last executing test programs: 19.082485462s ago: executing program 1 (id=2757): r0 = syz_open_dev$video(&(0x7f0000000000), 0x826b, 0x8201) ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f0000000200)={0x1, "00000000445c940c3b16d380ecff0000aa2e0a00000000000000000810000200", 0x2, 0x4a3c, 0x3, 0x3000000, 0x5020311}) 18.105813229s ago: executing program 1 (id=2761): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000140)=@newlink={0x68, 0x10, 0x1, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21a8}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x34, 0x16, 0x0, 0x1, [{0x30, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x2c, 0xc, 0x0, 0x1, [{0x14, 0x1, {0x9, 0xc4a, 0x9, 0x88a8}}, {0x14, 0x1, {0x8, 0x8c7, 0x5, 0x8100}}]}]}]}]}, 0x68}}, 0x0) 16.885060471s ago: executing program 1 (id=2766): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000002740)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000b8000000090a010400000000000000000100000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000002b7c0011800b00010074617267657400006c00028059000100c8e0cd3d5494dadc537f998026210d81ca78da5d8527e5f18b2a33319f4564294f793cb1043098e5b74e2512d5c40c53b2056a8fd7eb876bddddf3e0709b8f7a2b0e481cd3002bf5ec60ec7f5d5164d3cbc1c2a46100000004000300080002"], 0x100}}, 0x0) 16.180948514s ago: executing program 1 (id=2770): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='iocharset=cp865,uid=', @ANYRESHEX=0x0, @ANYBLOB=',namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30303030303030303030303030303030303030303031302c757466382c666d61736b3d30303030303030303030303030303030303030303030362c6572726f72733d636f6e74696e75652c7379735f747a2c616c6c6f775f7574696d653d30303030303030303030303030303030303134373036342c00968868822eaa4073da2a8bad3e75bf3fa58e5fe9023e2efe14b61e42154e792855b9c44517fcaf42990fa252a8fcc76df45041b88e383db02cc075636a6b415c49ee2ad1af7ecfc73f3809bce1541b2c780705cdd96cfb760a1f342582ee152abbe3f5828666937a000000800f62dc427b22ae7bd20a2fb9094ffaf7b7eda15af87283045448d6cabb51f8a411539d39a9d6db38d1409fe568885e22b71e7a4823804f8c350397801bc23742343cecb0758cec6286312c4d"], 0x1, 0x1545, &(0x7f0000001a00)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 14.852535733s ago: executing program 1 (id=2777): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a40)={0x28, 0x14, 0x119, 0x0, 0x0, {0x10}}, 0x28}, 0x1, 0x2c}, 0x0) 14.013701374s ago: executing program 1 (id=2782): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x89a5, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x7, 0x3, 0x34324258, 0x6, 0xe0e, 0x4000101, 0x4, 0xfeedcafe, 0x1, 0x4, 0x2, 0x3}}) 10.839513444s ago: executing program 32 (id=2782): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x89a5, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0cc5605, &(0x7f00000000c0)={0x1, @pix={0x7, 0x3, 0x34324258, 0x6, 0xe0e, 0x4000101, 0x4, 0xfeedcafe, 0x1, 0x4, 0x2, 0x3}}) 10.155357473s ago: executing program 3 (id=2789): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0) writev(r0, &(0x7f0000000b00)=[{&(0x7f0000000940)='\r', 0x1}], 0x1) 8.767463199s ago: executing program 3 (id=2794): r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmmsg$inet6(r0, &(0x7f0000001580)=[{{&(0x7f0000000180)={0xa, 0x4e24, 0x253a, @mcast1, 0x5}, 0x1c, 0x0, 0x0, &(0x7f0000000200)=[@dontfrag={{0x10}}, @hoplimit={{0x10, 0x29, 0x34, 0x5}}], 0x20}}, {{&(0x7f00000002c0)={0xa, 0x4e22, 0xa, @empty, 0x8}, 0x1c, 0x0, 0x0, &(0x7f0000000ec0)=[@pktinfo={{0x20, 0x29, 0x32, {@mcast2}}}], 0x20}}], 0x2, 0x0) 7.610779115s ago: executing program 3 (id=2798): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @local}, 0x1c) 6.858963356s ago: executing program 3 (id=2800): r0 = socket(0xa, 0x3, 0x3a) setsockopt$MRT6_DONE(r0, 0x29, 0xc9, 0x0, 0x0) 6.640208752s ago: executing program 4 (id=2802): r0 = socket$inet6(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0) 6.28443838s ago: executing program 2 (id=2803): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x115}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvtap={{0xc}, {0x4}}}, @IFLA_LINK={0x8}]}, 0x3c}}, 0x0) 6.116659578s ago: executing program 0 (id=2804): r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmsg$inet6(r0, &(0x7f0000000040)={&(0x7f0000000000)={0xa, 0x0, 0x0, @empty, 0x7f}, 0x1c, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="2400000029000000390000008402020100000000125600000000000000000000000000aa14000000290000003b00000028b7"], 0x38}, 0x24004800) 6.046156395s ago: executing program 3 (id=2805): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="680000000714010025bd7000ffdbdf25080001000100000008000100000000000900020073797a32000000000900020073797a3000000000050042000100000008000100010000000900020073797a30000000000900020073797a3000000000080001"], 0x68}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 5.487047147s ago: executing program 4 (id=2806): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a80)=ANY=[@ANYBLOB="140000004e000100ffffff7498f079a9f3ff"], 0x14}}, 0x0) 5.154096299s ago: executing program 0 (id=2807): r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x3, 0x0, 0x2}) 4.513488711s ago: executing program 2 (id=2808): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x10, &(0x7f0000000000)={[{@iocharset={'iocharset', 0x3d, 'cp949'}}, {@codepage={'codepage', 0x3d, 'macroman'}}, {@gid}]}, 0x1, 0x2f9, &(0x7f0000000400)="$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") mkdir(&(0x7f0000002bc0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1) 4.492719264s ago: executing program 0 (id=2809): r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x47b, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f00000003c0)={0xf0f015, 0x1}) 4.344775166s ago: executing program 4 (id=2810): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f00000004c0)=ANY=[@ANYBLOB="2c0000001a00010000000000000000000a000000000000000000000005001b003a00000008000300", @ANYRES32], 0x2c}}, 0x0) 3.688567901s ago: executing program 0 (id=2811): r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPGETCONNINFO(r0, 0x800442d3, &(0x7f0000000180)={0xfffffffc, 0x5, 0x7, @random="5180fdc521f5", 'ip6_vti0\x00'}) 3.640900205s ago: executing program 2 (id=2812): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) unshare(0x2a020400) 3.430684401s ago: executing program 4 (id=2813): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, 0x0, 0x0) 3.075046023s ago: executing program 2 (id=2814): r0 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0) ioctl$DRM_IOCTL_GEM_OPEN(r0, 0xc010640b, &(0x7f0000000140)) 2.859259604s ago: executing program 0 (id=2815): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000140)={0x3, 0x9, 0x2}) 2.758142105s ago: executing program 4 (id=2816): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000580)={@dev={0xfe, 0x80, '\x00', 0x31}, @remote, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2, 0x0, 0x80, 0x0, 0x7, 0x201}) 1.935252944s ago: executing program 2 (id=2817): r0 = io_uring_setup(0x16e2, &(0x7f0000002980)={0x0, 0xc562, 0x800, 0x3, 0x2cf}) io_uring_register$IORING_REGISTER_FILES2(r0, 0xd, &(0x7f0000002d00)={0x1, 0x1, 0x0, &(0x7f0000002c80)=[{0x0}], 0x0}, 0x20) 1.839146859s ago: executing program 3 (id=2818): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@newlink={0x58, 0x10, 0x401, 0x0, 0x4, {0x0, 0x0, 0x0, 0x0, 0x103, 0x1000}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0xc, 0x5, 0x0, 0x1, [@IFLA_BRPORT_PRIORITY={0x6, 0x2, 0x66d7}]}}}, @IFLA_IFNAME={0x14, 0x3, 'bridge_slave_0\x00'}]}, 0x58}}, 0x0) 1.790629735s ago: executing program 0 (id=2819): syz_mount_image$hfsplus(&(0x7f0000000140), &(0x7f0000000080)='./bus\x00', 0x81008c, &(0x7f00000000c0)=ANY=[@ANYRES64=0x0, @ANYRES16=0x0, @ANYRES32, @ANYRESHEX, @ANYRESHEX, @ANYRES64=0x0, @ANYRES32], 0x1, 0x675, &(0x7f0000001280)="$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") truncate(&(0x7f0000000280)='./file2\x00', 0x6) 1.304070219s ago: executing program 4 (id=2820): syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file1\x00', 0x2000c12, &(0x7f0000000300)={[{@check_relaxed}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@map_off}, {@map_normal}, {@nocompress}, {@map_off}, {@check_strict}, {@iocharset={'iocharset', 0x3d, 'cp869'}}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@unhide}, {@overriderock}, {@check_strict}, {@nocompress}, {@unhide}, {@overriderock}]}, 0x3, 0x9f1, &(0x7f0000001b40)="$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") mount$9p_fd(0x0, &(0x7f0000000100)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x0, 0x0) 0s ago: executing program 2 (id=2821): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) utimes(0x0, 0x0) kernel console output (not intermixed with test programs): Number=2 [ 392.678579][ T9] usb 1-1: Product: syz [ 392.683010][ T9] usb 1-1: Manufacturer: syz [ 392.687991][ T9] usb 1-1: SerialNumber: syz [ 392.844556][ T7485] loop3: detected capacity change from 0 to 256 [ 392.908738][ T9] usb 1-1: config 0 descriptor?? [ 392.952463][ T9] usb 1-1: selecting invalid altsetting 0 [ 393.066966][ T7485] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 393.263575][ T9] usb 1-1: USB disconnect, device number 4 [ 393.682232][ T5849] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 393.699128][ T6048] udevd[6048]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 393.896243][ T5849] usb 2-1: Using ep0 maxpacket: 8 [ 393.936310][ T5849] usb 2-1: config index 0 descriptor too short (expected 301, got 45) [ 393.944858][ T5849] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 393.955155][ T5849] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 393.968665][ T5849] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 393.979857][ T5849] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 393.993360][ T5849] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 394.003023][ T5849] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 394.145297][ T7496] loop4: detected capacity change from 0 to 64 [ 394.211171][ T7496] hfs: invalid btree extent records [ 394.217012][ T7496] hfs: unable to open extent tree [ 394.560133][ T9] usb 2-1: USB disconnect, device number 3 [ 394.937056][ T7503] loop2: detected capacity change from 0 to 512 [ 394.953597][ T7503] EXT4-fs: Ignoring removed orlov option [ 394.988201][ T7503] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 395.035952][ T7503] EXT4-fs (loop2): orphan cleanup on readonly fs [ 395.115896][ T7503] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.732: bg 0: block 248: padding at end of block bitmap is not set [ 395.212204][ T7503] Quota error (device loop2): write_blk: dquota write failed [ 395.220514][ T7503] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 395.236932][ T7503] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.732: Failed to acquire dquot type 1 [ 395.436775][ T7503] EXT4-fs (loop2): 1 truncate cleaned up [ 395.478412][ T7503] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 395.647192][ T7503] EXT4-fs: Ignoring removed orlov option [ 395.653807][ T7503] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 395.670573][ T7513] loop1: detected capacity change from 0 to 256 [ 395.703574][ T7503] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 395.823844][ T7503] EXT4-fs error (device loop2): __ext4_remount:6738: comm syz.2.732: Abort forced by user [ 395.886263][ T7503] EXT4-fs (loop2): Remounting filesystem read-only [ 395.893180][ T7503] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 395.902115][ T7503] ext4 filesystem being remounted at /150/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 396.346132][ T7503] syz.2.732 (7503) used greatest stack depth: 4000 bytes left [ 396.478289][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 397.279504][ T7531] netlink: 28 bytes leftover after parsing attributes in process `syz.4.746'. [ 398.094989][ T7542] loop2: detected capacity change from 0 to 164 [ 398.996384][ T7553] batadv1: entered promiscuous mode [ 400.498470][ T7571] loop2: detected capacity change from 0 to 16 [ 400.589365][ T7571] erofs (device loop2): mounted with root inode @ nid 36. [ 400.722853][ T7563] loop1: detected capacity change from 0 to 4096 [ 400.777463][ T7568] loop0: detected capacity change from 0 to 4096 [ 400.823188][ T7568] EXT4-fs: Ignoring removed orlov option [ 400.836348][ T7568] EXT4-fs: Ignoring removed nomblk_io_submit option [ 400.856846][ T7563] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 401.154969][ T7568] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 401.297447][ T7577] openvswitch: netlink: Tunnel attr 222 out of range max 16 [ 401.349632][ T7568] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0 [ 401.360975][ T7568] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 401.371240][ T7568] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.763: Failed to acquire dquot type 1 [ 401.400762][ T7579] loop3: detected capacity change from 0 to 64 [ 401.448608][ T7563] ntfs3(loop1): ino=19, mi_enum_attr [ 401.454248][ T7563] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 401.653678][ T7563] ntfs3(loop1): failed to convert "c46c" to macroman [ 401.676756][ T7563] ntfs3(loop1): ino=20, mi_enum_attr [ 401.829796][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 402.577525][ T7587] delete_channel: no stack [ 402.975099][ T7590] loop0: detected capacity change from 0 to 2048 [ 403.065861][ T7590] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 403.109953][ T7590] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 403.218152][ T7590] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.693114][ T7613] loop1: detected capacity change from 0 to 64 [ 405.667933][ T7626] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 405.695052][ T7626] CIFS mount error: No usable UNC path provided in device string! [ 405.695052][ T7626] [ 405.705863][ T7626] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 407.529306][ T7651] netlink: 8 bytes leftover after parsing attributes in process `syz.3.804'. [ 407.538921][ T7651] netlink: 4 bytes leftover after parsing attributes in process `syz.3.804'. [ 408.270191][ T7655] loop1: detected capacity change from 0 to 2048 [ 408.388801][ T7655] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 408.489829][ T7655] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 408.721747][ T7653] loop2: detected capacity change from 0 to 4096 [ 408.739177][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 408.746149][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 408.767205][ T7664] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 409.798022][ T7672] mmap: syz.4.814 (7672) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 409.812025][ T7675] netlink: 16 bytes leftover after parsing attributes in process `syz.3.816'. [ 410.543141][ T7681] IPv6: Can't replace route, no match found [ 411.983549][ T7702] loop1: detected capacity change from 0 to 64 [ 413.858167][ T7727] netlink: 60 bytes leftover after parsing attributes in process `syz.1.841'. [ 415.370177][ T7743] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 415.651004][ T7746] netlink: 28 bytes leftover after parsing attributes in process `syz.3.851'. [ 415.710419][ T7738] infiniband syz1: set down [ 415.715309][ T7738] infiniband syz1: added ipvlan0 [ 416.080028][ T7738] RDS/IB: syz1: added [ 416.094846][ T7738] smc: adding ib device syz1 with port count 1 [ 416.101642][ T7738] smc: ib device syz1 port 1 has pnetid [ 418.075168][ T7772] xt_TPROXY: Can be used only with -p tcp or -p udp [ 420.287709][ T7794] netlink: 4 bytes leftover after parsing attributes in process `syz.3.873'. [ 420.831227][ T7800] loop2: detected capacity change from 0 to 128 [ 422.756034][ T7824] IPVS: length: 112 != 24 [ 424.594615][ T7847] loop0: detected capacity change from 0 to 1024 [ 425.672213][ T7860] loop0: detected capacity change from 0 to 1024 [ 425.850509][ T7860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 425.908200][ T7860] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.904: missing EA_INODE flag [ 425.968316][ T7854] loop3: detected capacity change from 0 to 4096 [ 425.986734][ T7860] EXT4-fs (loop0): Remounting filesystem read-only [ 426.388378][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 427.404040][ T7878] loop2: detected capacity change from 0 to 2048 [ 427.578343][ T7878] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 427.727053][ T7886] loop0: detected capacity change from 0 to 256 [ 430.662560][ T7914] loop3: detected capacity change from 0 to 1764 [ 430.716638][ T7920] netlink: 'syz.1.934': attribute type 5 has an invalid length. [ 430.960668][ T7914] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 431.273831][ T7924] netlink: 'syz.2.936': attribute type 8 has an invalid length. [ 431.669571][ T7932] loop3: detected capacity change from 0 to 64 [ 432.924166][ T7947] loop2: detected capacity change from 0 to 64 [ 433.453761][ T7950] loop4: detected capacity change from 0 to 1024 [ 433.527905][ T7950] EXT4-fs: Ignoring removed nomblk_io_submit option [ 433.593168][ T7950] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 433.684196][ T7950] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 433.702449][ T7950] System zones: 0-1, 3-36 [ 433.810704][ T7950] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 434.326998][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 434.532741][ T7966] netlink: 28 bytes leftover after parsing attributes in process `syz.1.956'. [ 434.947091][ T7970] Unsupported ieee802154 address type: 0 [ 435.264045][ T7974] loop0: detected capacity change from 0 to 1024 [ 435.479497][ T7974] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 435.709266][ T7974] overlayfs: failed to resolve './file1/file0': -20 [ 436.273991][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.630356][ T7988] loop4: detected capacity change from 0 to 1024 [ 436.851858][ T7988] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 436.906125][ T9] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 437.043855][ T7988] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 437.136120][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 437.214993][ T7988] EXT4-fs (loop4): Remounting filesystem read-only [ 437.222177][ T9] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 437.231041][ T9] usb 3-1: config 179 has no interface number 0 [ 437.237791][ T9] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 437.249442][ T9] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 437.261107][ T9] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 437.272791][ T9] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 437.290727][ T9] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 437.308658][ T9] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 437.318453][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 437.573465][ T7991] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 437.641164][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 437.685918][ T8004] ISOFS: Unable to identify CD-ROM format. [ 438.242800][ T9] usb 3-1: USB disconnect, device number 3 [ 438.249141][ C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 438.249418][ C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 438.454620][ T8010] netlink: 4 bytes leftover after parsing attributes in process `syz.3.976'. [ 438.522490][ T8009] netlink: 28 bytes leftover after parsing attributes in process `syz.4.974'. [ 438.531959][ T8009] netlink: 28 bytes leftover after parsing attributes in process `syz.4.974'. [ 439.148002][ T8014] overlayfs: conflicting options: userxattr,redirect_dir=on [ 440.845887][ T30] audit: type=1326 audit(1746664992.416:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8034 comm="syz.3.989" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 440.874147][ T30] audit: type=1326 audit(1746664992.436:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8034 comm="syz.3.989" exe="/root/syz-executor" sig=0 arch=40000003 syscall=164 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 440.898419][ T30] audit: type=1326 audit(1746664992.436:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8034 comm="syz.3.989" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 441.653846][ T8048] netlink: 6 bytes leftover after parsing attributes in process `syz.3.994'. [ 441.667365][ T8048] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 442.447534][ T8059] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.999'. [ 442.457750][ T8059] netlink: 4268 bytes leftover after parsing attributes in process `syz.3.999'. [ 442.880681][ T8063] netlink: 'syz.2.1002': attribute type 1 has an invalid length. [ 442.889012][ T8063] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1002'. [ 445.117564][ T8095] loop1: detected capacity change from 0 to 128 [ 445.212348][ T8098] netlink: 'syz.4.1018': attribute type 6 has an invalid length. [ 446.056299][ T8105] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1022'. [ 447.706104][ T8124] tmpfs: Bad value for 'mpol' [ 448.007897][ T5850] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 448.166086][ T5850] usb 2-1: Using ep0 maxpacket: 8 [ 448.266990][ T5850] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 448.275664][ T5850] usb 2-1: config 0 has no interface number 0 [ 448.322910][ T5850] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 448.332607][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 448.347757][ T5850] usb 2-1: Product: syz [ 448.352189][ T5850] usb 2-1: Manufacturer: syz [ 448.359107][ T5850] usb 2-1: SerialNumber: syz [ 448.494432][ T5850] usb 2-1: config 0 descriptor?? [ 448.725624][ T5850] usb 2-1: Found UVC 0.04 device syz (046d:08c3) [ 448.732841][ T5850] usb 2-1: No valid video chain found. [ 448.800424][ T5850] usb 2-1: USB disconnect, device number 4 [ 450.049561][ T8144] loop2: detected capacity change from 0 to 128 [ 451.303612][ T8158] loop2: detected capacity change from 0 to 64 [ 451.347520][ T8153] dummy0: mtu less than device minimum [ 454.524414][ T8197] usb usb1: usbfs: process 8197 (syz.0.1066) did not claim interface 0 before use [ 454.904644][ T8200] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1069'. [ 455.460250][ T8202] loop2: detected capacity change from 0 to 2048 [ 455.520613][ T8206] loop1: detected capacity change from 0 to 164 [ 455.685944][ T8206] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 455.809883][ T8206] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 455.932362][ T8206] Symlink component flag not implemented [ 455.938752][ T8206] Symlink component flag not implemented [ 456.065953][ T8206] Symlink component flag not implemented (7) [ 456.072203][ T8206] Symlink component flag not implemented (116) [ 456.216638][ T30] audit: type=1326 audit(1746665007.746:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8211 comm="syz.0.1076" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 456.241905][ T30] audit: type=1326 audit(1746665007.746:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8211 comm="syz.0.1076" exe="/root/syz-executor" sig=0 arch=40000003 syscall=306 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 456.265274][ T30] audit: type=1326 audit(1746665007.746:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8211 comm="syz.0.1076" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 456.933909][ T8218] loop4: detected capacity change from 0 to 764 [ 457.026614][ T8218] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 457.067202][ T8221] netlink: 316 bytes leftover after parsing attributes in process `syz.0.1080'. [ 457.117429][ T8218] Symlink component flag not implemented [ 457.123304][ T8218] Symlink component flag not implemented [ 457.208975][ T8218] Symlink component flag not implemented (128) [ 457.216019][ T8218] Symlink component flag not implemented (97) [ 458.310892][ T8236] program syz.2.1087 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 459.467461][ T8252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1094'. [ 459.477003][ T8252] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1094'. [ 459.488206][ T8254] Device name cannot be null; rc = [-22] [ 460.325351][ T8262] CIFS: iocharset name too long [ 461.149497][ T8275] netlink: 'syz.2.1107': attribute type 12 has an invalid length. [ 463.040392][ T8300] xt_policy: input policy not valid in POSTROUTING and OUTPUT [ 464.573381][ T8314] loop3: detected capacity change from 0 to 2048 [ 464.809100][ T8314] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 465.847149][ T8329] netlink: 'syz.2.1131': attribute type 1 has an invalid length. [ 465.862876][ T8329] netlink: 224 bytes leftover after parsing attributes in process `syz.2.1131'. [ 467.017400][ T8344] loop4: detected capacity change from 0 to 256 [ 467.111489][ T8348] delete_channel: no stack [ 467.461180][ T8344] FAT-fs (loop4): Directory bread(block 64) failed [ 467.468683][ T8344] FAT-fs (loop4): Directory bread(block 65) failed [ 467.476095][ T8344] FAT-fs (loop4): Directory bread(block 66) failed [ 467.482886][ T8344] FAT-fs (loop4): Directory bread(block 67) failed [ 467.498947][ T8344] FAT-fs (loop4): Directory bread(block 68) failed [ 467.508435][ T8344] FAT-fs (loop4): Directory bread(block 69) failed [ 467.515665][ T8344] FAT-fs (loop4): Directory bread(block 70) failed [ 467.522475][ T8344] FAT-fs (loop4): Directory bread(block 71) failed [ 467.529665][ T8344] FAT-fs (loop4): Directory bread(block 72) failed [ 467.536675][ T8344] FAT-fs (loop4): Directory bread(block 73) failed [ 468.118886][ T8351] loop2: detected capacity change from 0 to 4096 [ 469.692698][ T8364] loop3: detected capacity change from 0 to 4096 [ 469.827115][ T8364] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 469.876155][ T8364] ntfs3(loop3): It is recommened to use chkdsk. [ 470.183487][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 470.190437][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 470.961085][ T8386] netlink: 'syz.0.1158': attribute type 3 has an invalid length. [ 470.970357][ T8386] netlink: 'syz.0.1158': attribute type 1 has an invalid length. [ 470.985907][ T8386] netlink: 220 bytes leftover after parsing attributes in process `syz.0.1158'. [ 471.947271][ T8398] openvswitch: netlink: IP tunnel dst address not specified [ 472.003351][ T5850] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 472.220795][ T5850] usb 3-1: config 0 has an invalid interface number: 58 but max is 0 [ 472.229717][ T5850] usb 3-1: config 0 has no interface number 0 [ 472.236331][ T5850] usb 3-1: config 0 interface 58 altsetting 0 endpoint 0xE has invalid maxpacket 1023, setting to 64 [ 472.247676][ T5850] usb 3-1: config 0 interface 58 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 64 [ 472.411262][ T5850] usb 3-1: New USB device found, idVendor=085a, idProduct=0008, bcdDevice=7f.81 [ 472.420877][ T5850] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 472.429364][ T5850] usb 3-1: Product: syz [ 472.433784][ T5850] usb 3-1: Manufacturer: syz [ 472.438791][ T5850] usb 3-1: SerialNumber: syz [ 472.544748][ T5850] usb 3-1: config 0 descriptor?? [ 472.563435][ T8395] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 472.603964][ T8404] loop0: detected capacity change from 0 to 128 [ 472.747701][ T8404] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 472.855829][ T8404] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 472.941389][ T5850] kaweth 3-1:0.58: Firmware present in device. [ 473.140824][ T5850] kaweth 3-1:0.58: Error reading configuration (-71), no net device created [ 473.150778][ T5850] kaweth 3-1:0.58: probe with driver kaweth failed with error -5 [ 473.289295][ T5850] usb 3-1: USB disconnect, device number 4 [ 474.105721][ T5850] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 474.337784][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 474.348618][ T5850] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0 [ 474.364742][ T5850] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 474.376792][ T5850] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0 [ 474.519676][ T5850] usb 4-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00 [ 474.530299][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 474.539027][ T5850] usb 4-1: Product: syz [ 474.543461][ T5850] usb 4-1: Manufacturer: syz [ 474.548573][ T5850] usb 4-1: SerialNumber: syz [ 474.773280][ T5850] usb 4-1: config 0 descriptor?? [ 474.819751][ T5850] ums-isd200 4-1:0.0: USB Mass Storage device detected [ 474.871405][ T8429] x_tables: duplicate underflow at hook 4 [ 475.173911][ T5850] ums-isd200 4-1:0.0: probe with driver ums-isd200 failed with error -22 [ 475.336140][ T5849] usb 4-1: USB disconnect, device number 6 [ 475.515040][ T8434] loop0: detected capacity change from 0 to 512 [ 475.594874][ T8434] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 475.608750][ T8434] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 475.618397][ T8434] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 475.719689][ T8434] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 475.851294][ T8434] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 475.918451][ T8441] tmpfs: Bad value for 'mpol' [ 475.929179][ T8434] System zones: 0-2, 18-18, 34-35 [ 475.957975][ T8434] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 476.410055][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.767210][ T8451] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1189'. [ 477.532128][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1193'. [ 478.558532][ T8471] loop1: detected capacity change from 0 to 256 [ 479.085805][ T8476] dns_resolver: Unsupported content type (98) [ 480.619161][ T8494] netlink: 'syz.0.1210': attribute type 7 has an invalid length. [ 480.627730][ T8494] netlink: 'syz.0.1210': attribute type 5 has an invalid length. [ 480.635988][ T8494] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1210'. [ 481.159877][ T8502] loop1: detected capacity change from 0 to 512 [ 481.256057][ T8502] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 481.265739][ T8502] EXT4-fs (loop1): orphan cleanup on readonly fs [ 481.289127][ T8502] Quota error (device loop1): v2_read_file_info: Block with free entry 16775424 out of range (1, 0). [ 481.300891][ T8502] EXT4-fs warning (device loop1): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 481.361861][ T8502] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 481.407775][ T8502] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1214: bg 0: block 40: padding at end of block bitmap is not set [ 481.461121][ T8502] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 481.484144][ T8502] EXT4-fs (loop1): 1 truncate cleaned up [ 481.493131][ T8502] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 481.526679][ T8502] EXT4-fs error (device loop1): ext4_get_link:106: inode #16: comm syz.1.1214: bad symlink. [ 481.773145][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 483.498628][ T8527] loop4: detected capacity change from 0 to 2048 [ 483.529858][ T8527] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 483.598893][ T8527] syz.4.1226: attempt to access beyond end of device [ 483.598893][ T8527] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 483.615120][ T8534] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 483.811619][ T8527] syz.4.1226: attempt to access beyond end of device [ 483.811619][ T8527] loop4: rw=0, sector=33554430, nr_sectors = 2 limit=2048 [ 483.825788][ T8527] NILFS (loop4): I/O error reading meta-data file (ino=6, block-offset=3) [ 483.834652][ T8527] NILFS (loop4): error -5 reading inode: ino=12 [ 484.720307][ T8544] netlink: 132 bytes leftover after parsing attributes in process `syz.1.1234'. [ 484.731070][ T8544] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1234'. [ 484.740534][ T8544] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1234'. [ 486.835568][ T8575] loop1: detected capacity change from 0 to 256 [ 487.257984][ T8575] FAT-fs (loop1): Directory bread(block 64) failed [ 487.264858][ T8575] FAT-fs (loop1): Directory bread(block 65) failed [ 487.272297][ T8575] FAT-fs (loop1): Directory bread(block 66) failed [ 487.279320][ T8575] FAT-fs (loop1): Directory bread(block 67) failed [ 487.286474][ T8575] FAT-fs (loop1): Directory bread(block 68) failed [ 487.293276][ T8575] FAT-fs (loop1): Directory bread(block 69) failed [ 487.300478][ T8575] FAT-fs (loop1): Directory bread(block 70) failed [ 487.307406][ T8575] FAT-fs (loop1): Directory bread(block 71) failed [ 487.314337][ T8575] FAT-fs (loop1): Directory bread(block 72) failed [ 487.321334][ T8575] FAT-fs (loop1): Directory bread(block 73) failed [ 487.476634][ T8582] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1253'. [ 488.936644][ T8598] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 489.680585][ T8606] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1265'. [ 490.588184][ T8621] loop3: detected capacity change from 0 to 65 [ 490.696044][ T8621] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway [ 492.572777][ T8641] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1282'. [ 493.442497][ T8652] netlink: 'syz.1.1287': attribute type 2 has an invalid length. [ 493.453424][ T8652] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 493.565155][ T8656] loop3: detected capacity change from 0 to 24 [ 493.719111][ T8656] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 493.767415][ T8656] VFS: Lookup of 'file0' in romfs loop3 would have caused loop [ 495.045063][ T8675] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1299'. [ 495.234081][ T8673] loop4: detected capacity change from 0 to 2048 [ 495.303777][ T8677] loop1: detected capacity change from 0 to 512 [ 495.345155][ T8673] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 495.576486][ T8677] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 495.589904][ T8677] ext4 filesystem being mounted at /248/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 495.803849][ T8677] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #4: comm syz.1.1300: corrupted inode contents [ 495.817661][ T8686] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1303'. [ 495.849637][ T8677] EXT4-fs error (device loop1): ext4_dirty_inode:6103: inode #4: comm syz.1.1300: mark_inode_dirty error [ 495.937911][ T8677] EXT4-fs error (device loop1): ext4_do_update_inode:5211: inode #4: comm syz.1.1300: corrupted inode contents [ 496.016640][ T8677] EXT4-fs error (device loop1): __ext4_ext_dirty:207: inode #4: comm syz.1.1300: mark_inode_dirty error [ 496.086303][ T8677] Quota error (device loop1): write_blk: dquota write failed [ 496.094299][ T8677] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 496.104828][ T8677] EXT4-fs error (device loop1): ext4_acquire_dquot:6935: comm syz.1.1300: Failed to acquire dquot type 1 [ 496.226386][ T8688] AppArmor: change_hat: Invalid input '0' [ 496.486433][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 498.633138][ T8719] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1319'. [ 498.743346][ T8720] erspan1: entered allmulticast mode [ 500.126256][ T8739] No such timeout policy "syz1" [ 500.198530][ T8740] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1330'. [ 500.847632][ T8749] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1332'. [ 500.902584][ T8750] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1333'. [ 501.750787][ T8758] [U]  [ 501.766852][ T8759] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1339'. [ 503.421792][ T8779] loop1: detected capacity change from 0 to 1024 [ 503.696847][ T8779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 503.756527][ T5793] Bluetooth: hci3: command 0x0406 tx timeout [ 504.014677][ T8779] EXT4-fs error (device loop1): __ext4_new_inode:1072: comm syz.1.1348: reserved inode found cleared - inode=1 [ 504.449964][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 504.616872][ T8800] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1356'. [ 506.241625][ T8822] loop2: detected capacity change from 0 to 16 [ 506.361289][ T8822] erofs (device loop2): mounted with root inode @ nid 36. [ 507.160921][ T8835] loop2: detected capacity change from 0 to 16 [ 507.211789][ T8835] erofs (device loop2): mounted with root inode @ nid 36. [ 507.352405][ T8835] erofs (device loop2): failed to decompress -33 in[62, 4034] out[1849] [ 507.361809][ T8835] erofs (device loop2): read error -117 @ 43 of nid 36 [ 508.927146][ T8856] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1384'. [ 508.936739][ T8856] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1384'. [ 509.635749][ T8866] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1388'. [ 509.645192][ T8866] openvswitch: netlink: EtherType 0 is less than min 600 [ 511.197949][ T8887] loop4: detected capacity change from 0 to 512 [ 511.246966][ T8887] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 511.384570][ T8887] EXT4-fs (loop4): 1 truncate cleaned up [ 511.393472][ T8887] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 511.819303][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 512.995764][ T5849] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 513.156935][ T8915] Cannot find add_set index 0 as target [ 513.257491][ T5849] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 513.269594][ T5849] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 513.279045][ T5849] usb 1-1: Product: syz [ 513.283457][ T5849] usb 1-1: Manufacturer: syz [ 513.288505][ T5849] usb 1-1: SerialNumber: syz [ 513.439144][ T5849] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 513.760619][ T45] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 514.284669][ T5850] usb 1-1: USB disconnect, device number 5 [ 514.482635][ T8927] loop2: detected capacity change from 0 to 256 [ 514.600974][ T8927] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 514.612174][ T8927] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 514.685391][ T8927] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 514.881406][ T45] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 514.889580][ T45] ath9k_htc: Failed to initialize the device [ 514.947145][ T5850] usb 1-1: ath9k_htc: USB layer deinitialized [ 516.716716][ T8956] program syz.4.1430 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 516.821213][ T8956] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 518.339032][ T8977] loop3: detected capacity change from 0 to 1024 [ 518.614320][ T8983] loop0: detected capacity change from 0 to 256 [ 518.626156][ T8983] exfat: Deprecated parameter 'utf8' [ 518.647124][ T8977] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 518.745234][ T8983] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 518.785005][ T8977] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: inode #11: comm syz.3.1440: missing EA_INODE flag [ 518.885795][ T8977] EXT4-fs (loop3): Remounting filesystem read-only [ 519.238636][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.040220][ T8994] loop1: detected capacity change from 0 to 1764 [ 521.535123][ T9016] overlayfs: conflicting options: verity=on,redirect_dir=nofollow [ 522.263102][ T9023] loop0: detected capacity change from 0 to 1764 [ 522.457976][ T9023] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 524.026448][ T45] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 524.146382][ T9050] : renamed from bond_slave_0 (while UP) [ 524.215808][ T45] usb 5-1: Using ep0 maxpacket: 16 [ 524.276818][ T45] usb 5-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25 [ 524.276977][ T45] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 524.277104][ T45] usb 5-1: Product: syz [ 524.277207][ T45] usb 5-1: Manufacturer: syz [ 524.277311][ T45] usb 5-1: SerialNumber: syz [ 524.287483][ T45] usb 5-1: config 0 descriptor?? [ 524.602311][ T5850] usb 5-1: USB disconnect, device number 3 [ 525.186036][ T5850] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 525.376060][ T5850] usb 2-1: Using ep0 maxpacket: 8 [ 525.408117][ T5850] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 525.419138][ T5850] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 525.428727][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.591844][ T5850] usb 2-1: config 0 descriptor?? [ 525.677685][ T5850] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 526.071645][ T5850] gspca_vc032x: reg_w err -71 [ 526.077139][ T5850] vc032x 2-1:0.0: probe with driver vc032x failed with error -71 [ 526.174979][ T5850] usb 2-1: USB disconnect, device number 5 [ 526.597343][ T9073] netlink: 'syz.3.1487': attribute type 1 has an invalid length. [ 526.605970][ T9073] netlink: 600 bytes leftover after parsing attributes in process `syz.3.1487'. [ 528.011074][ T9081] loop2: detected capacity change from 0 to 4096 [ 528.046375][ T9081] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 528.369763][ T9095] delete_channel: no stack [ 528.539211][ T30] audit: type=1800 audit(1746665080.126:14): pid=9081 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1490" name="bus" dev="loop2" ino=33 res=0 errno=0 [ 531.625166][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 531.632401][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 533.421492][ T9159] loop2: detected capacity change from 0 to 256 [ 533.527213][ T9162] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 533.627709][ T9159] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 533.646912][ T9159] FAT-fs (loop2): Filesystem has been set read-only [ 533.785724][ T9159] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 533.871714][ T9159] FAT-fs (loop2): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 535.990380][ T9194] loop1: detected capacity change from 0 to 256 [ 536.093087][ T9194] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 537.220992][ T9210] ip6gre1: entered allmulticast mode [ 538.179431][ T5850] usb 3-1: new full-speed USB device number 5 using dummy_hcd [ 538.446074][ T5850] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 538.462894][ T5850] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 538.474222][ T5850] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 538.618903][ T5850] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 538.628443][ T5850] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 538.637316][ T5850] usb 3-1: Product: syz [ 538.641730][ T5850] usb 3-1: Manufacturer: syz [ 538.646709][ T5850] usb 3-1: SerialNumber: syz [ 538.798932][ T5850] usb 3-1: selecting invalid altsetting 1 [ 539.162178][ T5850] cdc_ncm 3-1:1.0: failed GET_NTB_PARAMETERS [ 539.178137][ T5850] cdc_ncm 3-1:1.0: bind() failure [ 539.286045][ T5850] usb 3-1: USB disconnect, device number 5 [ 539.467226][ T9232] loop1: detected capacity change from 0 to 256 [ 539.755618][ T9232] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 540.043441][ T9236] loop0: detected capacity change from 0 to 256 [ 540.078278][ T9236] exfat: Deprecated parameter 'namecase' [ 540.084354][ T9236] exfat: Deprecated parameter 'namecase' [ 540.160805][ T9238] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.1565'. [ 540.252426][ T9236] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 542.806921][ T9270] netlink: 'syz.4.1581': attribute type 2 has an invalid length. [ 544.385528][ T9295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1593'. [ 545.146872][ T9305] netlink: 'syz.3.1599': attribute type 2 has an invalid length. [ 546.991317][ T9329] loop2: detected capacity change from 0 to 1024 [ 547.203441][ T9329] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 547.436395][ T9329] EXT4-fs error (device loop2): ext4_xattr_inode_iget:437: inode #11: comm syz.2.1610: missing EA_INODE flag [ 547.508938][ T9329] EXT4-fs (loop2): Remounting filesystem read-only [ 547.987026][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 549.743336][ T9364] loop1: detected capacity change from 0 to 1024 [ 550.449096][ T9378] netlink: 'syz.3.1627': attribute type 1 has an invalid length. [ 550.623056][ T9382] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1629'. [ 550.676809][ T9380] loop4: detected capacity change from 0 to 1024 [ 550.736617][ T9380] EXT4-fs: Ignoring removed bh option [ 550.746577][ T9380] EXT4-fs: inline encryption not supported [ 550.768270][ T9375] loop2: detected capacity change from 0 to 2048 [ 550.812544][ T9380] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 550.905834][ T9380] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 551.061685][ T9375] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 551.110262][ T9380] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm syz.4.1626: lblock 2 mapped to illegal pblock 2 (length 1) [ 551.228031][ T9380] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 551.236773][ T9380] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 48: comm syz.4.1626: lblock 0 mapped to illegal pblock 48 (length 1) [ 551.336952][ T9380] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 551.347320][ T9380] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1626: Failed to acquire dquot type 0 [ 551.476545][ T9380] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 551.509487][ T9380] EXT4-fs error (device loop4): ext4_evict_inode:259: inode #11: comm syz.4.1626: mark_inode_dirty error [ 551.555907][ T9380] EXT4-fs warning (device loop4): ext4_evict_inode:262: couldn't mark inode dirty (err -117) [ 551.569984][ T9380] EXT4-fs (loop4): 1 orphan inode deleted [ 551.579907][ T9380] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 551.630214][ T1889] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:9: lblock 1 mapped to illegal pblock 1 (length 1) [ 551.686234][ T1889] Quota error (device loop4): remove_tree: Can't read quota data block 1 [ 551.695029][ T1889] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 0 [ 551.836522][ T3553] EXT4-fs error (device loop4): ext4_map_blocks:675: inode #3: block 2: comm kworker/u8:13: lblock 2 mapped to illegal pblock 2 (length 1) [ 551.936370][ T3553] Quota error (device loop4): qtree_write_dquot: dquota write failed [ 551.947190][ T3553] EXT4-fs error (device loop4): ext4_write_dquot:6915: comm kworker/u8:13: Failed to commit dquot type 0 [ 552.063031][ T3553] Quota error (device loop4): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync! [ 552.353916][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 552.453582][ T5788] EXT4-fs error (device loop4): __ext4_get_inode_loc:4450: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 552.516232][ T5788] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 552.570325][ T5788] EXT4-fs error (device loop4): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error [ 553.330643][ T30] audit: type=1326 audit(1746665104.906:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.1.1638" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 553.353205][ T30] audit: type=1326 audit(1746665104.906:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.1.1638" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 553.541252][ T9414] cgroup: Bad value for 'name' [ 553.650805][ T30] audit: type=1326 audit(1746665104.986:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.1.1638" exe="/root/syz-executor" sig=0 arch=40000003 syscall=24 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 553.673321][ T30] audit: type=1326 audit(1746665104.986:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.1.1638" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 553.696547][ T30] audit: type=1326 audit(1746665104.986:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9406 comm="syz.1.1638" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 555.099377][ T5850] usb 1-1: new full-speed USB device number 6 using dummy_hcd [ 555.167661][ T9434] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1648'. [ 555.384094][ T5850] usb 1-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 555.394861][ T5850] usb 1-1: config 0 interface 0 has no altsetting 0 [ 555.426630][ T9438] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1649'. [ 555.488463][ T5850] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 555.498061][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 555.506746][ T5850] usb 1-1: Product: syz [ 555.511189][ T5850] usb 1-1: Manufacturer: syz [ 555.516255][ T5850] usb 1-1: SerialNumber: syz [ 555.703373][ T5850] usb 1-1: config 0 descriptor?? [ 555.811306][ T5850] usb 1-1: selecting invalid altsetting 0 [ 556.132836][ T5850] usb 1-1: USB disconnect, device number 6 [ 556.534240][ T5956] udevd[5956]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 556.676518][ T9449] loop3: detected capacity change from 0 to 512 [ 556.804408][ T9449] EXT4-fs: Ignoring removed nobh option [ 557.217770][ T9449] EXT4-fs error (device loop3): ext4_do_update_inode:5211: inode #16: comm syz.3.1654: corrupted inode contents [ 557.297451][ T9449] EXT4-fs (loop3): Remounting filesystem read-only [ 557.305013][ T9449] EXT4-fs (loop3): 1 truncate cleaned up [ 557.314960][ T9449] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 557.328119][ T9449] ext4 filesystem being mounted at /338/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 557.348654][ T14] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 557.359870][ T14] Quota error (device loop3): write_blk: dquota write failed [ 557.367877][ T14] Quota error (device loop3): remove_free_dqentry: Can't write block (5) with free entries [ 557.378278][ T14] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 557.389283][ T14] Quota error (device loop3): write_blk: dquota write failed [ 557.403657][ T14] Quota error (device loop3): free_dqentry: Can't move quota data block (5) to free list [ 557.416241][ T14] EXT4-fs (loop3): Quota write (off=8, len=24) cancelled because transaction is not started [ 557.426889][ T14] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 557.437143][ T14] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 557.557283][ T9449] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.153646][ T9471] loop1: detected capacity change from 0 to 512 [ 558.336790][ T9471] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 558.350578][ T9471] ext4 filesystem being mounted at /317/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 558.487119][ T9480] tmpfs: Bad value for 'mpol' [ 558.719450][ T9471] EXT4-fs error (device loop1): ext4_xattr_block_get:593: inode #15: comm syz.1.1660: corrupted xattr block 33: invalid ea_ino [ 559.207992][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 560.474475][ T5850] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 560.685116][ T5850] usb 5-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33 [ 560.694799][ T5850] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 560.748698][ T5850] usb 5-1: config 0 descriptor?? [ 560.794026][ T5850] gspca_main: sunplus-2.14.0 probing 055f:c420 [ 561.265187][ T5850] gspca_sunplus: reg_w_riv err -71 [ 561.271222][ T5850] sunplus 5-1:0.0: probe with driver sunplus failed with error -71 [ 561.308348][ T5850] usb 5-1: USB disconnect, device number 4 [ 561.347594][ T5954] udevd[5954]: setting mode of /dev/bus/usb/005/004 to 020664 failed: No such file or directory [ 561.376575][ T5954] udevd[5954]: setting owner of /dev/bus/usb/005/004 to uid=0, gid=0 failed: No such file or directory [ 561.630093][ T9515] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 561.639617][ T9515] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 561.651632][ T9515] overlayfs: missing 'lowerdir' [ 562.569473][ T30] audit: type=1326 audit(1746665114.136:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.0.1682" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 562.592193][ T30] audit: type=1326 audit(1746665114.146:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.0.1682" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 562.811664][ T30] audit: type=1326 audit(1746665114.206:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.0.1682" exe="/root/syz-executor" sig=0 arch=40000003 syscall=49 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 562.836834][ T30] audit: type=1326 audit(1746665114.206:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9524 comm="syz.0.1682" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 563.279942][ T9534] loop3: detected capacity change from 0 to 64 [ 564.176988][ T9545] loop2: detected capacity change from 0 to 128 [ 564.247463][ T9545] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 564.346029][ T9545] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 564.479681][ T5850] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 564.686459][ T5850] usb 2-1: Using ep0 maxpacket: 32 [ 564.753978][ T5850] usb 2-1: config 0 has an invalid interface number: 35 but max is 0 [ 564.762753][ T5850] usb 2-1: config 0 has no interface number 0 [ 564.868708][ T5850] usb 2-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 564.884705][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 564.895276][ T5850] usb 2-1: Product: syz [ 564.899935][ T5850] usb 2-1: Manufacturer: syz [ 564.904774][ T5850] usb 2-1: SerialNumber: syz [ 565.110357][ T5850] usb 2-1: config 0 descriptor?? [ 565.188043][ T9555] loop0: detected capacity change from 0 to 512 [ 565.248278][ T9555] EXT4-fs: Ignoring removed nomblk_io_submit option [ 565.310970][ T9555] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 565.368199][ T5850] radio-si470x 2-1:0.35: this is not a si470x device. [ 565.428274][ T9555] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 565.482452][ T9555] EXT4-fs (loop0): 1 truncate cleaned up [ 565.498141][ T9555] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 565.580405][ T5850] radio-raremono 2-1:0.35: this is not Thanko's Raremono. [ 565.655995][ T5850] usb 2-1: USB disconnect, device number 6 [ 565.756670][ T5849] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 565.996250][ T5849] usb 3-1: Using ep0 maxpacket: 8 [ 566.008140][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 566.053074][ T5849] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 566.065073][ T5849] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 566.075432][ T5849] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 566.086928][ T5849] usb 3-1: config 1 interface 1 has no altsetting 0 [ 566.220098][ T5849] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 566.230369][ T5849] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 566.238920][ T5849] usb 3-1: Product: syz [ 566.243474][ T5849] usb 3-1: Manufacturer: syz [ 566.248529][ T5849] usb 3-1: SerialNumber: syz [ 566.494815][ T9569] loop0: detected capacity change from 0 to 256 [ 566.667103][ T5849] usb 3-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 566.673522][ T5849] usb 3-1: 2:1 : invalid channels 0 [ 566.957203][ T5849] usb 3-1: USB disconnect, device number 6 [ 567.270292][ T5954] udevd[5954]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 568.305714][ T5850] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 568.516278][ T5850] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 568.526065][ T5850] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 568.550653][ T5850] usb 3-1: config 0 descriptor?? [ 568.627836][ T5850] cp210x 3-1:0.0: cp210x converter detected [ 568.726558][ T9] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 569.008162][ T9] usb 2-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 569.018267][ T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 569.026998][ T9] usb 2-1: Product: syz [ 569.031640][ T9] usb 2-1: Manufacturer: syz [ 569.036939][ T9] usb 2-1: SerialNumber: syz [ 569.051983][ T9] usb 2-1: config 0 descriptor?? [ 569.089661][ T9] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 569.109903][ T5850] usb 3-1: cp210x converter now attached to ttyUSB0 [ 569.142522][ T5850] usb 3-1: USB disconnect, device number 7 [ 569.225568][ T5850] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 569.237483][ T5850] cp210x 3-1:0.0: device disconnected [ 569.579177][ T5849] usb 2-1: USB disconnect, device number 7 [ 570.963019][ T9612] loop1: detected capacity change from 0 to 256 [ 571.319417][ T9616] xt_CT: You must specify a L4 protocol and not use inversions on it [ 571.343451][ T9612] FAT-fs (loop1): Directory bread(block 64) failed [ 571.350584][ T9612] FAT-fs (loop1): Directory bread(block 65) failed [ 571.357777][ T9612] FAT-fs (loop1): Directory bread(block 66) failed [ 571.364584][ T9612] FAT-fs (loop1): Directory bread(block 67) failed [ 571.371722][ T9612] FAT-fs (loop1): Directory bread(block 68) failed [ 571.378741][ T9612] FAT-fs (loop1): Directory bread(block 69) failed [ 571.385818][ T9612] FAT-fs (loop1): Directory bread(block 70) failed [ 571.392632][ T9612] FAT-fs (loop1): Directory bread(block 71) failed [ 571.399941][ T9612] FAT-fs (loop1): Directory bread(block 72) failed [ 571.407032][ T9612] FAT-fs (loop1): Directory bread(block 73) failed [ 571.610133][ T9612] FAT-fs (loop1): Filesystem has been set read-only [ 571.626526][ T30] audit: type=1800 audit(1746665123.206:24): pid=9612 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1725" name="cpu.stat" dev="loop1" ino=30 res=0 errno=0 [ 571.672377][ T9612] FAT-fs (loop1): error, invalid access to FAT (entry 0x00006c61) [ 572.179219][ T9625] loop0: detected capacity change from 0 to 64 [ 573.176528][ T9640] netlink: 'syz.1.1739': attribute type 3 has an invalid length. [ 574.776402][ T30] audit: type=1326 audit(1746665126.346:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.1.1749" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 574.799089][ T30] audit: type=1326 audit(1746665126.356:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.1.1749" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 574.823893][ T30] audit: type=1326 audit(1746665126.366:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.1.1749" exe="/root/syz-executor" sig=0 arch=40000003 syscall=275 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 574.847204][ T30] audit: type=1326 audit(1746665126.426:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.1.1749" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 574.869617][ T30] audit: type=1326 audit(1746665126.426:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9660 comm="syz.1.1749" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 574.877735][ T5850] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 575.254536][ T5850] usb 5-1: config 0 has an invalid interface number: 90 but max is 0 [ 575.263308][ T5850] usb 5-1: config 0 has no interface number 0 [ 575.340381][ T9665] bridge2: entered promiscuous mode [ 575.346156][ T9665] bridge2: entered allmulticast mode [ 575.373123][ T5850] usb 5-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=de.7f [ 575.385719][ T5850] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 575.394033][ T5850] usb 5-1: Product: syz [ 575.398690][ T5850] usb 5-1: Manufacturer: syz [ 575.403541][ T5850] usb 5-1: SerialNumber: syz [ 575.508606][ T5850] usb 5-1: config 0 descriptor?? [ 575.762996][ T5850] cdc_subset 5-1:0.90: probe with driver cdc_subset failed with error -22 [ 576.047302][ T5850] usb 5-1: USB disconnect, device number 5 [ 576.314566][ T9675] loop2: detected capacity change from 0 to 256 [ 576.543353][ T9675] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x45383d15, utbl_chksum : 0xe619d30d) [ 576.561597][ T9675] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 576.807820][ T9675] exFAT-fs (loop2): error, in sector 160, dentry 7 should be unused, but 0xc0 [ 576.817766][ T9675] exFAT-fs (loop2): Filesystem has been set read-only [ 576.942853][ T9682] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 578.266658][ T5850] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 578.368650][ T9696] loop0: detected capacity change from 0 to 2048 [ 578.526032][ T5850] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 578.535660][ T5850] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 578.543949][ T5850] usb 5-1: Product: syz [ 578.548568][ T5850] usb 5-1: Manufacturer: syz [ 578.553437][ T5850] usb 5-1: SerialNumber: syz [ 578.623191][ T9696] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 578.721518][ T9696] UDF-fs: error (device loop0): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376) [ 578.738596][ T5850] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 578.886321][ T9] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 579.056615][ T9704] netlink: 'syz.1.1770': attribute type 5 has an invalid length. [ 579.544824][ T5849] usb 5-1: USB disconnect, device number 6 [ 579.575509][ C0] dummy_hcd dummy_hcd.4: timer fired with no URBs pending? [ 579.651877][ T9708] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1772'. [ 579.999777][ T9] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 580.007734][ T9] ath9k_htc: Failed to initialize the device [ 580.115877][ T5849] usb 5-1: ath9k_htc: USB layer deinitialized [ 581.334082][ T9714] bridge0: port 3(netdevsim3) entered disabled state [ 581.342006][ T9714] bridge0: port 2(bridge_slave_1) entered disabled state [ 581.350728][ T9714] bridge0: port 1(bridge_slave_0) entered disabled state [ 581.683542][ T9727] loop4: detected capacity change from 0 to 512 [ 581.828905][ T9727] EXT4-fs error (device loop4): ext4_iget_extra_inode:4693: inode #15: comm syz.4.1781: corrupted in-inode xattr: invalid ea_ino [ 581.889996][ T9727] EXT4-fs error (device loop4): ext4_orphan_get:1395: comm syz.4.1781: couldn't read orphan inode 15 (err -117) [ 581.959291][ T9727] EXT4-fs (loop4): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 582.401012][ T5788] EXT4-fs (loop4): unmounting filesystem 00000007-0000-0000-0000-000000000000. [ 582.891553][ T30] audit: type=1326 audit(1746665134.466:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9742 comm="syz.4.1787" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 583.040730][ T30] audit: type=1326 audit(1746665134.536:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9742 comm="syz.4.1787" exe="/root/syz-executor" sig=0 arch=40000003 syscall=437 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 583.063500][ T30] audit: type=1326 audit(1746665134.536:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9742 comm="syz.4.1787" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 583.086025][ T30] audit: type=1326 audit(1746665134.536:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9742 comm="syz.4.1787" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 583.300531][ T9749] loop1: detected capacity change from 0 to 256 [ 583.352084][ T9749] exfat: Deprecated parameter 'utf8' [ 583.358446][ T9749] exfat: Deprecated parameter 'namecase' [ 583.550843][ T9749] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 583.799088][ T9756] kAFS: unable to lookup cell '/' [ 585.459409][ T9776] SET target dimension over the limit! [ 586.162820][ T9781] netlink: set zone limit has 4 unknown bytes [ 587.317664][ T9799] program syz.2.1816 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 587.703173][ T9803] netlink: 830 bytes leftover after parsing attributes in process `syz.3.1817'. [ 587.924162][ T9807] tmpfs: Bad value for 'mpol' [ 588.416590][ T9813] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1822'. [ 588.991144][ T9820] loop3: detected capacity change from 0 to 256 [ 589.116657][ T9823] netlink: 164 bytes leftover after parsing attributes in process `syz.4.1828'. [ 589.487163][ T9820] FAT-fs (loop3): Directory bread(block 64) failed [ 589.494122][ T9820] FAT-fs (loop3): Directory bread(block 65) failed [ 589.501459][ T9820] FAT-fs (loop3): Directory bread(block 66) failed [ 589.510676][ T9820] FAT-fs (loop3): Directory bread(block 67) failed [ 589.517962][ T9820] FAT-fs (loop3): Directory bread(block 68) failed [ 589.524739][ T9820] FAT-fs (loop3): Directory bread(block 69) failed [ 589.531797][ T9820] FAT-fs (loop3): Directory bread(block 70) failed [ 589.538734][ T9820] FAT-fs (loop3): Directory bread(block 71) failed [ 589.545803][ T9820] FAT-fs (loop3): Directory bread(block 72) failed [ 589.559830][ T9820] FAT-fs (loop3): Directory bread(block 73) failed [ 589.564961][ T9827] loop0: detected capacity change from 0 to 128 [ 589.897542][ T9831] sit0: entered promiscuous mode [ 589.946437][ T9831] netlink: 'syz.4.1832': attribute type 1 has an invalid length. [ 589.954502][ T9831] netlink: 1 bytes leftover after parsing attributes in process `syz.4.1832'. [ 590.055063][ T9] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 590.313615][ T9] usb 1-1: config 0 has an invalid interface number: 199 but max is 1 [ 590.323552][ T9] usb 1-1: config 0 has no interface number 1 [ 590.330188][ T9] usb 1-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 590.340497][ T9] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 590.517833][ T9] usb 1-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 590.527741][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 590.536382][ T9] usb 1-1: SerialNumber: syz [ 590.639229][ T9] usb 1-1: config 0 descriptor?? [ 590.879959][ T9] usb 1-1: Found UVC 0.00 device (0002:0000) [ 590.896393][ T9] usb 1-1: No valid video chain found. [ 591.015964][ T9] usb 1-1: USB disconnect, device number 7 [ 591.648599][ T30] audit: type=1326 audit(1746665143.216:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9843 comm="syz.2.1838" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77539 code=0x7ffc0000 [ 591.671542][ T30] audit: type=1326 audit(1746665143.226:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9843 comm="syz.2.1838" exe="/root/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf7f77539 code=0x7ffc0000 [ 591.693999][ T30] audit: type=1326 audit(1746665143.226:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9843 comm="syz.2.1838" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f77539 code=0x7ffc0000 [ 591.787750][ T9848] tmpfs: Bad value for 'mpol' [ 593.068653][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 593.075984][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 593.085944][ T45] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 593.295760][ T45] usb 4-1: Using ep0 maxpacket: 16 [ 593.334425][ T45] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 593.348574][ T45] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 593.359663][ T45] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 593.372959][ T45] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 593.382521][ T45] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 593.554965][ T45] usb 4-1: config 0 descriptor?? [ 593.606354][ T45] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input8 [ 593.642691][ T5134] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 593.698027][ T5134] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 593.740941][ T5134] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 593.781184][ T5134] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 593.836400][ T9862] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 593.918949][ T5850] usb 4-1: USB disconnect, device number 7 [ 594.126687][ T9876] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1851'. [ 594.136732][ T9876] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1851'. [ 595.214057][ T9888] loop1: detected capacity change from 0 to 1024 [ 595.407602][ T9888] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 596.476693][ T9903] netlink: 'syz.1.1861': attribute type 1 has an invalid length. [ 596.484994][ T9903] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1861'. [ 597.868256][ T9920] loop2: detected capacity change from 0 to 2048 [ 597.983729][ T30] audit: type=1326 audit(1746665149.556:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9922 comm="syz.1.1873" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 598.006659][ T30] audit: type=1326 audit(1746665149.556:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9922 comm="syz.1.1873" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 598.031152][ T30] audit: type=1326 audit(1746665149.596:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9922 comm="syz.1.1873" exe="/root/syz-executor" sig=0 arch=40000003 syscall=43 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 598.053568][ T30] audit: type=1326 audit(1746665149.596:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9922 comm="syz.1.1873" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 598.081823][ T30] audit: type=1326 audit(1746665149.596:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9922 comm="syz.1.1873" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff4539 code=0x7ffc0000 [ 598.109314][ T9920] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 598.215884][ T45] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 598.447089][ T45] usb 1-1: Using ep0 maxpacket: 16 [ 598.491869][ T45] usb 1-1: unable to get BOS descriptor or descriptor too short [ 598.529064][ T45] usb 1-1: config 128 has an invalid interface number: 147 but max is 0 [ 598.538108][ T45] usb 1-1: config 128 has no interface number 0 [ 598.544640][ T45] usb 1-1: config 128 interface 147 altsetting 0 endpoint 0xD has invalid maxpacket 1023, setting to 64 [ 598.699575][ T45] usb 1-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=9f.d1 [ 598.709180][ T45] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 598.717626][ T45] usb 1-1: Product: syz [ 598.722043][ T45] usb 1-1: Manufacturer: syz [ 598.727094][ T45] usb 1-1: SerialNumber: syz [ 599.436368][ T45] usb 1-1: USB disconnect, device number 8 [ 599.444648][ T45] f81534a_ctrl 1-1:128.147: failed to set register 0x116: -19 [ 599.452635][ T45] f81534a_ctrl 1-1:128.147: failed to enable ports: -19 [ 601.820686][ T9968] loop4: detected capacity change from 0 to 8 [ 602.656127][ T5850] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 602.855667][ T5850] usb 1-1: Using ep0 maxpacket: 16 [ 602.961806][ T5850] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 602.977383][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 602.988390][ T5850] usb 1-1: Product: syz [ 602.998237][ T5850] usb 1-1: Manufacturer: syz [ 602.998360][ T5850] usb 1-1: SerialNumber: syz [ 603.124860][ T5850] r8152-cfgselector 1-1: Unknown version 0x0000 [ 603.131741][ T5850] r8152-cfgselector 1-1: config 0 descriptor?? [ 603.695124][ T5850] r8152-cfgselector 1-1: USB disconnect, device number 9 [ 603.749463][ T9989] loop4: detected capacity change from 0 to 1764 [ 603.905116][ T9993] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1907'. [ 603.914645][ T9993] netlink: 64 bytes leftover after parsing attributes in process `syz.3.1907'. [ 605.075621][ T45] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 605.098731][ C0] hrtimer: interrupt took 254207 ns [ 605.270289][ T45] usb 5-1: Using ep0 maxpacket: 16 [ 605.336270][ T45] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 605.346949][ T45] usb 5-1: config 0 interface 0 has no altsetting 0 [ 605.409321][ T45] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 605.418863][ T45] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 605.430065][ T45] usb 5-1: Product: syz [ 605.434506][ T45] usb 5-1: Manufacturer: syz [ 605.440442][ T45] usb 5-1: SerialNumber: syz [ 605.568687][ T45] usb 5-1: config 0 descriptor?? [ 605.987725][T10013] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1916'. [ 605.997254][T10013] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1916'. [ 606.157954][ T5850] usb 5-1: USB disconnect, device number 7 [ 606.536646][T10019] netlink: 'syz.0.1919': attribute type 1 has an invalid length. [ 606.544799][T10019] netlink: 244 bytes leftover after parsing attributes in process `syz.0.1919'. [ 606.557871][T10019] NCSI netlink: No device for ifindex 0 [ 606.897561][T10021] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1920'. [ 607.343276][T10027] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1924'. [ 607.666040][T10032] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1925'. [ 608.063465][T10037] loop4: detected capacity change from 0 to 2048 [ 608.168621][T10037] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 610.895906][T10071] loop1: detected capacity change from 0 to 256 [ 610.996243][T10071] exfat: Deprecated parameter 'utf8' [ 611.001957][T10071] exfat: Deprecated parameter 'utf8' [ 611.008741][T10071] exfat: Deprecated parameter 'utf8' [ 611.181030][T10071] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 611.383019][T10071] exFAT-fs (loop1): error, exfat_zeroed_cluster: out of range(sect:224 len:8) [ 611.392525][T10071] exFAT-fs (loop1): Filesystem has been set read-only [ 611.908275][T10085] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1952'. [ 612.139432][ T45] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 612.188828][T10092] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1954'. [ 612.199658][T10092] netlink: 96 bytes leftover after parsing attributes in process `syz.4.1954'. [ 612.372864][ T45] usb 3-1: config 1 has an invalid interface number: 16 but max is 1 [ 612.381601][ T45] usb 3-1: config 1 has an invalid interface number: 139 but max is 1 [ 612.392905][ T45] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 612.404358][ T45] usb 3-1: config 1 has 3 interfaces, different from the descriptor's value: 2 [ 612.413707][ T45] usb 3-1: config 1 has no interface number 1 [ 612.420142][ T45] usb 3-1: config 1 has no interface number 2 [ 612.426576][ T45] usb 3-1: too many endpoints for config 1 interface 16 altsetting 99: 244, using maximum allowed: 30 [ 612.438105][ T45] usb 3-1: config 1 interface 16 altsetting 99 has 0 endpoint descriptors, different from the interface descriptor's value: 244 [ 612.451737][ T45] usb 3-1: config 1 interface 139 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 612.462929][ T45] usb 3-1: config 1 interface 139 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 612.476510][ T45] usb 3-1: config 1 interface 16 has no altsetting 0 [ 612.483461][ T45] usb 3-1: config 1 interface 139 has no altsetting 0 [ 612.920933][ T45] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 612.930580][ T45] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 612.939023][ T45] usb 3-1: Product: syz [ 612.943430][ T45] usb 3-1: Manufacturer: syz [ 612.948696][ T45] usb 3-1: SerialNumber: syz [ 613.091527][ T45] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found [ 613.099035][ T45] cdc_ncm 3-1:1.0: bind() failure [ 613.602871][ T45] usb 3-1: USB disconnect, device number 8 [ 614.027714][T10109] overlayfs: cannot append lower layer [ 615.496729][T10126] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1970'. [ 615.595913][T10128] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 618.007380][T10163] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1987'. [ 618.591343][T10168] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1991'. [ 618.747459][T10171] xt_recent: hitcount (4294967293) is larger than allowed maximum (65535) [ 618.864419][T10174] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1993'. [ 619.007684][T10172] loop3: detected capacity change from 0 to 2048 [ 619.166079][T10172] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 619.521902][T10180] loop0: detected capacity change from 0 to 1024 [ 619.562860][T10180] EXT4-fs (loop0): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 619.706366][T10180] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 619.844996][T10180] EXT4-fs error (device loop0): ext4_xattr_inode_iget:437: inode #11: comm syz.0.1997: missing EA_INODE flag [ 619.972134][T10180] EXT4-fs (loop0): Remounting filesystem read-only [ 620.433341][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 621.556075][ T45] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 621.756315][ T45] usb 5-1: Using ep0 maxpacket: 32 [ 621.817843][ T45] usb 5-1: config 0 has an invalid interface number: 35 but max is 0 [ 621.826464][ T45] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 621.837053][ T45] usb 5-1: config 0 has no interface number 0 [ 621.843455][ T45] usb 5-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 621.969150][ T45] usb 5-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 621.978829][ T45] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 621.987275][ T45] usb 5-1: Product: syz [ 621.991680][ T45] usb 5-1: Manufacturer: syz [ 621.996681][ T45] usb 5-1: SerialNumber: syz [ 622.116701][ T45] usb 5-1: config 0 descriptor?? [ 622.165211][ T45] radio-si470x 5-1:0.35: could not find interrupt in endpoint [ 622.173353][ T45] radio-si470x 5-1:0.35: probe with driver radio-si470x failed with error -5 [ 622.365835][ T45] radio-raremono 5-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 622.554872][T10213] veth3: entered promiscuous mode [ 622.562136][T10213] veth3: entered allmulticast mode [ 622.574291][ T45] radio-raremono 5-1:0.35: raremono_cmd_main failed (-71) [ 622.629980][ T45] radio-raremono 5-1:0.35: V4L2 device registered as radio48 [ 622.677010][ T45] usb 5-1: USB disconnect, device number 8 [ 622.684109][ T45] radio-raremono 5-1:0.35: Thanko's Raremono disconnected [ 622.764918][T10219] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2014'. [ 623.476750][T10226] loop1: detected capacity change from 0 to 64 [ 623.732995][T10226] syz.1.2015: attempt to access beyond end of device [ 623.732995][T10226] loop1: rw=2049, sector=268435468, nr_sectors = 2 limit=64 [ 624.386265][T10235] netlink: 'syz.3.2021': attribute type 8 has an invalid length. [ 624.714425][T10240] loop0: detected capacity change from 0 to 512 [ 624.829371][T10240] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 624.843233][T10240] ext4 filesystem being mounted at /411/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 625.143086][T10240] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 625.568535][T10254] vlan0: entered promiscuous mode [ 625.593279][ T5801] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 626.142854][T10259] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2031'. [ 626.428610][T10260] loop2: detected capacity change from 0 to 2048 [ 626.612215][T10260] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 626.779875][T10260] UDF-fs: error (device loop2): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376) [ 627.719989][T10279] loop3: detected capacity change from 0 to 256 [ 628.767491][T10283] loop1: detected capacity change from 0 to 4096 [ 629.670574][T10299] loop4: detected capacity change from 0 to 1764 [ 629.707448][T10301] tmpfs: Bad value for 'mpol' [ 630.336301][ T30] audit: type=1326 audit(1746665181.896:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.3.2055" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 630.359145][ T30] audit: type=1326 audit(1746665181.896:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10304 comm="syz.3.2055" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf703e539 code=0x7ffc0000 [ 630.736011][ T5850] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 631.034889][ T5850] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 631.044611][ T5850] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 631.053353][ T5850] usb 2-1: Product: syz [ 631.060049][ T5850] usb 2-1: Manufacturer: syz [ 631.064909][ T5850] usb 2-1: SerialNumber: syz [ 631.219553][ T5850] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 631.376974][ T9] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 632.019255][ T45] usb 2-1: USB disconnect, device number 8 [ 632.393012][T10324] loop3: detected capacity change from 0 to 512 [ 632.496279][ T9] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 632.504167][ T9] ath9k_htc: Failed to initialize the device [ 632.595616][ T45] usb 2-1: ath9k_htc: USB layer deinitialized [ 632.706571][T10324] EXT4-fs error (device loop3): ext4_iget_extra_inode:4693: inode #15: comm syz.3.2063: corrupted in-inode xattr: invalid ea_ino [ 632.796749][T10324] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.2063: couldn't read orphan inode 15 (err -117) [ 632.854978][T10324] EXT4-fs (loop3): mounted filesystem 00000007-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 633.298699][ T5794] EXT4-fs (loop3): unmounting filesystem 00000007-0000-0000-0000-000000000000. [ 633.951955][T10343] process 'syz.2.2072' launched './file0' with NULL argv: empty string added [ 635.384373][T10363] tmpfs: Unknown parameter 'É' [ 636.929383][T10383] loop4: detected capacity change from 0 to 512 [ 636.998828][T10383] EXT4-fs: Ignoring removed oldalloc option [ 637.117912][T10383] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.2091: Parent and EA inode have the same ino 15 [ 637.190821][T10383] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.2091: Parent and EA inode have the same ino 15 [ 637.246101][T10383] EXT4-fs (loop4): 1 orphan inode deleted [ 637.254423][T10383] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 637.971858][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 638.069547][T10400] tmpfs: Bad value for 'mpol' [ 639.270689][T10412] loop2: detected capacity change from 0 to 2048 [ 639.407802][T10412] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 641.205641][T10440] loop3: detected capacity change from 0 to 512 [ 641.303831][T10440] EXT4-fs (loop3): orphan cleanup on readonly fs [ 641.310959][T10440] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 641.357987][T10440] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 641.376904][T10440] EXT4-fs error (device loop3): ext4_clear_blocks:876: inode #13: comm syz.3.2116: attempt to clear invalid blocks 2 len 1 [ 641.419655][T10432] loop1: detected capacity change from 0 to 4096 [ 641.454000][T10440] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2116: invalid indirect mapped block 1819239214 (level 0) [ 641.534480][T10432] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 641.556010][T10440] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.2116: invalid indirect mapped block 1819239214 (level 1) [ 641.646618][T10440] EXT4-fs (loop3): 1 truncate cleaned up [ 641.655040][T10440] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 641.749286][T10440] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.959689][T10432] ntfs3(loop1): ino=19, mi_enum_attr [ 641.965734][T10432] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 643.468811][T10462] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2128'. [ 644.015912][ T5850] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 644.048066][T10470] loop1: detected capacity change from 0 to 512 [ 644.096681][T10470] EXT4-fs: Ignoring removed oldalloc option [ 644.197154][T10470] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.2132: Parent and EA inode have the same ino 15 [ 644.255697][ T5850] usb 1-1: Using ep0 maxpacket: 8 [ 644.277442][T10470] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.2132: Parent and EA inode have the same ino 15 [ 644.324825][ T5850] usb 1-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 644.340623][ T5850] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 644.351239][ T5850] usb 1-1: Product: syz [ 644.355953][ T5850] usb 1-1: Manufacturer: syz [ 644.360832][ T5850] usb 1-1: SerialNumber: syz [ 644.384842][ T5850] usb 1-1: config 0 descriptor?? [ 644.406436][T10470] EXT4-fs (loop1): 1 orphan inode deleted [ 644.414924][T10470] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 644.528901][ T5850] gspca_main: sq930x-2.14.0 probing 2770:930c [ 644.801665][T10479] xt_TPROXY: Can be used only with -p tcp or -p udp [ 644.863349][ T5850] gspca_sq930x: ucbus_write failed -71 [ 644.876309][ T5850] sq930x 1-1:0.0: probe with driver sq930x failed with error -71 [ 644.937966][ T5850] usb 1-1: USB disconnect, device number 10 [ 645.034162][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.627614][T10481] loop4: detected capacity change from 0 to 4096 [ 645.682750][T10481] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 646.085615][T10481] ntfs3(loop4): ino=1a, mi_enum_attr [ 646.091275][T10481] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 646.142996][T10481] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 646.915723][T10500] netlink: 129704 bytes leftover after parsing attributes in process `syz.0.2145'. [ 647.023734][T10501] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2146'. [ 647.909093][T10513] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2152'. [ 648.622515][T10523] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2157'. [ 648.633156][T10523] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2157'. [ 650.367782][T10548] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2169'. [ 651.638819][T10556] Bluetooth: hci0: Opcode 0x0c03 failed: -4 [ 651.757259][T10567] netlink: 'syz.3.2176': attribute type 11 has an invalid length. [ 651.765595][T10567] netlink: 224 bytes leftover after parsing attributes in process `syz.3.2176'. [ 653.876939][T10595] loop3: detected capacity change from 0 to 256 [ 654.081975][T10598] loop4: detected capacity change from 0 to 256 [ 654.189586][T10595] FAT-fs (loop3): Directory bread(block 64) failed [ 654.200626][T10595] FAT-fs (loop3): Directory bread(block 65) failed [ 654.207895][T10595] FAT-fs (loop3): Directory bread(block 66) failed [ 654.214701][T10595] FAT-fs (loop3): Directory bread(block 67) failed [ 654.221966][T10595] FAT-fs (loop3): Directory bread(block 68) failed [ 654.229016][T10595] FAT-fs (loop3): Directory bread(block 69) failed [ 654.236110][T10595] FAT-fs (loop3): Directory bread(block 70) failed [ 654.242897][T10595] FAT-fs (loop3): Directory bread(block 71) failed [ 654.249997][T10595] FAT-fs (loop3): Directory bread(block 72) failed [ 654.256938][T10595] FAT-fs (loop3): Directory bread(block 73) failed [ 654.335931][T10598] FAT-fs (loop4): error, fat_bmap_cluster: request beyond EOF (i_pos 198) [ 654.519388][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 654.526197][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 655.093835][ T5850] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 655.326478][ T5850] usb 2-1: config 0 has an invalid interface number: 199 but max is 1 [ 655.335114][ T5850] usb 2-1: config 0 has no interface number 1 [ 655.341888][ T5850] usb 2-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 655.352308][ T5850] usb 2-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 655.367275][T10610] overlayfs: conflicting options: metacopy=off,verity=require [ 655.389463][ T5850] usb 2-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 655.405165][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 655.416011][ T5850] usb 2-1: SerialNumber: syz [ 655.477778][ T5850] usb 2-1: config 0 descriptor?? [ 655.538216][ T5850] usb 2-1: Found UVC 0.00 device (0002:0000) [ 655.545671][ T5850] usb 2-1: No valid video chain found. [ 655.782218][ T5850] usb 2-1: USB disconnect, device number 9 [ 656.975072][T10625] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2206'. [ 656.984858][T10629] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2207'. [ 656.994383][T10629] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2207'. [ 657.003820][T10629] netlink: 492 bytes leftover after parsing attributes in process `syz.4.2207'. [ 657.878237][T10638] /dev/nullb0: Can't open blockdev [ 657.887108][T10640] netlink: 'syz.4.2212': attribute type 4 has an invalid length. [ 658.054169][T10633] loop0: detected capacity change from 0 to 4096 [ 658.269500][T10643] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 658.447668][T10633] NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed [ 659.676096][T10660] xt_CT: You must specify a L4 protocol and not use inversions on it [ 661.194528][T10681] ebtables: wrong size: *len 120, entries_size 48, replsz 48 [ 661.913140][T10690] netlink: 'syz.1.2236': attribute type 1 has an invalid length. [ 663.490261][T10712] loop1: detected capacity change from 0 to 256 [ 663.664656][ T30] audit: type=1326 audit(1746665215.216:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz.4.2248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 663.690487][ T30] audit: type=1326 audit(1746665215.216:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz.4.2248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 663.714431][ T30] audit: type=1326 audit(1746665215.256:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz.4.2248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=229 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 663.737046][ T30] audit: type=1326 audit(1746665215.266:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz.4.2248" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000 [ 664.390208][T10723] netlink: 'syz.4.2252': attribute type 1 has an invalid length. [ 664.838268][T10725] loop0: detected capacity change from 0 to 2048 [ 664.988299][T10725] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 666.666870][T10751] loop0: detected capacity change from 0 to 64 [ 666.799273][T10751] Trying to free block not in datazone [ 667.348401][T10758] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2270'. [ 668.027799][T10759] loop2: detected capacity change from 0 to 4096 [ 668.099267][T10759] ntfs3(loop2): It is recommened to use chkdsk. [ 668.175075][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 668.183879][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 668.192642][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 668.208637][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc0c00 [ 668.219253][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc1c00 [ 668.227650][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc2c00 [ 668.236132][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc4c00 [ 668.244342][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffc8c00 [ 668.252698][T10759] ntfs3(loop2): try to read out of volume at offset 0x3fffffd0c00 [ 668.804782][T10767] loop4: detected capacity change from 0 to 4096 [ 669.046496][ T45] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 669.052962][T10767] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 669.258996][ T45] usb 4-1: Using ep0 maxpacket: 8 [ 669.336075][ T45] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 669.345625][ T45] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 669.353892][ T45] usb 4-1: Product: syz [ 669.358581][ T45] usb 4-1: Manufacturer: syz [ 669.363427][ T45] usb 4-1: SerialNumber: syz [ 669.497106][ T45] usb 4-1: config 0 descriptor?? [ 669.541320][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.754710][ T45] usb 4-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 669.962882][ T45] usb write operation failed. (-71) [ 670.014980][ T45] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 670.026948][ T45] dvbdev: DVB: registering new adapter (Terratec H7) [ 670.033958][ T45] usb 4-1: media controller created [ 670.173741][ T45] usb read operation failed. (-71) [ 670.183905][ T45] usb write operation failed. (-71) [ 670.222293][ T45] dvb_usb_az6007 4-1:0.0: probe with driver dvb_usb_az6007 failed with error -5 [ 670.350182][ T45] usb 4-1: USB disconnect, device number 8 [ 670.722661][T10789] loop0: detected capacity change from 0 to 256 [ 671.001841][T10789] FAT-fs (loop0): Directory bread(block 64) failed [ 671.009116][T10789] FAT-fs (loop0): Directory bread(block 65) failed [ 671.016220][T10789] FAT-fs (loop0): Directory bread(block 66) failed [ 671.023001][T10789] FAT-fs (loop0): Directory bread(block 67) failed [ 671.030104][T10789] FAT-fs (loop0): Directory bread(block 68) failed [ 671.037148][T10789] FAT-fs (loop0): Directory bread(block 69) failed [ 671.044055][T10789] FAT-fs (loop0): Directory bread(block 70) failed [ 671.050964][T10789] FAT-fs (loop0): Directory bread(block 71) failed [ 671.058204][T10789] FAT-fs (loop0): Directory bread(block 72) failed [ 671.068207][T10789] FAT-fs (loop0): Directory bread(block 73) failed [ 671.956703][T10803] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2291'. [ 671.992943][T10797] loop3: detected capacity change from 0 to 4096 [ 672.522908][T10797] ntfs3(loop3): ino=21, The size of extended attributes must not exceed 64KiB [ 672.543453][T10809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2293'. [ 672.552930][T10809] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2293'. [ 673.187215][T10815] cgroup: noprefix used incorrectly [ 675.128997][T10842] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2310'. [ 675.138579][T10842] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2310'. [ 675.148008][T10842] tc_dump_action: action bad kind [ 676.102680][T10851] loop3: detected capacity change from 0 to 1024 [ 676.168838][T10851] EXT4-fs: Ignoring removed bh option [ 676.483319][T10851] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 676.647012][T10851] EXT4-fs: Ignoring removed bh option [ 676.685883][T10851] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 676.804680][T10866] loop1: detected capacity change from 0 to 512 [ 676.927345][T10866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 676.940689][T10866] ext4 filesystem being mounted at /444/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 677.128232][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 677.507761][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 677.810598][T10876] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2324'. [ 678.292991][T10885] loop4: detected capacity change from 0 to 512 [ 678.468762][T10885] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2328: invalid indirect mapped block 256 (level 2) [ 678.617013][T10885] EXT4-fs (loop4): 2 truncates cleaned up [ 678.626037][T10885] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 679.248858][ T5788] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 679.404311][T10898] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 679.415489][T10898] overlayfs: missing 'lowerdir' [ 680.807527][T10918] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2340'. [ 680.817177][T10918] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2340'. [ 680.829898][T10917] loop3: detected capacity change from 0 to 256 [ 681.039385][T10917] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc348802e, utbl_chksum : 0xe619d30d) [ 681.082454][T10917] exFAT-fs (loop3): start_clu is invalid cluster(0x400) [ 681.766086][T10606] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 682.033471][T10606] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 682.043202][T10606] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 682.051744][T10606] usb 1-1: Product: syz [ 682.056259][T10606] usb 1-1: Manufacturer: syz [ 682.061110][T10606] usb 1-1: SerialNumber: syz [ 682.150099][T10606] usb 1-1: config 0 descriptor?? [ 682.185159][T10606] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 682.716492][ T9717] usb 1-1: USB disconnect, device number 11 [ 682.846326][T10938] ipt_ECN: cannot use operation on non-tcp rule [ 684.346885][T10957] bridge0: port 1(erspan0) entered blocking state [ 684.353977][T10957] bridge0: port 1(erspan0) entered disabled state [ 684.361903][T10957] erspan0: entered allmulticast mode [ 684.370873][T10957] erspan0: entered promiscuous mode [ 684.389708][T10957] bridge0: port 1(erspan0) entered blocking state [ 684.396863][T10957] bridge0: port 1(erspan0) entered forwarding state [ 684.527984][T10961] netlink: 'syz.2.2364': attribute type 11 has an invalid length. [ 684.536796][T10961] netlink: 428 bytes leftover after parsing attributes in process `syz.2.2364'. [ 685.450852][T10971] SET target dimension over the limit! [ 688.086483][T11009] caif0: entered promiscuous mode [ 688.092058][T11009] caif0: entered allmulticast mode [ 689.464541][T11027] loop1: detected capacity change from 0 to 1024 [ 689.514890][T11027] EXT4-fs: Ignoring removed nomblk_io_submit option [ 689.578484][T11027] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 689.814003][T11033] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2398'. [ 689.825139][T11027] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 690.502803][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 690.606066][T10606] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 690.863862][T10606] usb 4-1: New USB device found, idVendor=1ac7, idProduct=0001, bcdDevice=cc.19 [ 690.873822][T10606] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 690.882431][T10606] usb 4-1: Product: syz [ 690.886996][T10606] usb 4-1: Manufacturer: syz [ 690.891856][T10606] usb 4-1: SerialNumber: syz [ 690.998818][T10606] usb 4-1: config 0 descriptor?? [ 691.160659][T11048] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2405'. [ 691.299526][ T45] usb 4-1: USB disconnect, device number 9 [ 691.574281][T11053] loop2: detected capacity change from 0 to 47 [ 693.372265][T11075] loop0: detected capacity change from 0 to 64 [ 693.611840][T11077] openvswitch: netlink: IPv4 tunnel dst address is zero [ 695.467203][T11099] netlink: 'syz.4.2431': attribute type 1 has an invalid length. [ 695.475240][T11099] netlink: 1 bytes leftover after parsing attributes in process `syz.4.2431'. [ 695.826294][ T45] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 696.061698][ T45] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 696.072447][ T45] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 696.082053][ T45] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 696.175053][T11110] ip6tnl2: entered promiscuous mode [ 696.180767][T11110] ip6tnl2: entered allmulticast mode [ 696.212782][ T45] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 697.302593][ T45] stv0680 3-1:4.0: STV(e): camera ping failed!! [ 697.504095][ T45] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 697.512765][ T45] stv0680 3-1:4.0: last error: 80, command = 0xfb [ 697.616398][ T45] usb 3-1: USB disconnect, device number 9 [ 697.708825][ T5793] Bluetooth: hci4: unexpected event for opcode 0x2029 [ 698.998568][T11132] loop0: detected capacity change from 0 to 4096 [ 700.123798][T11152] loop2: detected capacity change from 0 to 128 [ 700.361373][T11155] loop1: detected capacity change from 0 to 256 [ 700.409731][T11155] MINIX-fs: mounting file system with errors, running fsck is recommended [ 701.764114][ T5793] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0 [ 701.773236][ T5793] Bluetooth: hci4: Injecting HCI hardware error event [ 701.790155][ T5793] Bluetooth: hci4: hardware error 0x00 [ 701.923451][T11176] loop3: detected capacity change from 0 to 128 [ 702.097052][T11176] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 702.148310][T11176] ext4 filesystem being mounted at /500/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 702.555109][T11185] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 702.611157][ T5794] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 702.648154][T11187] xt_CT: You must specify a L4 protocol and not use inversions on it [ 703.095662][T11191] netdevsim netdevsim3: Direct firmware load for ..€ failed with error -2 [ 703.104562][T11191] netdevsim netdevsim3: Falling back to sysfs fallback for: ..€ [ 703.837602][ T5793] Bluetooth: hci4: Opcode 0x0c03 failed: -110 [ 703.986776][T10606] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 704.175995][T10606] usb 3-1: Using ep0 maxpacket: 32 [ 704.226550][T11205] netlink: 'syz.4.2481': attribute type 21 has an invalid length. [ 704.230471][T10606] usb 3-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 704.249980][T10606] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 704.264112][T10606] usb 3-1: Product: syz [ 704.269834][T10606] usb 3-1: Manufacturer: syz [ 704.274679][T10606] usb 3-1: SerialNumber: syz [ 704.346169][T10606] usb 3-1: config 0 descriptor?? [ 704.394875][T10606] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 704.802771][T10606] gspca_topro: reg_w err -71 [ 704.836205][T10606] gspca_topro: Sensor soi763a [ 704.900976][T10606] usb 3-1: USB disconnect, device number 10 [ 706.405735][T10606] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 706.575864][T10606] usb 3-1: Using ep0 maxpacket: 32 [ 706.635978][T10606] usb 3-1: config 0 has an invalid interface number: 146 but max is 0 [ 706.644645][T10606] usb 3-1: config 0 has no interface number 0 [ 706.651466][T10606] usb 3-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 706.663576][T10606] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024 [ 706.677865][T10606] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 706.688595][T10606] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x9 has invalid maxpacket 19604, setting to 1024 [ 706.706268][T10606] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 1024 [ 706.718975][T10606] usb 3-1: config 0 interface 146 altsetting 0 endpoint 0x1 has invalid maxpacket 26159, setting to 1024 [ 706.730880][T10606] usb 3-1: config 0 interface 146 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1024 [ 706.968681][T10606] usb 3-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95 [ 706.978386][T10606] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 706.989704][T10606] usb 3-1: Product: syz [ 706.994141][T10606] usb 3-1: Manufacturer: syz [ 706.999112][T10606] usb 3-1: SerialNumber: syz [ 707.088383][T11234] netlink: 'syz.0.2495': attribute type 5 has an invalid length. [ 707.096730][T11234] netlink: 'syz.0.2495': attribute type 11 has an invalid length. [ 707.148203][T10606] usb 3-1: config 0 descriptor?? [ 707.156526][T11227] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 707.164552][T11227] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 707.228128][T11227] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 707.247956][T10606] microtek usb (rev 0.4.3): can only deal with one output endpoints. Bailing out. [ 707.504869][ T45] usb 3-1: USB disconnect, device number 11 [ 707.966569][T11247] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2500'. [ 709.512233][T11252] loop3: detected capacity change from 0 to 8192 [ 709.597308][T11265] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2509'. [ 711.144005][T11281] loop2: detected capacity change from 0 to 512 [ 711.327796][T11281] EXT4-fs error (device loop2): ext4_orphan_get:1416: comm syz.2.2518: bad orphan inode 15 [ 711.352282][T11286] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 711.364750][T11286] overlayfs: missing 'lowerdir' [ 711.446293][T11281] ext4_test_bit(bit=14, block=5) = 0 [ 711.454091][T11281] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 711.904103][ T5800] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 714.241636][T11316] loop1: detected capacity change from 0 to 4096 [ 714.336177][T11316] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 714.798242][T11316] ntfs3(loop1): ino=1a, mi_enum_attr [ 714.803873][T11316] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 715.958402][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 715.965110][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 716.566081][ T45] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 716.760065][ T45] usb 5-1: Using ep0 maxpacket: 16 [ 716.830199][ T45] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 716.851762][ T45] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 716.861165][ T45] usb 5-1: Product: syz [ 716.866524][ T45] usb 5-1: Manufacturer: syz [ 716.871389][ T45] usb 5-1: SerialNumber: syz [ 716.903935][T11353] loop2: detected capacity change from 0 to 64 [ 716.947009][ T45] r8152-cfgselector 5-1: Unknown version 0x0000 [ 716.953765][ T45] r8152-cfgselector 5-1: config 0 descriptor?? [ 717.526476][T10606] r8152-cfgselector 5-1: USB disconnect, device number 9 [ 718.415980][T11370] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2559'. [ 718.896903][T11374] cgroup: Need name or subsystem set [ 719.116419][T11380] binfmt_misc: register: failed to install interpreter file ./file1/file2 [ 719.573630][T11385] loop0: detected capacity change from 0 to 64 [ 720.675250][T11401] : renamed from hsr0 (while UP) [ 721.087745][T11406] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2577'. [ 721.297376][T11409] CIFS mount error: No usable UNC path provided in device string! [ 721.297376][T11409] [ 721.307816][T11409] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 721.557638][T11412] xt_TPROXY: Can be used only with -p tcp or -p udp [ 722.573095][T11427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2585'. [ 723.034738][T11431] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2588'. [ 723.212916][T11434] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2590'. [ 723.622374][T11439] xt_TPROXY: Can be used only with -p tcp or -p udp [ 724.140306][ T30] audit: type=1326 audit(1746665275.706:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11441 comm="syz.0.2593" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 724.163186][ T30] audit: type=1326 audit(1746665275.706:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11441 comm="syz.0.2593" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe8539 code=0x7ffc0000 [ 724.610746][T11450] netlink: 209836 bytes leftover after parsing attributes in process `syz.3.2596'. [ 725.666506][T11460] loop3: detected capacity change from 0 to 2048 [ 725.709494][ T5793] Bluetooth: hci2: Malformed LE Event: 0x1b [ 725.865254][ T5954] loop3: p3 < > p4 < > [ 725.870175][ T5954] loop3: partition table partially beyond EOD, truncated [ 725.878945][ T5954] loop3: p3 start 4284289 is beyond EOD, truncated [ 726.756601][T11460] loop3: p3 < > p4 < > [ 726.761199][T11460] loop3: partition table partially beyond EOD, truncated [ 726.778121][T11460] loop3: p3 start 4284289 is beyond EOD, truncated [ 727.582694][T11488] netlink: 'syz.4.2614': attribute type 3 has an invalid length. [ 727.882267][ T5954] udevd[5954]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 729.110673][ T5954] udevd[5954]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 729.734366][ T5793] Bluetooth: hci1: unexpected event for opcode 0x2029 [ 730.711245][T11528] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2633'. [ 730.790443][T11531] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2634'. [ 733.235762][ T45] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 733.485710][ T45] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 733.495213][ T45] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 733.503739][ T45] usb 2-1: Product: syz [ 733.508469][ T45] usb 2-1: Manufacturer: syz [ 733.513309][ T45] usb 2-1: SerialNumber: syz [ 733.680556][ T45] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 733.760622][ T5793] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 733.769602][ T5793] Bluetooth: hci1: Injecting HCI hardware error event [ 733.777557][ T5793] Bluetooth: hci1: hardware error 0x00 [ 733.985072][ T9717] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 734.567049][T11575] netlink: 'syz.4.2656': attribute type 1 has an invalid length. [ 734.610069][ T5850] usb 2-1: USB disconnect, device number 10 [ 734.681525][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2657'. [ 735.049095][ T9717] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 735.057768][ T9717] ath9k_htc: Failed to initialize the device [ 735.096078][ T5850] usb 2-1: ath9k_htc: USB layer deinitialized [ 735.446615][T11583] loop3: detected capacity change from 0 to 16 [ 735.493428][T11583] erofs (device loop3): mounted with root inode @ nid 36. [ 735.546676][T11583] syz.3.2659: attempt to access beyond end of device [ 735.546676][T11583] loop3: rw=0, sector=14425508768, nr_sectors = 8 limit=16 [ 735.561308][T11583] erofs (device loop3): read error -5 @ 123 of nid 36 [ 735.916840][ T5793] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 736.003614][T11594] netlink: 36 bytes leftover after parsing attributes in process `syz.4.2665'. [ 736.816805][T11604] loop0: detected capacity change from 0 to 64 [ 742.653585][T11679] netlink: 'syz.2.2707': attribute type 10 has an invalid length. [ 742.662036][T11679] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2707'. [ 742.674899][T11679] bridge0: port 3(veth1_macvtap) entered blocking state [ 742.682627][T11679] bridge0: port 3(veth1_macvtap) entered disabled state [ 742.690571][T11679] veth1_macvtap: entered allmulticast mode [ 742.699207][T11679] veth1_macvtap: left allmulticast mode [ 742.707888][T11679] A link change request failed with some changes committed already. Interface veth1_macvtap may have been left with an inconsistent configuration, please check. [ 744.940704][T11702] loop1: detected capacity change from 0 to 1764 [ 744.971503][T11707] nbd: must specify a device to reconfigure [ 745.535738][T10606] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 745.734873][T11717] netlink: 'syz.0.2724': attribute type 5 has an invalid length. [ 745.763704][T10606] usb 3-1: config 0 has an invalid interface number: 135 but max is 0 [ 745.772677][T10606] usb 3-1: config 0 has no interface number 0 [ 745.779466][T10606] usb 3-1: config 0 interface 135 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 32 [ 745.789960][T10606] usb 3-1: config 0 interface 135 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 745.905451][T10606] usb 3-1: New USB device found, idVendor=05ac, idProduct=1402, bcdDevice=45.65 [ 745.921380][T10606] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 745.931895][T10606] usb 3-1: Product: syz [ 745.936641][T10606] usb 3-1: Manufacturer: syz [ 745.941498][T10606] usb 3-1: SerialNumber: syz [ 745.985712][T11719] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2726'. [ 746.074288][T10606] usb 3-1: config 0 descriptor?? [ 746.083811][T11710] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 746.150446][T11710] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 746.451596][T11710] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 746.507103][T11710] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 746.816561][T10606] asix 3-1:0.135 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 746.828689][T10606] asix 3-1:0.135: probe with driver asix failed with error -71 [ 746.958595][T10606] usb 3-1: USB disconnect, device number 12 [ 748.062825][T11739] loop2: detected capacity change from 0 to 64 [ 748.340925][T11744] netlink: 24 bytes leftover after parsing attributes in process `syz.1.2737'. [ 749.231419][T11756] libceph: resolve '0' (ret=-3): failed [ 750.276028][ T9717] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 750.498763][ T9717] usb 4-1: Using ep0 maxpacket: 32 [ 750.532444][ T9717] usb 4-1: unable to get BOS descriptor or descriptor too short [ 750.577404][ T9717] usb 4-1: config index 0 descriptor too short (expected 34347, got 43) [ 750.586573][ T9717] usb 4-1: config 31 has too many interfaces: 196, using maximum allowed: 32 [ 750.595935][ T9717] usb 4-1: config 31 has an invalid descriptor of length 0, skipping remainder of the config [ 750.606562][ T9717] usb 4-1: config 31 has 1 interface, different from the descriptor's value: 196 [ 750.616120][ T9717] usb 4-1: config 31 has no interface number 0 [ 750.622583][ T9717] usb 4-1: config 31 interface 81 altsetting 3 has an endpoint descriptor with address 0x93, changing to 0x83 [ 750.637297][ T9717] usb 4-1: config 31 interface 81 altsetting 3 endpoint 0x83 has invalid wMaxPacketSize 0 [ 750.648653][ T9717] usb 4-1: config 31 interface 81 altsetting 3 bulk endpoint 0x83 has invalid maxpacket 0 [ 750.659037][ T9717] usb 4-1: config 31 interface 81 has no altsetting 0 [ 750.976192][ T9717] usb 4-1: string descriptor 0 read error: -22 [ 750.983169][ T9717] usb 4-1: New USB device found, idVendor=0dfc, idProduct=0001, bcdDevice=24.ac [ 750.995787][ T9717] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 751.117781][ T9717] input: USB Touchscreen 0dfc:0001 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:31.81/input/input11 [ 751.230031][T11779] loop4: detected capacity change from 0 to 2048 [ 751.263849][T11779] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 751.396634][T11779] syz.4.2755: attempt to access beyond end of device [ 751.396634][T11779] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 751.412436][T11780] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 751.466848][ T9717] usb 4-1: USB disconnect, device number 10 [ 751.611628][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.624293][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 751.644496][T11779] Remounting filesystem read-only [ 751.663228][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.674220][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 751.724702][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.736003][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 751.779405][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.790410][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 751.814369][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.826551][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 751.964187][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 751.975444][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.116010][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.126899][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.154094][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.169822][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.194912][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.206044][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.230129][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.241115][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.277593][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.288678][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.305765][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.316582][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.337620][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.348477][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.359219][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.374440][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.466944][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.481628][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.590966][T11779] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 93, flags = 0x6, nchildren = 9 [ 752.602275][T11779] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 752.631738][ T30] audit: type=1800 audit(1746665304.196:50): pid=11779 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2755" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 752.813561][T11792] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 752.922971][T11794] loop3: detected capacity change from 0 to 512 [ 753.033524][T11779] syz.4.2755 (11779) used greatest stack depth: 3840 bytes left [ 753.071185][T11794] EXT4-fs error (device loop3): ext4_orphan_get:1416: comm syz.3.2762: bad orphan inode 13 [ 753.130480][T11794] ext4_test_bit(bit=12, block=4) = 1 [ 753.139991][T11794] is_bad_inode(inode)=0 [ 753.144443][T11794] NEXT_ORPHAN(inode)=0 [ 753.148979][T11794] max_ino=32 [ 753.152381][T11794] i_nlink=1 [ 753.158157][T11794] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 753.213892][T11794] EXT4-fs warning (device loop3): dx_probe:803: inode #2: comm syz.3.2762: Unrecognised inode hash code 20 [ 753.226238][T11794] EXT4-fs warning (device loop3): dx_probe:936: inode #2: comm syz.3.2762: Corrupt directory, running e2fsck is recommended [ 753.298333][T11794] EXT4-fs warning (device loop3): dx_probe:803: inode #2: comm syz.3.2762: Unrecognised inode hash code 20 [ 753.310295][T11794] EXT4-fs warning (device loop3): dx_probe:936: inode #2: comm syz.3.2762: Corrupt directory, running e2fsck is recommended [ 753.797058][ T5794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 754.447436][T11811] loop1: detected capacity change from 0 to 256 [ 754.494699][T11811] exfat: Deprecated parameter 'namecase' [ 754.501360][T11811] exfat: Deprecated parameter 'utf8' [ 754.734374][T11811] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 756.002639][T10706] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.285621][T10706] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.412397][T11828] loop4: detected capacity change from 0 to 2048 [ 756.510642][T10706] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 756.692126][T11828] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 756.820598][T10706] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 757.032266][T11834] loop0: detected capacity change from 0 to 64 [ 757.086869][ T45] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 757.300470][ T45] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 757.312096][ T45] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 254, changing to 11 [ 757.323837][ T45] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 58848, setting to 1024 [ 757.336339][ T45] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 757.345834][ T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 757.376448][T10706] bridge_slave_1: left allmulticast mode [ 757.386365][T10706] bridge_slave_1: left promiscuous mode [ 757.393097][T10706] bridge0: port 2(bridge_slave_1) entered disabled state [ 757.448436][T10706] bridge_slave_0: left allmulticast mode [ 757.454554][T10706] bridge_slave_0: left promiscuous mode [ 757.461655][T10706] bridge0: port 1(bridge_slave_0) entered disabled state [ 757.575152][T11828] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 757.647931][ T45] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 757.656929][ T45] usb 5-1: invalid MIDI out EP 0 [ 758.039964][ T45] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 758.125029][ T45] usb 5-1: USB disconnect, device number 10 [ 758.377319][T11177] udevd[11177]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 759.114344][T10706] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 759.178372][T10706] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 759.209330][T10706] bond0 (unregistering): Released all slaves [ 759.237588][T10706] bond1 (unregistering): Released all slaves [ 760.600079][T11849] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2790'. [ 760.609565][T11849] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2790'. [ 760.619040][T11849] netlink: 204 bytes leftover after parsing attributes in process `syz.0.2790'. [ 760.989905][T11175] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 761.006672][T11175] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 761.017011][T11175] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 761.066305][T11175] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 761.118457][T11175] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 761.755530][T10706] hsr_slave_0: left promiscuous mode [ 761.805054][T10706] hsr_slave_1: left promiscuous mode [ 761.813917][T10706] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 761.821927][T10706] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 761.939989][T10706] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 761.948022][T10706] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 762.126280][T10706] veth1_macvtap: left promiscuous mode [ 762.132191][T10706] veth0_macvtap: left promiscuous mode [ 762.139018][T10706] veth1_vlan: left promiscuous mode [ 762.144680][T10706] veth0_vlan: left promiscuous mode [ 762.944673][T11875] usb usb8: usbfs: process 11875 (syz.0.2797) did not claim interface 0 before use [ 763.195671][T11175] Bluetooth: hci1: command tx timeout [ 764.632685][T10706] team0 (unregistering): Port device team_slave_1 removed [ 764.673097][T10706] team0 (unregistering): Port device team_slave_0 removed [ 765.279529][T11175] Bluetooth: hci1: command tx timeout [ 766.013673][T11903] loop2: detected capacity change from 0 to 64 [ 767.385661][T11175] Bluetooth: hci1: command tx timeout [ 767.681899][ T3553] smc: removing ib device syz1 [ 769.526637][T11175] Bluetooth: hci1: command tx timeout [ 769.860572][T11936] loop0: detected capacity change from 0 to 1024 [ 770.089128][T11940] loop4: detected capacity change from 0 to 1764 [ 770.306888][T11936] ===================================================== [ 770.314173][T11936] BUG: KMSAN: uninit-value in hfsplus_lookup+0x674/0xf70 [ 770.321802][T11936] hfsplus_lookup+0x674/0xf70 [ 770.326923][T11936] __lookup_slow+0x560/0x760 [ 770.331782][T11936] lookup_slow+0x6a/0xd0 [ 770.336489][T11936] walk_component+0x444/0x650 [ 770.341410][T11936] path_lookupat+0x251/0x6b0 [ 770.346417][T11936] filename_lookup+0x2bd/0x800 [ 770.351525][T11936] user_path_at+0x91/0x3d0 [ 770.356425][T11936] do_sys_truncate+0x82/0x240 [ 770.361331][T11936] __ia32_compat_sys_truncate+0x77/0xc0 [ 770.368071][T11936] ia32_sys_call+0xa11/0x42c0 [ 770.372953][T11936] __do_fast_syscall_32+0xb0/0x110 [ 770.378475][T11936] do_fast_syscall_32+0x38/0x80 [ 770.383580][T11936] do_SYSENTER_32+0x1f/0x30 [ 770.390008][T11936] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 770.397160][T11936] [ 770.399606][T11936] Uninit was created at: [ 770.404197][T11936] __alloc_frozen_pages_noprof+0x689/0xf00 [ 770.410470][T11936] alloc_pages_mpol+0x328/0x860 [ 770.415702][T11936] alloc_frozen_pages_noprof+0xf7/0x200 [ 770.421565][T11936] allocate_slab+0x24d/0x1210 [ 770.426635][T11936] ___slab_alloc+0xfec/0x3480 [ 770.431517][T11936] kmem_cache_alloc_lru_noprof+0x922/0xed0 [ 770.437746][T11936] hfsplus_alloc_inode+0x5a/0xd0 [ 770.442910][T11936] alloc_inode+0x87/0x4a0 [ 770.447581][T11936] iget_locked+0x239/0x12d0 [ 770.452381][T11936] hfsplus_iget+0x5c/0xb80 [ 770.457229][T11936] hfsplus_btree_open+0x132/0x1c90 [ 770.462550][T11936] hfsplus_fill_super+0x1161/0x2740 [ 770.468182][T11936] get_tree_bdev_flags+0x6e3/0x920 [ 770.473519][T11936] get_tree_bdev+0x38/0x50 [ 770.478326][T11936] hfsplus_get_tree+0x35/0x40 [ 770.483255][T11936] vfs_get_tree+0xb0/0x5c0 [ 770.488097][T11936] do_new_mount+0x73c/0x1620 [ 770.494093][T11936] path_mount+0x6db/0x1e90 [ 770.499161][T11936] __se_sys_mount+0x6eb/0x7d0 [ 770.504135][T11936] __ia32_sys_mount+0xe2/0x150 [ 770.511042][T11936] ia32_sys_call+0x2733/0x42c0 [ 770.516992][T11936] __do_fast_syscall_32+0xb0/0x110 [ 770.522414][T11936] do_fast_syscall_32+0x38/0x80 [ 770.527693][T11936] do_SYSENTER_32+0x1f/0x30 [ 770.532431][T11936] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 770.539183][T11936] [ 770.541665][T11936] CPU: 1 UID: 0 PID: 11936 Comm: syz.0.2819 Tainted: G W 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) [ 770.556139][T11936] Tainted: [W]=WARN [ 770.560105][T11936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025 [ 770.570555][T11936] ===================================================== [ 770.577812][T11936] Disabling lock debugging due to kernel taint [ 770.584191][T11936] Kernel panic - not syncing: kmsan.panic set ... [ 770.590789][T11936] CPU: 1 UID: 0 PID: 11936 Comm: syz.0.2819 Tainted: G B W 6.15.0-rc3-syzkaller-00094-g02ddfb981de8 #0 PREEMPT(undef) [ 770.604795][T11936] Tainted: [B]=BAD_PAGE, [W]=WARN [ 770.609964][T11936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025 [ 770.620178][T11936] Call Trace: [ 770.623586][T11936] [ 770.626646][T11936] __dump_stack+0x26/0x30 [ 770.631204][T11936] dump_stack_lvl+0x53/0x270 [ 770.636005][T11936] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 770.642061][T11936] dump_stack+0x1e/0x25 [ 770.646419][T11936] panic+0x4bd/0xd50 [ 770.650608][T11936] kmsan_report+0x29d/0x2a0 [ 770.655327][T11936] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 770.661385][T11936] ? __msan_warning+0x96/0x120 [ 770.666357][T11936] ? hfsplus_lookup+0x674/0xf70 [ 770.671469][T11936] ? __lookup_slow+0x560/0x760 [ 770.676456][T11936] ? lookup_slow+0x6a/0xd0 [ 770.681105][T11936] ? walk_component+0x444/0x650 [ 770.686178][T11936] ? path_lookupat+0x251/0x6b0 [ 770.691173][T11936] ? filename_lookup+0x2bd/0x800 [ 770.696327][T11936] ? user_path_at+0x91/0x3d0 [ 770.701174][T11936] ? do_sys_truncate+0x82/0x240 [ 770.706235][T11936] ? __ia32_compat_sys_truncate+0x77/0xc0 [ 770.712155][T11936] ? ia32_sys_call+0xa11/0x42c0 [ 770.717181][T11936] ? __do_fast_syscall_32+0xb0/0x110 [ 770.722707][T11936] ? do_fast_syscall_32+0x38/0x80 [ 770.727944][T11936] ? do_SYSENTER_32+0x1f/0x30 [ 770.732842][T11936] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 770.739551][T11936] ? __hfsplus_brec_find+0x6d3/0x840 [ 770.745044][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.750457][T11936] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 770.756937][T11936] ? __msan_memcpy+0x108/0x1c0 [ 770.761933][T11936] ? hfsplus_bnode_read+0x2d3/0x350 [ 770.767335][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.772781][T11936] __msan_warning+0x96/0x120 [ 770.777569][T11936] hfsplus_lookup+0x674/0xf70 [ 770.782531][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.787982][T11936] ? filter_irq_stacks+0x49/0x190 [ 770.793259][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.798679][T11936] ? __pfx_hfsplus_lookup+0x10/0x10 [ 770.804099][T11936] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 770.810146][T11936] ? __pfx_hfsplus_lookup+0x10/0x10 [ 770.815614][T11936] __lookup_slow+0x560/0x760 [ 770.820485][T11936] lookup_slow+0x6a/0xd0 [ 770.824951][T11936] walk_component+0x444/0x650 [ 770.829842][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.835296][T11936] path_lookupat+0x251/0x6b0 [ 770.840148][T11936] filename_lookup+0x2bd/0x800 [ 770.845135][T11936] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 770.851170][T11936] ? strncpy_from_user+0x255/0x470 [ 770.856502][T11936] ? kmsan_get_metadata+0x105/0x1b0 [ 770.861939][T11936] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 770.868033][T11936] user_path_at+0x91/0x3d0 [ 770.872714][T11936] do_sys_truncate+0x82/0x240 [ 770.877606][T11936] __ia32_compat_sys_truncate+0x77/0xc0 [ 770.883402][T11936] ia32_sys_call+0xa11/0x42c0 [ 770.888276][T11936] __do_fast_syscall_32+0xb0/0x110 [ 770.893634][T11936] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 770.899579][T11936] do_fast_syscall_32+0x38/0x80 [ 770.904671][T11936] do_SYSENTER_32+0x1f/0x30 [ 770.909411][T11936] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 770.915970][T11936] RIP: 0023:0xf7fe8539 [ 770.920205][T11936] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 770.940039][T11936] RSP: 002b:00000000f510655c EFLAGS: 00000206 ORIG_RAX: 000000000000005c [ 770.948658][T11936] RAX: ffffffffffffffda RBX: 0000000080000280 RCX: 0000000000000006 [ 770.956807][T11936] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 770.965023][T11936] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 770.973136][T11936] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 770.981263][T11936] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 770.989412][T11936] [ 770.992934][T11936] Kernel Offset: disabled [ 770.997346][T11936] Rebooting in 86400 seconds..