last executing test programs: 4.498776645s ago: executing program 2 (id=7327): r0 = creat(&(0x7f0000000180)='./file0\x00', 0x0) close(r0) r1 = timerfd_create(0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000000c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 4.103465742s ago: executing program 3 (id=7329): r0 = syz_open_dev$sg(&(0x7f00000003c0), 0x0, 0x802) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000080)=0x2e9aa845) writev(r0, &(0x7f0000000140)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f426072a", 0x2a}], 0x1) ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, &(0x7f0000000000)) 4.047737982s ago: executing program 0 (id=7330): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f00000013c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYRESDEC, @ANYBLOB="2c73580a65730000000000db27410ebdc41f0d00"/34], 0x2, 0xc38, &(0x7f0000001500)="$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") getpid() r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 3.707637882s ago: executing program 3 (id=7332): r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'\x00', 0x52d35ce30131f272}) ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0x13) ioctl$TUNSETLINK(r0, 0x400454cd, 0x339) 3.51243055s ago: executing program 4 (id=7333): r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc) syz_usb_connect(0x0, 0x24, &(0x7f00000034c0)={{0x12, 0x1, 0x0, 0x43, 0xa3, 0xdd, 0x20, 0x18d1, 0x1eaf, 0x91c5, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xc4, 0xff, 0x16}}]}}]}}, 0x0) setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa"], 0x1c) 3.421416131s ago: executing program 0 (id=7334): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010100000000000000002b00000008000300", @ANYRES32=r2, @ANYBLOB="04004600040051800a003400020202020202000008002600990900000800270002"], 0x44}}, 0x0) 3.311914255s ago: executing program 2 (id=7335): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r1, &(0x7f0000001640), 0x300, 0x2, 0x0) sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)={0x14, r0, 0xfaac4106a1b87a7, 0x0, 0x0, {0xb}}, 0x14}}, 0x0) 3.150352528s ago: executing program 3 (id=7337): openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_version\x00', 0x2, 0x0) r0 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0}) io_uring_enter(r0, 0x7a98, 0x0, 0x0, 0x0, 0x0) 2.919954383s ago: executing program 0 (id=7338): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000700), r0) sendmsg$NFC_CMD_LLC_SDREQ(r1, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000a40)={0x20, r2, 0x111, 0x0, 0x0, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_LLC_SDP={0x4}]}, 0x20}}, 0x0) 2.63274116s ago: executing program 3 (id=7340): r0 = syz_io_uring_setup(0xec5, &(0x7f00000008c0), &(0x7f0000000080), &(0x7f0000000340)) io_uring_enter(r0, 0x0, 0x10a5, 0x3, 0x0, 0x0) io_uring_enter(r0, 0x47fa, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x13, &(0x7f0000000140), 0x2) 2.606229775s ago: executing program 2 (id=7341): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newqdisc={0x24, 0x25, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xe, 0xffff}}}, 0x24}}, 0x0) 2.367905342s ago: executing program 0 (id=7342): io_setup(0x9, &(0x7f0000000b80)=0x0) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]}) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0) io_submit(r0, 0x1, &(0x7f00000002c0)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}]) 2.355934606s ago: executing program 1 (id=7352): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000380)=0x3, 0x4) bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c) syz_emit_ethernet(0x3e, &(0x7f0000000500)={@link_local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x8, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0xe22, 0x8}}}}}}, 0x0) 2.124765648s ago: executing program 2 (id=7343): r0 = socket$kcm(0x2, 0x200000000000001, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x5452, &(0x7f00000006c0)) sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x30004081) sendmsg$kcm(r0, &(0x7f0000001f40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001c80)=[{0x10}], 0x10}, 0x0) 2.035279654s ago: executing program 1 (id=7344): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580), 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000000)={0x0, 0x0}}, 0x10) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000a40)={r1, 0x0, 0x10}, 0xc) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r2}, 0x38) 1.815814326s ago: executing program 1 (id=7345): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000080)='blkio.throttle.write_bps_device\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f00000000c0)=ANY=[], 0x31) 1.794735226s ago: executing program 4 (id=7346): r0 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'vlan1\x00', 0x0}) setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r0, &(0x7f0000000780)="3f030300031b12000000000789e9aaa911d7c2ff070088a800008100642c", 0x1e, 0x0, &(0x7f00000000c0)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="ff9900000300"}, 0x14) 1.486288343s ago: executing program 1 (id=7347): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x11, 0x80a, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_FAIL_OVER_MAC={0x5}]}}}]}, 0x3c}}, 0x0) 1.419274682s ago: executing program 4 (id=7348): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000004c0)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010100000000000000002b00000008000300", @ANYRES32=r2, @ANYBLOB="04004600040051800a003400020202020202000008002600990900000800270002"], 0x44}}, 0x0) 1.348655156s ago: executing program 3 (id=7349): syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f0000003080)=ANY=[@ANYRES32=0x0, @ANYRES32, @ANYRESOCT], 0x1, 0x60b, &(0x7f0000002080)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0) write$cgroup_int(r0, &(0x7f0000000380), 0x101bf) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0) 971.557956ms ago: executing program 4 (id=7350): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0xd1, &(0x7f0000000040)=0xfff, 0x4) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, 0x0) 938.829484ms ago: executing program 0 (id=7351): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000980)={&(0x7f00000004c0)={0x50, r1, 0x1, 0x0, 0x0, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'nicvf0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x7}, @NL80211_ATTR_MESH_ID={0xa}]}, 0x50}}, 0x0) 879.339333ms ago: executing program 1 (id=7353): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/route\x00') preadv(r0, &(0x7f00000011c0)=[{&(0x7f0000000100)=""/4096, 0x1000}], 0x1, 0xfff, 0x0) r1 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x103382) ioctl$LOOP_SET_STATUS(r1, 0x1277, &(0x7f0000000200)={0x0, {}, 0x0, {}, 0x5, 0x0, 0x40, 0x0, "4b8b3ea46929dfed0b2f34380d308f95a023d009852471dd5a94a9fe9549918ae7fd1f0ece5b861375b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f", "23639aabe426e78edc0000008000000000fb80c92dc817d44dcdec00"}) 831.238367ms ago: executing program 2 (id=7354): r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge_slave_0\x00', 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=@bridge_delneigh={0x30, 0x1c, 0x803, 0x0, 0x0, {0x7, 0x0, 0x0, r1}, [@NDA_VLAN={0x6}, @NDA_LLADDR={0xa, 0x2, @random="000200"}]}, 0x30}}, 0x0) 621.923985ms ago: executing program 4 (id=7355): r0 = syz_open_dev$dri(&(0x7f0000000a80), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f0000000340)={0x0, &(0x7f0000000280)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCRTC(r0, 0xc06864a1, &(0x7f0000000400)={0x0, 0x0, r1, 0x0}) ioctl$DRM_IOCTL_MODE_DIRTYFB(r0, 0xc01864b1, &(0x7f0000000140)={r2, 0x0, 0x0, 0x0, &(0x7f0000000200)}) 576.025232ms ago: executing program 3 (id=7356): r0 = epoll_create1(0x0) r1 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)) epoll_pwait(r0, &(0x7f00000000c0)=[{}], 0x1, 0x0, 0x0, 0x0) 347.064461ms ago: executing program 2 (id=7357): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000580), 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r0, 0x58, &(0x7f0000000000)={0x0, 0x0}}, 0x10) r2 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000a40)={r1, 0x0, 0x10}, 0xc) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, r2}, 0x38) 337.204601ms ago: executing program 1 (id=7367): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) ioctl$TIOCSERGETLSR(r0, 0x5459, 0x0) 198.88891ms ago: executing program 0 (id=7358): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) ioctl$VT_GETMODE(r1, 0x4b64, &(0x7f0000000080)) 0s ago: executing program 4 (id=7359): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) listen(r0, 0x0) syz_emit_ethernet(0x4a, &(0x7f00000000c0)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @ipv4={'\x00', '\xff\xff', @private}, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0x10}}}}}}}, 0x0) kernel console output (not intermixed with test programs): e found, idVendor=05e1, idProduct=0408, bcdDevice=25.11 [ 1489.119397][ T8587] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1489.129464][ T8587] usb 4-1: Product: syz [ 1489.134360][ T8587] usb 4-1: Manufacturer: syz [ 1489.139188][ T8587] usb 4-1: SerialNumber: syz [ 1489.207419][ T8587] usb 4-1: config 0 descriptor?? [ 1489.247204][ T8587] usb 4-1: no audio or video endpoints found [ 1489.499500][ T5257] cp210x 1-1:0.0: failed to get vendor val 0x0010 size 3: -71 [ 1489.536860][ T5257] cp210x 1-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 1489.545594][ T5257] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 1489.594527][ T5257] usb 1-1: cp210x converter now attached to ttyUSB0 [ 1489.637265][ T5257] usb 1-1: USB disconnect, device number 64 [ 1489.776826][ T8587] usb 4-1: USB disconnect, device number 74 [ 1489.784293][ T5257] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1489.798522][ T5257] cp210x 1-1:0.0: device disconnected [ 1489.837399][T19029] loop2: detected capacity change from 0 to 256 [ 1489.850928][T19030] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5883'. [ 1491.518234][T19053] loop2: detected capacity change from 0 to 764 [ 1491.598849][T19053] rock: directory entry would overflow storage [ 1491.605744][T19053] rock: sig=0x4654, size=5, remaining=4 [ 1491.724170][ T8587] usb 2-1: new high-speed USB device number 55 using dummy_hcd [ 1491.793301][T18428] udevd[18428]: symlink '../../loop2' '/dev/disk/by-label/CDROM.tmp-b7:2' failed: Read-only file system [ 1491.869489][T18428] udevd[18428]: symlink '../../loop2' '/dev/disk/by-uuid/2022-11-22-16-59-57-00.tmp-b7:2' failed: Read-only file system [ 1491.954561][ T8587] usb 2-1: Using ep0 maxpacket: 32 [ 1491.980031][ T8587] usb 2-1: config 0 has an invalid interface number: 224 but max is 0 [ 1491.988958][ T8587] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1491.999534][ T8587] usb 2-1: config 0 has no interface number 0 [ 1492.006735][ T8587] usb 2-1: config 0 interface 224 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1492.022020][ T8587] usb 2-1: Dual-Role OTG device on HNP port [ 1492.061745][ T8587] usb 2-1: New USB device found, idVendor=1a0a, idProduct=0108, bcdDevice=4c.b4 [ 1492.071301][ T8587] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1492.157289][ T29] audit: type=1326 audit(1724610327.953:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19055 comm="syz.4.5906" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f07579 code=0x0 [ 1492.173570][ T8587] usb 2-1: config 0 descriptor?? [ 1492.539536][ T8587] usb 2-1: string descriptor 0 read error: -71 [ 1492.590178][ T8587] usb_ehset_test 2-1:0.224: probe with driver usb_ehset_test failed with error -32 [ 1492.638270][ T8587] usb 2-1: USB disconnect, device number 55 [ 1492.890173][T19064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5897'. [ 1494.693156][T10343] usb 5-1: new full-speed USB device number 51 using dummy_hcd [ 1494.958565][T10343] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1494.969379][T10343] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 1494.981436][T10343] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10 [ 1494.993013][T10343] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1495.003205][T10343] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 1495.109254][T10343] usb 5-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 1495.123168][T10343] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 1495.132979][T10343] usb 5-1: Product: syz [ 1495.137728][T10343] usb 5-1: Manufacturer: syz [ 1495.142575][T10343] usb 5-1: SerialNumber: syz [ 1495.197093][T10343] usb 5-1: config 0 descriptor?? [ 1495.404912][T19096] CUSE: DEVNAME unspecified [ 1495.581010][T10343] radio-si470x 5-1:0.0: DeviceID=0x6465 ChipID=0x7669 [ 1495.788893][T10343] radio-si470x 5-1:0.0: software version 100, hardware version 101 [ 1495.993230][T10343] radio-si470x 5-1:0.0: si470x_set_report: usb_control_msg returned -71 [ 1496.002207][T10343] radio-si470x 5-1:0.0: submitting int urb failed (-90) [ 1496.087971][T10343] radio-si470x 5-1:0.0: si470x_set_report: usb_control_msg returned -71 [ 1496.098714][T10343] radio-si470x 5-1:0.0: probe with driver radio-si470x failed with error -22 [ 1496.170676][T10343] usb 5-1: USB disconnect, device number 51 [ 1499.622746][T19143] loop4: detected capacity change from 0 to 256 [ 1499.647127][T19143] exfat: Unknown parameter 'Gĝ)zdx' [ 1500.501026][T19152] mkiss: ax0: crc mode is auto. [ 1501.926182][T19157] loop2: detected capacity change from 0 to 4096 [ 1501.983947][T19157] EXT4-fs: Ignoring removed oldalloc option [ 1502.032868][T19157] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1502.215662][T19157] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1502.268499][T15007] udevd[15007]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1502.425297][T19175] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5951'. [ 1502.610584][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1502.927911][T15007] udevd[15007]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1503.182905][T19181] netlink: 32 bytes leftover after parsing attributes in process `syz.0.5954'. [ 1503.332883][T19187] loop4: detected capacity change from 0 to 256 [ 1503.990388][T19194] loop2: detected capacity change from 0 to 256 [ 1504.041425][T19196] loop3: detected capacity change from 0 to 64 [ 1504.176901][ T25] usb 2-1: new low-speed USB device number 56 using dummy_hcd [ 1504.488411][ T25] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 1504.496612][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1504.507140][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1504.517449][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1504.539348][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1504.545951][T15555] udevd[15555]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1504.612489][ T25] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 1504.620576][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1504.631705][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1504.644955][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1504.657419][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1504.736283][ T25] usb 2-1: config 168 descriptor has 1 excess byte, ignoring [ 1504.747515][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 is Bulk; changing to Interrupt [ 1504.758749][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1504.769461][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 1504.781186][ T25] usb 2-1: config 168 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 1504.914857][ T25] usb 2-1: string descriptor 0 read error: -22 [ 1504.921733][ T25] usb 2-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e [ 1504.931238][ T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1505.111780][ T25] adutux 2-1:168.0: ADU100 now attached to /dev/usb/adutux0 [ 1505.331923][ T4482] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1505.487693][ T8587] usb 2-1: USB disconnect, device number 56 [ 1505.566850][ T4482] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1505.678447][T19206] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5965'. [ 1505.790677][ T4482] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1505.943601][ T4482] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1506.235734][ T4482] team0: left allmulticast mode [ 1506.240976][ T4482] team_slave_0: left allmulticast mode [ 1506.247737][ T4482] team_slave_1: left allmulticast mode [ 1506.253456][ T4482] team0: left promiscuous mode [ 1506.258899][ T4482] team_slave_0: left promiscuous mode [ 1506.265395][ T4482] team_slave_1: left promiscuous mode [ 1506.272517][ T4482] bridge0: port 3(team0) entered disabled state [ 1506.354953][ T4482] bridge_slave_1: left allmulticast mode [ 1506.360871][ T4482] bridge_slave_1: left promiscuous mode [ 1506.367767][ T4482] bridge0: port 2(bridge_slave_1) entered disabled state [ 1506.418349][ T4482] bridge_slave_0: left allmulticast mode [ 1506.424538][ T4482] bridge_slave_0: left promiscuous mode [ 1506.431119][ T4482] bridge0: port 1(bridge_slave_0) entered disabled state [ 1507.101255][ T4482] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1507.150958][ T4482] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1507.167279][ T4482] bond0 (unregistering): Released all slaves [ 1507.362118][ T4482] 0: left promiscuous mode [ 1507.438204][ T4482] tipc: Disabling bearer [ 1507.444280][ T4482] tipc: Left network mode [ 1507.656063][ T4482] IPVS: stopping backup sync thread 16813 ... [ 1508.541977][T17732] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1508.556519][T17732] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1508.571964][ T4482] hsr_slave_0: left promiscuous mode [ 1508.595099][T17732] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1508.638889][T17732] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1508.659470][T17732] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1508.659811][T19230] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1508.695842][T17732] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1508.720505][ T4482] hsr_slave_1: left promiscuous mode [ 1508.783967][ T4482] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1508.791789][ T4482] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1508.930601][ T4482] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1508.945461][ T4482] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1508.964848][ T8587] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1508.972655][ T8587] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1508.980792][ T8587] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1508.988683][ T8587] rtc_cmos 00:00: Alarms can be up to one day in the future [ 1508.997089][ T8587] rtc rtc0: __rtc_set_alarm: err=-22 [ 1509.076907][ T4482] veth1_macvtap: left promiscuous mode [ 1509.082694][ T4482] veth0_macvtap: left promiscuous mode [ 1509.089046][ T4482] veth1_vlan: left promiscuous mode [ 1509.094881][ T4482] veth0_vlan: left promiscuous mode [ 1509.323315][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1509.330677][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1509.412335][T19242] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5982'. [ 1510.061570][ T4482] veth1_virt_wifi (unregistering): left allmulticast mode [ 1510.327300][ T4482] team0 (unregistering): Port device team_slave_1 removed [ 1510.365906][ T4482] team0 (unregistering): Port device team_slave_0 removed [ 1510.929398][T17732] Bluetooth: hci1: command tx timeout [ 1511.633131][ T4482] IPVS: stop unused estimator thread 0... [ 1511.983688][T19268] syz_tun: entered promiscuous mode [ 1512.095077][T19268] syz_tun: left promiscuous mode [ 1512.270565][T19231] chnl_net:caif_netlink_parms(): no params data found [ 1512.757177][T19276] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5993'. [ 1512.975248][T17732] Bluetooth: hci1: command tx timeout [ 1513.050330][T19280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5992'. [ 1513.158788][T19283] loop4: detected capacity change from 0 to 512 [ 1513.438436][T19283] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 1513.456463][T19283] ext4 filesystem being mounted at /283/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1513.732965][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1513.799676][T19294] loop2: detected capacity change from 0 to 256 [ 1513.802036][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-uuid/00000000-0000-0000-0000-000000d40000.tmp-b7:4' failed: Read-only file system [ 1513.866471][T19294] exfat: Unknown parameter 'Gĝ)zdx' [ 1514.003133][T15893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 1514.434626][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1514.523361][T19231] bridge0: port 1(bridge_slave_0) entered blocking state [ 1514.531305][T19231] bridge0: port 1(bridge_slave_0) entered disabled state [ 1514.539386][T19231] bridge_slave_0: entered allmulticast mode [ 1514.548819][T19231] bridge_slave_0: entered promiscuous mode [ 1514.701318][T19231] bridge0: port 2(bridge_slave_1) entered blocking state [ 1514.709440][T19231] bridge0: port 2(bridge_slave_1) entered disabled state [ 1514.717510][T19231] bridge_slave_1: entered allmulticast mode [ 1514.726953][T19231] bridge_slave_1: entered promiscuous mode [ 1514.998482][T19306] loop2: detected capacity change from 0 to 128 [ 1515.042986][T19231] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1515.054362][T17732] Bluetooth: hci1: command tx timeout [ 1515.135203][ T5256] usb 5-1: new high-speed USB device number 52 using dummy_hcd [ 1515.165918][T19231] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1515.338203][T15007] udevd[15007]: symlink '../../loop2' '/dev/disk/by-uuid/8AF2-7630.tmp-b7:2' failed: Read-only file system [ 1515.421213][ T5256] usb 5-1: Using ep0 maxpacket: 8 [ 1515.480451][ T5256] usb 5-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 1515.490189][ T5256] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1515.502843][ T5256] usb 5-1: Product: syz [ 1515.508728][ T5256] usb 5-1: Manufacturer: syz [ 1515.513602][ T5256] usb 5-1: SerialNumber: syz [ 1515.562973][ T5256] usb 5-1: config 0 descriptor?? [ 1515.590957][ T5256] gspca_main: sq930x-2.14.0 probing 2770:930c [ 1515.615863][T19231] team0: Port device team_slave_0 added [ 1515.716965][T19231] team0: Port device team_slave_1 added [ 1515.860876][T19312] syz_tun: entered promiscuous mode [ 1515.935409][T19312] syz_tun: left promiscuous mode [ 1516.215254][T19231] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1516.222454][T19231] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1516.251922][T19231] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1516.400111][T19231] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1516.409207][T19231] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1516.444957][T19231] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1516.676646][ T5256] gspca_sq930x: ucbus_write failed -71 [ 1516.914599][ T5256] gspca_sq930x: Sensor ov9630 not yet treated [ 1516.921206][ T5256] sq930x 5-1:0.0: probe with driver sq930x failed with error -22 [ 1516.971902][T19231] hsr_slave_0: entered promiscuous mode [ 1516.995893][ T5256] usb 5-1: USB disconnect, device number 52 [ 1517.026514][T19231] hsr_slave_1: entered promiscuous mode [ 1517.126395][T17732] Bluetooth: hci1: command tx timeout [ 1517.199676][T19231] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1517.207786][T19231] Cannot create hsr debugfs directory [ 1517.385956][T19324] loop2: detected capacity change from 0 to 1764 [ 1517.421635][T19324] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1517.432005][T19324] ISOFS: unable to read i-node block [ 1517.442250][T19324] isofs_fill_super: get root inode failed [ 1518.016527][T19330] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6007'. [ 1518.058962][ T5256] usb 2-1: new high-speed USB device number 57 using dummy_hcd [ 1518.284407][ T5256] usb 2-1: Using ep0 maxpacket: 8 [ 1518.321073][ T5256] usb 2-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 1518.330882][ T5256] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1518.339429][ T5256] usb 2-1: Product: syz [ 1518.343908][ T5256] usb 2-1: Manufacturer: syz [ 1518.348737][ T5256] usb 2-1: SerialNumber: syz [ 1518.415903][ T5256] usb 2-1: config 0 descriptor?? [ 1518.505255][ T5256] gspca_main: sq930x-2.14.0 probing 2770:930c [ 1519.368697][ T5256] gspca_sq930x: ucbus_write failed -71 [ 1519.634295][ T5256] gspca_sq930x: Sensor ov9630 not yet treated [ 1519.640978][ T5256] sq930x 2-1:0.0: probe with driver sq930x failed with error -22 [ 1519.734520][ T5256] usb 2-1: USB disconnect, device number 57 [ 1519.928975][T19231] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 1519.943094][T19345] loop2: detected capacity change from 0 to 16 [ 1520.035648][T19345] erofs: (device loop2): mounted with root inode @ nid 36. [ 1520.049947][T19231] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 1520.175387][T19231] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 1520.295594][T19231] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 1520.320895][T15007] udevd[15007]: symlink '../../loop2' '/dev/disk/by-uuid/de08ee7d-c14c-4657-8f5d-a5ca07e02e09.tmp-b7:2' failed: Read-only file system [ 1520.701172][T19353] syz_tun: entered promiscuous mode [ 1520.852885][T19353] syz_tun: left promiscuous mode [ 1521.966559][T19367] netlink: 'syz.1.6022': attribute type 2 has an invalid length. [ 1522.113580][T19231] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1522.342432][T19231] 8021q: adding VLAN 0 to HW filter on device team0 [ 1522.481710][T19226] bridge0: port 1(bridge_slave_0) entered blocking state [ 1522.489477][T19226] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1522.619420][T19226] bridge0: port 2(bridge_slave_1) entered blocking state [ 1522.627212][T19226] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1525.188193][T19231] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1525.303699][T19411] loop2: detected capacity change from 0 to 256 [ 1525.544368][T19411] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1525.686968][T19411] autofs: Unknown parameter 'errors' [ 1525.791718][T19231] veth0_vlan: entered promiscuous mode [ 1525.930245][T19231] veth1_vlan: entered promiscuous mode [ 1526.563400][T19231] veth0_macvtap: entered promiscuous mode [ 1526.661142][T19231] veth1_macvtap: entered promiscuous mode [ 1526.869786][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1526.882387][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1526.893471][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1526.904348][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1526.914533][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1526.925328][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1526.935478][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1526.946629][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1526.970520][T19231] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1527.309550][T19430] loop4: detected capacity change from 0 to 1024 [ 1527.337801][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1527.348785][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1527.360071][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1527.376837][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1527.388607][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1527.399510][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1527.409722][T19231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1527.420496][T19231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1527.435673][T19231] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1527.790048][T15007] udevd[15007]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system [ 1527.871191][T19231] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1527.880600][T19231] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1527.896004][T19231] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1527.906886][T19231] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1528.302202][ T4624] udevd[4624]: worker [15007] terminated by signal 33 (Unknown signal 33) [ 1528.364027][ T4624] udevd[4624]: worker [15007] failed while handling '/devices/virtual/block/loop4' [ 1529.385243][T19459] batadv_slave_0: default FDB implementation only supports local addresses [ 1531.874020][ T5256] usb 1-1: new high-speed USB device number 65 using dummy_hcd [ 1532.172539][ T5256] usb 1-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 1532.186831][ T5256] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1532.196548][ T5256] usb 1-1: Product: syz [ 1532.200973][ T5256] usb 1-1: Manufacturer: syz [ 1532.206056][ T5256] usb 1-1: SerialNumber: syz [ 1532.253702][ T5256] usb 1-1: config 0 descriptor?? [ 1532.572525][ T8587] usb 1-1: USB disconnect, device number 65 [ 1534.375572][ T4482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1534.383654][ T4482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1534.616566][T19526] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 1534.685572][ T4482] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1534.693976][ T4482] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1535.045503][ T29] audit: type=1107 audit(1724610370.855:57): pid=19531 uid=0 auid=0 ses=4 subj=unconfined msg='' [ 1535.419840][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1535.690667][T19542] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5971'. [ 1535.731974][T19542] netlink: 173 bytes leftover after parsing attributes in process `syz.3.5971'. [ 1536.115088][T19544] loop4: detected capacity change from 0 to 1764 [ 1536.198668][T19544] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1536.209623][T19544] ISOFS: unable to read i-node block [ 1536.215278][T19544] isofs_fill_super: get root inode failed [ 1536.736939][T19555] netlink: 'syz.0.6078': attribute type 5 has an invalid length. [ 1536.745437][T19555] netlink: 'syz.0.6078': attribute type 5 has an invalid length. [ 1536.753387][T19555] netlink: 'syz.0.6078': attribute type 2 has an invalid length. [ 1536.761660][T19555] netlink: 'syz.0.6078': attribute type 8 has an invalid length. [ 1536.769696][T19555] netlink: 'syz.0.6078': attribute type 1 has an invalid length. [ 1536.777882][T19555] netlink: 'syz.0.6078': attribute type 1 has an invalid length. [ 1537.332558][T19561] vxcan1: tx address claim with dest, not broadcast [ 1537.855331][T19569] batadv_slave_0: default FDB implementation only supports local addresses [ 1539.693242][T19589] loop3: detected capacity change from 0 to 1764 [ 1539.753708][T19589] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1539.772558][T19589] ISOFS: unable to read i-node block [ 1539.780546][T19589] isofs_fill_super: get root inode failed [ 1540.848861][T19597] loop4: detected capacity change from 0 to 4096 [ 1541.052666][T19597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1541.221778][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1541.365512][T15893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1541.690187][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1542.039309][T19622] loop4: detected capacity change from 0 to 256 [ 1542.189031][T19622] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1542.200517][T19622] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 1542.399926][T19622] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1543.081834][T19640] loop2: detected capacity change from 0 to 64 [ 1543.904761][T19647] netlink: 'syz.4.6121': attribute type 5 has an invalid length. [ 1543.912763][T19647] netlink: 'syz.4.6121': attribute type 5 has an invalid length. [ 1543.920924][T19647] netlink: 'syz.4.6121': attribute type 2 has an invalid length. [ 1543.929079][T19647] netlink: 'syz.4.6121': attribute type 8 has an invalid length. [ 1543.937270][T19647] netlink: 'syz.4.6121': attribute type 1 has an invalid length. [ 1543.945483][T19647] netlink: 'syz.4.6121': attribute type 1 has an invalid length. [ 1544.448946][T19652] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6133'. [ 1544.857314][T19659] loop4: detected capacity change from 0 to 1024 [ 1545.404935][ T4043] hfsplus: b-tree write err: -5, ino 4 [ 1545.545258][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system [ 1545.630570][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/3de3d207-fc4e-3c3b-aa08-7cb07cd064ab.tmp-b7:4' failed: Read-only file system [ 1546.182752][T19680] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6135'. [ 1546.216026][T19681] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 1546.985757][T19693] vxcan1: tx address claim with dest, not broadcast [ 1547.433566][T19700] loop2: detected capacity change from 0 to 128 [ 1548.177238][ T29] audit: type=1107 audit(1724610384.035:58): pid=19704 uid=0 auid=0 ses=5 subj=unconfined msg='' [ 1548.836681][T19718] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6153'. [ 1548.894837][T19718] netlink: 173 bytes leftover after parsing attributes in process `syz.4.6153'. [ 1549.569002][T19730] vxcan1: tx address claim with dest, not broadcast [ 1550.049111][T19735] loop2: detected capacity change from 0 to 512 [ 1550.088371][T19735] EXT4-fs: Ignoring removed mblk_io_submit option [ 1550.132499][T19735] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 1550.137022][T19740] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6164'. [ 1550.328002][T19735] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b056c118, mo2=0002] [ 1550.360418][T19735] System zones: 1-12 [ 1550.430075][T19735] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.6161: corrupted in-inode xattr: e_value size too large [ 1550.437895][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/\x86\x5b.tmp-b7:2' failed: Read-only file system [ 1550.545862][T19735] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.6161: couldn't read orphan inode 15 (err -117) [ 1550.620177][T19735] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1551.105158][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1553.061698][T19768] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6177'. [ 1553.189291][T19772] loop3: detected capacity change from 0 to 512 [ 1553.238112][T19772] EXT4-fs: Ignoring removed mblk_io_submit option [ 1553.285907][T19772] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 1553.420955][T19772] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b056c118, mo2=0002] [ 1553.492645][T19772] System zones: 1-12 [ 1553.521879][T19772] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.6179: corrupted in-inode xattr: e_value size too large [ 1553.576245][T19780] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6181'. [ 1553.592173][T19772] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.6179: couldn't read orphan inode 15 (err -117) [ 1553.652495][T19772] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1553.717625][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/\x86\x5b.tmp-b7:3' failed: Read-only file system [ 1553.954943][T17732] Bluetooth: hci2: unexpected event for opcode 0x200a [ 1554.051838][T19231] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1555.051124][T19799] loop2: detected capacity change from 0 to 1024 [ 1555.291119][T19801] loop4: detected capacity change from 0 to 512 [ 1555.341894][T19801] ext4: Unknown parameter 'obj_type' [ 1555.362663][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system [ 1555.495361][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-uuid/3de3d207-fc4e-3c3b-aa08-7cb07cd064ab.tmp-b7:2' failed: Read-only file system [ 1555.563971][ T34] hfsplus: b-tree write err: -5, ino 4 [ 1556.527234][T19815] loop4: detected capacity change from 0 to 512 [ 1556.559438][T19815] EXT4-fs: Ignoring removed mblk_io_submit option [ 1556.589990][T19815] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 1556.698455][T19815] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b056c118, mo2=0002] [ 1556.707684][T19815] System zones: 1-12 [ 1556.720628][T19815] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.6196: corrupted in-inode xattr: e_value size too large [ 1556.737929][T19815] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.6196: couldn't read orphan inode 15 (err -117) [ 1556.808519][T19819] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6198'. [ 1556.875949][T19815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1557.001069][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-label/\x86\x5b.tmp-b7:4' failed: Read-only file system [ 1557.406608][T15893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1557.662256][T19828] loop2: detected capacity change from 0 to 1024 [ 1557.887780][T19828] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1558.036022][T19828] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #14: comm syz.2.6214: attempt to clear invalid blocks 1886221359 len 1 [ 1558.043227][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1558.129309][T19828] EXT4-fs (loop2): Remounting filesystem read-only [ 1558.318101][T19841] loop3: detected capacity change from 0 to 64 [ 1558.358101][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1558.609669][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1558.742281][T15129] udevd[15129]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1559.023320][T19845] netlink: 52 bytes leftover after parsing attributes in process `syz.2.6208'. [ 1560.105431][T19863] loop3: detected capacity change from 0 to 256 [ 1560.215143][T19862] nicvf0: tun_chr_ioctl cmd 35111 [ 1560.228888][T19863] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 1561.395649][T19875] netlink: 44 bytes leftover after parsing attributes in process `syz.4.6225'. [ 1561.417481][T19877] netlink: 268 bytes leftover after parsing attributes in process `syz.3.6224'. [ 1562.271535][T19891] loop3: detected capacity change from 0 to 512 [ 1562.362586][T19891] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1562.474695][T19891] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 1562.486018][T19891] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1562.503534][T19891] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.6230: Failed to acquire dquot type 1 [ 1562.532797][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1562.665919][T19891] EXT4-fs (loop3): 1 truncate cleaned up [ 1562.744779][T19891] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1562.873144][T19891] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 1562.941901][T19891] EXT4-fs warning (device loop3): read_mmp_block:115: Error -117 while reading MMP block 8 [ 1563.000726][T19899] netlink: 'syz.4.6235': attribute type 21 has an invalid length. [ 1563.016014][T19899] netlink: 'syz.4.6235': attribute type 20 has an invalid length. [ 1563.026686][T19899] IPv6: NLM_F_CREATE should be specified when creating new route [ 1563.196466][T19231] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1563.349270][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1563.815436][T18480] usb 3-1: new high-speed USB device number 70 using dummy_hcd [ 1564.094525][T18480] usb 3-1: Using ep0 maxpacket: 16 [ 1564.126798][T18480] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1564.139824][T18480] usb 3-1: config 0 has no interfaces? [ 1564.146487][T18480] usb 3-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 1564.155947][T18480] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1564.246718][T18480] usb 3-1: config 0 descriptor?? [ 1564.494359][T18480] usb 3-1: USB disconnect, device number 70 [ 1565.011253][T19924] netlink: 'syz.3.6247': attribute type 7 has an invalid length. [ 1565.019770][T19924] netlink: 15 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1565.029217][T19924] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1565.038564][T19924] netlink: 872 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1565.048131][T19924] netlink: 'syz.3.6247': attribute type 7 has an invalid length. [ 1565.059304][T19924] netlink: 15 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1565.945376][T19936] overlayfs: "xino=on" is useless with all layers on same fs, ignore. [ 1565.955611][ T29] audit: type=1326 audit(1724610401.835:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19934 comm="syz.1.6252" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x0 [ 1566.585977][T19944] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6256'. [ 1566.871666][T19948] loop3: detected capacity change from 0 to 256 [ 1567.294804][T19952] loop2: detected capacity change from 0 to 1024 [ 1567.475664][T19952] hfsplus: bad catalog entry type [ 1567.514944][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/untitled.tmp-b7:2' failed: Read-only file system [ 1567.562913][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-uuid/4da50ae9-7d30-3220-a998-cec1f675fd4a.tmp-b7:2' failed: Read-only file system [ 1567.795671][ T4240] hfsplus: b-tree write err: -5, ino 4 [ 1568.722569][T19970] loop4: detected capacity change from 0 to 256 [ 1568.768475][T19970] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1569.137634][T19972] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1569.344129][T19972] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1569.634856][T19972] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1569.929649][T19972] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1570.455541][T19972] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1570.524309][T19972] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1570.551184][T19972] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1570.578184][T19972] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1570.779173][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1570.786557][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1570.838228][T19992] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6279'. [ 1571.352102][ T29] audit: type=1326 audit(1724610407.225:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19996 comm="syz.1.6281" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f03579 code=0x0 [ 1571.458436][T20001] dvmrp0: left allmulticast mode [ 1571.464944][T20001] veth1_virt_wifi: left allmulticast mode [ 1572.358471][T20012] netem: incorrect ge model size [ 1572.364244][T20012] netem: change failed [ 1572.508165][T20019] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6289'. [ 1574.503921][T20039] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6297'. [ 1575.143351][T20047] loop3: detected capacity change from 0 to 64 [ 1575.422267][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1575.480734][ T4240] kworker/u8:31: attempt to access beyond end of device [ 1575.480734][ T4240] loop3: rw=2049, sector=561, nr_sectors = 80 limit=64 [ 1575.674237][T20052] netlink: 'syz.2.6303': attribute type 2 has an invalid length. [ 1576.049979][T20047] syz.3.6301: attempt to access beyond end of device [ 1576.049979][T20047] loop3: rw=2049, sector=641, nr_sectors = 1439 limit=64 [ 1577.012716][T20068] loop2: detected capacity change from 0 to 512 [ 1577.077389][T20068] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1577.180557][T20068] EXT4-fs (loop2): 1 truncate cleaned up [ 1577.257005][T20068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1577.437462][T15129] udevd[15129]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1577.570106][T20074] vivid-002: disconnect [ 1577.616009][T20072] vivid-002: reconnect [ 1577.695468][T20064] loop4: detected capacity change from 0 to 4096 [ 1577.708842][T20064] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 1577.787993][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1578.035388][T15129] udevd[15129]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1578.172005][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1578.237148][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/5EB3BBC71C8702BB.tmp-b7:4' failed: Read-only file system [ 1578.430023][ T29] audit: type=1800 audit(1724610414.245:61): pid=20064 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6309" name="file1" dev="loop4" ino=33 res=0 errno=0 [ 1578.846137][T20088] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6318'. [ 1578.894913][T20088] bridge0: port 2(bridge_slave_1) entered disabled state [ 1578.903860][T20088] bridge0: port 1(bridge_slave_0) entered disabled state [ 1579.101662][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1579.440707][T20095] loop4: detected capacity change from 0 to 512 [ 1579.533307][T20095] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.6321: invalid block [ 1579.565242][T20095] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.6321: invalid indirect mapped block 4294967295 (level 1) [ 1579.603342][T20095] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.6321: invalid indirect mapped block 4294967295 (level 1) [ 1579.657389][T20095] EXT4-fs (loop4): 2 truncates cleaned up [ 1579.665508][T20095] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1579.774883][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1579.816025][T20095] EXT4-fs error (device loop4): ext4_get_parent:1858: inode #11: comm syz.4.6321: bad parent inode number: 3 [ 1579.926313][T20100] block nbd0: shutting down sockets [ 1579.949854][T20071] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap [ 1580.078136][T15893] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1580.402382][T15129] udevd[15129]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1580.475011][T20109] overlay: Unknown parameter 'fsuuid' [ 1581.219951][T20111] loop4: detected capacity change from 0 to 2048 [ 1581.358262][T20122] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1581.471407][T20111] NILFS error (device loop4): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=80, inode=15, rec_len=2072, name_len=5 [ 1581.587748][T20111] Remounting filesystem read-only [ 1581.711903][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:4' failed: Read-only file system [ 1582.560607][ T29] audit: type=1326 audit(1724610418.385:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20132 comm="syz.2.6338" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1582.589315][ T29] audit: type=1326 audit(1724610418.465:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20132 comm="syz.2.6338" exe="/root/syz-executor" sig=0 arch=40000003 syscall=103 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1582.614144][ T29] audit: type=1326 audit(1724610418.465:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20132 comm="syz.2.6338" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1582.636621][ T29] audit: type=1326 audit(1724610418.465:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20132 comm="syz.2.6338" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1583.271880][T20145] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6343'. [ 1584.182771][T20140] loop3: detected capacity change from 0 to 4096 [ 1584.214791][T20153] binder: 20152:20153 ioctl 4018620d 0 returned -22 [ 1584.265209][T20140] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 1584.277030][T20153] binder: 20152:20153 ioctl c0306201 20000680 returned -11 [ 1584.472965][T20157] loop4: detected capacity change from 0 to 64 [ 1584.590536][T20157] Trying to free block not in datazone [ 1584.648635][T20140] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 1584.761407][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1584.868386][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-uuid/4C6CE0A9116F2120.tmp-b7:3' failed: Read-only file system [ 1585.208577][T20166] input: syz1 as /devices/virtual/input/input113 [ 1585.398413][T15555] udevd[15555]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1585.750195][T20170] netlink: 'syz.0.6355': attribute type 4 has an invalid length. [ 1586.424159][ T25] usb 3-1: new high-speed USB device number 71 using dummy_hcd [ 1586.519837][T20182] A link change request failed with some changes committed already. Interface dummy0 may have been left with an inconsistent configuration, please check. [ 1586.674247][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 1586.694446][ T25] usb 3-1: New USB device found, idVendor=05ac, idProduct=0264, bcdDevice=ae.54 [ 1586.704042][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1586.779562][ T25] usb 3-1: config 0 descriptor?? [ 1586.835035][ T25] hub 3-1:0.0: bad descriptor, ignoring hub [ 1586.841308][ T25] hub 3-1:0.0: probe with driver hub failed with error -5 [ 1586.858027][ T25] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input114 [ 1587.485988][ T25] usb 3-1: USB disconnect, device number 71 [ 1587.758716][T15129] udevd[15129]: Error opening device "/dev/input/event4": No such file or directory [ 1587.769558][T15129] udevd[15129]: Unable to EVIOCGABS device "/dev/input/event4" [ 1587.793241][T15129] udevd[15129]: Unable to EVIOCGABS device "/dev/input/event4" [ 1587.802064][T15129] udevd[15129]: Unable to EVIOCGABS device "/dev/input/event4" [ 1587.844627][T15129] udevd[15129]: Unable to EVIOCGABS device "/dev/input/event4" [ 1587.977406][T20190] loop4: detected capacity change from 0 to 764 [ 1588.523431][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-label/CDROM.tmp-b7:4' failed: Read-only file system [ 1588.616988][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-uuid/2022-11-22-16-59-57-00.tmp-b7:4' failed: Read-only file system [ 1589.159188][T20200] Bluetooth: MGMT ver 1.23 [ 1590.840719][ T8587] usb 1-1: new high-speed USB device number 66 using dummy_hcd [ 1591.058333][ T8587] usb 1-1: Using ep0 maxpacket: 16 [ 1591.130801][ T8587] usb 1-1: config 0 has an invalid interface number: 214 but max is 0 [ 1591.148189][ T8587] usb 1-1: config 0 has no interface number 0 [ 1591.159121][ T8587] usb 1-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64 [ 1591.398502][ T8587] usb 1-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 1591.412440][ T8587] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1591.425245][ T8587] usb 1-1: Product: syz [ 1591.428049][ T5257] usb 2-1: new high-speed USB device number 58 using dummy_hcd [ 1591.429564][ T8587] usb 1-1: Manufacturer: syz [ 1591.450692][ T8587] usb 1-1: SerialNumber: syz [ 1591.491275][ T8587] usb 1-1: config 0 descriptor?? [ 1591.742427][ T5257] usb 2-1: config 0 has an invalid interface number: 11 but max is 1 [ 1591.751054][ T5257] usb 2-1: config 0 has an invalid interface number: 6 but max is 1 [ 1591.759730][ T5257] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1591.770248][ T5257] usb 2-1: config 0 has 3 interfaces, different from the descriptor's value: 2 [ 1591.782537][ T5257] usb 2-1: config 0 has no interface number 1 [ 1591.789870][ T5257] usb 2-1: config 0 has no interface number 2 [ 1591.796388][ T5257] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 5 [ 1591.809723][ T5257] usb 2-1: config 0 interface 6 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 1591.823650][ T5257] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 1591.833136][ T5257] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1591.943460][ T5257] usb 2-1: config 0 descriptor?? [ 1592.358792][ T8587] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.214/input/input115 [ 1592.696545][ T5257] usb 2-1: USB disconnect, device number 58 [ 1592.728242][ T8587] usb 1-1: USB disconnect, device number 66 [ 1593.272947][T18428] udevd[18428]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.11/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1594.229641][T20234] input: syz0 as /devices/virtual/input/input116 [ 1594.839629][ T5257] usb 3-1: new high-speed USB device number 72 using dummy_hcd [ 1595.091783][ T5257] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1595.103167][ T5257] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1595.113502][ T5257] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 1595.122930][ T5257] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1595.183553][ T5257] usb 3-1: config 0 descriptor?? [ 1595.747762][ T5257] lua 0003:1E7D:2C2E.00B1: unknown main item tag 0x0 [ 1595.755315][ T5257] lua 0003:1E7D:2C2E.00B1: unknown main item tag 0x0 [ 1595.762469][ T5257] lua 0003:1E7D:2C2E.00B1: unknown main item tag 0x0 [ 1595.770955][ T5257] lua 0003:1E7D:2C2E.00B1: unknown main item tag 0x0 [ 1595.782154][ T5257] lua 0003:1E7D:2C2E.00B1: unknown main item tag 0x0 [ 1596.024847][ T5257] lua 0003:1E7D:2C2E.00B1: hidraw0: USB HID v0.00 Device [HID 1e7d:2c2e] on usb-dummy_hcd.2-1/input0 [ 1596.175649][ T5257] usb 3-1: USB disconnect, device number 72 [ 1597.379408][T20265] loop2: detected capacity change from 0 to 256 [ 1597.457244][T20265] vfat: Unknown parameter 'shortnnonumtail' [ 1597.664229][T20265] loop2: detected capacity change from 0 to 256 [ 1597.715652][T20265] exfat: Deprecated parameter 'utf8' [ 1597.724460][T20265] exfat: Unexpected value for 'utf8' [ 1598.058430][T20269] loop3: detected capacity change from 0 to 256 [ 1598.288978][T20269] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 1599.106719][T20276] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 1599.124304][T20275] IPVS: stopping master sync thread 20276 ... [ 1600.200363][T20288] delete_channel: no stack [ 1600.229263][T20287] delete_channel: no stack [ 1601.391310][T20301] netlink: 64 bytes leftover after parsing attributes in process `syz.0.6411'. [ 1601.957906][T20304] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6413'. [ 1604.019661][ T51] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 1604.136956][ T51] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 1604.188492][ T51] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 1604.215578][ T51] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 1604.251035][ T51] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 1604.306648][ T51] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 1604.871770][T20330] loop2: detected capacity change from 0 to 1024 [ 1605.132044][T20330] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1605.679100][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1605.940934][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1606.408598][T17732] Bluetooth: hci4: command tx timeout [ 1606.426680][T20326] chnl_net:caif_netlink_parms(): no params data found [ 1606.648516][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1607.391150][T20354] netlink: 'syz.3.6430': attribute type 4 has an invalid length. [ 1608.488470][T17732] Bluetooth: hci4: command tx timeout [ 1608.933576][T20326] bridge0: port 1(bridge_slave_0) entered blocking state [ 1608.943002][T20326] bridge0: port 1(bridge_slave_0) entered disabled state [ 1608.951126][T20326] bridge_slave_0: entered allmulticast mode [ 1608.960716][T20326] bridge_slave_0: entered promiscuous mode [ 1609.171746][T20326] bridge0: port 2(bridge_slave_1) entered blocking state [ 1609.179866][T20326] bridge0: port 2(bridge_slave_1) entered disabled state [ 1609.191900][T20326] bridge_slave_1: entered allmulticast mode [ 1609.201505][T20326] bridge_slave_1: entered promiscuous mode [ 1609.730946][T20326] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1609.879664][T20326] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1610.300850][T20326] team0: Port device team_slave_0 added [ 1610.361367][T20326] team0: Port device team_slave_1 added [ 1610.569592][T17732] Bluetooth: hci4: command tx timeout [ 1610.871030][T20326] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1610.882641][T20326] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1610.913574][T20326] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1611.122164][T20326] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1611.133116][T20326] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1611.163920][T20326] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1611.305875][T20386] netlink: 11 bytes leftover after parsing attributes in process `syz.1.6442'. [ 1611.916712][T20326] hsr_slave_0: entered promiscuous mode [ 1612.025548][T20326] hsr_slave_1: entered promiscuous mode [ 1612.124103][T20326] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1612.131912][T20326] Cannot create hsr debugfs directory [ 1612.661341][T17732] Bluetooth: hci4: command tx timeout [ 1613.658108][T20326] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1613.912437][T20326] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1614.220148][T20326] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1614.491984][T20326] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1615.399018][T20326] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 1615.565983][T20326] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 1615.695808][T20326] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 1615.758800][ T8587] usb 1-1: new high-speed USB device number 67 using dummy_hcd [ 1615.863576][T20326] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 1616.101407][ T8587] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1616.115206][ T8587] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1616.200919][ T8587] usb 1-1: config 0 descriptor?? [ 1616.322016][ T8587] cp210x 1-1:0.0: cp210x converter detected [ 1616.821618][ T8587] cp210x 1-1:0.0: failed to get vendor val 0x0010 size 3: -32 [ 1616.912706][ T8587] cp210x 1-1:0.0: GPIO initialisation failed: -524 [ 1617.052671][ T8587] usb 1-1: cp210x converter now attached to ttyUSB0 [ 1617.159730][ T8587] usb 1-1: USB disconnect, device number 67 [ 1617.212107][ T8587] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1617.228426][ T8587] cp210x 1-1:0.0: device disconnected [ 1618.007811][T20326] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1618.184971][T20326] 8021q: adding VLAN 0 to HW filter on device team0 [ 1618.285995][ T4240] bridge0: port 1(bridge_slave_0) entered blocking state [ 1618.293957][ T4240] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1618.443799][ T4240] bridge0: port 2(bridge_slave_1) entered blocking state [ 1618.451604][ T4240] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1621.398421][T20326] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1623.518216][T20468] loop3: detected capacity change from 0 to 1024 [ 1623.972003][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1624.100357][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-uuid/3de3d207-fc4e-3c3b-aa08-7cb07cd064ab.tmp-b7:3' failed: Read-only file system [ 1624.296406][T19226] hfsplus: b-tree write err: -5, ino 4 [ 1624.514573][T20474] A link change request failed with some changes committed already. Interface veth0_virt_wifi may have been left with an inconsistent configuration, please check. [ 1625.569964][T20326] veth0_vlan: entered promiscuous mode [ 1625.826155][T20326] veth1_vlan: entered promiscuous mode [ 1626.318983][T20326] veth0_macvtap: entered promiscuous mode [ 1626.418564][T20326] veth1_macvtap: entered promiscuous mode [ 1626.742666][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1626.753860][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1626.764242][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1626.775062][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1626.785300][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1626.796060][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1626.811320][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1626.823087][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1626.833405][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1626.844220][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1626.859665][T20326] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1627.151264][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1627.166724][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1627.181246][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1627.196369][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1627.210933][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1627.233159][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1627.249761][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1627.261948][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1627.272673][T20326] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1627.287995][T20326] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1627.318763][T20326] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1627.564305][T18480] usb 1-1: new high-speed USB device number 68 using dummy_hcd [ 1627.602458][T20326] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.611725][T20326] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.624551][T20326] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.633599][T20326] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1627.860162][T18480] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1627.871143][T18480] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1627.891836][T18480] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1627.902087][T18480] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1627.910531][T18480] usb 1-1: SerialNumber: syz [ 1628.374328][T20498] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1 [ 1628.592973][T18480] usb 1-1: 0:2 : does not exist [ 1628.796690][T18480] usb 1-1: USB disconnect, device number 68 [ 1629.391936][T14986] udevd[14986]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1631.153560][T20515] loop2: detected capacity change from 0 to 512 [ 1631.264280][T20509] CUSE: info not properly terminated [ 1631.296397][T20515] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1631.370077][T20515] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 1631.381374][T20515] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0 [ 1631.391394][T20515] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.6494: Failed to acquire dquot type 1 [ 1631.683618][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1631.698536][T20515] EXT4-fs (loop2): 1 truncate cleaned up [ 1631.852864][T20515] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1632.102268][T20515] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended [ 1632.226051][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1632.234952][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1632.249578][T20515] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 8 [ 1632.761522][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1633.116131][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1634.664173][T20546] Process accounting resumed [ 1635.357712][T20549] tap0: tun_chr_ioctl cmd 35108 [ 1636.241962][T20543] loop2: detected capacity change from 0 to 4096 [ 1636.255837][T17732] Bluetooth: hci1: ACL packet for unknown connection handle 0 [ 1636.498868][T20558] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1636.562609][T20559] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd [ 1636.719851][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-uuid/ab2f6cf2-a99d-4328-b186-08168e7a6b7e.tmp-b7:2' failed: Read-only file system [ 1638.348865][ T4456] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1638.361414][ T4456] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1638.640143][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1638.653393][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1639.429892][T20579] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1640.066618][T20581] loop2: detected capacity change from 0 to 2048 [ 1640.133421][T20581] EXT4-fs: Ignoring removed mblk_io_submit option [ 1640.280908][T20585] loop3: detected capacity change from 0 to 2048 [ 1640.334431][T20581] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1640.463645][T20581] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6516: bg 0: block 234: padding at end of block bitmap is not set [ 1640.500660][T20581] EXT4-fs (loop2): Remounting filesystem read-only [ 1640.512210][T20589] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1640.662339][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1640.782858][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:3' failed: Read-only file system [ 1640.955787][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1641.109492][T20589] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 1641.120709][T20589] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4) [ 1641.198476][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1641.229582][T20589] Remounting filesystem read-only [ 1641.281387][T19231] NILFS (loop3): discard dirty page: offset=0, ino=5 [ 1641.292102][T19231] NILFS (loop3): discard dirty block: blocknr=41, size=1024 [ 1641.300266][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.309665][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.319141][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.513515][T19231] NILFS (loop3): discard dirty page: offset=0, ino=4 [ 1641.520724][T19231] NILFS (loop3): discard dirty block: blocknr=40, size=1024 [ 1641.528719][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.537996][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.550442][T19231] NILFS (loop3): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1641.813218][T20604] PKCS7: Unknown OID: [5] 2.24.97.110.100.108.101.95.115.116.97.116.115.0.0 [ 1641.826852][T20604] PKCS7: Only support pkcs7_signedData type [ 1642.760550][T20609] loop3: detected capacity change from 0 to 2048 [ 1642.915480][T20609] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1643.007528][T20609] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1643.367564][T19979] usb 5-1: new high-speed USB device number 53 using dummy_hcd [ 1643.542862][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/LinuxUDF.tmp-b7:3' failed: Read-only file system [ 1643.624171][T19979] usb 5-1: Using ep0 maxpacket: 16 [ 1643.752225][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-uuid/1234567812345678.tmp-b7:3' failed: Read-only file system [ 1643.787321][T19979] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1643.796914][T19979] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1643.807723][T19979] usb 5-1: Product: syz [ 1643.812144][T19979] usb 5-1: Manufacturer: syz [ 1643.818025][T19979] usb 5-1: SerialNumber: syz [ 1643.941729][T19979] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1643.948424][T19979] r8152-cfgselector 5-1: config 0 descriptor?? [ 1644.654649][T19979] r8152-cfgselector 5-1: Needed 2 retries to read version [ 1644.662199][T19979] r8152-cfgselector 5-1: Unknown version 0x28f0 [ 1644.669124][T19979] r8152-cfgselector 5-1: bad CDC descriptors [ 1645.004863][T18480] r8152-cfgselector 5-1: USB disconnect, device number 53 [ 1646.689305][T20645] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 1647.201440][T17732] Bluetooth: hci3: ISO packet too small [ 1647.771982][ T29] audit: type=1326 audit(1724610483.665:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20655 comm="syz.2.6545" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1647.806105][ T29] audit: type=1326 audit(1724610483.675:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20655 comm="syz.2.6545" exe="/root/syz-executor" sig=0 arch=40000003 syscall=128 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1647.924868][ T29] audit: type=1326 audit(1724610483.745:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20655 comm="syz.2.6545" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1648.381685][T20661] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6548'. [ 1648.838009][T20667] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6551'. [ 1650.207043][ T5257] usb 2-1: new high-speed USB device number 59 using dummy_hcd [ 1650.212390][T20682] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1650.415111][ T5257] usb 2-1: Using ep0 maxpacket: 8 [ 1650.474714][ T5257] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 13 [ 1650.594997][ T5257] usb 2-1: New USB device found, idVendor=046d, idProduct=08ae, bcdDevice=11.58 [ 1650.604593][ T5257] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1650.612875][ T5257] usb 2-1: Product: syz [ 1650.617721][ T5257] usb 2-1: Manufacturer: syz [ 1650.622557][ T5257] usb 2-1: SerialNumber: syz [ 1650.706682][ T5257] usb 2-1: config 0 descriptor?? [ 1650.780684][ T5257] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08ae [ 1651.449051][ T5257] gspca_zc3xx: reg_w_i err -71 [ 1651.907815][T20693] Bluetooth: received HCILL_WAKE_UP_ACK in state 2 [ 1652.096867][T18480] kernel write not supported for file /amidi2 (pid: 18480 comm: kworker/1:1) [ 1652.114040][ T5257] gspca_zc3xx: Unknown sensor - set to TAS5130C [ 1652.120875][ T5257] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 1652.218701][ T5257] usb 2-1: USB disconnect, device number 59 [ 1653.926089][T17732] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 1654.272133][T20719] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1654.718647][T20718] loop3: detected capacity change from 0 to 2048 [ 1654.869470][T20718] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1655.141757][T20718] Process accounting resumed [ 1655.458571][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-label/LinuxUDF.tmp-b7:3' failed: Read-only file system [ 1655.566147][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-uuid/1234567812345678.tmp-b7:3' failed: Read-only file system [ 1657.491049][T20731] loop2: detected capacity change from 0 to 4096 [ 1657.516718][T20731] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 1657.674332][T18480] usb 4-1: new high-speed USB device number 75 using dummy_hcd [ 1657.927636][T18480] usb 4-1: Using ep0 maxpacket: 8 [ 1657.943519][T18480] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1657.954365][T18480] usb 4-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 1657.961106][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1658.043350][T18480] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1658.053061][T18480] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1658.061537][T18480] usb 4-1: Product: syz [ 1658.066037][T18480] usb 4-1: Manufacturer: syz [ 1658.070873][T18480] usb 4-1: SerialNumber: syz [ 1658.093436][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-uuid/02AFA4DB32BB7E65.tmp-b7:2' failed: Read-only file system [ 1658.132021][ T29] audit: type=1800 audit(1724610493.935:69): pid=20731 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.6578" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 1658.473105][T20746] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1658.591063][T20746] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1658.716387][ T51] Bluetooth: hci1: unknown advertising packet type: 0x14 [ 1658.716598][ T51] Bluetooth: hci1: unknown advertising packet type: 0x20 [ 1658.727406][ T51] Bluetooth: hci1: unknown advertising packet type: 0x08 [ 1658.735017][ T51] Bluetooth: hci1: unknown advertising packet type: 0x05 [ 1658.742418][ T51] Bluetooth: hci1: unknown advertising packet type: 0x0d [ 1658.754939][ T51] Bluetooth: hci1: Malformed LE Event: 0x02 [ 1658.865259][T18480] usb 4-1: USB disconnect, device number 75 [ 1658.942415][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1660.965019][T20768] netlink: 10 bytes leftover after parsing attributes in process `syz.4.6593'. [ 1664.347773][T20798] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6609'. [ 1664.445246][T20798] netlink: 173 bytes leftover after parsing attributes in process `syz.1.6609'. [ 1665.123227][T20804] loop4: detected capacity change from 0 to 128 [ 1665.440244][T20804] CUSE: unknown device info "40tCwحVΉ`uH~ " [ 1665.452874][T20804] CUSE: unknown device info ")ʝiV~޵~wz3_ޓH4l?D5NVѢ~y3˿j-o.]" [ 1665.457773][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/1DD9-F30B.tmp-b7:4' failed: Read-only file system [ 1665.468948][T20804] CUSE: unknown device info "пM;W" [ 1665.490916][T20804] CUSE: unknown device info "@iSzz" [ 1665.501284][T20804] CUSE: DEVNAME unspecified [ 1665.890819][T20808] loop2: detected capacity change from 0 to 1764 [ 1666.378301][T20818] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6618'. [ 1667.535547][ T8587] usb 4-1: new high-speed USB device number 76 using dummy_hcd [ 1667.754187][ T8587] usb 4-1: Using ep0 maxpacket: 16 [ 1667.812380][ T8587] usb 4-1: New USB device found, idVendor=2770, idProduct=9050, bcdDevice=11.97 [ 1667.822268][ T8587] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1667.883482][ T8587] usb 4-1: config 0 descriptor?? [ 1667.914349][ T8587] gspca_main: sq905c-2.14.0 probing 2770:9050 [ 1668.251026][T20836] netlink: 3 bytes leftover after parsing attributes in process `syz.2.6625'. [ 1668.301877][T20836] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 1668.310004][T20836] macsec1: entered allmulticast mode [ 1668.315904][T20836] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 1668.443305][T20836] netdevsim netdevsim2 netdevsim0: left allmulticast mode [ 1668.451704][T20836] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 1668.858706][ T5257] usb 4-1: USB disconnect, device number 76 [ 1670.072984][T20852] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1671.247799][T18480] usb 3-1: new high-speed USB device number 73 using dummy_hcd [ 1671.466014][T18480] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1671.477514][T18480] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1671.487778][T18480] usb 3-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 1671.497484][T18480] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1671.522783][T20866] loop3: detected capacity change from 0 to 1024 [ 1671.543129][T18480] usb 3-1: config 0 descriptor?? [ 1671.957207][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1672.040067][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-uuid/3de3d207-fc4e-3c3b-aa08-7cb07cd064ab.tmp-b7:3' failed: Read-only file system [ 1672.058603][T18480] hid-led 0003:0FC5:B080.00B2: unknown main item tag 0x0 [ 1672.189508][ T4482] hfsplus: b-tree write err: -5, ino 4 [ 1672.443471][T18480] hid-led 0003:0FC5:B080.00B2: probe with driver hid-led failed with error -71 [ 1672.532903][T18480] usb 3-1: USB disconnect, device number 73 [ 1672.816955][T20873] loop3: detected capacity change from 0 to 164 [ 1672.957043][T20873] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6641'. [ 1673.015643][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/CDROM.tmp-b7:3' failed: Read-only file system [ 1673.066698][T20879] netlink: 277 bytes leftover after parsing attributes in process `syz.3.6641'. [ 1673.066793][T20879] netlink: 277 bytes leftover after parsing attributes in process `syz.3.6641'. [ 1673.117971][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-uuid/2022-11-22-16-59-57-00.tmp-b7:3' failed: Read-only file system [ 1674.842253][T20901] loop2: detected capacity change from 0 to 128 [ 1675.352479][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-uuid/1DD9-F30B.tmp-b7:2' failed: Read-only file system [ 1675.895226][T20912] loop3: detected capacity change from 0 to 1024 [ 1675.962019][T10343] usb 2-1: new high-speed USB device number 60 using dummy_hcd [ 1675.962632][T20916] loop2: detected capacity change from 0 to 512 [ 1676.050778][T20916] EXT4-fs: Ignoring removed nobh option [ 1676.074205][T20912] hfsplus: bad catalog entry type [ 1676.146119][T20916] fscrypt (loop2, inode 2): Error -61 getting encryption context [ 1676.148048][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-label/untitled.tmp-b7:3' failed: Read-only file system [ 1676.182408][T14986] udevd[14986]: symlink '../../loop3' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:3' failed: Read-only file system [ 1676.207363][T20916] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -61 [ 1676.231865][T10343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1676.244424][T10343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1676.254811][T10343] usb 2-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00 [ 1676.271595][T10343] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1676.275255][T20916] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #13: comm syz.2.6660: casefold flag without casefold feature [ 1676.356772][T10343] usb 2-1: config 0 descriptor?? [ 1676.443423][T20916] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.6660: couldn't read orphan inode 13 (err -117) [ 1676.544794][T20916] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1676.720465][T18428] udevd[18428]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1676.927908][T10343] hid-led 0003:0FC5:B080.00B3: unknown main item tag 0x0 [ 1676.961245][T20916] EXT4-fs error (device loop2): __ext4_remount:6491: comm syz.2.6660: Abort forced by user [ 1677.017458][T20916] EXT4-fs (loop2): Remounting filesystem read-only [ 1677.061626][T20916] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. Quota mode: none. [ 1677.198527][T20003] kernel write not supported for file /snd/seq (pid: 20003 comm: kworker/0:0) [ 1677.214961][T20916] fscrypt (loop2, inode 2): Error -5 getting encryption context [ 1677.307160][T10343] hid-led 0003:0FC5:B080.00B3: probe with driver hid-led failed with error -71 [ 1677.355738][T10343] usb 2-1: USB disconnect, device number 60 [ 1677.553363][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1677.603915][T20926] netlink: 'syz.0.6665': attribute type 11 has an invalid length. [ 1677.757003][T18428] udevd[18428]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1679.306919][T20952] netlink: 'syz.1.6675': attribute type 12 has an invalid length. [ 1679.315861][T20952] netlink: 'syz.1.6675': attribute type 29 has an invalid length. [ 1679.324142][T20952] netlink: 'syz.1.6675': attribute type 2 has an invalid length. [ 1679.335270][T20952] netlink: 'syz.1.6675': attribute type 2 has an invalid length. [ 1679.344244][T20952] netlink: 'syz.1.6675': attribute type 1 has an invalid length. [ 1679.352343][T20952] netlink: 'syz.1.6675': attribute type 37 has an invalid length. [ 1679.360525][T20952] netlink: 'syz.1.6675': attribute type 2 has an invalid length. [ 1679.369315][T20952] bridge0: port 1(bridge_slave_0) entered disabled state [ 1680.103446][T20961] cifs: Unknown parameter 'mode' [ 1680.932838][ T5257] usb 2-1: new high-speed USB device number 61 using dummy_hcd [ 1681.225745][ T5257] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 1681.235282][ T5257] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1681.243558][ T5257] usb 2-1: Product: syz [ 1681.248114][ T5257] usb 2-1: Manufacturer: syz [ 1681.252937][ T5257] usb 2-1: SerialNumber: syz [ 1681.321333][ T5257] usb 2-1: config 0 descriptor?? [ 1681.644066][T20973] loop4: detected capacity change from 0 to 1024 [ 1681.731351][ T4043] bridge_slave_1: left allmulticast mode [ 1681.737644][ T4043] bridge_slave_1: left promiscuous mode [ 1681.744354][ T4043] bridge0: port 2(bridge_slave_1) entered disabled state [ 1681.843248][ T4043] bridge_slave_0: left allmulticast mode [ 1681.852820][ T4043] bridge_slave_0: left promiscuous mode [ 1681.859775][ T4043] bridge0: port 1(bridge_slave_0) entered disabled state [ 1681.906717][T18480] usb 2-1: USB disconnect, device number 61 [ 1681.961234][T20973] hfsplus: bad catalog entry type [ 1682.333644][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system [ 1682.447369][T19226] hfsplus: b-tree write err: -5, ino 4 [ 1682.459034][T15129] udevd[15129]: symlink '../../loop4' '/dev/disk/by-uuid/3de3d207-fc4e-3c3b-aa08-7cb07cd064ab.tmp-b7:4' failed: Read-only file system [ 1682.856071][ T4043] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1682.976218][ T4043] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1683.026282][ T4043] bond0 (unregistering): Released all slaves [ 1683.128863][T20975] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6686'. [ 1683.600005][T20987] netlink: 'syz.4.6691': attribute type 4 has an invalid length. [ 1683.975232][T20991] netlink: 260 bytes leftover after parsing attributes in process `syz.3.6692'. [ 1684.135483][ T4043] hsr_slave_0: left promiscuous mode [ 1684.200416][ T4043] hsr_slave_1: left promiscuous mode [ 1684.219519][ T4043] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1684.227813][ T4043] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1684.307170][ T4043] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1684.315265][ T4043] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1684.434897][ T4043] veth1_macvtap: left promiscuous mode [ 1684.440690][ T4043] veth0_macvtap: left promiscuous mode [ 1684.446849][ T4043] veth1_vlan: left promiscuous mode [ 1684.455955][ T4043] veth0_vlan: left promiscuous mode [ 1684.687112][T20997] loop4: detected capacity change from 0 to 1024 [ 1685.112405][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/untitled.tmp-b7:4' failed: Read-only file system [ 1685.206899][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/06db47fa-2d76-30cf-a5fe-21149ac7af4a.tmp-b7:4' failed: Read-only file system [ 1685.444387][T20983] Bluetooth: hci1: command 0x0406 tx timeout [ 1685.621320][ T4482] hfsplus: b-tree write err: -5, ino 4 [ 1685.702191][ T4043] team0 (unregistering): Port device team_slave_1 removed [ 1685.800745][ T4043] team0 (unregistering): Port device team_slave_0 removed [ 1686.941069][ T4043] IPVS: stop unused estimator thread 0... [ 1687.228814][T21017] bridge: RTM_NEWNEIGH with unconfigured vlan 3 on bridge_slave_0 [ 1687.795435][T21023] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6707'. [ 1688.624761][ T25] usb 3-1: new high-speed USB device number 74 using dummy_hcd [ 1688.904300][ T25] usb 3-1: Using ep0 maxpacket: 16 [ 1688.977052][ T25] usb 3-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 1688.986972][ T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1688.995488][ T25] usb 3-1: Product: syz [ 1688.999901][ T25] usb 3-1: Manufacturer: syz [ 1689.004853][ T25] usb 3-1: SerialNumber: syz [ 1689.032916][T21042] loop4: detected capacity change from 0 to 64 [ 1689.043667][ T25] usb 3-1: config 0 descriptor?? [ 1689.094992][ T25] ssu100 3-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 1689.109307][T21044] loop3: detected capacity change from 0 to 128 [ 1689.220269][T21042] BFS-fs: bfs_readdir(): Bad f_pos=00000001 for loop4:00000002 [ 1689.457457][T18428] udevd[18428]: symlink '../../loop3' '/dev/disk/by-uuid/1DD9-F30B.tmp-b7:3' failed: Read-only file system [ 1689.582679][ T25] ssu100 3-1:0.0: probe with driver ssu100 failed with error -71 [ 1689.671465][ T25] usb 3-1: USB disconnect, device number 74 [ 1690.662464][T21059] CUSE: unknown device info "" [ 1690.668015][T21059] CUSE: unknown device info "" [ 1690.673154][T21059] CUSE: zero length info key specified [ 1690.714252][ T25] usb 1-1: new high-speed USB device number 69 using dummy_hcd [ 1690.964144][ T25] usb 1-1: Using ep0 maxpacket: 32 [ 1690.989382][ T25] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1691.000910][ T25] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1691.014839][ T25] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1691.025190][ T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1691.128499][ T25] hub 1-1:4.0: USB hub found [ 1691.389344][ T25] hub 1-1:4.0: 2 ports detected [ 1691.803553][ T25] hub 1-1:4.0: set hub depth failed [ 1691.874563][ T25] usb 1-1: USB disconnect, device number 69 [ 1692.291070][T21075] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6733'. [ 1692.880939][T21085] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6738'. [ 1692.893275][T21085] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 1692.930405][T21089] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1693.633248][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1693.640315][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1693.675356][T21096] netlink: 'syz.1.6742': attribute type 2 has an invalid length. [ 1694.275897][T21106] batman_adv: batadv0: Adding interface: wlan1 [ 1694.285657][T21106] batman_adv: batadv0: The MTU of interface wlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1694.312441][T21106] batman_adv: batadv0: Interface activated: wlan1 [ 1694.665662][T21108] loop3: detected capacity change from 0 to 128 [ 1694.710324][T21108] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1694.832560][T21108] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1694.994108][T21114] ax25_connect(): syz.1.6751 uses autobind, please contact jreuter@yaina.de [ 1695.463694][T21117] loop2: detected capacity change from 0 to 1024 [ 1695.475026][T21117] EXT4-fs: Ignoring removed orlov option [ 1695.548950][T21117] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1695.574972][T21117] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled [ 1695.658818][T21126] loop3: detected capacity change from 0 to 128 [ 1695.725339][T21117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1695.808428][T21126] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1695.870380][T15129] udevd[15129]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1695.944571][T21126] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1696.146188][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1696.366976][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1697.215666][T21139] loop4: detected capacity change from 0 to 2048 [ 1697.316087][T21139] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1697.324997][T21147] cifs: Unknown parameter 'mode' [ 1697.329080][T21139] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1697.362736][T21143] loop3: detected capacity change from 0 to 1024 [ 1697.504141][T10343] usb 2-1: new high-speed USB device number 62 using dummy_hcd [ 1697.539169][T21143] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1697.588072][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1697.730965][T10343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1697.742818][T10343] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1697.753153][T10343] usb 2-1: New USB device found, idVendor=056a, idProduct=0325, bcdDevice= 0.00 [ 1697.762623][T10343] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1697.800096][T21143] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 1697.809773][T21143] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 1697.833387][T10343] usb 2-1: config 0 descriptor?? [ 1697.905977][T15129] udevd[15129]: symlink '../../loop3' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1697.910559][T20326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1698.146175][T19231] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1698.336258][T20003] usb 1-1: new high-speed USB device number 70 using dummy_hcd [ 1698.355586][T10343] wacom 0003:056A:0325.00B4: unknown main item tag 0x0 [ 1698.362556][T14986] udevd[14986]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:4' failed: Read-only file system [ 1698.469119][T10343] wacom 0003:056A:0325.00B4: hidraw0: USB HID v0.00 Device [HID 056a:0325] on usb-dummy_hcd.1-1/input0 [ 1698.512584][T15129] udevd[15129]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:3' failed: Read-only file system [ 1698.623309][T20003] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 1698.633252][T20003] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1698.720677][T20003] usb 1-1: config 0 descriptor?? [ 1698.864570][ T5257] usb 2-1: USB disconnect, device number 62 [ 1699.030405][T20003] [drm] vendor descriptor length:c3 data:c3 00 b7 aa f9 11 f3 d6 00 27 99 [ 1699.039534][T20003] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 1699.213362][T21160] loop2: detected capacity change from 0 to 2048 [ 1699.275441][T20003] [drm:udl_init] *ERROR* Selecting channel failed [ 1699.365788][T20003] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2 [ 1699.372766][T20003] [drm] Initialized udl on minor 2 [ 1699.379801][T21164] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1699.435165][T20003] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1699.444526][T20003] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 1699.484683][T10343] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1699.512656][T20003] usb 1-1: USB disconnect, device number 70 [ 1699.522686][T10343] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 1699.531626][T10343] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 1699.562714][T21166] netlink: 16178 bytes leftover after parsing attributes in process `syz.4.6772'. [ 1699.868161][T15555] udevd[15555]: symlink '../../loop2' '/dev/disk/by-uuid/1a95d291-cd32-4c4d-814a-8221d1aa3beb.tmp-b7:2' failed: Read-only file system [ 1701.994206][T20003] usb 1-1: new high-speed USB device number 71 using dummy_hcd [ 1702.131578][T21201] loop4: detected capacity change from 0 to 164 [ 1702.280929][T20003] usb 1-1: too many configurations: 33, using maximum allowed: 8 [ 1702.438643][T20003] usb 1-1: New USB device found, idVendor=0eb1, idProduct=6668, bcdDevice=57.b8 [ 1702.448175][T20003] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1702.456787][T20003] usb 1-1: Product: syz [ 1702.461268][T20003] usb 1-1: Manufacturer: syz [ 1702.466358][T20003] usb 1-1: SerialNumber: syz [ 1702.528316][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/CDROM.tmp-b7:4' failed: Read-only file system [ 1702.562648][T20003] usb 1-1: config 0 descriptor?? [ 1702.652841][T20003] go7007-loader 1-1:0.0: can't handle multiple config [ 1702.660047][T20003] go7007-loader 1-1:0.0: probe failed [ 1702.687626][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-uuid/2022-11-22-16-59-57-00.tmp-b7:4' failed: Read-only file system [ 1702.936946][ T8587] usb 1-1: USB disconnect, device number 71 [ 1704.299838][T21226] loop4: detected capacity change from 0 to 16 [ 1704.559602][T14986] udevd[14986]: symlink '../../loop4' '/dev/disk/by-label/Compressed.tmp-b7:4' failed: Read-only file system [ 1705.907986][T21245] sch_tbf: burst 34 is lower than device lo mtu (65550) ! [ 1706.535164][T21251] netlink: 'syz.2.6811': attribute type 46 has an invalid length. [ 1708.075937][T21273] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6821'. [ 1708.626049][T20003] usb 2-1: new high-speed USB device number 63 using dummy_hcd [ 1708.892125][T20003] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1708.903598][T20003] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1708.914553][T20003] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 1708.924033][T20003] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1709.012527][T20003] usb 2-1: config 0 descriptor?? [ 1709.487660][T21291] netlink: 88 bytes leftover after parsing attributes in process `syz.4.6830'. [ 1709.497931][T21291] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6830'. [ 1709.555499][T20003] hid-thrustmaster 0003:044F:B65D.00B5: unknown main item tag 0x0 [ 1709.600067][T20003] hid-thrustmaster 0003:044F:B65D.00B5: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.1-1/input0 [ 1709.618331][T20003] hid-thrustmaster 0003:044F:B65D.00B5: Wrong number of endpoints? [ 1709.872487][ C0] hid-thrustmaster 0003:044F:B65D.00B5: URB to get model id failed with error -71 [ 1709.882613][ T5257] usb 2-1: USB disconnect, device number 63 [ 1711.989426][T21324] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6845'. [ 1713.746044][T20003] usb 4-1: new high-speed USB device number 77 using dummy_hcd [ 1713.983585][T20003] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1713.995613][T20003] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1714.005921][T20003] usb 4-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 1714.015375][T20003] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1714.123022][T20003] usb 4-1: config 0 descriptor?? [ 1714.203526][T21351] loop2: detected capacity change from 0 to 1024 [ 1714.378268][T21351] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1714.513343][T14986] udevd[14986]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1714.684062][T20003] arvo 0003:1E7D:30D4.00B6: unknown main item tag 0x0 [ 1714.691255][T20003] arvo 0003:1E7D:30D4.00B6: unknown main item tag 0x0 [ 1714.780623][T20003] arvo 0003:1E7D:30D4.00B6: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.3-1/input0 [ 1714.857904][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1715.135687][T10343] usb 4-1: USB disconnect, device number 77 [ 1715.209946][T15129] udevd[15129]: symlink '../../loop0' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 1715.232316][T21353] ebtables: wrong size: *len 120, entries_size 144, replsz 144 [ 1716.851811][T21382] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6872'. [ 1717.650356][T21397] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6879'. [ 1717.694297][T21398] loop3: detected capacity change from 0 to 1024 [ 1717.724634][T21398] EXT4-fs: Ignoring removed oldalloc option [ 1717.789962][T21398] EXT4-fs (loop3): bad geometry: block count 1341 exceeds size of device (512 blocks) [ 1718.382245][T21406] program syz.0.6883 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1718.510793][T21407] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1718.574908][ C1] sd 0:0:1:0: [sda] tag#6776 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 1718.585981][ C1] sd 0:0:1:0: [sda] tag#6776 CDB: Read(6) 08 00 00 00 00 00 [ 1719.109319][T21418] cgroup: Need name or subsystem set [ 1721.162900][T21445] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6900'. [ 1722.564324][T10343] usb 4-1: new high-speed USB device number 78 using dummy_hcd [ 1723.014519][T15135] printk: udevd: 11 output lines suppressed due to ratelimiting [ 1724.758514][ T29] audit: type=1326 audit(1724610560.625:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21491 comm="syz.2.6922" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x0 [ 1726.339219][T21507] loop4: detected capacity change from 0 to 1024 [ 1726.755526][T21507] hfsplus: bad catalog entry type [ 1726.956403][ T4240] hfsplus: b-tree write err: -5, ino 4 [ 1727.557632][T21528] ip6gretap1: entered promiscuous mode [ 1727.572399][T21528] ip6gretap1: entered allmulticast mode [ 1728.692738][T21548] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6946'. [ 1729.104680][ T5257] usb 5-1: new high-speed USB device number 54 using dummy_hcd [ 1729.150149][T21557] sch_tbf: burst 4 is lower than device lo mtu (25) ! [ 1729.196273][T21559] netlink: 92 bytes leftover after parsing attributes in process `syz.2.6952'. [ 1729.213019][T21559] netlink: 92 bytes leftover after parsing attributes in process `syz.2.6952'. [ 1729.342188][ T5257] usb 5-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a [ 1729.351868][ T5257] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1729.379075][T21561] netlink: 'syz.0.6953': attribute type 1 has an invalid length. [ 1729.426399][ T5257] usb 5-1: config 0 descriptor?? [ 1729.467646][ T5257] gspca_main: sn9c2028-2.14.0 probing 0c45:8001 [ 1729.744269][ T5257] gspca_sn9c2028: read1 error -32 [ 1729.964494][ T5257] gspca_sn9c2028: read1 error -71 [ 1729.970029][ T5257] sn9c2028 5-1:0.0: probe with driver sn9c2028 failed with error -71 [ 1730.021599][ T5257] usb 5-1: USB disconnect, device number 54 [ 1731.781222][T21599] loop4: detected capacity change from 0 to 256 [ 1731.818674][T21599] exfat: Bad value for 'gid' [ 1731.823536][T21599] exfat: Bad value for 'gid' [ 1732.694696][ T5257] usb 1-1: new high-speed USB device number 72 using dummy_hcd [ 1732.910338][ T5257] usb 1-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a [ 1732.920107][ T5257] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1732.987198][ T5257] usb 1-1: config 0 descriptor?? [ 1733.046529][ T5257] gspca_main: sn9c2028-2.14.0 probing 0c45:8001 [ 1733.301404][ T5257] gspca_sn9c2028: read1 error -32 [ 1733.518888][ T5257] gspca_sn9c2028: read1 error -71 [ 1733.524718][ T5257] sn9c2028 1-1:0.0: probe with driver sn9c2028 failed with error -71 [ 1733.579050][ T5257] usb 1-1: USB disconnect, device number 72 [ 1733.888745][T21631] syz.4.6984[21631] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1733.889346][T21631] syz.4.6984[21631] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1733.958103][T21631] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6984'. [ 1734.473216][T21637] loop4: detected capacity change from 0 to 256 [ 1734.739719][T21643] loop3: detected capacity change from 0 to 164 [ 1734.806260][T21643] Unable to read rock-ridge attributes [ 1734.922871][T21643] Unable to read rock-ridge attributes [ 1735.026496][T21645] loop2: detected capacity change from 0 to 128 [ 1735.264818][T21647] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6992'. [ 1735.775696][T21659] delete_channel: no stack [ 1735.786200][T21658] delete_channel: no stack [ 1735.885744][T21661] netlink: 'syz.1.6997': attribute type 1 has an invalid length. [ 1736.404058][T20003] usb 3-1: new high-speed USB device number 75 using dummy_hcd [ 1736.522926][T21674] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7003'. [ 1736.650356][T20003] usb 3-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a [ 1736.659978][T20003] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1736.726367][T20003] usb 3-1: config 0 descriptor?? [ 1736.748133][T20003] gspca_main: sn9c2028-2.14.0 probing 0c45:8001 [ 1736.801390][T21680] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7005'. [ 1737.014235][T20003] gspca_sn9c2028: read1 error -32 [ 1737.128361][T21684] ip6gretap0: entered promiscuous mode [ 1737.148141][T21684] ip6gretap0: left promiscuous mode [ 1737.225055][T20003] gspca_sn9c2028: read1 error -71 [ 1737.230583][T20003] sn9c2028 3-1:0.0: probe with driver sn9c2028 failed with error -71 [ 1737.279695][T21686] netlink: 'syz.1.7010': attribute type 64 has an invalid length. [ 1737.288010][T21686] netlink: 164 bytes leftover after parsing attributes in process `syz.1.7010'. [ 1737.303381][T20003] usb 3-1: USB disconnect, device number 75 [ 1737.786424][T21692] block nbd1: shutting down sockets [ 1738.545685][T21706] loop4: detected capacity change from 0 to 1024 [ 1739.078315][T19226] hfsplus: b-tree write err: -5, ino 4 [ 1739.448049][ T8587] usb 3-1: new full-speed USB device number 76 using dummy_hcd [ 1739.681790][ T8587] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 1739.701154][ T8587] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1739.713344][ T8587] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 1739.726740][ T8587] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00 [ 1739.736193][ T8587] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1739.811232][ T8587] usb 3-1: config 0 descriptor?? [ 1740.200834][T21718] loop2: detected capacity change from 0 to 1024 [ 1740.253563][T21718] hfsplus: unable to parse mount options [ 1740.559833][ T8587] ntrig 0003:1B96:000A.00B7: unknown main item tag 0x0 [ 1740.615987][ T8587] ntrig 0003:1B96:000A.00B7: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0 [ 1740.693597][T21735] netlink: 'syz.3.7033': attribute type 1 has an invalid length. [ 1740.702377][T21735] netlink: 'syz.3.7033': attribute type 2 has an invalid length. [ 1740.710653][T21735] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7033'. [ 1740.789648][ T8587] usb 3-1: USB disconnect, device number 76 [ 1741.519190][T21749] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7038'. [ 1743.416113][T21777] netlink: zone id is out of range [ 1743.447204][T21777] netlink: zone id is out of range [ 1743.462809][T21777] netlink: set zone limit has 4 unknown bytes [ 1743.890607][T21788] loop4: detected capacity change from 0 to 128 [ 1743.906250][T21788] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1743.930825][T21788] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1744.390009][T21796] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7060'. [ 1744.881916][T21805] loop3: detected capacity change from 0 to 512 [ 1744.922109][T21805] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1745.020840][T21805] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.7064: corrupted in-inode xattr: e_name out of bounds [ 1745.078163][T21805] EXT4-fs (loop3): 1 truncate cleaned up [ 1745.085966][T21805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1745.434338][T21814] loop4: detected capacity change from 0 to 1024 [ 1745.529587][T19231] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1748.876095][T21870] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7095'. [ 1748.944763][ T25] usb 3-1: new high-speed USB device number 77 using dummy_hcd [ 1749.062418][T21873] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7096'. [ 1749.249380][ T25] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 1749.259260][ T25] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1749.267762][ T25] usb 3-1: Product: syz [ 1749.274607][ T25] usb 3-1: Manufacturer: syz [ 1749.279443][ T25] usb 3-1: SerialNumber: syz [ 1749.310964][ T25] usb 3-1: config 0 descriptor?? [ 1749.403298][T21879] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7098'. [ 1749.507394][T21881] loop3: detected capacity change from 0 to 16 [ 1749.559854][T21881] erofs: (device loop3): mounted with root inode @ nid 36. [ 1749.604411][T20003] usb 1-1: new high-speed USB device number 73 using dummy_hcd [ 1749.655842][ T8587] usb 3-1: USB disconnect, device number 77 [ 1749.662969][T21883] loop4: detected capacity change from 0 to 8 [ 1749.704488][T21883] Filesystem uses "unknown" compression. This is not supported [ 1749.749573][ T51] Bluetooth: hci4: Malformed Event: 0x2f [ 1749.814552][T20003] usb 1-1: Using ep0 maxpacket: 32 [ 1749.848032][T20003] usb 1-1: config index 0 descriptor too short (expected 29220, got 36) [ 1749.856913][T20003] usb 1-1: config 0 has too many interfaces: 81, using maximum allowed: 32 [ 1749.865980][T20003] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 81 [ 1749.875496][T20003] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1749.891573][T20003] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0 [ 1749.903514][T20003] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 1749.917105][T20003] usb 1-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40 [ 1749.930001][T20003] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1749.953990][T20003] usb 1-1: config 0 descriptor?? [ 1750.231467][T20003] usblp 1-1:0.0: usblp0: USB Bidirectional printer dev 73 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17 [ 1750.464035][T21893] mkiss: ax0: crc mode is auto. [ 1750.484927][T20003] usb 1-1: USB disconnect, device number 73 [ 1750.520081][T20003] usblp0: removed [ 1751.036469][T21904] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7110'. [ 1751.335502][T21908] netlink: 'syz.4.7112': attribute type 29 has an invalid length. [ 1751.392871][T21909] netlink: 'syz.4.7112': attribute type 29 has an invalid length. [ 1751.686720][T21911] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7114'. [ 1751.696455][T21911] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7114'. [ 1752.012465][T21919] loop2: detected capacity change from 0 to 512 [ 1752.108198][T21919] EXT4-fs error (device loop2): ext4_orphan_get:1417: comm syz.2.7117: bad orphan inode 15 [ 1752.198990][T21919] ext4_test_bit(bit=14, block=18) = 1 [ 1752.204965][T21919] is_bad_inode(inode)=0 [ 1752.209532][T21919] NEXT_ORPHAN(inode)=1023 [ 1752.214382][T21919] max_ino=32 [ 1752.217770][T21919] i_nlink=0 [ 1752.222217][T21919] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2978: inode #15: comm syz.2.7117: corrupted xattr block 19: e_value size too large [ 1752.260325][T21919] EXT4-fs warning (device loop2): ext4_evict_inode:271: xattr delete (err -117) [ 1752.271915][T21919] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1752.284733][T21919] ext4 filesystem being mounted at /1134/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1752.361676][T21919] EXT4-fs error (device loop2): ext4_add_entry:2435: inode #12: comm syz.2.7117: Directory hole found for htree leaf block 0 [ 1752.393218][T21919] EXT4-fs error (device loop2): ext4_empty_dir:3088: inode #12: comm syz.2.7117: Directory hole found for htree leaf block 0 [ 1752.443596][T21929] netlink: 'syz.3.7121': attribute type 10 has an invalid length. [ 1752.459781][T21929] netem: change failed [ 1752.510632][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1752.577494][ T5257] usb 5-1: new high-speed USB device number 55 using dummy_hcd [ 1752.615713][T20003] usb 1-1: new high-speed USB device number 74 using dummy_hcd [ 1752.654334][ T25] usb 2-1: new high-speed USB device number 64 using dummy_hcd [ 1752.732851][T21932] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 1752.808657][ T5257] usb 5-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c [ 1752.818325][ T5257] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1752.845896][T20003] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08 [ 1752.861039][T20003] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1752.869239][ T5257] usb 5-1: config 0 descriptor?? [ 1752.916314][T20003] usb 1-1: config 0 descriptor?? [ 1752.934462][T20003] gspca_main: cpia1-2.14.0 probing 0813:0001 [ 1752.935154][ T25] usb 2-1: New USB device found, idVendor=1ac7, idProduct=0001, bcdDevice=cc.19 [ 1752.950456][ T25] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1752.964645][ T25] usb 2-1: Product: syz [ 1752.969222][ T25] usb 2-1: Manufacturer: syz [ 1752.974324][ T25] usb 2-1: SerialNumber: syz [ 1753.004081][ T25] usb 2-1: config 0 descriptor?? [ 1753.225421][ T5257] pegasus 5-1:0.0: probe with driver pegasus failed with error -71 [ 1753.293134][ T5257] usb 5-1: USB disconnect, device number 55 [ 1753.316361][ T8587] usb 2-1: USB disconnect, device number 64 [ 1753.553683][T21940] loop3: detected capacity change from 0 to 512 [ 1753.590702][T21940] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1753.638672][T21940] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1753.663528][T21940] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.7126: bg 0: block 248: padding at end of block bitmap is not set [ 1753.692518][T21940] Quota error (device loop3): write_blk: dquota write failed [ 1753.697877][T21943] loop2: detected capacity change from 0 to 64 [ 1753.700804][T21940] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1753.717285][T21940] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.7126: Failed to acquire dquot type 1 [ 1753.733074][T21940] EXT4-fs (loop3): 1 truncate cleaned up [ 1753.760631][T21940] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1753.794619][T21943] Trying to free block not in datazone [ 1753.801556][T21943] minix_free_block (loop2:21): bit already cleared [ 1753.875694][T20003] gspca_cpia1: usb_control_msg 02, error -71 [ 1753.897812][T21940] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1753.914645][T20003] gspca_cpia1: usb_control_msg 05, error -71 [ 1753.932630][T20003] gspca_cpia1: usb_control_msg 04, error -71 [ 1753.939734][T20003] cpia1 1-1:0.0: probe with driver cpia1 failed with error -71 [ 1753.950951][T21940] EXT4-fs error (device loop3): __ext4_remount:6491: comm syz.3.7126: Abort forced by user [ 1753.976824][T21940] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 1754.015133][T20003] usb 1-1: USB disconnect, device number 74 [ 1754.094979][T21940] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback. [ 1754.108372][T21940] ext4 filesystem being remounted at /229/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1754.164891][T21940] EXT4-fs error (device loop3): __ext4_remount:6491: comm syz.3.7126: Abort forced by user [ 1754.205094][T21940] EXT4-fs (loop3): Remounting filesystem read-only [ 1754.304056][T21948] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7130'. [ 1754.381931][T19231] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1754.673046][T21954] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7131'. [ 1754.757850][T21955] netlink: 277 bytes leftover after parsing attributes in process `syz.3.7131'. [ 1754.767487][T21955] netlink: 277 bytes leftover after parsing attributes in process `syz.3.7131'. [ 1754.970494][T21959] pim6reg: entered allmulticast mode [ 1755.084776][T21959] pim6reg: left allmulticast mode [ 1755.093659][ T1251] ieee802154 phy0 wpan0: encryption failed: -22 [ 1755.100819][ T1251] ieee802154 phy1 wpan1: encryption failed: -22 [ 1755.870858][T21974] delete_channel: no stack [ 1756.255869][T21984] bridge0: port 2(bridge_slave_1) entered listening state [ 1756.299671][T21984] bridge0: port 2(bridge_slave_1) entered disabled state [ 1756.651379][T21988] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7148'. [ 1757.019378][T21994] ALSA: mixer_oss: invalid index -1404626105 [ 1757.225332][T21999] netlink: 124 bytes leftover after parsing attributes in process `syz.0.7153'. [ 1757.334514][T22002] netlink: 'syz.3.7155': attribute type 1 has an invalid length. [ 1758.067982][T22015] netlink: 'syz.1.7161': attribute type 2 has an invalid length. [ 1758.076193][T22015] netlink: 'syz.1.7161': attribute type 8 has an invalid length. [ 1758.091174][T22015] netlink: 132 bytes leftover after parsing attributes in process `syz.1.7161'. [ 1759.829798][T22039] vlan3: entered allmulticast mode [ 1761.724569][T22053] netlink: 576 bytes leftover after parsing attributes in process `syz.1.7178'. [ 1762.432815][T22064] bond0: option all_slaves_active: invalid value (255) [ 1762.919708][T22070] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7186'. [ 1764.715149][T22108] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7203'. [ 1766.093507][T22129] loop3: detected capacity change from 0 to 64 [ 1767.076697][T22151] netlink: 'syz.2.7223': attribute type 10 has an invalid length. [ 1767.119076][T22151] syz_tun: entered promiscuous mode [ 1767.149064][T22151] bond0: (slave syz_tun): Enslaving as an active interface with an up link [ 1767.654838][T22158] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 1768.416228][ T8587] usb 5-1: new high-speed USB device number 56 using dummy_hcd [ 1768.655642][ T8587] usb 5-1: Using ep0 maxpacket: 32 [ 1768.700517][ T8587] usb 5-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 1768.710257][ T8587] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1768.718686][ T8587] usb 5-1: Product: syz [ 1768.723111][ T8587] usb 5-1: Manufacturer: syz [ 1768.734936][ T8587] usb 5-1: SerialNumber: syz [ 1768.764884][ T8587] usb 5-1: config 0 descriptor?? [ 1769.459770][ T8587] peak_usb 5-1:0.0: PEAK-System PCAN-USB Pro hwrev 0 serial 00000000.00000000 (2 channels) [ 1769.470802][ T8587] peak_usb 5-1:0.0 can0: sending command failure: -22 [ 1769.478374][ T8587] peak_usb 5-1:0.0 can0: sending command failure: -22 [ 1769.607876][ T8587] peak_usb 5-1:0.0: probe with driver peak_usb failed with error -22 [ 1769.708006][ T8587] usb 5-1: USB disconnect, device number 56 [ 1770.516199][T22183] loop2: detected capacity change from 0 to 4096 [ 1770.617373][T22183] ntfs3: loop2: Failed to load $MFT (-22). [ 1771.559173][T22210] loop3: detected capacity change from 0 to 128 [ 1771.707399][ T29] audit: type=1800 audit(1724610607.576:71): pid=22210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7249" name="file0" dev="loop3" ino=1049180 res=0 errno=0 [ 1773.112022][T22232] loop2: detected capacity change from 0 to 512 [ 1773.174453][T22232] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1773.523557][T22232] EXT4-fs (loop2): 1 orphan inode deleted [ 1773.535267][T22232] EXT4-fs (loop2): 1 truncate cleaned up [ 1773.549375][T22232] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1773.601234][T22232] EXT4-fs error (device loop2): ext4_inlinedir_to_tree:1403: inode #12: block 7: comm syz.2.7259: path /1167/bus/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0 [ 1773.664250][T22232] EXT4-fs (loop2): Remounting filesystem read-only [ 1773.986063][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1774.033303][T22233] loop3: detected capacity change from 0 to 4096 [ 1774.118963][T22233] NILFS (loop3): invalid segment: Checksum error in segment payload [ 1774.127605][T22233] NILFS (loop3): trying rollback from an earlier position [ 1774.225727][T22233] NILFS (loop3): recovery complete [ 1774.236414][T22246] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1774.434439][ T29] audit: type=1800 audit(1724610610.276:72): pid=22233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.7258" name="file2" dev="loop3" ino=12 res=0 errno=0 [ 1775.414169][T22266] sctp: [Deprecated]: syz.2.7273 (pid 22266) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1775.414169][T22266] Use struct sctp_sack_info instead [ 1775.459160][T22268] sctp: [Deprecated]: syz.2.7273 (pid 22268) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1775.459160][T22268] Use struct sctp_sack_info instead [ 1776.800029][T22283] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1776.864856][T22285] loop2: detected capacity change from 0 to 512 [ 1776.882760][T22285] EXT4-fs (loop2): couldn't mount as ext3 due to feature incompatibilities [ 1777.344237][ T8587] usb 3-1: new high-speed USB device number 78 using dummy_hcd [ 1777.579879][ T8587] usb 3-1: Using ep0 maxpacket: 8 [ 1777.601174][ T8587] usb 3-1: config 0 has an invalid interface number: 52 but max is 0 [ 1777.611497][ T8587] usb 3-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config [ 1777.622398][ T8587] usb 3-1: config 0 has no interface number 0 [ 1777.629051][ T8587] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 82, changing to 10 [ 1777.640702][ T8587] usb 3-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 1703, setting to 1024 [ 1777.657921][ T8587] usb 3-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1777.673235][ T8587] usb 3-1: config 0 interface 52 has no altsetting 0 [ 1777.727879][ T8587] usb 3-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00 [ 1777.743018][ T8587] usb 3-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35 [ 1777.753504][ T8587] usb 3-1: Product: syz [ 1777.758071][ T8587] usb 3-1: SerialNumber: syz [ 1777.817253][ T8587] usb 3-1: config 0 descriptor?? [ 1777.952571][T22298] netlink: 'syz.0.7286': attribute type 5 has an invalid length. [ 1778.084275][ T8587] input: syz (Stick) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.52/input/input121 [ 1778.348422][ T8587] usb 3-1: USB disconnect, device number 78 [ 1779.061592][T22318] loop4: detected capacity change from 0 to 512 [ 1779.197239][T22318] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.7297: bad orphan inode 15 [ 1779.241175][T22318] ext4_test_bit(bit=14, block=18) = 1 [ 1779.247043][T22318] is_bad_inode(inode)=0 [ 1779.251603][T22318] NEXT_ORPHAN(inode)=1023 [ 1779.256357][T22318] max_ino=32 [ 1779.259727][T22318] i_nlink=0 [ 1779.282193][T22318] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2978: inode #15: comm syz.4.7297: corrupted xattr block 19: e_value size too large [ 1779.296755][T22324] loop2: detected capacity change from 0 to 128 [ 1779.325545][T22318] EXT4-fs warning (device loop4): ext4_evict_inode:271: xattr delete (err -117) [ 1779.337034][T22318] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1779.349776][T22318] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1779.382891][T22324] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 1779.418119][T22318] EXT4-fs error (device loop4): ext4_add_entry:2435: inode #12: comm syz.4.7297: Directory hole found for htree leaf block 0 [ 1779.426363][T22324] sysv_free_block: trying to free block not in datazone [ 1779.437031][T22318] EXT4-fs error (device loop4): ext4_empty_dir:3088: inode #12: comm syz.4.7297: Directory hole found for htree leaf block 0 [ 1779.467670][ T8587] usb 4-1: new high-speed USB device number 79 using dummy_hcd [ 1779.566315][ T9100] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 1779.702830][T20326] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1779.754135][ T8587] usb 4-1: Using ep0 maxpacket: 16 [ 1779.826868][ T8587] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1779.836543][ T8587] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1779.845450][ T8587] usb 4-1: Product: syz [ 1779.849848][ T8587] usb 4-1: Manufacturer: syz [ 1779.854804][ T8587] usb 4-1: SerialNumber: syz [ 1779.931356][ T8587] r8152-cfgselector 4-1: Unknown version 0x0000 [ 1779.938095][ T8587] r8152-cfgselector 4-1: config 0 descriptor?? [ 1780.519396][T22342] loop2: detected capacity change from 0 to 512 [ 1780.537618][ T5256] r8152-cfgselector 4-1: USB disconnect, device number 79 [ 1780.680905][T22342] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1780.695761][T22342] ext4 filesystem being mounted at /1175/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1780.966021][ T9100] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1781.054401][ T8587] usb 1-1: new high-speed USB device number 75 using dummy_hcd [ 1781.372654][ T8587] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1781.384075][ T8587] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1781.394793][ T8587] usb 1-1: New USB device found, idVendor=056a, idProduct=0097, bcdDevice= 0.00 [ 1781.404379][ T8587] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1781.455232][ T8587] usb 1-1: config 0 descriptor?? [ 1781.730426][T22358] bridge0: port 2(bridge_slave_1) entered disabled state [ 1781.990833][ T8587] wacom 0003:056A:0097.00B8: unknown main item tag 0x0 [ 1782.055096][ T8587] wacom 0003:056A:0097.00B8: hidraw0: USB HID v0.00 Device [HID 056a:0097] on usb-dummy_hcd.0-1/input0 [ 1782.120086][ T8587] usb 1-1: USB disconnect, device number 75 [ 1782.730472][T20983] Bluetooth: hci4: command 0x0406 tx timeout [ 1782.739312][T22375] hsr0: VLAN not yet supported [ 1782.987095][T22377] ALSA: mixer_oss: invalid OSS volume '~|4z('[b"Q_' [ 1782.999955][T22377] ALSA: mixer_oss: invalid OSS volume '' [ 1783.385405][ T29] audit: type=1326 audit(1724610619.266:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22384 comm="syz.2.7323" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1783.408600][ T29] audit: type=1326 audit(1724610619.266:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22384 comm="syz.2.7323" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1783.431212][ T29] audit: type=1326 audit(1724610619.296:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22384 comm="syz.2.7323" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1783.454056][ T29] audit: type=1326 audit(1724610619.296:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22384 comm="syz.2.7323" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1783.478810][ T29] audit: type=1326 audit(1724610619.296:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22384 comm="syz.2.7323" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73bd579 code=0x7ffc0000 [ 1783.754745][T22392] loop4: detected capacity change from 0 to 1024 [ 1784.169637][T19226] hfsplus: b-tree write err: -5, ino 3 [ 1784.442818][T22402] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1784.688379][T22404] tap0: tun_chr_ioctl cmd 1074025677 [ 1784.694973][T22404] tap0: linktype set to 825 [ 1785.062115][T22408] netlink: 4 bytes leftover after parsing attributes in process `syz.0.7334'. [ 1785.184190][T10343] usb 5-1: new high-speed USB device number 57 using dummy_hcd [ 1785.394417][T10343] usb 5-1: Using ep0 maxpacket: 32 [ 1785.435887][T10343] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=91.c5 [ 1785.445619][T10343] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1785.454161][T10343] usb 5-1: Product: syz [ 1785.458566][T10343] usb 5-1: Manufacturer: syz [ 1785.463405][T10343] usb 5-1: SerialNumber: syz [ 1785.493553][T10343] usb 5-1: config 0 descriptor?? [ 1785.736665][T10343] usb 5-1: Cannot retrieve CPort count: -71 [ 1785.742959][T10343] usb 5-1: Cannot retrieve CPort count: -71 [ 1785.750295][T10343] es2_ap_driver 5-1:0.0: probe with driver es2_ap_driver failed with error -71 [ 1785.790698][T10343] usb 5-1: USB disconnect, device number 57 [ 1786.070466][ T29] audit: type=1326 audit(1724610621.966:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22428 comm="syz.0.7342" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f02579 code=0x0 [ 1786.210609][T22432] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1786.856901][T22441] bond0: option fail_over_mac: unable to set because the bond device has slaves [ 1786.911722][T22443] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7348'. [ 1787.116069][T22445] loop3: detected capacity change from 0 to 1024 [ 1788.090937][ T4240] ===================================================== [ 1788.098883][ T4240] BUG: KMSAN: uninit-value in n_tty_receive_buf_closing+0x539/0xb40 [ 1788.107799][ T4240] n_tty_receive_buf_closing+0x539/0xb40 [ 1788.114307][ T4240] n_tty_receive_buf_common+0x196b/0x2490 [ 1788.120678][ T4240] n_tty_receive_buf2+0x4c/0x60 [ 1788.126359][ T4240] tty_ldisc_receive_buf+0xd0/0x290 [ 1788.132226][ T4240] tty_port_default_receive_buf+0xdf/0x190 [ 1788.138855][ T4240] flush_to_ldisc+0x473/0xdb0 [ 1788.144353][ T4240] process_scheduled_works+0xae0/0x1c40 [ 1788.150542][ T4240] worker_thread+0xea7/0x14d0 [ 1788.156001][ T4240] kthread+0x3dd/0x540 [ 1788.160754][ T4240] ret_from_fork+0x6d/0x90 [ 1788.166383][ T4240] ret_from_fork_asm+0x1a/0x30 [ 1788.171849][ T4240] [ 1788.174959][ T4240] Uninit was created at: [ 1788.175118][ T4240] __kmalloc_noprof+0x661/0xf30 [ 1788.175239][ T4240] __tty_buffer_request_room+0x36e/0x6d0 [ 1788.175600][ T4240] __tty_insert_flip_string_flags+0x140/0x570 [ 1788.175747][ T4240] uart_insert_char+0x39e/0xa10 [ 1788.175860][ T4240] serial8250_read_char+0x1a7/0x5d0 [ 1788.175984][ T4240] serial8250_handle_irq+0x77a/0xb80 [ 1788.227911][ T4240] serial8250_default_handle_irq+0x120/0x2b0 [ 1788.234624][ T4240] serial8250_interrupt+0xc5/0x360 [ 1788.240318][ T4240] __handle_irq_event_percpu+0x118/0xca0 [ 1788.246582][ T4240] handle_irq_event+0xef/0x2c0 [ 1788.251504][ T4240] handle_edge_irq+0x340/0xfb0 [ 1788.256723][ T4240] __common_interrupt+0x97/0x1f0 [ 1788.262024][ T4240] common_interrupt+0x8f/0xa0 [ 1788.262170][ T4240] asm_common_interrupt+0x2b/0x40 [ 1788.262301][ T4240] [ 1788.262352][ T4240] CPU: 0 UID: 0 PID: 4240 Comm: kworker/u8:31 Not tainted 6.11.0-rc5-syzkaller #0 [ 1788.262464][ T4240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1788.262539][ T4240] Workqueue: events_unbound flush_to_ldisc [ 1788.262685][ T4240] ===================================================== [ 1788.262720][ T4240] Disabling lock debugging due to kernel taint [ 1788.262759][ T4240] Kernel panic - not syncing: kmsan.panic set ... [ 1788.262819][ T4240] CPU: 0 UID: 0 PID: 4240 Comm: kworker/u8:31 Tainted: G B 6.11.0-rc5-syzkaller #0 [ 1788.262953][ T4240] Tainted: [B]=BAD_PAGE [ 1788.262989][ T4240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 1788.263061][ T4240] Workqueue: events_unbound flush_to_ldisc [ 1788.263208][ T4240] Call Trace: [ 1788.263248][ T4240] [ 1788.263285][ T4240] dump_stack_lvl+0x216/0x2d0 [ 1788.263414][ T4240] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1788.263571][ T4240] dump_stack+0x1e/0x30 [ 1788.263689][ T4240] panic+0x4e2/0xcd0 [ 1788.263809][ T4240] ? kmsan_get_metadata+0xe1/0x1c0 [ 1788.263960][ T4240] kmsan_report+0x2c7/0x2d0 [ 1788.264093][ T4240] ? kmsan_internal_memmove_metadata+0xc7/0x230 [ 1788.264233][ T4240] ? __msan_warning+0x95/0x120 [ 1788.264352][ T4240] ? n_tty_receive_buf_closing+0x539/0xb40 [ 1788.264480][ T4240] ? n_tty_receive_buf_common+0x196b/0x2490 [ 1788.264606][ T4240] ? n_tty_receive_buf2+0x4c/0x60 [ 1788.264719][ T4240] ? tty_ldisc_receive_buf+0xd0/0x290 [ 1788.264865][ T4240] ? tty_port_default_receive_buf+0xdf/0x190 [ 1788.265025][ T4240] ? flush_to_ldisc+0x473/0xdb0 [ 1788.265174][ T4240] ? process_scheduled_works+0xae0/0x1c40 [ 1788.265304][ T4240] ? worker_thread+0xea7/0x14d0 [ 1788.265428][ T4240] ? kthread+0x3dd/0x540 [ 1788.265555][ T4240] ? ret_from_fork+0x6d/0x90 [ 1788.265654][ T4240] ? ret_from_fork_asm+0x1a/0x30 [ 1788.265785][ T4240] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1788.265938][ T4240] ? __update_load_avg_cfs_rq+0x121/0x10e0 [ 1788.266087][ T4240] ? kmsan_get_metadata+0x13e/0x1c0 [ 1788.266231][ T4240] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1788.266382][ T4240] ? kmsan_get_metadata+0x13e/0x1c0 [ 1788.266521][ T4240] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1788.266671][ T4240] __msan_warning+0x95/0x120 [ 1788.266792][ T4240] n_tty_receive_buf_closing+0x539/0xb40 [ 1788.266953][ T4240] n_tty_receive_buf_common+0x196b/0x2490 [ 1788.267095][ T4240] ? finish_task_switch+0x1c8/0x8f0 [ 1788.267288][ T4240] n_tty_receive_buf2+0x4c/0x60 [ 1788.267401][ T4240] ? __pfx_n_tty_receive_buf2+0x10/0x10 [ 1788.267523][ T4240] tty_ldisc_receive_buf+0xd0/0x290 [ 1788.267686][ T4240] tty_port_default_receive_buf+0xdf/0x190 [ 1788.267858][ T4240] flush_to_ldisc+0x473/0xdb0 [ 1788.268017][ T4240] ? __pfx_tty_port_default_receive_buf+0x10/0x10 [ 1788.268193][ T4240] ? __pfx_flush_to_ldisc+0x10/0x10 [ 1788.268340][ T4240] process_scheduled_works+0xae0/0x1c40 [ 1788.268505][ T4240] worker_thread+0xea7/0x14d0 [ 1788.268649][ T4240] kthread+0x3dd/0x540 [ 1788.268777][ T4240] ? __pfx_worker_thread+0x10/0x10 [ 1788.268902][ T4240] ? __pfx_kthread+0x10/0x10 [ 1788.269030][ T4240] ret_from_fork+0x6d/0x90 [ 1788.269124][ T4240] ? __pfx_kthread+0x10/0x10 [ 1788.269260][ T4240] ret_from_fork_asm+0x1a/0x30 [ 1788.269398][ T4240] [ 1788.273753][ T4240] Kernel Offset: disabled