1171.506978][ T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 1171.585822][T31576] loop1: detected capacity change from 0 to 256 [ 1171.699594][ T7] usb 1-1: Using ep0 maxpacket: 8 [ 1171.705332][T31576] FAT-fs (loop1): Directory bread(block 64) failed [ 1171.721382][ T7] usb 1-1: config 1 has an invalid interface number: 128 but max is 1 [ 1171.729572][ T7] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1171.753848][T31576] FAT-fs (loop1): Directory bread(block 65) failed [ 1171.760446][T31576] FAT-fs (loop1): Directory bread(block 66) failed [ 1171.781443][T31576] FAT-fs (loop1): Directory bread(block 67) failed [ 1171.784987][ T7] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1171.804225][ T7] usb 1-1: config 1 has no interface number 0 [ 1171.827139][T31576] FAT-fs (loop1): Directory bread(block 68) failed [ 1171.838390][T31576] FAT-fs (loop1): Directory bread(block 69) failed [ 1171.844994][T31576] FAT-fs (loop1): Directory bread(block 70) failed [ 1171.870478][ T7] usb 1-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1171.913365][T31576] FAT-fs (loop1): Directory bread(block 71) failed [ 1171.920014][T31576] FAT-fs (loop1): Directory bread(block 72) failed [ 1171.948190][ T7] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1171.964295][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1171.972499][T31576] FAT-fs (loop1): Directory bread(block 73) failed [ 1172.005104][ T7] usb 1-1: Product: syz [ 1172.017396][ T7] usb 1-1: Manufacturer: syz [ 1172.022088][ T7] usb 1-1: SerialNumber: syz [ 1172.082707][ T7] cdc_wdm 1-1:1.128: skipping garbage [ 1172.091220][ T7] cdc_wdm 1-1:1.128: invalid descriptor buffer length [ 1172.127198][ T7] cdc_wdm: probe of 1-1:1.128 failed with error -22 [ 1172.371186][ T5176] usb 1-1: USB disconnect, device number 2 [ 1172.436890][T31596] loop1: detected capacity change from 0 to 4096 [ 1172.471881][T31596] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1172.515366][T31596] ntfs3: loop1: Failed to load root. [ 1172.544222][ T4816] Bluetooth: hci5: command 0x0406 tx timeout [ 1172.661139][T31588] loop5: detected capacity change from 0 to 32768 [ 1172.758021][T31588] ERROR: (device loop5): dbFindCtl: Corrupt dmapctl page [ 1172.758021][T31588] [ 1172.797701][T31588] ERROR: (device loop5): remounting filesystem as read-only [ 1172.831000][T31588] jfs_mkdir: dtInsert returned -EIO [ 1172.855025][T31588] ERROR: (device loop5): jfs_mkdir: [ 1172.855025][T31588] [ 1172.938994][T31592] loop6: detected capacity change from 0 to 32768 [ 1173.067684][T31610] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12019'. [ 1173.125568][T31592] JBD2: Ignoring recovery information on journal [ 1173.258026][T31617] netlink: 'syz.5.12021': attribute type 11 has an invalid length. [ 1173.280152][T31617] netlink: 140 bytes leftover after parsing attributes in process `syz.5.12021'. [ 1173.366076][T31592] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1173.518224][ T26] kauditd_printk_skb: 2 callbacks suppressed [ 1173.518238][ T26] audit: type=1800 audit(1133.957:99): pid=31592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.12008" name="file0" dev="loop6" ino=17058 res=0 errno=0 [ 1173.626254][T26933] ocfs2: Unmounting device (7,6) on (node local) [ 1174.529069][T31662] netlink: 168 bytes leftover after parsing attributes in process `syz.1.12042'. [ 1175.085309][T31684] loop5: detected capacity change from 0 to 256 [ 1175.093451][T31685] x_tables: unsorted entry at hook 2 [ 1175.124316][T31684] exfat: Deprecated parameter 'namecase' [ 1175.155192][T31689] netlink: 'syz.6.12055': attribute type 41 has an invalid length. [ 1175.171804][T31689] netlink: 'syz.6.12055': attribute type 41 has an invalid length. [ 1175.183597][T31684] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1175.484011][T31699] Option ' ' to dns_resolver key: bad/missing value [ 1175.485872][T31701] x_tables: duplicate entry at hook 3 [ 1176.016666][T31727] loop1: detected capacity change from 0 to 16 [ 1176.047541][ T4823] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 1176.059109][T31727] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1176.182272][T31731] loop5: detected capacity change from 0 to 1764 [ 1176.191871][T31730] loop6: detected capacity change from 0 to 4096 [ 1176.255402][ T4823] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 1176.281206][ T4823] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 1176.324670][ T4823] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1176.360470][ T4823] usb 1-1: config 220 has no interface number 2 [ 1176.382064][ T4823] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1176.437052][ T4823] usb 1-1: config 220 interface 0 has no altsetting 0 [ 1176.454893][ T4823] usb 1-1: config 220 interface 76 has no altsetting 0 [ 1176.465676][ T4823] usb 1-1: config 220 interface 1 has no altsetting 0 [ 1176.497341][ T4823] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1176.520906][ T4823] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1176.544546][ T4823] usb 1-1: Product: syz [ 1176.548756][ T4823] usb 1-1: Manufacturer: syz [ 1176.585040][ T4823] usb 1-1: SerialNumber: syz [ 1176.603276][T31741] siw: device registration error -23 [ 1176.730555][T31743] loop5: detected capacity change from 0 to 4096 [ 1176.767036][T31743] ntfs: (device loop5): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1176.840718][ T4823] usb 1-1: selecting invalid altsetting 0 [ 1176.846369][T31743] ntfs: volume version 3.1. [ 1176.852018][ T4823] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 1176.864346][ T4823] usb 1-1: No valid video chain found. [ 1176.892868][ T4823] usb 1-1: selecting invalid altsetting 0 [ 1176.905978][ T4823] usbtest: probe of 1-1:220.1 failed with error -22 [ 1176.917826][ T4823] usb 1-1: USB disconnect, device number 3 [ 1177.098245][ T5850] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 1177.173116][ T4820] usb 7-1: new high-speed USB device number 11 using dummy_hcd [ 1177.223253][T31751] loop5: detected capacity change from 0 to 40427 [ 1177.234284][T31751] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 1177.244491][T31751] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 1177.262607][T31751] F2FS-fs (loop5): invalid crc value [ 1177.273191][T31751] F2FS-fs (loop5): Found nat_bits in checkpoint [ 1177.303184][ T5850] usb 2-1: config 255 has an invalid interface number: 215 but max is 0 [ 1177.318527][ T5850] usb 2-1: config 255 has no interface number 0 [ 1177.328927][ T5850] usb 2-1: config 255 interface 215 has no altsetting 0 [ 1177.341530][T31751] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 1177.349606][T31751] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 1177.359193][ T5850] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=7d.01 [ 1177.369976][ T4820] usb 7-1: config 220 has an invalid interface number: 76 but max is 2 [ 1177.378453][ T4820] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1177.388915][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1177.396982][ T5850] usb 2-1: Product: syz [ 1177.401327][ T5850] usb 2-1: Manufacturer: syz [ 1177.406147][ T5850] usb 2-1: SerialNumber: syz [ 1177.420016][ T4820] usb 7-1: config 220 has no interface number 2 [ 1177.431178][T31751] syz.5.12086: attempt to access beyond end of device [ 1177.431178][T31751] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 1177.458323][ T4820] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1177.506296][ T4820] usb 7-1: config 220 interface 0 has no altsetting 0 [ 1177.526072][ T4820] usb 7-1: config 220 interface 76 has no altsetting 0 [ 1177.533018][ T4820] usb 7-1: config 220 interface 1 has no altsetting 0 [ 1177.563078][ T4820] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1177.580423][ T4820] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1177.588573][ T4820] usb 7-1: Product: syz [ 1177.599417][ T4820] usb 7-1: Manufacturer: syz [ 1177.604161][ T4820] usb 7-1: SerialNumber: syz [ 1177.699942][ T5850] usb 2-1: NFC: intf ffff88802744b000 id ffffffff8d3fc6e0 [ 1177.744618][ T5850] usb 2-1: USB disconnect, device number 3 [ 1177.851359][ T4820] usb 7-1: selecting invalid altsetting 0 [ 1177.857873][ T4820] usb 7-1: Found UVC 7.01 device syz (8086:0b07) [ 1177.875252][ T4820] usb 7-1: No valid video chain found. [ 1177.913977][ T4820] usb 7-1: selecting invalid altsetting 0 [ 1177.931168][ T4820] usbtest: probe of 7-1:220.1 failed with error -22 [ 1177.975018][ T4820] usb 7-1: USB disconnect, device number 11 [ 1178.012841][T31763] loop0: detected capacity change from 0 to 4096 [ 1178.019383][ T4808] Bluetooth: hci6: command 0x0406 tx timeout [ 1178.039868][T31763] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1178.111871][T31763] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1178.165064][T31763] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1178.195897][T31763] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1178.239563][T31763] ntfs: volume version 3.1. [ 1178.546026][T31781] loop6: detected capacity change from 0 to 64 [ 1178.850315][T31793] program syz.1.12105 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1178.871209][T31795] netlink: 'syz.5.12106': attribute type 2 has an invalid length. [ 1179.064967][T31802] trusted_key: encrypted_key: keyword 'ryptfs' not recognized [ 1179.099399][T31803] loop5: detected capacity change from 0 to 64 [ 1179.106706][ T7] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 1179.238140][T31807] loop1: detected capacity change from 0 to 2048 [ 1179.313300][ T7] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1179.337923][ T7] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1179.349048][T31814] loop5: detected capacity change from 0 to 128 [ 1179.366602][ T7] usb 1-1: config 0 descriptor?? [ 1179.373781][ T7] cp210x 1-1:0.0: cp210x converter detected [ 1179.409536][T31807] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 1179.484962][T31807] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters [ 1179.600229][ T7] usb 1-1: cp210x converter now attached to ttyUSB0 [ 1179.705303][ T4805] EXT4-fs (loop1): unmounting filesystem. [ 1179.836445][ T7] usb 1-1: USB disconnect, device number 4 [ 1179.873726][ T7] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1179.921072][ T7] cp210x 1-1:0.0: device disconnected [ 1180.243866][T31852] loop1: detected capacity change from 0 to 16 [ 1180.275623][T31852] erofs: (device loop1): mounted with root inode @ nid 36. [ 1180.540671][ T4808] Bluetooth: hci6: Invalid handle: 0x0f00 > 0x0eff [ 1180.613930][T31868] netlink: 'syz.1.12142': attribute type 2 has an invalid length. [ 1181.270142][ T27] INFO: task syz-executor:4807 blocked for more than 143 seconds. [ 1181.278036][ T27] Not tainted syzkaller #0 [ 1181.298137][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1181.309260][T31901] usb usb1: usbfs: process 31901 (syz.5.12156) did not claim interface 0 before use [ 1181.320778][ T27] task:syz-executor state:D stack:22144 pid:4807 ppid:1 flags:0x00004004 [ 1181.351876][ T27] Call Trace: [ 1181.363066][ T27] [ 1181.366548][ T27] __schedule+0x10ec/0x40b0 [ 1181.384825][ T27] ? __sched_text_start+0x8/0x8 [ 1181.423901][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1181.446560][ T27] ? lock_chain_count+0x20/0x20 [ 1181.459497][ T27] ? _raw_spin_lock_irq+0xab/0xe0 [ 1181.467717][ T27] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 1181.474777][ T27] schedule+0xb9/0x180 [ 1181.479453][ T27] io_schedule+0x7c/0xd0 [ 1181.490027][ T27] folio_wait_bit_common+0x6e1/0xf60 [ 1181.499517][ T27] ? folio_wait_bit+0x30/0x30 [ 1181.506845][ T27] ? migration_entry_wait_on_locked+0xe50/0xe50 [ 1181.513139][ T27] ? folio_mapping+0x1ba/0x4d0 [ 1181.518020][ T27] truncate_inode_pages_range+0x9a2/0xff0 [ 1181.523759][ T27] ? mapping_evict_folio+0x520/0x520 [ 1181.529124][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1181.535235][ T27] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1181.540442][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 1181.545726][ T27] evict+0x498/0x870 [ 1181.549639][ T27] ? proc_nr_inodes+0x2f0/0x2f0 [ 1181.554496][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 1181.559778][ T27] ? _raw_spin_unlock+0x24/0x40 [ 1181.564693][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 1181.569960][ T27] evict_inodes+0x604/0x690 [ 1181.574481][ T27] ? clear_inode+0x150/0x150 [ 1181.579192][ T27] ? dput+0x1c9/0x1d0 [ 1181.583188][ T27] ? sync_filesystem+0x103/0x220 [ 1181.588603][ T27] generic_shutdown_super+0x93/0x340 [ 1181.593910][ T27] kill_block_super+0x7c/0xe0 [ 1181.598598][ T27] deactivate_locked_super+0x93/0xf0 [ 1181.604041][ T27] cleanup_mnt+0x463/0x4f0 [ 1181.608465][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 1181.613734][ T27] task_work_run+0x1ca/0x250 [ 1181.618328][ T27] ? task_work_cancel+0x230/0x230 [ 1181.623430][ T27] ? exit_to_user_mode_loop+0x3b/0x110 [ 1181.628897][ T27] exit_to_user_mode_loop+0xe6/0x110 [ 1181.634213][ T27] exit_to_user_mode_prepare+0xee/0x180 [ 1181.639761][ T27] syscall_exit_to_user_mode+0x16/0x40 [ 1181.645311][ T27] do_syscall_64+0x58/0xa0 [ 1181.649731][ T27] ? clear_bhb_loop+0x60/0xb0 [ 1181.654440][ T27] ? clear_bhb_loop+0x60/0xb0 [ 1181.659119][ T27] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1181.665079][ T27] RIP: 0033:0x7fe026590a77 [ 1181.669494][ T27] RSP: 002b:00007ffd77114f58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1181.678010][ T27] RAX: 0000000000000000 RBX: 00007fe026613d7d RCX: 00007fe026590a77 [ 1181.686086][ T27] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd77115010 [ 1181.694056][ T27] RBP: 00007ffd77115010 R08: 0000000000000000 R09: 0000000000000000 [ 1181.702728][ T27] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd771160a0 [ 1181.710813][ T27] R13: 00007fe026613d7d R14: 00000000000f21b4 R15: 00007ffd771160e0 [ 1181.718922][ T27] [ 1181.722001][ T27] INFO: task syz-executor:4818 blocked for more than 143 seconds. [ 1181.730691][ T27] Not tainted syzkaller #0 [ 1181.735630][ T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 1181.744385][ T27] task:syz-executor state:D stack:22528 pid:4818 ppid:1 flags:0x00004004 [ 1181.755408][ T27] Call Trace: [ 1181.758721][ T27] [ 1181.763046][ T27] __schedule+0x10ec/0x40b0 [ 1181.767580][ T27] ? __sched_text_start+0x8/0x8 [ 1181.772572][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1181.778562][ T27] ? lock_chain_count+0x20/0x20 [ 1181.783670][ T27] ? _raw_spin_lock_irq+0xab/0xe0 [ 1181.788710][ T27] ? _raw_spin_lock_irqsave+0xf0/0xf0 [ 1181.794135][ T27] schedule+0xb9/0x180 [ 1181.798218][ T27] io_schedule+0x7c/0xd0 [ 1181.802589][ T27] folio_wait_bit_common+0x6e1/0xf60 [ 1181.808095][ T27] ? folio_wait_bit+0x30/0x30 [ 1181.812838][ T27] ? migration_entry_wait_on_locked+0xe50/0xe50 [ 1181.819084][ T27] ? folio_mapping+0x1ba/0x4d0 [ 1181.823925][ T27] truncate_inode_pages_range+0x9a2/0xff0 [ 1181.829660][ T27] ? mapping_evict_folio+0x520/0x520 [ 1181.835144][ T27] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1181.841148][ T27] ? _raw_spin_unlock_irq+0x1f/0x40 [ 1181.846424][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 1181.851632][ T27] evict+0x498/0x870 [ 1181.855650][ T27] ? proc_nr_inodes+0x2f0/0x2f0 [ 1181.860510][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 1181.865724][ T27] ? _raw_spin_unlock+0x24/0x40 [ 1181.871268][ T27] ? do_raw_spin_unlock+0x11d/0x230 [ 1181.876503][ T27] evict_inodes+0x604/0x690 [ 1181.881174][ T27] ? clear_inode+0x150/0x150 [ 1181.885775][ T27] ? dput+0x1c9/0x1d0 [ 1181.889995][ T27] ? sync_filesystem+0x103/0x220 [ 1181.894950][ T27] generic_shutdown_super+0x93/0x340 [ 1181.900319][ T27] kill_block_super+0x7c/0xe0 [ 1181.904998][ T27] deactivate_locked_super+0x93/0xf0 [ 1181.910336][ T27] cleanup_mnt+0x463/0x4f0 [ 1181.914767][ T27] ? lockdep_hardirqs_on+0x94/0x140 [ 1181.920321][ T27] task_work_run+0x1ca/0x250 [ 1181.924925][ T27] ? task_work_cancel+0x230/0x230 [ 1181.929947][ T27] ? exit_to_user_mode_loop+0x3b/0x110 [ 1181.935462][ T27] exit_to_user_mode_loop+0xe6/0x110 [ 1181.940762][ T27] exit_to_user_mode_prepare+0xee/0x180 [ 1181.946341][ T27] syscall_exit_to_user_mode+0x16/0x40 [ 1181.952346][ T27] do_syscall_64+0x58/0xa0 [ 1181.956777][ T27] ? clear_bhb_loop+0x60/0xb0 [ 1181.961464][ T27] ? clear_bhb_loop+0x60/0xb0 [ 1181.966408][ T27] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1181.972310][ T27] RIP: 0033:0x7f3779390a77 [ 1181.976776][ T27] RSP: 002b:00007ffcfe97d868 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1181.985332][ T27] RAX: 0000000000000000 RBX: 00007f3779413d7d RCX: 00007f3779390a77 [ 1181.993311][ T27] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcfe97d920 [ 1182.001525][ T27] RBP: 00007ffcfe97d920 R08: 0000000000000000 R09: 0000000000000000 [ 1182.009565][ T27] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcfe97e9b0 [ 1182.018093][ T27] R13: 00007f3779413d7d R14: 00000000000f38ca R15: 00007ffcfe97e9f0 [ 1182.026346][ T27] [ 1182.029543][ T27] [ 1182.029543][ T27] Showing all locks held in the system: [ 1182.038967][ T27] 3 locks held by kworker/u4:0/9: [ 1182.043996][ T27] #0: ffff8880b8f3aad8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 1182.054025][ T27] #1: ffffc900000e7d00 ((work_completion)(&(&bat_priv->nc.work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 1182.066646][ T27] #2: ffff8880b8f28418 (&base->lock){-.-.}-{2:2}, at: lock_timer_base+0x123/0x270 [ 1182.076171][ T27] 1 lock held by rcu_tasks_kthre/12: [ 1182.081567][ T27] #0: ffffffff8cb2b630 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 1182.092086][ T27] 1 lock held by rcu_tasks_trace/13: [ 1182.097372][ T27] #0: ffffffff8cb2be50 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00 [ 1182.108424][ T27] 1 lock held by khungtaskd/27: [ 1182.113548][ T27] #0: ffffffff8cb2aca0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 1182.123552][ T27] 3 locks held by kworker/1:2/126: [ 1182.128671][ T27] #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 1182.139384][ T27] #1: ffffc90002da7d00 (key_gc_work){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 1182.148973][ T27] #2: ffffffff8cb30978 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x455/0x830 [ 1182.159980][ T27] 2 locks held by getty/4027: [ 1182.164661][ T27] #0: ffff8880302ac098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 1182.174509][ T27] #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380 [ 1182.184674][ T27] 1 lock held by syz-executor/4807: [ 1182.190062][ T27] #0: ffff888067dea0e0 (&type->s_umount_key#69){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0 [ 1182.200337][ T27] 1 lock held by syz-executor/4818: [ 1182.205536][ T27] #0: ffff888066d980e0 (&type->s_umount_key#69){+.+.}-{3:3}, at: deactivate_super+0xa0/0xd0 [ 1182.218784][ T27] 2 locks held by kworker/0:5/4820: [ 1182.224298][ T27] #0: ffff8880b8e3aad8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140 [ 1182.234293][ T27] #1: ffff8880b8e27848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x312/0x6d0 [ 1182.246328][ T27] 2 locks held by kworker/1:21/22588: [ 1182.251798][ T27] #0: ffff888017472138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 1182.262265][ T27] #1: ffffc900053ffd00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160 [ 1182.273999][ T27] [ 1182.276401][ T27] ============================================= [ 1182.276401][ T27] [ 1182.284859][ T27] NMI backtrace for cpu 1 [ 1182.289179][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 [ 1182.296370][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1182.306432][ T27] Call Trace: [ 1182.309707][ T27] [ 1182.312624][ T27] dump_stack_lvl+0x168/0x22e [ 1182.317301][ T27] ? show_regs_print_info+0x12/0x12 [ 1182.322503][ T27] ? load_image+0x3b0/0x3b0 [ 1182.327001][ T27] ? vprintk_emit+0x571/0x680 [ 1182.331687][ T27] ? printk_sprint+0x460/0x460 [ 1182.336450][ T27] nmi_cpu_backtrace+0x3f4/0x470 [ 1182.341398][ T27] ? nmi_trigger_cpumask_backtrace+0x450/0x450 [ 1182.347544][ T27] ? _printk+0xcc/0x110 [ 1182.351710][ T27] ? load_image+0x3b0/0x3b0 [ 1182.356211][ T27] ? load_image+0x3b0/0x3b0 [ 1182.360721][ T27] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 1182.366791][ T27] nmi_trigger_cpumask_backtrace+0x1d4/0x450 [ 1182.372769][ T27] watchdog+0xeee/0xf30 [ 1182.376928][ T27] ? watchdog+0x1ed/0xf30 [ 1182.381258][ T27] kthread+0x29d/0x330 [ 1182.385330][ T27] ? hungtask_pm_notify+0x40/0x40 [ 1182.390348][ T27] ? kthread_blkcg+0xd0/0xd0 [ 1182.394943][ T27] ret_from_fork+0x1f/0x30 [ 1182.399359][ T27] [ 1182.403036][ T27] Sending NMI from CPU 1 to CPUs 0: [ 1182.408386][ C0] NMI backtrace for cpu 0 [ 1182.408396][ C0] CPU: 0 PID: 3620 Comm: syslogd Not tainted syzkaller #0 [ 1182.408412][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1182.408421][ C0] RIP: 0010:lock_acquire+0x194/0x490 [ 1182.408442][ C0] Code: 00 00 00 fa 48 c7 c7 60 12 8c 8a e8 a6 ee b4 08 65 ff 05 5f 80 9f 7e 45 31 c9 41 f7 c6 00 02 00 00 41 0f 94 c1 48 8b 7c 24 20 <8b> 74 24 14 89 da 48 8b 4c 24 28 4c 8b 44 24 30 6a 00 6a 00 ff 75 [ 1182.408455][ C0] RSP: 0018:ffffc90003277760 EFLAGS: 00000006 [ 1182.408468][ C0] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 7b39561dda2d5300 [ 1182.408478][ C0] RDX: 0000000000000000 RSI: ffffffff8a8c1260 RDI: ffffffff8cb2aca0 [ 1182.408490][ C0] RBP: ffffc90003277870 R08: dffffc0000000000 R09: 0000000000000000 [ 1182.408500][ C0] R10: fffffbfff1c3ed56 R11: 1ffffffff1c3ed55 R12: 0000000000000000 [ 1182.408511][ C0] R13: 1ffff9200064eef8 R14: 0000000000000246 R15: dffffc0000000000 [ 1182.408521][ C0] FS: 00007f367c5eac80(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1182.408535][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1182.408545][ C0] CR2: 00007faf0ddb42f8 CR3: 0000000030ffd000 CR4: 00000000003506f0 [ 1182.408558][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1182.408567][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 1182.408575][ C0] Call Trace: [ 1182.408580][ C0] [ 1182.408587][ C0] ? __might_fault+0xc2/0x120 [ 1182.408601][ C0] ? __might_fault+0xa6/0x120 [ 1182.408614][ C0] ? read_lock_is_recursive+0x10/0x10 [ 1182.408632][ C0] ? _copy_to_iter+0x2b6/0x1030 [ 1182.408651][ C0] ? __lock_acquire+0x7c50/0x7c50 [ 1182.408669][ C0] ? lock_chain_count+0x20/0x20 [ 1182.408687][ C0] ? unix_write_space+0x1e/0x370 [ 1182.408702][ C0] unix_write_space+0x3a/0x370 [ 1182.408716][ C0] ? unix_write_space+0x1e/0x370 [ 1182.408730][ C0] sock_wfree+0x19c/0x610 [ 1182.408744][ C0] ? unix_destruct_scm+0x13a/0x180 [ 1182.408759][ C0] unix_destruct_scm+0x142/0x180 [ 1182.408773][ C0] ? queue_oob+0x4d0/0x4d0 [ 1182.408786][ C0] ? scm_recv+0x3aa/0x540 [ 1182.408805][ C0] ? __unix_dgram_recvmsg+0xd70/0xd70 [ 1182.408825][ C0] ? skb_copy_datagram_iter+0x290/0x290 [ 1182.408842][ C0] skb_release_head_state+0xf6/0x240 [ 1182.408861][ C0] consume_skb+0x72/0x100 [ 1182.408878][ C0] __unix_dgram_recvmsg+0xa06/0xd70 [ 1182.408898][ C0] ? aa_file_perm+0x117/0xec0 [ 1182.408914][ C0] ? unix_unhash+0x10/0x10 [ 1182.408934][ C0] ? aa_af_perm+0x2b0/0x2b0 [ 1182.408949][ C0] ? aa_file_perm+0x3ef/0xec0 [ 1182.408963][ C0] ? bpf_lsm_socket_recvmsg+0x5/0x10 [ 1182.408977][ C0] ? security_socket_recvmsg+0x85/0xb0 [ 1182.408996][ C0] ? unix_dgram_recvmsg+0xa9/0xd0 [ 1182.409011][ C0] sock_read_iter+0x2bf/0x370 [ 1182.409031][ C0] ? kernel_sock_ip_overhead+0x590/0x590 [ 1182.409054][ C0] ? common_file_perm+0x171/0x1c0 [ 1182.409075][ C0] ? fsnotify_perm+0x248/0x550 [ 1182.409091][ C0] vfs_read+0x434/0x920 [ 1182.409111][ C0] ? kernel_read+0x1e0/0x1e0 [ 1182.409128][ C0] ? rcu_is_watching+0x11/0xa0 [ 1182.409147][ C0] ? kvm_sched_clock_read+0x14/0x40 [ 1182.409163][ C0] ? __bpf_trace_rseq_ip_fixup+0x40/0x40 [ 1182.409178][ C0] ? lockdep_hardirqs_on_prepare+0x3fc/0x760 [ 1182.409196][ C0] ? __fdget_pos+0x1d4/0x360 [ 1182.409215][ C0] ksys_read+0x143/0x240 [ 1182.409234][ C0] ? vfs_write+0x960/0x960 [ 1182.409253][ C0] ? lockdep_hardirqs_on+0x94/0x140 [ 1182.409274][ C0] do_syscall_64+0x4c/0xa0 [ 1182.409289][ C0] ? clear_bhb_loop+0x60/0xb0 [ 1182.409304][ C0] ? clear_bhb_loop+0x60/0xb0 [ 1182.409319][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1182.409340][ C0] RIP: 0033:0x7f367c73a407 [ 1182.409352][ C0] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 1182.409363][ C0] RSP: 002b:00007ffcc5b60990 EFLAGS: 00000202 ORIG_RAX: 0000000000000000 [ 1182.409377][ C0] RAX: ffffffffffffffda RBX: 00007f367c5eac80 RCX: 00007f367c73a407 [ 1182.409388][ C0] RDX: 00000000000000ff RSI: 00005650916b5950 RDI: 0000000000000000 [ 1182.409397][ C0] RBP: 00005650916b5910 R08: 0000000000000000 R09: 0000000000000000 [ 1182.409406][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 00005650916b59db [ 1182.409416][ C0] R13: 0000000000000000 R14: 00005650916b5950 R15: 0000565076439d98 [ 1182.409431][ C0] [ 1182.410603][ T27] Kernel panic - not syncing: hung_task: blocked tasks [ 1182.410614][ T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted syzkaller #0 [ 1182.410630][ T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1182.410639][ T27] Call Trace: [ 1182.410644][ T27] [ 1182.410651][ T27] dump_stack_lvl+0x168/0x22e [ 1182.410670][ T27] ? memcpy+0x3c/0x60 [ 1182.410691][ T27] ? show_regs_print_info+0x12/0x12 [ 1182.410708][ T27] ? load_image+0x3b0/0x3b0 [ 1182.410741][ T27] panic+0x2c9/0x710 [ 1182.410759][ T27] ? schedule_preempt_disabled+0x20/0x20 [ 1182.410781][ T27] ? bpf_jit_dump+0xd0/0xd0 [ 1182.410799][ T27] ? __irq_work_queue_local+0x12c/0x190 [ 1182.410823][ T27] ? nmi_trigger_cpumask_backtrace+0x35b/0x450 [ 1182.410842][ T27] ? nmi_trigger_cpumask_backtrace+0x360/0x450 [ 1182.410861][ T27] watchdog+0xf2d/0xf30 [ 1182.410881][ T27] ? watchdog+0x1ed/0xf30 [ 1182.410901][ T27] kthread+0x29d/0x330 [ 1182.410920][ T27] ? hungtask_pm_notify+0x40/0x40 [ 1182.410936][ T27] ? kthread_blkcg+0xd0/0xd0 [ 1182.410957][ T27] ret_from_fork+0x1f/0x30 [ 1182.410985][ T27] [ 1182.414239][ T27] Kernel Offset: disabled [ 1182.950047][ T27] Rebooting in 86400 seconds..