last executing test programs: 5m50.853866463s ago: executing program 2 (id=288): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000280)={0x6, 0x66c, 0x0, 'queue1\x00'}) write$sndseq(r0, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x2600]}}], 0xffc8) 5m49.443068038s ago: executing program 2 (id=290): r0 = socket$inet6(0xa, 0x80002, 0x88) setsockopt$inet6_udp_int(r0, 0x11, 0xa, &(0x7f0000000140)=0x86, 0x4) sendmmsg$inet(r0, &(0x7f0000000b00)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, 0x0}}], 0x1, 0x0) 5m48.659146468s ago: executing program 2 (id=294): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0) sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x2c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x2c}}, 0x0) 5m48.001758111s ago: executing program 2 (id=297): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r0) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002cbd7000fbd1df2521000000050020000000000009001f0070687931000000000c0005"], 0x34}, 0x1, 0x0, 0x0, 0x4008011}, 0x4000000) 5m46.180183527s ago: executing program 2 (id=302): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000200)=0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) 5m45.409460199s ago: executing program 2 (id=306): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r0) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x33, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x100}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20}, 0x8080) 5m30.038999343s ago: executing program 32 (id=306): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f00000003c0), r0) sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000a40)={0x33, r1, 0x1, 0x70bd2d, 0x25dfdbfe, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x100}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20}, 0x8080) 50.368822314s ago: executing program 0 (id=1886): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000001c0), 0x1, 0x553, &(0x7f0000001080)="$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") r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0) sendfile(r0, r0, 0x0, 0x800000009) 48.841127178s ago: executing program 0 (id=1894): io_submit(0x0, 0x0, 0x0) r0 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000fdc01a40f30c74933bbc0000000109021b0001000000000904000001a7a00f00090582020002"], 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x4, &(0x7f00000005c0)=ANY=[]) 44.941406187s ago: executing program 0 (id=1917): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x4000000000000000, &(0x7f0000000000)={0xffffffffffffffff}, 0x13f, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000240)={0xe, 0x18, 0xfa00, @id_tos={0x0, r1}}, 0x20) 44.036453497s ago: executing program 0 (id=1925): r0 = syz_open_procfs(0x0, &(0x7f0000000400)='map_files\x00') getdents(r0, &(0x7f0000000440)=""/4096, 0x1000) getdents64(r0, 0xffffffffffffffff, 0x43) 43.057741358s ago: executing program 0 (id=1932): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000200)=0x10) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) 42.37549322s ago: executing program 0 (id=1937): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66) 26.562499419s ago: executing program 33 (id=1937): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x15) madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x66) 3.84793339s ago: executing program 5 (id=2129): r0 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_ENABLE_BEARER(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)={0x34, r0, 0x1, 0x20000004, 0x25dfdbfb, {{}, {}, {0x18, 0x17, {0x1, 0xa48, @l2={'eth', 0x3a, 'ipvlan1\x00'}}}}}, 0x34}, 0x1, 0x0, 0x0, 0x64044054}, 0x0) 3.708304758s ago: executing program 3 (id=2130): syz_open_dev$sndmidi(&(0x7f0000000440), 0x2, 0x141101) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000042c0)='fdinfo/3\x00') read$FUSE(r0, &(0x7f0000000080)={0x2020}, 0x2020) 3.251145816s ago: executing program 4 (id=2131): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0x3}, 0x6) write$bt_hci(r0, &(0x7f0000000040)={0x1, @le_set_ext_adv_params={{0x2036, 0x19}, {0x3, 0x1ff, "cc2c03", "132506", 0x3, 0x6, 0x80, @any, 0x2, 0x6, 0x8, 0x8, 0x4, 0x70, 0xbb}}}, 0x1d) 3.162693678s ago: executing program 5 (id=2132): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0e000000040000000800000007"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xc, 0xd, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000015000000850000000700000095"], &(0x7f0000000840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000d80)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="0000090000980500000000000800", 0x0, 0x7fffffff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 3.103718527s ago: executing program 3 (id=2133): r0 = socket$netlink(0x10, 0x3, 0x10) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) bind$netlink(r0, &(0x7f0000000000)={0x10, 0x0, 0x25dfdbfe}, 0xc) 3.004813158s ago: executing program 1 (id=2134): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0xb, &(0x7f0000000000)=0x2, 0x4) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@gettaction={0x20, 0x32, 0x605, 0x70bd25, 0x25dfdbfd, {}, [@action_dump_flags=@TCA_ROOT_FLAGS={0xc, 0x2, {0x1}}]}, 0x20}}, 0x0) 2.58105515s ago: executing program 1 (id=2135): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000002c0)='veth1_to_bridge\x00', 0x10) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000240)={0x0, 0x20, &(0x7f0000000180)=[@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, @in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000280)=0x10) 2.547418816s ago: executing program 3 (id=2136): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x42}, 0x1000}, 0x1c) bind$inet6(r0, &(0x7f0000000180)={0xa, 0x4e24, 0x9, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x7}, 0x1c) 2.517895604s ago: executing program 4 (id=2137): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000040)={{0x3}}) ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000100)={0x0, 0x0, 0x80, 0x0, 0x2}) 2.020589944s ago: executing program 3 (id=2138): unshare(0x2c020400) r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0x7, 0x0, 0x0) 2.014261431s ago: executing program 1 (id=2139): bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={0x0, &(0x7f00000002c0)=""/129, 0x0, 0x81, 0x0, 0x0, 0x0, @void, @value}, 0x20) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="85000000130000005d0000000000000095000000000000000a621cf434b9eaafdc0a00e9bfde908990817b364e51afe9c81a97f0570759f1cae63487ff68fffffffffffe8e3932e2b7185a25a4cf8a9456aa8a701c318c67edb6e9330b53c0eeba8644311ba75411890700000000000000d8e5b1dc91c5499bea0977"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0xd00, 0x0, &(0x7f0000000380)="263abd030e98ff4dc870bd6688a8640888a8", 0x0, 0x1200}, 0x28) 2.011414518s ago: executing program 4 (id=2140): r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x7) ioctl$TCSETSF2(r0, 0x402c542d, 0x0) 1.687182192s ago: executing program 5 (id=2141): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc008ae05, &(0x7f00000000c0)=""/125) 1.484437968s ago: executing program 3 (id=2142): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000040), 0x21041, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0xe) ioctl$TCSETAW(r0, 0x5407, &(0x7f0000000080)={0x1000, 0x5, 0x6, 0x6, 0xe, "3660b30812f2f529"}) 1.393692381s ago: executing program 1 (id=2143): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'netdevsim0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0xfffffffa, 0x25dfdbfd, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0xc7, '\x00', 0x86dc, 0x3, 0x100, 0xc}}}}]}, 0x48}}, 0x4000010) 1.343894822s ago: executing program 4 (id=2144): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000000)={0xd, 0x0, 0x0}) ioctl$IOMMU_IOAS_UNMAP(r0, 0x3b86, &(0x7f00000002c0)={0x18, r1}) 1.091091399s ago: executing program 5 (id=2145): r0 = io_uring_setup(0x479, &(0x7f00000002c0)={0x0, 0x3, 0x40, 0x2, 0x4000020}) close_range(r0, 0xffffffffffffffff, 0x0) getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) 1.036848318s ago: executing program 3 (id=2146): syz_usb_connect(0x0, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x4b, 0x41, 0x46, 0x8, 0x1660, 0x932, 0x80ea, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x5, 0x10, 0xf}}]}}]}}, 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000002580)={&(0x7f00000002c0)=[{0x50, 0x1801, 0x0, 0x0}], 0x1}) 878.721847ms ago: executing program 1 (id=2147): r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0) syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2) ioctl$MON_IOCG_STATS(r0, 0x80089203, &(0x7f0000000040)) 874.32505ms ago: executing program 4 (id=2148): unshare(0x2a020400) pipe2(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) fcntl$setpipe(r0, 0x407, 0xffffffff80000000) 576.930581ms ago: executing program 5 (id=2149): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000001d00), r0) sendmsg$DEVLINK_CMD_PORT_GET(r0, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d80)={&(0x7f0000001d40)={0x3c, r1, 0x1, 0x70bd29, 0x25dfdbfc, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x4008000}, 0x80) 412.481631ms ago: executing program 1 (id=2150): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="180000005a00011f000000000000000000000000040005"], 0x18}}, 0x0) 377.166593ms ago: executing program 4 (id=2151): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000001ff0), 0x10) sendmsg$can_bcm(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)={0x4, 0x600, 0x6, {}, {}, {}, 0x7, @can={{}, 0x3, 0x0, 0x0, 0x0, "8bc7e9385559d457"}}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x4000800) 0s ago: executing program 5 (id=2152): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x404, &(0x7f0000000000)={[{@nogrpid}, {@jqfmt_vfsv0}, {@test_dummy_encryption}, {@debug}, {@nobarrier}, {@quota}]}, 0x1, 0x42f, &(0x7f0000000940)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) ioctl$FS_IOC_GETFSSYSFSPATH(r0, 0x80811501, 0x0) kernel console output (not intermixed with test programs): 7766] NILFS (loop3): recovery complete [ 448.446556][ T7771] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 448.715769][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 450.410048][ T7805] jfs: Unexpected value for 'usrquota' [ 451.588760][ T7820] netlink: 'syz.4.735': attribute type 62 has an invalid length. [ 453.088376][ T7829] loop1: detected capacity change from 0 to 40427 [ 453.158454][ T7829] F2FS-fs (loop1): heap/no_heap options were deprecated [ 453.167055][ T7829] F2FS-fs (loop1): heap/no_heap options were deprecated [ 453.175583][ T7829] F2FS-fs (loop1): old and new quota format mixing [ 453.553951][ T7837] loop3: detected capacity change from 0 to 1024 [ 453.627487][ T7837] EXT4-fs: Ignoring removed oldalloc option [ 453.633904][ T7837] EXT4-fs: Ignoring removed bh option [ 453.819094][ T7841] netlink: 56 bytes leftover after parsing attributes in process `syz.5.743'. [ 453.829027][ T7841] netlink: 8 bytes leftover after parsing attributes in process `syz.5.743'. [ 453.982303][ T7837] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 454.403529][ T7852] loop1: detected capacity change from 0 to 512 [ 454.453656][ T7837] syz.3.741 (7837) used greatest stack depth: 4704 bytes left [ 454.550517][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 454.633110][ T7852] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 454.647190][ T7852] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 454.824946][ T7851] loop0: detected capacity change from 0 to 2048 [ 454.906508][ T7851] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 454.951373][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 454.966685][ T7851] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 455.760543][ T7870] loop3: detected capacity change from 0 to 256 [ 455.807732][ T30] audit: type=1326 audit(1748020774.175:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.833251][ T30] audit: type=1326 audit(1748020774.175:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.856252][ T30] audit: type=1326 audit(1748020774.235:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.881612][ T30] audit: type=1326 audit(1748020774.235:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.906763][ T30] audit: type=1326 audit(1748020774.235:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.933491][ T30] audit: type=1326 audit(1748020774.255:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=197 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 455.956306][ T30] audit: type=1326 audit(1748020774.255:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7869 comm="syz.4.751" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 456.033232][ T7870] FAT-fs (loop3): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 456.042833][ T7870] FAT-fs (loop3): Filesystem has been set read-only [ 456.145596][ T30] audit: type=1800 audit(1748020774.385:37): pid=7870 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.752" name="file1" dev="loop3" ino=1048647 res=0 errno=0 [ 456.983337][ T7884] loop4: detected capacity change from 0 to 1024 [ 458.573554][ T7908] loop3: detected capacity change from 0 to 47 [ 458.924007][ T7914] loop1: detected capacity change from 0 to 128 [ 458.992798][ T7914] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 459.046867][ T7914] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 459.193889][ T7914] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:376: inode #2: comm syz.1.767: No space for directory leaf checksum. Please run e2fsck -D. [ 459.210302][ T7914] EXT4-fs error (device loop1): __ext4_find_entry:1628: inode #2: comm syz.1.767: checksumming directory block 0 [ 459.318797][ T7914] EXT4-fs warning (device loop1): ext4_dirblock_csum_verify:376: inode #2: comm syz.1.767: No space for directory leaf checksum. Please run e2fsck -D. [ 459.334758][ T7914] EXT4-fs error (device loop1): __ext4_find_entry:1628: inode #2: comm syz.1.767: checksumming directory block 0 [ 459.922081][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 460.020376][ T7921] loop0: detected capacity change from 0 to 4096 [ 460.123028][ T7921] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 460.537190][ T7921] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 460.659294][ T7938] loop3: detected capacity change from 0 to 2048 [ 460.765812][ T7938] loop3: p1 < > p3 [ 460.838158][ T7938] loop3: p3 size 134217728 extends beyond EOD, truncated [ 461.346480][ T7944] loop1: detected capacity change from 0 to 1024 [ 462.054836][ T3655] hfsplus: b-tree write err: -5, ino 4 [ 462.105254][ T7958] loop4: detected capacity change from 0 to 64 [ 462.872817][ T7969] smc: net device bond0 applied user defined pnetid SYZ2 [ 463.176893][ T7965] loop0: detected capacity change from 0 to 4096 [ 463.273012][ T7975] openvswitch: netlink: IP tunnel dst address not specified [ 463.390389][ T7965] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 463.453905][ T7980] loop3: detected capacity change from 0 to 256 [ 463.718585][ T7980] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 463.995018][ T7988] overlay: Unknown parameter '\ÿÿÿ' [ 464.104145][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 464.537629][ T5848] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 464.723163][ T5848] usb 5-1: Using ep0 maxpacket: 32 [ 464.788759][ T5848] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 464.797178][ T5848] usb 5-1: config 0 has no interface number 0 [ 464.865588][ T5848] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 464.875167][ T5848] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 464.883863][ T5848] usb 5-1: Product: syz [ 464.888440][ T5848] usb 5-1: Manufacturer: syz [ 464.893295][ T5848] usb 5-1: SerialNumber: syz [ 464.943965][ T8003] netlink: 4 bytes leftover after parsing attributes in process `syz.5.800'. [ 464.972787][ T5848] usb 5-1: config 0 descriptor?? [ 465.003756][ T5848] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 465.257929][ T5848] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 465.298597][ T8005] loop3: detected capacity change from 0 to 512 [ 465.334286][ T5848] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 465.474100][ T8005] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 465.483317][ T8005] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 465.594240][ T8005] System zones: 0-1, 15-15, 18-18, 34-34 [ 465.604112][ T8005] EXT4-fs (loop3): orphan cleanup on readonly fs [ 465.611477][ T8005] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 465.628857][ T8005] EXT4-fs warning (device loop3): ext4_enable_quotas:7170: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 465.646316][ T8005] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 465.657117][ T8005] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.801: bad orphan inode 16 [ 465.707646][ T8005] ext4_test_bit(bit=15, block=18) = 1 [ 465.713616][ T8005] is_bad_inode(inode)=0 [ 465.718888][ T8005] NEXT_ORPHAN(inode)=0 [ 465.730444][ T8005] max_ino=32 [ 465.733880][ T8005] i_nlink=2 [ 465.744668][ T8005] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 465.787362][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 465.791131][ T2034] usb 5-1: USB disconnect, device number 7 [ 465.899663][ T2034] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 465.969920][ T2034] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 465.985986][ T2034] quatech2 5-1:0.51: device disconnected [ 466.246205][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 466.416740][ T8020] loop5: detected capacity change from 0 to 64 [ 466.585784][ T8024] loop3: detected capacity change from 0 to 256 [ 466.720497][ T2034] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 466.935127][ T2034] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 466.946806][ T2034] usb 2-1: config 0 interface 0 has no altsetting 0 [ 466.959430][ T2034] usb 2-1: New USB device found, idVendor=17ef, idProduct=60b5, bcdDevice= 0.00 [ 466.969809][ T2034] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 467.070544][ T8024] FAT-fs (loop3): Directory bread(block 64) failed [ 467.077575][ T8024] FAT-fs (loop3): Directory bread(block 65) failed [ 467.084531][ T8024] FAT-fs (loop3): Directory bread(block 66) failed [ 467.091608][ T8024] FAT-fs (loop3): Directory bread(block 67) failed [ 467.101110][ T8024] FAT-fs (loop3): Directory bread(block 68) failed [ 467.108110][ T8024] FAT-fs (loop3): Directory bread(block 69) failed [ 467.115110][ T8024] FAT-fs (loop3): Directory bread(block 70) failed [ 467.123016][ T8024] FAT-fs (loop3): Directory bread(block 71) failed [ 467.132635][ T8024] FAT-fs (loop3): Directory bread(block 72) failed [ 467.142881][ T8024] FAT-fs (loop3): Directory bread(block 73) failed [ 467.235551][ T2034] usb 2-1: config 0 descriptor?? [ 467.253056][ T8022] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 467.818347][ T2034] lenovo 0003:17EF:60B5.000C: unknown main item tag 0x0 [ 467.829234][ T2034] lenovo 0003:17EF:60B5.000C: unknown main item tag 0x0 [ 467.914216][ T8032] loop5: detected capacity change from 0 to 4096 [ 467.968368][ T2034] lenovo 0003:17EF:60B5.000C: hidraw0: USB HID v80.00 Device [HID 17ef:60b5] on usb-dummy_hcd.1-1/input0 [ 468.097687][ T2034] usb 2-1: USB disconnect, device number 4 [ 468.108619][ T8040] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 468.167132][ T8032] NILFS error (device loop5): nilfs_check_folio: bad entry in directory #2: rec_len is smaller than minimal - offset=4096, inode=0, rec_len=0, name_len=0 [ 468.219554][ T8032] Remounting filesystem read-only [ 468.225093][ T8032] NILFS error (device loop5): nilfs_readdir: bad page in #2 [ 468.459342][ T8047] raw_sendmsg: syz.3.814 forgot to set AF_INET. Fix it! [ 470.726340][ T8086] loop1: detected capacity change from 0 to 256 [ 470.822884][ T8086] exfat: Deprecated parameter 'namecase' [ 470.976659][ T8086] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1cbb3694, utbl_chksum : 0xe619d30d) [ 471.120877][ T8090] loop4: detected capacity change from 0 to 1024 [ 471.141268][ T8090] EXT4-fs: Ignoring removed nobh option [ 471.147168][ T8090] EXT4-fs: Ignoring removed bh option [ 471.334285][ T8090] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 471.933875][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 471.934282][ T8104] loop1: detected capacity change from 0 to 1024 [ 472.213061][ T8104] hfsplus: bad catalog entry type [ 472.567066][ T3978] hfsplus: b-tree write err: -5, ino 4 [ 473.154642][ T30] audit: type=1326 audit(1748020791.535:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8122 comm="syz.0.844" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fce4718e969 code=0x0 [ 474.077200][ T8126] loop4: detected capacity change from 0 to 40427 [ 474.109308][ T8126] F2FS-fs (loop4): build fault injection attr: rate: 693, type: 0x3fffff [ 475.163887][ T8143] loop5: detected capacity change from 0 to 1024 [ 475.315836][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 475.322803][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 475.738681][ T8154] loop0: detected capacity change from 0 to 256 [ 475.836066][ T3734] hfsplus: b-tree write err: -5, ino 4 [ 476.120872][ T8154] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 476.257151][ T8154] exFAT-fs (loop0): error, data size is invalid(10) [ 476.264594][ T8154] exFAT-fs (loop0): Filesystem has been set read-only [ 476.327690][ T8154] exFAT-fs (loop0): error, data size is invalid(10) [ 476.862472][ T8157] loop3: detected capacity change from 0 to 4096 [ 477.171542][ T8157] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 477.190711][ T8174] loop5: detected capacity change from 0 to 256 [ 477.215603][ T8157] ntfs3(loop3): Failed to load $Extend (-22). [ 477.222839][ T8157] ntfs3(loop3): Failed to initialize $Extend. [ 477.409293][ T8157] ntfs3: Volume is dirty and "force" flag is not set! [ 478.385321][ T8188] loop0: detected capacity change from 0 to 1024 [ 478.684097][ T30] audit: type=1800 audit(1748020797.055:39): pid=8188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.869" name="file2" dev="loop0" ino=21 res=0 errno=0 [ 479.365292][ T8204] loop0: detected capacity change from 0 to 256 [ 479.770126][ T8204] FAT-fs (loop0): Directory bread(block 64) failed [ 479.777103][ T8204] FAT-fs (loop0): Directory bread(block 65) failed [ 479.786817][ T8204] FAT-fs (loop0): Directory bread(block 66) failed [ 479.798419][ T8204] FAT-fs (loop0): Directory bread(block 67) failed [ 479.805583][ T8204] FAT-fs (loop0): Directory bread(block 68) failed [ 479.815099][ T8204] FAT-fs (loop0): Directory bread(block 69) failed [ 479.822272][ T8204] FAT-fs (loop0): Directory bread(block 70) failed [ 479.829190][ T8204] FAT-fs (loop0): Directory bread(block 71) failed [ 479.836115][ T8204] FAT-fs (loop0): Directory bread(block 72) failed [ 479.845704][ T8204] FAT-fs (loop0): Directory bread(block 73) failed [ 480.395670][ T8224] loop3: detected capacity change from 0 to 1024 [ 481.020334][ T8232] mkiss: ax0: crc mode is auto. [ 481.260830][ T8235] loop4: detected capacity change from 0 to 256 [ 481.350028][ T8242] netlink: 56 bytes leftover after parsing attributes in process `syz.1.890'. [ 481.360565][ T8242] netlink: 24 bytes leftover after parsing attributes in process `syz.1.890'. [ 481.376716][ T8239] loop0: detected capacity change from 0 to 1024 [ 481.893688][ T3814] hfsplus: b-tree write err: -5, ino 4 [ 481.966453][ T8244] loop5: detected capacity change from 0 to 1024 [ 482.026383][ T8246] mkiss: ax0: crc mode is auto. [ 482.356180][ T3734] hfsplus: b-tree write err: -5, ino 4 [ 482.791117][ T8260] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 483.935446][ T8276] netlink: 'syz.1.905': attribute type 5 has an invalid length. [ 484.069881][ T30] audit: type=1326 audit(1748020802.455:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8279 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a318e969 code=0x7ffc0000 [ 484.177513][ T30] audit: type=1326 audit(1748020802.505:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8279 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=48 compat=0 ip=0x7f52a318e969 code=0x7ffc0000 [ 484.203148][ T30] audit: type=1326 audit(1748020802.515:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8279 comm="syz.3.908" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f52a318e969 code=0x7ffc0000 [ 485.218652][ T8300] netlink: 8 bytes leftover after parsing attributes in process `syz.1.918'. [ 485.228558][ T8300] netlink: 12 bytes leftover after parsing attributes in process `syz.1.918'. [ 485.240920][ T8296] loop0: detected capacity change from 0 to 512 [ 485.264223][ T8299] loop3: detected capacity change from 0 to 512 [ 485.295315][ T8296] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 485.352097][ T8296] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended [ 485.364224][ T8296] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002] [ 485.411266][ T8296] System zones: 0-2, 18-18, 34-34 [ 485.453294][ T8296] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 485.470988][ T8296] EXT4-fs (loop0): 1 truncate cleaned up [ 485.482075][ T8296] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 485.526636][ T8299] EXT4-fs (loop3): 1 orphan inode deleted [ 485.535040][ T8299] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 485.549353][ T3655] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 485.560463][ T3655] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:15: Failed to release dquot type 1 [ 485.651861][ T8299] ext4 filesystem being mounted at /193/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 485.822946][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.130203][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.346626][ T8316] overlayfs: missing 'workdir' [ 487.060927][ T8325] loop0: detected capacity change from 0 to 2048 [ 487.091190][ T8330] loop1: detected capacity change from 0 to 64 [ 487.172836][ T8331] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 487.306513][ T8333] loop3: detected capacity change from 0 to 256 [ 487.597523][ T5797] Bluetooth: hci5: command 0x0406 tx timeout [ 487.631762][ T8333] FAT-fs (loop3): Directory bread(block 64) failed [ 487.646253][ T8333] FAT-fs (loop3): Directory bread(block 65) failed [ 487.655699][ T8333] FAT-fs (loop3): Directory bread(block 66) failed [ 487.662737][ T8333] FAT-fs (loop3): Directory bread(block 67) failed [ 487.669881][ T8333] FAT-fs (loop3): Directory bread(block 68) failed [ 487.676676][ T8333] FAT-fs (loop3): Directory bread(block 69) failed [ 487.683828][ T8333] FAT-fs (loop3): Directory bread(block 70) failed [ 487.690992][ T8333] FAT-fs (loop3): Directory bread(block 71) failed [ 487.698104][ T8333] FAT-fs (loop3): Directory bread(block 72) failed [ 487.704902][ T8333] FAT-fs (loop3): Directory bread(block 73) failed [ 488.169150][ T8341] loop5: detected capacity change from 0 to 512 [ 488.227651][ T8341] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 488.388191][ T8341] EXT4-fs (loop5): 1 orphan inode deleted [ 488.394364][ T8341] EXT4-fs (loop5): 1 truncate cleaned up [ 488.402809][ T8341] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 488.844371][ T8339] loop1: detected capacity change from 0 to 32768 [ 488.857653][ T8339] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value [ 489.129546][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.160127][ T8348] netlink: 12 bytes leftover after parsing attributes in process `syz.3.939'. [ 489.921766][ T8362] netlink: 'syz.1.945': attribute type 18 has an invalid length. [ 489.946148][ T8362] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.957972][ T8362] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.966989][ T8362] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 489.976231][ T8362] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 490.921224][ T8370] loop5: detected capacity change from 0 to 4096 [ 490.937687][ T8378] netlink: 48 bytes leftover after parsing attributes in process `syz.3.953'. [ 490.980396][ T8370] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 491.539922][ T8370] ntfs3(loop5): failed to convert "c46c" to cp866 [ 491.766642][ T8386] loop3: detected capacity change from 0 to 1024 [ 492.666772][ T8401] netlink: zone id is out of range [ 492.752371][ T8392] loop4: detected capacity change from 0 to 4096 [ 492.786980][ T8401] netlink: set zone limit has 4 unknown bytes [ 492.835221][ T8392] ntfs3(loop4): ino=3, Correct links count -> 2. [ 493.731585][ T5848] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 493.916213][ T8417] loop1: detected capacity change from 0 to 512 [ 493.940185][ T5848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 493.952178][ T5848] usb 4-1: New USB device found, idVendor=1532, idProduct=010d, bcdDevice= 0.00 [ 493.961688][ T5848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 493.996947][ T5848] usb 4-1: config 0 descriptor?? [ 494.030063][ T8417] EXT4-fs error (device loop1): ext4_iget_extra_inode:4693: inode #15: comm syz.1.969: corrupted in-inode xattr: invalid ea_ino [ 494.146781][ T8417] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.969: couldn't read orphan inode 15 (err -117) [ 494.229581][ T8417] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 494.472051][ T5848] razer 0003:1532:010D.000D: hidraw0: USB HID v0.00 Device [HID 1532:010d] on usb-dummy_hcd.3-1/input0 [ 494.520403][ T8423] loop5: detected capacity change from 0 to 8 [ 494.567926][ T8421] loop4: detected capacity change from 0 to 2048 [ 494.595779][ T8421] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 494.648999][ T5848] usb 4-1: USB disconnect, device number 7 [ 494.701528][ T8425] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 494.724513][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 495.767955][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 496.210145][ T8440] loop1: detected capacity change from 0 to 512 [ 496.225065][ T8432] loop0: detected capacity change from 0 to 32768 [ 496.246352][ T8432] gfs2: Bad value for 'commit' [ 496.268018][ T8440] EXT4-fs: Ignoring removed nobh option [ 496.395670][ T8440] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #11: comm syz.1.979: invalid indirect mapped block 256 (level 2) [ 496.511983][ T8440] EXT4-fs (loop1): 2 truncates cleaned up [ 496.520216][ T8440] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 497.113396][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 497.531496][ T8454] loop1: detected capacity change from 0 to 256 [ 497.576346][ T8454] exfat: Deprecated parameter 'namecase' [ 497.584793][ T8454] exfat: Deprecated parameter 'utf8' [ 497.710388][ T8454] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d) [ 498.178518][ T8468] netlink: 60 bytes leftover after parsing attributes in process `syz.3.992'. [ 498.194717][ T8468] netlink: 16 bytes leftover after parsing attributes in process `syz.3.992'. [ 498.205886][ T8468] netlink: 60 bytes leftover after parsing attributes in process `syz.3.992'. [ 498.343749][ T8471] loop1: detected capacity change from 0 to 128 [ 499.453771][ T8490] Bluetooth: MGMT ver 1.23 [ 499.534919][ T8488] loop0: detected capacity change from 0 to 1024 [ 499.562044][ T8493] xs_local_setup_socket: unhandled error (13) connecting to /var/run/rpcbind.sock [ 499.923529][ T8497] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1005'. [ 500.443466][ T8508] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1012'. [ 500.890134][ T30] audit: type=1326 audit(1748020819.275:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 500.931839][ T30] audit: type=1326 audit(1748020819.315:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 500.958140][ T30] audit: type=1326 audit(1748020819.325:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 500.988170][ T30] audit: type=1326 audit(1748020819.385:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 501.074371][ T30] audit: type=1326 audit(1748020819.405:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 501.097151][ T30] audit: type=1326 audit(1748020819.405:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 501.122402][ T30] audit: type=1326 audit(1748020819.405:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 501.147739][ T30] audit: type=1326 audit(1748020819.405:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8517 comm="syz.4.1017" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea5b58e969 code=0x7ffc0000 [ 501.830045][ T2034] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 502.020407][ T2034] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 502.029179][ T2034] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 502.088236][ T2034] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 502.097706][ T2034] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 502.105939][ T2034] usb 5-1: Manufacturer: syz [ 502.155273][ T2034] usb 5-1: config 0 descriptor?? [ 502.557658][ T2034] rc_core: IR keymap rc-hauppauge not found [ 502.563838][ T2034] Registered IR keymap rc-empty [ 502.571717][ T2034] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 502.593528][ T2034] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input8 [ 502.778783][ C1] igorplugusb 5-1:0.0: receive overflow, at least 9 lost [ 503.041953][ T5848] usb 5-1: USB disconnect, device number 8 [ 504.409156][ T8571] loop3: detected capacity change from 0 to 256 [ 504.651068][ T8573] loop1: detected capacity change from 0 to 1024 [ 504.685367][ T8573] EXT4-fs: Ignoring removed mblk_io_submit option [ 504.695141][ T8573] EXT4-fs: Ignoring removed nobh option [ 504.701543][ T8573] EXT4-fs: Ignoring removed bh option [ 504.820325][ T8573] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 505.044261][ T8573] EXT4-fs error (device loop1): ext4_xattr_inode_iget:442: comm syz.1.1040: error while reading EA inode 32 err=-116 [ 505.114073][ T8573] EXT4-fs (loop1): Remounting filesystem read-only [ 505.121328][ T8573] EXT4-fs warning (device loop1): ext4_xattr_inode_inc_ref_all:1129: inode #18: comm syz.1.1040: cleanup dec ref error -30 [ 505.137378][ T8573] EXT4-fs warning (device loop1): ext4_xattr_block_set:2190: inode #18: comm syz.1.1040: dec ref error=-30 [ 505.236954][ T8588] loop4: detected capacity change from 0 to 512 [ 505.330214][ T8588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 505.413675][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 505.483559][ T8588] EXT4-fs error (device loop4): ext4_lookup:1789: inode #14: comm syz.4.1046: unexpected EA_INODE flag [ 505.735314][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.010108][ T2034] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 506.167144][ T8603] loop5: detected capacity change from 0 to 512 [ 506.215023][ T8603] EXT4-fs: inline encryption not supported [ 506.224034][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 506.236936][ T2034] usb 2-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00 [ 506.238993][ T8603] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 506.246687][ T2034] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 506.338569][ T2034] usb 2-1: config 0 descriptor?? [ 506.393851][ T8603] EXT4-fs (loop5): 1 truncate cleaned up [ 506.405052][ T8603] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 506.791972][ T2034] nintendo 0003:057E:200E.000E: unbalanced delimiter at end of report description [ 506.835337][ T2034] nintendo 0003:057E:200E.000E: HID parse failed [ 506.874588][ T2034] nintendo 0003:057E:200E.000E: probe - fail = -22 [ 506.882500][ T2034] nintendo 0003:057E:200E.000E: probe with driver nintendo failed with error -22 [ 507.026620][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 507.039165][ T2034] usb 2-1: USB disconnect, device number 5 [ 507.319244][ T8613] loop4: detected capacity change from 0 to 2048 [ 507.353604][ T8615] loop3: detected capacity change from 0 to 2048 [ 507.395420][ T8613] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 507.428214][ T8617] loop5: detected capacity change from 0 to 1764 [ 507.450081][ T8615] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 507.463201][ T30] audit: type=1800 audit(1748020825.855:51): pid=8613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1058" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 507.512727][ T8613] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 507.534339][ T8613] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28 [ 507.549894][ T8613] EXT4-fs (loop4): This should not happen!! Data will be lost [ 507.549894][ T8613] [ 507.562024][ T8613] EXT4-fs (loop4): Total free blocks count 0 [ 507.568905][ T8613] EXT4-fs (loop4): Free/Dirty block details [ 507.575037][ T8613] EXT4-fs (loop4): free_blocks=2415919104 [ 507.583574][ T8613] EXT4-fs (loop4): dirty_blocks=16 [ 507.589063][ T8613] EXT4-fs (loop4): Block reservation details [ 507.595374][ T8613] EXT4-fs (loop4): i_reserved_data_blocks=1 [ 508.002945][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 508.371833][ T8627] loop3: detected capacity change from 0 to 512 [ 508.393601][ T8625] loop0: detected capacity change from 0 to 2048 [ 508.418574][ T8627] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 508.495114][ T8625] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 508.505322][ T8625] NILFS (loop0): mounting unchecked fs [ 508.525193][ T8627] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ce01c, mo2=0002] [ 508.598797][ T8627] System zones: 1-12 [ 508.602652][ T8625] NILFS (loop0): recovery complete [ 508.611300][ T8627] EXT4-fs (loop3): orphan cleanup on readonly fs [ 508.634631][ T8627] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1062: invalid indirect mapped block 12 (level 1) [ 508.644103][ T8636] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 508.681543][ T8635] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1066'. [ 508.714003][ T8627] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1062: invalid indirect mapped block 2 (level 2) [ 508.778507][ T8627] EXT4-fs (loop3): 1 truncate cleaned up [ 508.786503][ T8627] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback. [ 509.202096][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 509.466474][ T8645] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1070'. [ 509.767753][ T2034] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 509.974732][ T2034] usb 2-1: Using ep0 maxpacket: 8 [ 510.007976][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 510.019456][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 510.032113][ T2034] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 510.042279][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12336, setting to 1024 [ 510.054224][ T2034] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 510.069868][ T2034] usb 2-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 510.080376][ T2034] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 510.199721][ T2034] usb 2-1: config 0 descriptor?? [ 510.209240][ T8649] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 510.716961][ T8664] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1080'. [ 510.728589][ T8664] unsupported nlmsg_type 40 [ 510.733910][ T5848] usb 2-1: USB disconnect, device number 6 [ 510.745111][ T5805] Bluetooth: hci1: Opcode 0x0c03 failed: -71 [ 510.934456][ T8666] loop5: detected capacity change from 0 to 1024 [ 511.093073][ T8666] hfsplus: bad catalog entry type [ 511.433166][ T4039] hfsplus: b-tree write err: -5, ino 4 [ 512.061904][ T8681] loop3: detected capacity change from 0 to 256 [ 512.476471][ T8676] loop4: detected capacity change from 0 to 40427 [ 512.547770][ T8676] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 512.555028][ T8676] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 512.819764][ T8684] loop0: detected capacity change from 0 to 4096 [ 514.668477][ T8715] loop0: detected capacity change from 0 to 1024 [ 515.124764][ T8723] loop4: detected capacity change from 0 to 1024 [ 515.130066][ T3978] hfsplus: b-tree write err: -5, ino 4 [ 515.428908][ T8725] loop1: detected capacity change from 0 to 256 [ 515.440416][ T8725] exfat: Deprecated parameter 'utf8' [ 515.551151][ T8725] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 516.768533][ T8751] loop3: detected capacity change from 0 to 64 [ 517.628212][ T8758] loop0: detected capacity change from 0 to 128 [ 517.636826][ T8750] loop4: detected capacity change from 0 to 32768 [ 517.680404][ T8750] (syz.4.1119,8750,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 517.715928][ T8750] (syz.4.1119,8750,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 517.769370][ T8758] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 517.807563][ T8750] (syz.4.1119,8750,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x3c8d1ba1, computed 0x4417bf64. Applying ECC. [ 517.824287][ T8750] (syz.4.1119,8750,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x3c8d1ba1, computed 0x5465644c [ 517.837712][ T8750] (syz.4.1119,8750,0):ocfs2_validate_inode_block:1393 ERROR: Checksum failed for dinode 24 [ 517.857812][ T8750] (syz.4.1119,8750,0):ocfs2_read_locked_inode:535 ERROR: status = -5 [ 517.866292][ T8750] (syz.4.1119,8750,0):_ocfs2_get_system_file_inode:144 ERROR: status = -5 [ 517.881222][ T8750] (syz.4.1119,8750,0):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 517.890581][ T8750] (syz.4.1119,8750,0):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 5, possibly corrupt fs? [ 517.890756][ T8750] (syz.4.1119,8750,0):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 517.891285][ T8758] ext4 filesystem being mounted at /229/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 517.903342][ T8750] (syz.4.1119,8750,0):ocfs2_initialize_super:2198 ERROR: status = -22 [ 517.903975][ T8750] (syz.4.1119,8750,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 518.539576][ T5800] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 519.064002][ T8777] loop4: detected capacity change from 0 to 512 [ 519.111676][ T8777] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 519.247022][ T8777] EXT4-fs (loop4): 1 truncate cleaned up [ 519.255517][ T8777] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 519.375103][ T8779] loop1: detected capacity change from 0 to 2048 [ 519.655667][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 520.050838][ T8793] loop0: detected capacity change from 0 to 16 [ 520.156121][ T8793] erofs (device loop0): mounted with root inode @ nid 36. [ 520.278957][ T8797] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1140'. [ 520.311969][ T8797] erspan0: entered promiscuous mode [ 520.328107][ T8797] erspan0: left promiscuous mode [ 520.534921][ T8787] loop3: detected capacity change from 0 to 8192 [ 520.643778][ T8787] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 521.043013][ T8801] xt_CT: No such helper "snmp" [ 523.213963][ T8826] loop1: detected capacity change from 0 to 32768 [ 523.232721][ T8826] (syz.1.1156,8826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xc2d589a7, computed 0x56085f14. Applying ECC. [ 523.261193][ T8826] (syz.1.1156,8826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 523.283150][ T8826] (syz.1.1156,8826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 523.303208][ T8826] (syz.1.1156,8826,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x656d756e, computed 0xec253be7. Applying ECC. [ 523.317059][ T8826] (syz.1.1156,8826,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x656d756e, computed 0xccc08db7 [ 523.332270][ T8826] (syz.1.1156,8826,1):ocfs2_validate_dir_block:452 ERROR: Checksum failed for dinode 288 [ 523.342510][ T8826] (syz.1.1156,8826,1):ocfs2_read_virt_blocks:1029 ERROR: status = -5 [ 523.350918][ T8826] (syz.1.1156,8826,1):ocfs2_read_dir_block:511 ERROR: status = -5 [ 523.361417][ T8826] (syz.1.1156,8826,1):ocfs2_find_entry_el:728 ERROR: reading directory 18, offset 0 [ 523.371586][ T8826] (syz.1.1156,8826,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 523.384150][ T8826] (syz.1.1156,8826,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? [ 523.384306][ T8826] (syz.1.1156,8826,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 523.408609][ T8826] (syz.1.1156,8826,1):ocfs2_initialize_super:2198 ERROR: status = -22 [ 523.417695][ T8826] (syz.1.1156,8826,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 524.062903][ T8841] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1161'. [ 524.182088][ T8844] binder: 8842:8844 ioctl c0306201 200000000380 returned -22 [ 524.820254][ T2034] usb 6-1: new full-speed USB device number 5 using dummy_hcd [ 525.089991][ T2034] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 525.103874][ T2034] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 525.114197][ T2034] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 525.132270][ T2034] usb 6-1: New USB device found, idVendor=046a, idProduct=0023, bcdDevice= 0.00 [ 525.142424][ T2034] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 525.535268][ T2034] usb 6-1: config 0 descriptor?? [ 525.583059][ T8853] loop3: detected capacity change from 0 to 32768 [ 525.592872][ T8853] XFS: noikeep mount option is deprecated. [ 525.602259][ T8853] XFS: noikeep mount option is deprecated. [ 525.608960][ T8853] XFS (loop3): invalid logbufsize: 4 [not 16k,32k,64k,128k or 256k] [ 526.048283][ T2034] cherry 0003:046A:0023.000F: unbalanced collection at end of report description [ 526.180253][ T2034] cherry 0003:046A:0023.000F: probe with driver cherry failed with error -22 [ 526.279010][ T8860] loop4: detected capacity change from 0 to 4096 [ 526.329757][ T2034] usb 6-1: USB disconnect, device number 5 [ 526.581589][ T8869] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 526.713280][ T30] audit: type=1800 audit(1748020845.095:52): pid=8860 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1170" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 526.898366][ T8873] loop3: detected capacity change from 0 to 64 [ 527.241992][ T3734] hfs: request for non-existent node 1317 in B*Tree [ 527.252551][ T3734] hfs: request for non-existent node 1317 in B*Tree [ 527.309399][ T8878] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1177'. [ 529.088838][ T8911] loop5: detected capacity change from 0 to 256 [ 529.306644][ T8913] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1194'. [ 530.703203][ T8937] loop1: detected capacity change from 0 to 256 [ 530.848081][ T8941] loop5: detected capacity change from 0 to 256 [ 530.888816][ T8941] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 530.916976][ T8941] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=512, location=512 [ 530.927071][ T8941] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 530.937498][ T8941] UDF-fs: Scanning with blocksize 512 failed [ 530.991270][ T8941] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 531.086533][ T8941] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 531.093825][ T8937] FAT-fs (loop1): Directory bread(block 64) failed [ 531.102484][ T8937] FAT-fs (loop1): Directory bread(block 65) failed [ 531.111648][ T8937] FAT-fs (loop1): Directory bread(block 66) failed [ 531.118672][ T8937] FAT-fs (loop1): Directory bread(block 67) failed [ 531.125583][ T8937] FAT-fs (loop1): Directory bread(block 68) failed [ 531.132454][ T8937] FAT-fs (loop1): Directory bread(block 69) failed [ 531.141958][ T8937] FAT-fs (loop1): Directory bread(block 70) failed [ 531.148901][ T8937] FAT-fs (loop1): Directory bread(block 71) failed [ 531.155822][ T8937] FAT-fs (loop1): Directory bread(block 72) failed [ 531.165620][ T8937] FAT-fs (loop1): Directory bread(block 73) failed [ 531.312366][ T8947] loop3: detected capacity change from 0 to 512 [ 531.357531][ T8947] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 531.448896][ T8947] EXT4-fs (loop3): orphan cleanup on readonly fs [ 531.455507][ T8947] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.1210: bad orphan inode 458763 [ 531.546582][ T8947] EXT4-fs (loop3): Remounting filesystem read-only [ 531.564593][ T8947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 531.811825][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.112671][ T8958] No buffer was provided with the request [ 532.202795][ T8952] loop0: detected capacity change from 0 to 4096 [ 532.376875][ T8961] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 534.080670][ T8989] loop4: detected capacity change from 0 to 2048 [ 534.103114][ T8989] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 534.157138][ T8990] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 535.172928][ T9006] netlink: 'syz.3.1238': attribute type 2 has an invalid length. [ 535.182958][ T9004] loop5: detected capacity change from 0 to 2048 [ 535.288003][ T9004] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 535.716144][ T9018] loop1: detected capacity change from 0 to 64 [ 536.768915][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 536.775640][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 537.084214][ T9038] loop0: detected capacity change from 0 to 64 [ 537.184335][ T9039] /dev/loop0: Can't open blockdev [ 537.710002][ T9035] loop4: detected capacity change from 0 to 32768 [ 537.794616][ T9035] bcachefs (/dev/loop4): error reading default superblock: unknown checksum type 4 [ 537.805532][ T9035] bcachefs (/dev/loop4): error validating superblock: Bad sb offset (got 288230376151715840, read from 4096) [ 537.828272][ T9035] bcachefs: bch2_fs_get_tree() error: invalid_sb_offset [ 539.548666][ T9070] loop5: detected capacity change from 0 to 512 [ 539.679031][ T9070] EXT4-fs (loop5): 1 orphan inode deleted [ 539.690253][ T9070] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 539.995708][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 540.702624][ T9088] loop1: detected capacity change from 0 to 256 [ 540.753498][ T9088] exfat: Deprecated parameter 'utf8' [ 540.872436][ T9091] loop3: detected capacity change from 0 to 512 [ 540.911839][ T9088] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 540.982276][ T9091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.002582][ T9091] ext4 filesystem being mounted at /261/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 541.425221][ T9103] loop1: detected capacity change from 0 to 512 [ 541.438564][ T9103] EXT4-fs: Ignoring removed orlov option [ 541.531896][ T9103] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.1280: bad orphan inode 13 [ 541.545818][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 541.561015][ T9102] loop0: detected capacity change from 0 to 1024 [ 541.582268][ T9103] ext4_test_bit(bit=12, block=4) = 1 [ 541.591699][ T9103] is_bad_inode(inode)=0 [ 541.596216][ T9103] NEXT_ORPHAN(inode)=0 [ 541.600878][ T9103] max_ino=32 [ 541.607048][ T9103] i_nlink=1 [ 541.613601][ T9103] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 541.812997][ T9103] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 542.210492][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 542.331547][ T3814] hfsplus: b-tree write err: -5, ino 4 [ 543.160461][ T9127] loop4: detected capacity change from 0 to 128 [ 543.226438][ T9127] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 544.117722][ T2034] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 544.555238][ T9150] loop0: detected capacity change from 0 to 512 [ 544.719349][ T9150] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 544.732684][ T9150] ext4 filesystem being mounted at /265/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 545.183190][ T9148] loop4: detected capacity change from 0 to 32768 [ 545.210087][ T2034] usb 4-1: config 0 interface 0 altsetting 185 endpoint 0x81 has invalid wMaxPacketSize 0 [ 545.220571][ T2034] usb 4-1: config 0 interface 0 has no altsetting 0 [ 545.234107][ T2034] usb 4-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00 [ 545.243817][ T2034] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 545.254386][ T9148] (syz.4.1297,9148,1):ocfs2_verify_volume:2322 ERROR: Superblock slots found greater than file system maximum: found 2560, max 255 [ 545.271159][ T9148] (syz.4.1297,9148,1):ocfs2_verify_volume:2331 ERROR: status = -22 [ 545.279677][ T9148] (syz.4.1297,9148,1):ocfs2_fill_super:989 ERROR: superblock probe failed! [ 545.292342][ T9148] (syz.4.1297,9148,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 545.433919][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 545.799685][ T2034] usb 4-1: config 0 descriptor?? [ 546.271006][ T2034] kye 0003:0458:5013.0010: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 546.362026][ T2034] kye 0003:0458:5013.0010: hidraw0: USB HID v8.00 Device [HID 0458:5013] on usb-dummy_hcd.3-1/input0 [ 546.373436][ T2034] kye 0003:0458:5013.0010: tablet-enabling feature report not found [ 546.381902][ T2034] kye 0003:0458:5013.0010: tablet enabling failed [ 546.564104][ T2034] usb 4-1: USB disconnect, device number 8 [ 546.680821][ T9168] loop1: detected capacity change from 0 to 2048 [ 546.738954][ T9168] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 546.799774][ T9173] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 547.106656][ T9177] loop5: detected capacity change from 0 to 256 [ 547.655914][ T9183] loop1: detected capacity change from 0 to 164 [ 548.425763][ T9195] loop1: detected capacity change from 0 to 128 [ 548.503513][ T9195] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a842c018, mo2=0002] [ 548.562897][ T9195] System zones: 1-3, 19-19, 35-36 [ 548.640706][ T9195] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 548.724371][ T9195] ext4 filesystem being mounted at /277/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 548.755976][ T9201] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1320'. [ 548.890301][ T5805] Bluetooth: hci0: unexpected cc 0x203e length: 2 > 1 [ 548.897529][ T5805] Bluetooth: hci0: unexpected event for opcode 0x203e [ 549.145060][ T9207] loop3: detected capacity change from 0 to 512 [ 549.184941][ T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!! [ 549.234250][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 549.356617][ T9207] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 549.372666][ T9207] ext4 filesystem being mounted at /269/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 549.577985][ T9215] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1328'. [ 549.891243][ T30] audit: type=1326 audit(1748020868.275:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 549.916787][ T30] audit: type=1326 audit(1748020868.275:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 549.939333][ C1] vkms_vblank_simulate: vblank timer overrun [ 549.953515][ T30] audit: type=1326 audit(1748020868.335:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 549.976292][ T30] audit: type=1326 audit(1748020868.335:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 550.004310][ T30] audit: type=1326 audit(1748020868.335:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 550.027895][ T30] audit: type=1326 audit(1748020868.345:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 550.053435][ T30] audit: type=1326 audit(1748020868.345:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9218 comm="syz.5.1329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 550.079773][ T9221] option changes via remount are deprecated (pid=9219 comm=syz.4.1330) [ 550.174689][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 550.577829][ T30] audit: type=1326 audit(1748020868.965:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1334" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f790018e969 code=0x0 [ 551.463068][ T9242] loop4: detected capacity change from 0 to 1024 [ 551.884592][ T9251] loop0: detected capacity change from 0 to 256 [ 551.934396][ T9251] exfat: Deprecated parameter 'utf8' [ 552.074914][ T9251] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 553.684023][ T9275] loop0: detected capacity change from 0 to 128 [ 553.761163][ T9277] netlink: 32 bytes leftover after parsing attributes in process `syz.1.1354'. [ 553.774236][ T9277] IPVS: Unknown mcast interface: wg0 [ 553.954955][ T9280] loop5: detected capacity change from 0 to 128 [ 556.272585][ T9305] loop5: detected capacity change from 0 to 32768 [ 556.284543][ T9305] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1366 (9305) [ 556.309066][ T9305] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 556.319809][ T9305] BTRFS info (device loop5): using sha256 (sha256-generic) checksum algorithm [ 556.335118][ T9305] BTRFS info (device loop5): using free-space-tree [ 556.508157][ T2034] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 556.618735][ T9305] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 556.767022][ T2034] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 556.780336][ T2034] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 556.790497][ T2034] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 556.801198][ T2034] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 556.813914][ T2034] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 556.823435][ T2034] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 557.178135][ T2034] usb 5-1: config 0 descriptor?? [ 557.458877][ T2034] hdpvr 5-1:0.0: firmware version 0x69 dated Ì«SL’Ù¸Öi:¸hÏúŽ·Ý¤Dšjñu°íÿ7~½Ô?beÓlOˆz¬ [ 557.472040][ T2034] hdpvr 5-1:0.0: untested firmware, the driver might not work. [ 557.958622][ T2034] hdpvr 5-1:0.0: Could not setup controls [ 557.970425][ T2034] hdpvr 5-1:0.0: registering videodev failed [ 558.060805][ T2034] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -71 [ 558.080937][ T5848] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 558.118258][ T9338] loop5: detected capacity change from 0 to 512 [ 558.197026][ T2034] usb 5-1: USB disconnect, device number 9 [ 558.268356][ T9338] EXT4-fs (loop5): 1 orphan inode deleted [ 558.276450][ T9338] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 558.321774][ T3521] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 558.332297][ T3521] EXT4-fs error (device loop5): ext4_release_dquot:6971: comm kworker/u8:12: Failed to release dquot type 1 [ 558.344580][ T5848] usb 4-1: Using ep0 maxpacket: 16 [ 558.404164][ T5848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 558.408477][ T9338] ext4 filesystem being mounted at /179/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 558.419208][ T5848] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 558.439506][ T5848] usb 4-1: New USB device found, idVendor=0458, idProduct=5019, bcdDevice= 0.00 [ 558.451877][ T5848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 558.466090][ T5848] usb 4-1: config 0 descriptor?? [ 558.623216][ T9344] loop1: detected capacity change from 0 to 1024 [ 558.843888][ T6832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.894770][ T9344] hfsplus: bad catalog entry type [ 558.971773][ T5848] kye 0003:0458:5019.0011: tablet report size too small, or kye_tablet_rdesc unexpectedly large [ 559.058262][ T5848] kye 0003:0458:5019.0011: hidraw0: USB HID v0.00 Device [HID 0458:5019] on usb-dummy_hcd.3-1/input0 [ 559.069759][ T5848] kye 0003:0458:5019.0011: tablet-enabling feature report not found [ 559.080967][ T5848] kye 0003:0458:5019.0011: tablet enabling failed [ 559.227691][ T2034] usb 4-1: USB disconnect, device number 9 [ 559.279352][ T3814] hfsplus: b-tree write err: -5, ino 4 [ 560.540595][ T9358] loop3: detected capacity change from 0 to 2048 [ 560.683692][ T9365] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 562.232011][ T9389] loop4: detected capacity change from 0 to 64 [ 562.871505][ T9398] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1404'. [ 562.920640][ T9400] loop1: detected capacity change from 0 to 1024 [ 562.940704][ T9400] EXT4-fs (loop1): Couldn't mount because of unsupported optional features (2000000) [ 563.710236][ T2034] usb 5-1: new full-speed USB device number 10 using dummy_hcd [ 563.916670][ T2034] usb 5-1: config 0 has an invalid interface number: 45 but max is 0 [ 563.927983][ T2034] usb 5-1: config 0 has no interface number 0 [ 563.934320][ T2034] usb 5-1: config 0 interface 45 altsetting 175 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 563.950675][ T2034] usb 5-1: config 0 interface 45 altsetting 175 endpoint 0x81 has invalid wMaxPacketSize 0 [ 563.961276][ T2034] usb 5-1: config 0 interface 45 has no altsetting 0 [ 563.968367][ T2034] usb 5-1: New USB device found, idVendor=5543, idProduct=3031, bcdDevice= 0.00 [ 563.979902][ T2034] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 564.072008][ T30] audit: type=1804 audit(1748020882.435:61): pid=9417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1412" name="/newroot/298/bus" dev="tmpfs" ino=1567 res=1 errno=0 [ 564.096278][ T30] audit: type=1800 audit(1748020882.435:62): pid=9417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1412" name="bus" dev="tmpfs" ino=1567 res=0 errno=0 [ 564.164934][ T2034] usb 5-1: config 0 descriptor?? [ 564.653503][ T2034] uclogic 0003:5543:3031.0012: interface is invalid, ignoring [ 564.781530][ T9420] loop3: detected capacity change from 0 to 4096 [ 564.815065][ T9420] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 564.852795][ T2034] usb 5-1: USB disconnect, device number 10 [ 564.855968][ T9420] ntfs3(loop3): It is recommened to use chkdsk. [ 565.252997][ T9420] ntfs3(loop3): failed to convert "076c" to koi8-r [ 565.295508][ T9420] ntfs3(loop3): ino=5, "/" ntfs_readdir [ 565.914113][ T30] audit: type=1326 audit(1748020884.295:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9440 comm="syz.4.1426" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fea5b58e969 code=0x0 [ 565.936027][ C1] vkms_vblank_simulate: vblank timer overrun [ 566.534301][ T9450] xt_CT: No such helper "pptp" [ 566.579900][ T2034] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 566.748013][ T2034] usb 6-1: Using ep0 maxpacket: 8 [ 566.803641][ T2034] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb [ 566.813265][ T2034] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 566.873766][ T2034] usb 6-1: config 0 descriptor?? [ 567.160592][ T2034] asix 6-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 567.244560][ T9463] loop1: detected capacity change from 0 to 2048 [ 567.300307][ T9466] netlink: 'syz.4.1435': attribute type 2 has an invalid length. [ 567.368561][ T9463] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 567.578636][ T2034] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 567.591917][ T2034] asix 6-1:0.0: probe with driver asix failed with error -71 [ 567.661297][ T2034] usb 6-1: USB disconnect, device number 6 [ 568.794724][ T9484] loop5: detected capacity change from 0 to 256 [ 569.059331][ T9484] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 569.830400][ T9483] loop1: detected capacity change from 0 to 40427 [ 569.844119][ T9483] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 569.851586][ T9483] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 569.875727][ T9483] F2FS-fs (loop1): build fault injection attr: rate: 17008, type: 0x3fffff [ 569.892735][ T9483] F2FS-fs (loop1): invalid crc value [ 570.102802][ T9495] loop4: detected capacity change from 0 to 512 [ 570.186073][ T9495] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 570.290394][ T9483] F2FS-fs (loop1): Try to recover 1th superblock, ret: -30 [ 570.297998][ T9483] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 570.341769][ T9495] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a000c019, mo2=0002] [ 570.442804][ T9495] System zones: 1-12 [ 570.474419][ T9495] EXT4-fs (loop4): 1 truncate cleaned up [ 570.490531][ T9495] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 571.374652][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.741691][ T9515] loop0: detected capacity change from 0 to 128 [ 571.852521][ T9518] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1459'. [ 572.200185][ T9514] loop5: detected capacity change from 0 to 4096 [ 572.262300][ T9514] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 572.406196][ T9525] syz.4.1461: attempt to access beyond end of device [ 572.406196][ T9525] nbd4: rw=0, sector=6, nr_sectors = 2 limit=0 [ 572.419743][ T9525] ADFS-fs (nbd4): error: unable to read block 3, try 0 [ 574.202492][ T9542] loop1: detected capacity change from 0 to 1024 [ 574.451268][ T9542] EXT4-fs: Ignoring removed orlov option [ 574.459570][ T9542] EXT4-fs: Ignoring removed nomblk_io_submit option [ 574.589124][ T9542] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 575.159833][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.526177][ T9562] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1476'. [ 576.151237][ T9572] netlink: 'syz.1.1481': attribute type 1 has an invalid length. [ 576.225606][ T9574] loop5: detected capacity change from 0 to 64 [ 576.297529][ T2034] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 576.507573][ T2034] usb 5-1: Using ep0 maxpacket: 8 [ 576.563781][ T2034] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 576.575463][ T2034] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 576.585748][ T2034] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 576.601389][ T2034] usb 5-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00 [ 576.610869][ T2034] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 576.893707][ T2034] usb 5-1: config 0 descriptor?? [ 577.156510][ T9576] loop3: detected capacity change from 0 to 32768 [ 577.325911][ T9576] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 577.383121][ T9576] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=data_checksum=none,compression=lz4,background_compression=zstd,very_degraded,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names [ 577.383121][ T9576] allowing incompatible features above 0.0: (unknown version) [ 577.415192][ T9576] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 577.425004][ T9576] bcachefs (loop3): Version upgrade required: [ 577.425004][ T9576] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 577.425004][ T9576] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.25: extent_flags [ 577.425004][ T9576] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance [ 577.495703][ T2034] logitech 0003:046D:C293.0013: nested delimiters [ 577.495830][ T2034] logitech 0003:046D:C293.0013: item 0 4 2 10 parsing failed [ 577.563545][ T9576] bcachefs (loop3): bcachefs (loop3): error validating btree node on loop3 at btree dirents level 0/0 [ 577.563673][ T9576] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 1027 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 577.563793][ T9576] node offset 24/1027: btree node data missing: expected 1027 sectors, found 24, fixing [ 577.604252][ T9576] bcachefs (loop3): btree_node_read_work: rewriting btree node at due to error [ 577.604252][ T9576] btree=dirents level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 9aa2895aefce4bdf written 1027 min_key POS_MIN durability: 1 ptr: 0:41:0 gen 0 [ 577.605282][ T2034] logitech 0003:046D:C293.0013: parse failed [ 577.640256][ T2034] logitech 0003:046D:C293.0013: probe with driver logitech failed with error -22 [ 577.709925][ T9576] bcachefs (loop3): bcachefs (loop3): error validating btree node at btree alloc level 0/0 [ 577.710043][ T9576] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 577.710160][ T9576] node offset 8/24 bset u64s 375 bset byte offset 184: keys out of order: u64s 11 type alloc_v4 0:32:0 len 0 ver 0 > u64s 11 type alloc_v4 0:2:0 len 0 ver 0, fixing [ 577.770876][ T9576] bcachefs (loop3): btree_node_read_work: rewriting btree node at due to error [ 577.770876][ T9576] btree=alloc level=0 u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq ac62141f8dc7e261 written 24 min_key POS_MIN durability: 1 ptr: 0:26:0 gen 0 [ 577.841360][ T9576] bcachefs (loop3): running explicit recovery pass check_topology (2), currently at recovery_pass_empty (0) [ 577.859984][ T9576] bcachefs (loop3): bcachefs (loop3): error validating btree node on loop3 at btree lru level 0/0 [ 577.860095][ T9576] u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 28f61e078e70b95c written 16 min_key POS_MIN durability: 1 ptr: 0:28:0 gen 0 [ 577.860214][ T9576] node offset 0/16 bset u64s 0: incorrect max key U64_MAX:18374686480762142719:U32_MAX, btree topology error: [ 577.905449][ T9576] bcachefs (loop3): flagging btree lru lost data [ 577.917722][ T9576] bcachefs (loop3): error reading btree root btree=lru level=0: btree_node_read_error, fixing [ 577.986712][ T9576] bcachefs (loop3): check_topology... [ 577.989511][ T2034] usb 5-1: USB disconnect, device number 11 [ 577.990843][ T9576] done [ 578.006226][ T9576] bcachefs (loop3): accounting_read... done [ 578.016567][ T9576] bcachefs (loop3): alloc_read... done [ 578.026708][ T9576] bcachefs (loop3): snapshots_read... done [ 578.033870][ T9576] bcachefs (loop3): Fixed errors, running fsck a second time to verify fs is clean [ 578.050963][ T9576] bcachefs (loop3): done starting filesystem [ 578.244750][ T9594] loop0: detected capacity change from 0 to 128 [ 578.253531][ T5804] bcachefs (loop3): shutting down [ 578.343344][ T9594] FAT-fs (loop0): Directory bread(block 32) failed [ 578.353549][ T9594] FAT-fs (loop0): Directory bread(block 33) failed [ 578.361649][ T9594] FAT-fs (loop0): Directory bread(block 34) failed [ 578.376394][ T9594] FAT-fs (loop0): Directory bread(block 35) failed [ 578.389201][ T9594] FAT-fs (loop0): Directory bread(block 36) failed [ 578.395971][ T9594] FAT-fs (loop0): Directory bread(block 37) failed [ 578.404092][ T9594] FAT-fs (loop0): Directory bread(block 38) failed [ 578.414773][ T9594] FAT-fs (loop0): Directory bread(block 39) failed [ 578.422790][ T9594] FAT-fs (loop0): Directory bread(block 40) failed [ 578.430467][ T9594] FAT-fs (loop0): Directory bread(block 41) failed [ 578.532944][ T5804] bcachefs (loop3): shutdown complete [ 578.576088][ T5848] usb 6-1: new full-speed USB device number 7 using dummy_hcd [ 578.801888][ T5848] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 578.816871][ T5848] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 578.828968][ T5848] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 578.843146][ T5848] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 578.952931][ T5848] usb 6-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 578.965293][ T5848] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 578.973844][ T5848] usb 6-1: Product: syz [ 578.984019][ T5848] usb 6-1: Manufacturer: syz [ 578.993571][ T5848] usb 6-1: SerialNumber: syz [ 579.022067][ T5848] usb 6-1: config 0 descriptor?? [ 579.083006][ T5848] input: KB Gear Tablet as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input10 [ 579.274608][ T5848] usb 6-1: USB disconnect, device number 7 [ 579.526113][ T9600] loop4: detected capacity change from 0 to 4096 [ 579.563138][ T9600] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 579.721103][ T9602] loop1: detected capacity change from 0 to 2048 [ 579.844162][ T9602] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 580.293764][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.108284][ T9619] RDS: rds_bind could not find a transport for fe80::3e, load rds_tcp or rds_rdma? [ 581.273241][ T9624] ip6_vti0: entered promiscuous mode [ 581.306818][ T9625] loop0: detected capacity change from 0 to 512 [ 581.362449][ T9625] EXT4-fs: Ignoring removed nobh option [ 581.489803][ T9625] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1502: invalid indirect mapped block 256 (level 2) [ 581.558021][ T9625] EXT4-fs (loop0): 2 truncates cleaned up [ 581.565873][ T9625] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 581.794051][ T9625] EXT4-fs warning (device loop0): ext4_resize_begin:82: There are errors in the filesystem, so online resizing is not allowed [ 581.935836][ T9628] loop5: detected capacity change from 0 to 2048 [ 582.031428][ T9628] EXT4-fs: Ignoring removed orlov option [ 582.037656][ T9628] EXT4-fs: Ignoring removed nomblk_io_submit option [ 582.129691][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 582.203236][ T9628] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 582.739849][ T9644] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1509'. [ 583.293405][ T9655] loop1: detected capacity change from 0 to 64 [ 583.839122][ T30] audit: type=1326 audit(1748020902.225:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9645 comm="syz.5.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7fc00000 [ 584.293593][ T30] audit: type=1800 audit(1748020902.675:65): pid=9669 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1521" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0 [ 584.371605][ T9672] loop4: detected capacity change from 0 to 512 [ 584.550615][ T9672] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 584.564344][ T9672] ext4 filesystem being mounted at /304/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 584.659180][ T9607] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 585.046438][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 585.719020][ T9696] loop1: detected capacity change from 0 to 512 [ 585.755903][ T9696] EXT4-fs: Ignoring removed oldalloc option [ 585.902886][ T9696] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.1532: Parent and EA inode have the same ino 15 [ 585.998959][ T9696] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.1532: Parent and EA inode have the same ino 15 [ 586.047755][ T9696] EXT4-fs (loop1): 1 orphan inode deleted [ 586.055901][ T9696] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 586.111481][ T60] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 586.120413][ T60] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 586.143902][ T11] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 586.417910][ T11] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 586.508774][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 587.047903][ T11] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 587.148677][ T9717] loop1: detected capacity change from 0 to 2048 [ 587.264915][ T9717] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 587.701223][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 587.893384][ T9732] loop3: detected capacity change from 0 to 512 [ 587.913495][ T9732] EXT4-fs: Ignoring removed i_version option [ 587.951713][ T9732] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 588.072359][ T9732] EXT4-fs (loop3): 1 truncate cleaned up [ 588.080801][ T9732] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 588.132643][ T9735] loop4: detected capacity change from 0 to 1764 [ 588.162521][ T9739] netlink: 'syz.5.1553': attribute type 2 has an invalid length. [ 588.530914][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 589.563425][ T9745] loop1: detected capacity change from 0 to 32768 [ 589.619008][ T9745] (syz.1.1554,9745,0):ocfs2_init_local_system_inodes:496 ERROR: status=-22, sysfile=7, slot=0 [ 589.639246][ T9745] (syz.1.1554,9745,0):ocfs2_init_local_system_inodes:505 ERROR: status = -22 [ 589.650445][ T9745] (syz.1.1554,9745,0):ocfs2_mount_volume:1758 ERROR: status = -22 [ 589.665008][ T9745] (syz.1.1554,9745,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 589.998059][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 591.527018][ T9782] netlink: 187320 bytes leftover after parsing attributes in process `syz.4.1572'. [ 591.537020][ T9782] netlink: zone id is out of range [ 592.236043][ T9792] loop4: detected capacity change from 0 to 512 [ 592.390768][ T9792] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 592.410389][ T9792] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 592.545688][ T9792] Quota error (device loop4): do_check_range: Getting dqdh_next_free 4294967294 out of range 0-8 [ 592.557748][ T9792] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 592.570872][ T9792] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.1577: Failed to acquire dquot type 0 [ 592.979357][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 594.497522][ T2034] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 594.730016][ T2034] usb 5-1: Using ep0 maxpacket: 32 [ 594.818910][ T2034] usb 5-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 594.832216][ T2034] usb 5-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 594.845921][ T2034] usb 5-1: config 0 interface 0 has no altsetting 0 [ 594.855552][ T2034] usb 5-1: New USB device found, idVendor=1b1c, idProduct=0c10, bcdDevice= 0.00 [ 594.868559][ T2034] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 594.997294][ T2034] usb 5-1: config 0 descriptor?? [ 595.463913][ T2034] corsair-cpro 0003:1B1C:0C10.0014: item fetching failed at offset 2/5 [ 595.530425][ T2034] corsair-cpro 0003:1B1C:0C10.0014: probe with driver corsair-cpro failed with error -22 [ 595.653234][ T2034] usb 5-1: USB disconnect, device number 12 [ 595.677602][ T5797] Bluetooth: hci5: command 0x0406 tx timeout [ 596.519192][ T9843] loop0: detected capacity change from 0 to 4096 [ 596.893369][ T9858] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 597.175137][ T9856] loop4: detected capacity change from 0 to 2048 [ 597.276750][ T9856] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 597.304357][ T9863] loop3: detected capacity change from 0 to 64 [ 598.120557][ T2034] IPVS: starting estimator thread 0... [ 598.185716][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 598.223088][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 598.246867][ T9870] IPVS: using max 240 ests per chain, 12000 per kthread [ 598.922622][ T9884] netlink: 'syz.1.1616': attribute type 7 has an invalid length. [ 598.931016][ T9884] netlink: 'syz.1.1616': attribute type 8 has an invalid length. [ 599.840379][ T9888] loop4: detected capacity change from 0 to 4096 [ 599.904965][ T9888] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 600.290036][ T9888] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 600.451905][ T9888] ntfs3(loop4): Failed to load $Extend (-22). [ 600.458628][ T9888] ntfs3(loop4): Failed to initialize $Extend. [ 600.612847][ T9903] loop1: detected capacity change from 0 to 1024 [ 600.771336][ T9903] hfsplus: bad catalog entry type [ 601.083904][ T4039] hfsplus: b-tree write err: -5, ino 4 [ 604.533707][ T9962] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1652'. [ 605.344487][ T9977] program syz.5.1660 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 605.773827][ T9978] loop3: detected capacity change from 0 to 4096 [ 605.936761][ T9986] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 606.852104][ T9998] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1667'. [ 610.193408][T10041] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 610.220001][ C1] vkms_vblank_simulate: vblank timer overrun [ 610.233353][T10041] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 611.641419][T10063] loop4: detected capacity change from 0 to 512 [ 611.879232][T10063] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1700: casefold flag without casefold feature [ 612.020394][T10063] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1700: couldn't read orphan inode 15 (err -117) [ 612.078388][T10063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 612.444166][T10078] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 612.444166][T10078] The task syz.5.1706 (10078) triggered the difference, watch for misbehavior. [ 612.493122][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 613.158027][T10086] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1711'. [ 613.167758][T10086] netlink: 'syz.3.1711': attribute type 2 has an invalid length. [ 613.175712][T10086] netlink: 'syz.3.1711': attribute type 1 has an invalid length. [ 613.188850][T10086] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1711'. [ 613.337493][T10089] macsec1: entered promiscuous mode [ 613.342974][T10089] macsec1: entered allmulticast mode [ 613.517915][ C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured! [ 613.778610][T10094] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1714'. [ 614.157742][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 615.044304][T10115] loop3: detected capacity change from 0 to 256 [ 615.247774][ T11] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 615.442584][ T11] usb 6-1: Using ep0 maxpacket: 32 [ 615.486518][ T11] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 615.496040][T10108] loop4: detected capacity change from 0 to 8192 [ 615.497018][ T11] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 615.605894][ T11] usb 6-1: New USB device found, idVendor=2058, idProduct=1005, bcdDevice=b5.f6 [ 615.615508][ T11] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 615.626711][ T11] usb 6-1: Product: syz [ 615.631308][ T11] usb 6-1: Manufacturer: syz [ 615.636149][ T11] usb 6-1: SerialNumber: syz [ 615.657361][T10108] FAT-fs (loop4): bogus logical sector size 768 [ 615.663992][T10108] FAT-fs (loop4): Can't find a valid FAT filesystem [ 615.728974][ T11] usb 6-1: config 0 descriptor?? [ 615.921290][ T11] viperboard 6-1:0.0: version 0.00 found at bus 006 address 008 [ 615.967044][ T11] viperboard-i2c viperboard-i2c.2.auto: failure setting i2c_bus_freq to 100 [ 615.976346][ T11] viperboard-i2c viperboard-i2c.2.auto: probe with driver viperboard-i2c failed with error -5 [ 616.103209][ T11] usb 6-1: USB disconnect, device number 8 [ 616.361231][T10129] ipt_rpfilter: only valid in 'raw' or 'mangle' table, not '' [ 617.356052][T10131] loop4: detected capacity change from 0 to 4096 [ 618.047069][T10131] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 618.458036][T10131] EXT4-fs error (device loop4): ext4_get_first_dir_block:3547: inode #12: block 80: comm syz.4.1732: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 618.599230][T10131] EXT4-fs error (device loop4): ext4_get_first_dir_block:3549: inode #12: comm syz.4.1732: directory missing '..' [ 618.788832][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 619.197799][T10155] program syz.3.1745 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 619.518250][ T11] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 619.711728][ T11] usb 6-1: Using ep0 maxpacket: 32 [ 619.730573][T10162] loop1: detected capacity change from 0 to 64 [ 619.748702][ T11] usb 6-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=66.3d [ 619.758434][ T11] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 619.814914][ T11] usb 6-1: config 0 descriptor?? [ 619.815528][T10163] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551615) [ 619.833400][T10163] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647 [ 619.870474][ T11] cx82310_eth 6-1:0.0: probe with driver cx82310_eth failed with error -22 [ 619.885417][ T11] cxacru 6-1:0.0: usbatm_usb_probe: bind failed: -19! [ 619.925867][T10165] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1748'. [ 620.078031][ T11] usb 6-1: USB disconnect, device number 9 [ 621.528953][T10188] overlay: ./file1 is not a directory [ 622.220456][T10198] program syz.1.1763 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 622.652376][T10203] loop4: detected capacity change from 0 to 1764 [ 622.755467][T10206] loop1: detected capacity change from 0 to 256 [ 622.761569][T10192] loop3: detected capacity change from 0 to 8192 [ 623.593047][T10216] tmpfs: Unexpected value for 'grpquota' [ 624.192975][T10226] syz.4.1777 uses obsolete (PF_INET,SOCK_PACKET) [ 624.471360][T10214] loop0: detected capacity change from 0 to 4096 [ 624.558384][T10214] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 625.107561][T10214] ntfs3(loop0): ino=1a, mi_enum_attr [ 625.113325][T10214] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 625.157887][ T11] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 625.190465][T10214] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 625.397586][ T11] usb 2-1: Using ep0 maxpacket: 32 [ 625.429670][ T11] usb 2-1: config 0 has an invalid interface number: 244 but max is 0 [ 625.441056][ T11] usb 2-1: config 0 has no interface number 0 [ 625.447620][ T11] usb 2-1: config 0 interface 244 has no altsetting 0 [ 625.495383][ T11] usb 2-1: New USB device found, idVendor=0e41, idProduct=4750, bcdDevice=26.9c [ 625.507549][ T11] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 625.515822][ T11] usb 2-1: Product: syz [ 625.520848][ T11] usb 2-1: Manufacturer: syz [ 625.525667][ T11] usb 2-1: SerialNumber: syz [ 625.552870][ T11] usb 2-1: config 0 descriptor?? [ 625.558988][T10245] usb usb1: check_ctrlrecip: process 10245 (syz.5.1786) requesting ep 01 but needs 81 [ 625.616638][ T11] snd_usb_toneport 2-1:0.244: Line 6 GuitarPort found [ 625.854510][ T11] snd_usb_toneport 2-1:0.244: cannot get proper max packet size [ 625.864328][ T11] snd_usb_toneport 2-1:0.244: Line 6 GuitarPort now disconnected [ 625.901755][ T11] snd_usb_toneport 2-1:0.244: probe with driver snd_usb_toneport failed with error -22 [ 626.064136][ T2034] usb 2-1: USB disconnect, device number 7 [ 627.371769][T10255] loop4: detected capacity change from 0 to 32768 [ 627.499871][T10255] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 627.547795][ T2034] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 627.695667][T10255] XFS (loop4): Starting recovery (logdev: internal) [ 627.756912][ T2034] usb 4-1: Using ep0 maxpacket: 16 [ 627.780646][T10255] XFS (loop4): Metadata corruption detected at xfs_dinode_verify+0x252/0x21a0, inode 0x422 dinode [ 627.794326][T10255] XFS (loop4): Unmount and run xfs_repair [ 627.800436][T10255] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 627.808150][T10255] 00000000: 49 4e 80 00 03 02 00 00 00 00 00 00 00 00 00 00 IN.............. [ 627.817448][T10255] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 627.829603][T10255] 00000020: 1d cd 65 00 00 00 00 00 34 f7 58 68 7f 41 c3 20 ..e.....4.Xh.A. [ 627.841997][T10255] 00000030: 34 f7 58 68 7f 41 c3 20 00 00 00 00 00 00 00 00 4.Xh.A. ........ [ 627.851200][T10255] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 627.860376][T10255] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 627.872041][T10255] 00000060: ff ff ff ff 4d 6e 96 d4 00 00 00 00 00 00 00 02 ....Mn.......... [ 627.881386][T10255] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08 ................ [ 627.890783][T10255] XFS (loop4): metadata inode 0x422 type 6 is corrupt [ 627.900318][T10255] XFS (loop4): failed to read RT inodes [ 627.906375][T10255] XFS (loop4): Uncorrected metadata errors detected; please run xfs_repair. [ 627.936477][ T2034] usb 4-1: config 53 has an invalid interface number: 174 but max is 0 [ 627.945275][ T2034] usb 4-1: config 53 has no interface number 0 [ 627.952242][ T2034] usb 4-1: config 53 interface 174 altsetting 0 endpoint 0x6 has invalid maxpacket 1024, setting to 64 [ 627.966068][ T2034] usb 4-1: config 53 interface 174 altsetting 0 has a duplicate endpoint with address 0x6, skipping [ 628.015180][ T2034] usb 4-1: New USB device found, idVendor=0fc5, idProduct=1227, bcdDevice=91.35 [ 628.026944][ T2034] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 628.037859][ T2034] usb 4-1: Product: syz [ 628.042231][ T2034] usb 4-1: Manufacturer: syz [ 628.047050][ T2034] usb 4-1: SerialNumber: syz [ 628.714861][ T2034] usbsevseg 4-1:53.174: USB 7 Segment device now attached [ 628.740920][ T2034] usb 4-1: USB disconnect, device number 10 [ 628.751646][ T2034] usbsevseg 4-1:53.174: USB 7 Segment now disconnected [ 629.808443][T10288] PKCS8: Unsupported PKCS#8 version [ 630.531212][T10301] loop1: detected capacity change from 0 to 1024 [ 630.558407][T10301] EXT4-fs: Ignoring removed orlov option [ 630.577038][T10301] EXT4-fs (loop1): Test dummy encryption mode enabled [ 630.618243][T10301] EXT4-fs (loop1): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 630.725168][T10301] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 631.688887][T10319] program syz.5.1817 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 631.735365][T10301] fscrypt: AES-256-CBC-CTS using implementation "cts(cbc(ecb(aes-fixed-time)))" [ 631.945444][T10301] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 631.987838][T10301] overlayfs: upper fs does not support tmpfile. [ 632.029770][T10301] fscrypt (loop1): Missing crypto API support for AES-256-XTS (API name: "xts(aes)") [ 632.623599][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 632.812181][ T30] audit: type=1800 audit(1748020951.195:66): pid=10337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1821" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 632.832446][ C1] vkms_vblank_simulate: vblank timer overrun [ 634.312268][T10358] loop4: detected capacity change from 0 to 4096 [ 634.357369][T10358] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 634.403216][T10358] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 4096) [ 634.524537][T10365] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 635.652388][T10381] loop4: detected capacity change from 0 to 256 [ 635.893552][T10383] loop3: detected capacity change from 0 to 1024 [ 635.977446][T10383] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 637.294023][T10408] overlayfs: missing 'workdir' [ 637.852198][T10412] loop4: detected capacity change from 0 to 1024 [ 637.939807][T10412] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 637.952617][T10412] ext4 filesystem being mounted at /370/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 638.230520][T10424] loop0: detected capacity change from 0 to 64 [ 638.266491][T10412] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1858: bg 0: block 393: padding at end of block bitmap is not set [ 638.520598][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 640.278430][T10453] loop1: detected capacity change from 0 to 2048 [ 640.383984][T10453] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 640.767480][T10464] loop3: detected capacity change from 0 to 512 [ 640.811687][T10464] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 640.979657][T10464] EXT4-fs (loop3): 1 truncate cleaned up [ 640.987907][T10464] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 641.297978][T10474] loop1: detected capacity change from 0 to 64 [ 641.378238][T10472] loop0: detected capacity change from 0 to 1024 [ 641.479839][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.681197][T10472] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 641.981496][ T30] audit: type=1800 audit(1748020960.345:67): pid=10472 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1886" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 642.236666][T10485] loop1: detected capacity change from 0 to 128 [ 642.277510][T10485] EXT4-fs (loop1): Test dummy encryption mode enabled [ 642.340321][T10485] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 642.418180][T10485] ext4 filesystem being mounted at /401/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 642.575298][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.944462][ T5795] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 643.386349][T10499] loop4: detected capacity change from 0 to 2048 [ 643.502347][T10507] loop3: detected capacity change from 0 to 512 [ 643.570580][T10507] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 643.574270][T10499] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 643.680946][T10507] EXT4-fs (loop3): 1 truncate cleaned up [ 643.692181][T10507] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 643.844627][ T30] audit: type=1800 audit(1748020962.225:68): pid=10507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1900" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 643.865402][ C1] vkms_vblank_simulate: vblank timer overrun [ 644.086351][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 644.184937][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 644.470306][ T30] audit: type=1800 audit(1748020962.855:69): pid=10517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.1903" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0 [ 644.554565][T10518] loop3: detected capacity change from 0 to 512 [ 644.582162][T10518] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 644.670022][T10518] EXT4-fs (loop3): 1 truncate cleaned up [ 644.680879][T10518] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 644.934486][ T5804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 644.963378][T10523] loop1: detected capacity change from 0 to 512 [ 644.985001][T10523] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 645.079936][T10523] EXT4-fs (loop1): 1 truncate cleaned up [ 645.088411][T10523] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 645.119539][T10523] EXT4-fs error (device loop1): ext4_nfs_get_inode:1529: inode #11: comm syz.1.1906: iget: bad extra_isize 46 (inode size 256) [ 645.155415][T10523] EXT4-fs (loop1): Remounting filesystem read-only [ 645.280976][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 646.159510][ C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 648.911836][T10584] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1934'. [ 649.369560][T10578] DRBG: could not allocate CTR cipher TFM handle: ctr(aes) [ 649.669618][T10596] loop3: detected capacity change from 0 to 64 [ 649.794685][ T30] audit: type=1800 audit(1748020968.175:70): pid=10596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1940" name="bus" dev="loop3" ino=21 res=0 errno=0 [ 649.815156][ C1] vkms_vblank_simulate: vblank timer overrun [ 649.872132][T10598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1941'. [ 649.881634][T10598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1941'. [ 649.894522][T10598] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1941'. [ 652.657121][T10637] loop3: detected capacity change from 0 to 1024 [ 653.777577][ T2034] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 654.020793][ T2034] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 654.032861][ T2034] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 654.046828][ T2034] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 654.060670][ T2034] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 654.074201][ T2034] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 654.083786][ T2034] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 654.132363][T10651] loop1: detected capacity change from 0 to 1024 [ 654.204828][T10651] EXT4-fs: Ignoring removed nomblk_io_submit option [ 654.252285][ T2034] usb 4-1: config 0 descriptor?? [ 654.322592][T10651] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 654.712442][ T2034] plantronics 0003:047F:FFFF.0015: ignoring exceeding usage max [ 654.728029][ T2034] plantronics 0003:047F:FFFF.0015: usage index exceeded [ 654.735275][ T2034] plantronics 0003:047F:FFFF.0015: item 0 4 2 0 parsing failed [ 654.801053][ T2034] plantronics 0003:047F:FFFF.0015: parse failed [ 654.809589][ T2034] plantronics 0003:047F:FFFF.0015: probe with driver plantronics failed with error -22 [ 654.877825][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 654.925618][ T2034] usb 4-1: USB disconnect, device number 11 [ 657.895144][T10693] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 658.878920][T10702] loop3: detected capacity change from 0 to 64 [ 659.073703][T10702] hfs: walked past end of dir [ 659.447409][ T2034] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 659.617409][ T2034] usb 2-1: Using ep0 maxpacket: 32 [ 659.635615][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 659.637701][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 659.647093][ T2034] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 659.666155][ T2034] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 659.677974][ T2034] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 659.810742][ T2034] usb 2-1: config 0 descriptor?? [ 660.276454][ T2034] kone 0003:1E7D:2CED.0016: unknown main item tag 0x0 [ 660.290406][ T2034] kone 0003:1E7D:2CED.0016: unknown main item tag 0x0 [ 660.298876][ T2034] kone 0003:1E7D:2CED.0016: unknown main item tag 0x0 [ 660.305974][ T2034] kone 0003:1E7D:2CED.0016: unknown main item tag 0x0 [ 660.315549][ T2034] kone 0003:1E7D:2CED.0016: unknown main item tag 0x0 [ 660.479880][ T2034] kone 0003:1E7D:2CED.0016: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.1-1/input0 [ 660.534760][ T2034] kone 0003:1E7D:2CED.0016: couldn't init struct kone_device [ 660.542789][ T2034] kone 0003:1E7D:2CED.0016: couldn't install mouse [ 660.623142][ T2034] kone 0003:1E7D:2CED.0016: probe with driver kone failed with error -5 [ 660.689075][ T2034] usb 2-1: USB disconnect, device number 8 [ 660.710909][ T30] audit: type=1326 audit(1748020979.095:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.808140][ T30] audit: type=1326 audit(1748020979.165:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.830734][ C1] vkms_vblank_simulate: vblank timer overrun [ 660.840262][ T30] audit: type=1326 audit(1748020979.175:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.862716][ C1] vkms_vblank_simulate: vblank timer overrun [ 660.872250][ T30] audit: type=1326 audit(1748020979.175:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.897985][ T30] audit: type=1326 audit(1748020979.175:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.923044][ T30] audit: type=1326 audit(1748020979.185:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.949046][ T30] audit: type=1326 audit(1748020979.185:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 660.971926][ T30] audit: type=1326 audit(1748020979.185:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10721 comm="syz.5.1997" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 662.390422][T10742] loop4: detected capacity change from 0 to 64 [ 662.402496][T10741] loop3: detected capacity change from 0 to 64 [ 662.582727][T10743] Trying to free block not in datazone [ 663.340353][T10753] loop3: detected capacity change from 0 to 256 [ 663.735153][T10753] FAT-fs (loop3): Directory bread(block 64) failed [ 663.742067][T10753] FAT-fs (loop3): Directory bread(block 65) failed [ 663.749233][T10753] FAT-fs (loop3): Directory bread(block 66) failed [ 663.755961][T10753] FAT-fs (loop3): Directory bread(block 67) failed [ 663.765541][T10753] FAT-fs (loop3): Directory bread(block 68) failed [ 663.775561][T10753] FAT-fs (loop3): Directory bread(block 69) failed [ 663.783539][T10753] FAT-fs (loop3): Directory bread(block 70) failed [ 663.792684][T10753] FAT-fs (loop3): Directory bread(block 71) failed [ 663.799804][T10753] FAT-fs (loop3): Directory bread(block 72) failed [ 663.806561][T10753] FAT-fs (loop3): Directory bread(block 73) failed [ 663.837903][T10758] loop4: detected capacity change from 0 to 256 [ 663.909404][T10760] loop1: detected capacity change from 0 to 512 [ 663.921785][T10760] EXT4-fs: Ignoring removed mblk_io_submit option [ 663.955863][T10760] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 663.966000][T10760] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 664.105585][T10758] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 664.230965][T10760] EXT4-fs (loop1): warning: checktime reached, running e2fsck is recommended [ 664.242133][T10758] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 664.311261][T10760] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a043c01c, mo2=0102] [ 664.411351][T10760] System zones: 0-2, 18-18, 34-34 [ 664.507983][T10760] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1132: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 664.675325][T10760] EXT4-fs (loop1): 1 truncate cleaned up [ 664.686339][T10760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 665.502837][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 666.063712][T10774] IPVS: set_ctl: invalid protocol: 46 172.20.20.187:20000 [ 666.384597][ T5797] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 666.400726][ T5797] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 666.411462][ T5797] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 666.481468][ T5797] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 666.501468][ T5797] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 667.918448][T10779] chnl_net:caif_netlink_parms(): no params data found [ 668.297081][T10805] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2035'. [ 668.560937][ T5805] Bluetooth: hci1: command tx timeout [ 669.030251][ T3521] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.312073][ T3521] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.486639][ T3521] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.691180][ T3521] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 669.699083][T10826] /dev/loop5: Can't open blockdev [ 669.791391][ T5848] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 669.983206][ T5848] usb 2-1: Using ep0 maxpacket: 32 [ 669.995676][T10779] bridge0: port 1(bridge_slave_0) entered blocking state [ 670.004486][T10779] bridge0: port 1(bridge_slave_0) entered disabled state [ 670.023947][T10779] bridge_slave_0: entered allmulticast mode [ 670.033583][T10779] bridge_slave_0: entered promiscuous mode [ 670.062853][ T5848] usb 2-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 670.079881][ T5848] usb 2-1: config 0 interface 0 has no altsetting 0 [ 670.086803][ T5848] usb 2-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00 [ 670.096340][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 670.182733][T10779] bridge0: port 2(bridge_slave_1) entered blocking state [ 670.190507][T10779] bridge0: port 2(bridge_slave_1) entered disabled state [ 670.202713][T10779] bridge_slave_1: entered allmulticast mode [ 670.212381][T10779] bridge_slave_1: entered promiscuous mode [ 670.238804][ T5848] usb 2-1: config 0 descriptor?? [ 670.494982][ T3521] bridge_slave_1: left allmulticast mode [ 670.501298][ T3521] bridge_slave_1: left promiscuous mode [ 670.508062][ T3521] bridge0: port 2(bridge_slave_1) entered disabled state [ 670.565728][ T3521] bridge_slave_0: left allmulticast mode [ 670.572714][ T3521] bridge_slave_0: left promiscuous mode [ 670.581695][ T3521] bridge0: port 1(bridge_slave_0) entered disabled state [ 670.606347][T10834] loop3: detected capacity change from 0 to 256 [ 670.638937][ T5805] Bluetooth: hci1: command tx timeout [ 670.700482][ T5848] asus 0003:0B05:17E0.0017: item fetching failed at offset 2/5 [ 670.772902][ T5848] asus 0003:0B05:17E0.0017: Asus hid parse failed: -22 [ 670.781018][ T5848] asus 0003:0B05:17E0.0017: probe with driver asus failed with error -22 [ 670.846002][T10834] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d) [ 670.943307][ T5848] usb 2-1: USB disconnect, device number 9 [ 671.181440][ T3521] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 671.218646][ T3521] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 671.234932][ T3521] bond0 (unregistering): Released all slaves [ 671.276345][T10779] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 671.308798][T10779] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 671.327669][ T45] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 671.564967][ T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 671.576501][ T45] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 671.586773][ T45] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 671.596203][ T45] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 671.675733][ T45] usb 5-1: config 0 descriptor?? [ 671.830875][T10779] team0: Port device team_slave_0 added [ 671.895963][T10779] team0: Port device team_slave_1 added [ 672.174486][ T45] pyra 0003:1E7D:2CF6.0018: unknown main item tag 0x0 [ 672.267958][ T45] pyra 0003:1E7D:2CF6.0018: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.4-1/input0 [ 672.351350][ T45] pyra 0003:1E7D:2CF6.0018: couldn't init struct pyra_device [ 672.359285][ T45] pyra 0003:1E7D:2CF6.0018: couldn't install mouse [ 672.402960][T10779] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 672.410340][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 672.415156][ T45] pyra 0003:1E7D:2CF6.0018: probe with driver pyra failed with error -71 [ 672.439724][T10779] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 672.548590][ T45] usb 5-1: USB disconnect, device number 13 [ 672.678558][ T3521] hsr_slave_0: left promiscuous mode [ 672.724571][ T5805] Bluetooth: hci1: command tx timeout [ 672.741895][ T3521] hsr_slave_1: left promiscuous mode [ 672.754898][ T3521] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 672.762951][ T3521] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 672.917962][ T3521] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 672.925866][ T3521] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 673.170917][ T3521] veth1_macvtap: left promiscuous mode [ 673.176682][ T3521] veth0_macvtap: left promiscuous mode [ 673.182985][ T3521] veth1_vlan: left promiscuous mode [ 673.189899][ T3521] veth0_vlan: left promiscuous mode [ 674.773044][ T3521] team0 (unregistering): Port device team_slave_1 removed [ 674.808321][ T5805] Bluetooth: hci1: command tx timeout [ 674.813219][ T3521] team0 (unregistering): Port device team_slave_0 removed [ 675.009294][T10869] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2062'. [ 675.298859][T10873] netlink: 'syz.3.2065': attribute type 1 has an invalid length. [ 675.306999][T10873] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 675.509734][T10779] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 675.516932][T10779] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 675.552707][T10779] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 676.086126][T10779] hsr_slave_0: entered promiscuous mode [ 676.099059][T10779] hsr_slave_1: entered promiscuous mode [ 676.107833][T10779] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 676.115698][T10779] Cannot create hsr debugfs directory [ 677.065022][T10891] loop1: detected capacity change from 0 to 512 [ 677.184445][T10891] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.2073: iget: bad extended attribute block 1 [ 677.275262][T10891] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.2073: couldn't read orphan inode 15 (err -117) [ 677.369896][T10891] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 677.521785][T10779] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 677.612462][T10779] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 677.665173][T10779] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 677.724372][T10779] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 677.737805][ T5795] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 677.754063][T10904] loop4: detected capacity change from 0 to 1024 [ 677.780012][T10904] EXT4-fs: Ignoring removed nomblk_io_submit option [ 677.870991][T10904] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 677.885009][ T45] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 678.023308][T10904] EXT4-fs error (device loop4): __ext4_remount:6738: comm syz.4.2079: Abort forced by user [ 678.071722][ T45] usb 4-1: Using ep0 maxpacket: 32 [ 678.106345][ T45] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 678.117734][ T45] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 678.127893][ T45] usb 4-1: New USB device found, idVendor=044f, idProduct=b653, bcdDevice= 0.00 [ 678.137374][ T45] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 678.152638][T10904] EXT4-fs (loop4): Remounting filesystem read-only [ 678.163091][T10904] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 678.234860][ T45] usb 4-1: config 0 descriptor?? [ 678.398292][T10779] 8021q: adding VLAN 0 to HW filter on device bond0 [ 678.580515][T10779] 8021q: adding VLAN 0 to HW filter on device team0 [ 678.686660][ T45] thrustmaster 0003:044F:B653.0019: unknown main item tag 0x0 [ 678.694530][ T45] thrustmaster 0003:044F:B653.0019: unknown main item tag 0x0 [ 678.713697][ T3734] bridge0: port 1(bridge_slave_0) entered blocking state [ 678.721343][ T3734] bridge0: port 1(bridge_slave_0) entered forwarding state [ 678.725509][ T45] thrustmaster 0003:044F:B653.0019: hidraw0: USB HID v0.04 Device [HID 044f:b653] on usb-dummy_hcd.3-1/input0 [ 678.742667][ T45] thrustmaster 0003:044F:B653.0019: no inputs found [ 678.780160][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 678.814117][ T3734] bridge0: port 2(bridge_slave_1) entered blocking state [ 678.821843][ T3734] bridge0: port 2(bridge_slave_1) entered forwarding state [ 678.931379][ T45] usb 4-1: USB disconnect, device number 12 [ 679.529913][ T5805] Bluetooth: hci5: unexpected event for opcode 0x0c0d [ 679.816086][T10928] netlink: 'syz.3.2088': attribute type 1 has an invalid length. [ 679.824317][T10928] NCSI netlink: No device for ifindex 0 [ 679.967505][T10931] loop1: detected capacity change from 0 to 256 [ 680.273687][T10936] loop4: detected capacity change from 0 to 512 [ 680.289789][T10936] EXT4-fs: Ignoring removed mblk_io_submit option [ 680.318021][T10936] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 680.331698][T10931] FAT-fs (loop1): Directory bread(block 64) failed [ 680.339148][T10931] FAT-fs (loop1): Directory bread(block 65) failed [ 680.346051][T10931] FAT-fs (loop1): Directory bread(block 66) failed [ 680.353158][T10931] FAT-fs (loop1): Directory bread(block 67) failed [ 680.361088][T10931] FAT-fs (loop1): Directory bread(block 68) failed [ 680.368227][T10931] FAT-fs (loop1): Directory bread(block 69) failed [ 680.375118][T10931] FAT-fs (loop1): Directory bread(block 70) failed [ 680.382048][T10931] FAT-fs (loop1): Directory bread(block 71) failed [ 680.389091][T10931] FAT-fs (loop1): Directory bread(block 72) failed [ 680.395891][T10931] FAT-fs (loop1): Directory bread(block 73) failed [ 680.537058][T10936] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2091: bg 0: block 393: padding at end of block bitmap is not set [ 680.678472][T10936] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem [ 680.734189][T10936] EXT4-fs (loop4): 2 truncates cleaned up [ 680.742706][T10936] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 681.216449][T10939] loop3: detected capacity change from 0 to 32768 [ 681.270718][T10939] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section downgrade: downgrade entry with mismatched major version (0 != 1) [ 681.270718][T10939] downgrade (size 2912): [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: [ 681.270718][T10939] errors: sb_clean_missing [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: initialize_subvolumes,snapshots_read [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: delete_dead_inodes [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: alloc_read,check_inodes,delete_dead_inodes,set_fs_needs_rebalance [ 681.270718][T10939] errors: (unknown error 512) [ 681.270718][T10939] version: 0.5: (unknown version) [ 681.270718][T10939] recovery passes: [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: fs_freespace_init,bucket_gens_init,check_inodes,delete_dead_inodes [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: (unknown version) [ 681.270718][T10939] recovery passes: [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.6: (unknown version) [ 681.270718][T10939] recovery passes: check_subvols [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.33: (unknown version) [ 681.270718][T10939] recovery passes: check_snapshots [ 681.270718][T10939] errors: [ 681.270718][T10939] version: 0.0: [ 681.271895][T10939] bcachefs: bch2_fs_get_tree() error: invalid_sb_downgrade [ 681.430096][ C1] vkms_vblank_simulate: vblank timer overrun [ 681.601499][T10779] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 681.837018][ T5806] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 681.984406][ T30] audit: type=1326 audit(1748021000.365:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.050402][ T30] audit: type=1326 audit(1748021000.435:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.122254][ T30] audit: type=1326 audit(1748021000.505:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.148606][ T30] audit: type=1326 audit(1748021000.505:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.171700][ T30] audit: type=1326 audit(1748021000.545:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.225127][T10947] loop1: detected capacity change from 0 to 1024 [ 682.269587][ T30] audit: type=1326 audit(1748021000.605:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.296159][ T30] audit: type=1326 audit(1748021000.605:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10944 comm="syz.5.2095" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f790018e969 code=0x7ffc0000 [ 682.352338][T10947] EXT4-fs: Ignoring removed bh option [ 682.381088][T10947] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869) [ 682.392230][T10947] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 682.432905][T10947] EXT4-fs error (device loop1): __ext4_iget:5025: inode #3: block 1803188595: comm syz.1.2094: invalid block [ 682.481713][T10947] EXT4-fs (loop1): no journal found [ 683.159642][T10964] netlink: 5 bytes leftover after parsing attributes in process `syz.5.2102'. [ 683.186060][T10964] gretap0: entered promiscuous mode [ 683.197736][T10964] netlink: 'syz.5.2102': attribute type 1 has an invalid length. [ 683.197813][T10964] netlink: 3 bytes leftover after parsing attributes in process `syz.5.2102'. [ 684.355483][T10779] veth0_vlan: entered promiscuous mode [ 684.431012][T10779] veth1_vlan: entered promiscuous mode [ 684.700178][T10779] veth0_macvtap: entered promiscuous mode [ 684.770882][T10779] veth1_macvtap: entered promiscuous mode [ 684.911421][T10779] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 685.012509][T10779] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 685.104631][T10779] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.113918][T10779] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.123258][T10779] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 685.132474][T10779] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 686.692276][T11010] gfs2: path_lookup on c::: returned error -2 [ 686.850845][T11003] loop1: detected capacity change from 0 to 4096 [ 687.175890][T11003] ntfs3(loop1): failed to convert "046c" to maccroatian [ 687.688794][T11024] loop4: detected capacity change from 0 to 64 [ 687.835440][T11026] tipc: Started in network mode [ 687.842971][T11026] tipc: Node identity aaaaaaaaaa3, cluster identity 4711 [ 687.851117][T11026] tipc: Enabled bearer , priority 1 [ 687.897531][ T30] audit: type=1326 audit(1748021006.275:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 687.923192][ T30] audit: type=1326 audit(1748021006.275:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 687.950898][ T30] audit: type=1326 audit(1748021006.295:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 687.978281][ T30] audit: type=1326 audit(1748021006.295:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 688.004279][ T30] audit: type=1326 audit(1748021006.295:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 688.265754][ T30] audit: type=1326 audit(1748021006.425:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 688.291757][ T30] audit: type=1326 audit(1748021006.425:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.1.2127" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa178b8e969 code=0x7ffc0000 [ 688.848184][ T5848] tipc: Node number set to 10136234 [ 689.630035][T11056] sp0: Synchronizing with TNC [ 690.647504][ T5805] Bluetooth: hci3: command 0x0406 tx timeout [ 690.757601][ T45] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 690.927548][ T45] usb 4-1: Using ep0 maxpacket: 8 [ 691.008153][ T45] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 691.017733][ T45] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 691.025975][ T45] usb 4-1: Product: syz [ 691.030611][ T45] usb 4-1: Manufacturer: syz [ 691.035448][ T45] usb 4-1: SerialNumber: syz [ 691.079370][ T45] usb 4-1: config 0 descriptor?? [ 691.103891][ T45] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 691.113923][ T45] usb 4-1: setting power ON [ 691.120085][ T45] dvb-usb: bulk message failed: -22 (2/0) [ 691.154068][ T45] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 691.166630][ T45] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 691.176817][ T45] usb 4-1: media controller created [ 691.234181][ T45] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 691.344991][T11070] dvb-usb: bulk message failed: -22 (3/0) [ 691.351238][T11070] ===================================================== [ 691.358827][T11070] BUG: KMSAN: uninit-value in cxusb_i2c_xfer+0x1303/0x18e0 [ 691.369741][T11070] cxusb_i2c_xfer+0x1303/0x18e0 [ 691.374850][T11070] __i2c_transfer+0xeca/0x30e0 [ 691.380058][T11070] i2c_transfer+0x300/0x4b0 [ 691.384764][T11070] i2cdev_ioctl_rdwr+0x7c2/0xc80 [ 691.390169][T11070] i2cdev_ioctl+0xc36/0xf40 [ 691.395037][T11070] __se_sys_ioctl+0x239/0x400 [ 691.400261][T11070] __x64_sys_ioctl+0x97/0xe0 [ 691.405061][T11070] x64_sys_call+0x1ebe/0x3db0 [ 691.410576][T11070] do_syscall_64+0xd9/0x1b0 [ 691.416171][T11070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.422664][T11070] [ 691.425039][T11070] Local variable i.i838 created at: [ 691.425076][T11070] cxusb_i2c_xfer+0x304/0x18e0 [ 691.435443][T11070] __i2c_transfer+0xeca/0x30e0 [ 691.440531][T11070] [ 691.442992][T11070] CPU: 1 UID: 0 PID: 11070 Comm: syz.3.2146 Not tainted 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(undef) [ 691.455512][T11070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 691.466392][T11070] ===================================================== [ 691.473601][T11070] Disabling lock debugging due to kernel taint [ 691.480063][T11070] Kernel panic - not syncing: kmsan.panic set ... [ 691.486633][T11070] CPU: 1 UID: 0 PID: 11070 Comm: syz.3.2146 Tainted: G B 6.15.0-rc7-syzkaller-00112-geccf6f2f6ab9 #0 PREEMPT(undef) [ 691.500585][T11070] Tainted: [B]=BAD_PAGE [ 691.504852][T11070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 691.515052][T11070] Call Trace: [ 691.518443][T11070] [ 691.521492][T11070] __dump_stack+0x26/0x30 [ 691.526060][T11070] dump_stack_lvl+0x53/0x270 [ 691.530834][T11070] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 691.536860][T11070] dump_stack+0x1e/0x25 [ 691.541175][T11070] panic+0x4bd/0xd50 [ 691.545316][T11070] kmsan_report+0x29d/0x2a0 [ 691.550031][T11070] ? vprintk_default+0x3f/0x50 [ 691.554987][T11070] ? __msan_warning+0x96/0x120 [ 691.559926][T11070] ? cxusb_i2c_xfer+0x1303/0x18e0 [ 691.565149][T11070] ? __i2c_transfer+0xeca/0x30e0 [ 691.570248][T11070] ? i2c_transfer+0x300/0x4b0 [ 691.575074][T11070] ? i2cdev_ioctl_rdwr+0x7c2/0xc80 [ 691.580344][T11070] ? i2cdev_ioctl+0xc36/0xf40 [ 691.585197][T11070] ? __se_sys_ioctl+0x239/0x400 [ 691.590224][T11070] ? __x64_sys_ioctl+0x97/0xe0 [ 691.595155][T11070] ? x64_sys_call+0x1ebe/0x3db0 [ 691.600202][T11070] ? do_syscall_64+0xd9/0x1b0 [ 691.605075][T11070] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.611312][T11070] ? kmsan_get_metadata+0x105/0x1b0 [ 691.616720][T11070] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 691.623272][T11070] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 691.629573][T11070] ? kmsan_get_metadata+0x105/0x1b0 [ 691.634995][T11070] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 691.641529][T11070] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 691.647808][T11070] ? mutex_unlock+0x29/0x50 [ 691.652527][T11070] ? kmsan_get_metadata+0x105/0x1b0 [ 691.657955][T11070] __msan_warning+0x96/0x120 [ 691.662734][T11070] cxusb_i2c_xfer+0x1303/0x18e0 [ 691.667848][T11070] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 691.674106][T11070] ? kmsan_get_metadata+0x105/0x1b0 [ 691.679519][T11070] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 691.685553][T11070] ? kmsan_get_metadata+0x105/0x1b0 [ 691.690970][T11070] ? __pfx_cxusb_i2c_xfer+0x10/0x10 [ 691.696371][T11070] ? __pfx_cxusb_i2c_xfer+0x10/0x10 [ 691.701761][T11070] __i2c_transfer+0xeca/0x30e0 [ 691.706701][T11070] ? kmsan_internal_set_shadow_origin+0x79/0x110 [ 691.713252][T11070] ? __pfx_i2c_adapter_lock_bus+0x10/0x10 [ 691.719185][T11070] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 691.725506][T11070] ? __pfx_i2c_adapter_lock_bus+0x10/0x10 [ 691.731423][T11070] i2c_transfer+0x300/0x4b0 [ 691.736094][T11070] i2cdev_ioctl_rdwr+0x7c2/0xc80 [ 691.741209][T11070] i2cdev_ioctl+0xc36/0xf40 [ 691.745885][T11070] ? __pfx_i2cdev_ioctl+0x10/0x10 [ 691.751069][T11070] __se_sys_ioctl+0x239/0x400 [ 691.756383][T11070] __x64_sys_ioctl+0x97/0xe0 [ 691.761181][T11070] x64_sys_call+0x1ebe/0x3db0 [ 691.766102][T11070] do_syscall_64+0xd9/0x1b0 [ 691.770836][T11070] ? irqentry_exit+0x16/0x60 [ 691.775612][T11070] ? clear_bhb_loop+0x40/0x90 [ 691.780470][T11070] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 691.786559][T11070] RIP: 0033:0x7f52a318e969 [ 691.791111][T11070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 691.810917][T11070] RSP: 002b:00007f52a4019038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 691.819506][T11070] RAX: ffffffffffffffda RBX: 00007f52a33b5fa0 RCX: 00007f52a318e969 [ 691.827625][T11070] RDX: 0000200000002580 RSI: 0000000000000707 RDI: 0000000000000004 [ 691.835757][T11070] RBP: 00007f52a3210ab1 R08: 0000000000000000 R09: 0000000000000000 [ 691.843873][T11070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 691.851998][T11070] R13: 0000000000000000 R14: 00007f52a33b5fa0 R15: 00007ffd0c5db0f8 [ 691.860134][T11070] [ 691.863589][T11070] Kernel Offset: disabled [ 691.867996][T11070] Rebooting in 86400 seconds..