last executing test programs: 2m31.043780507s ago: executing program 2 (id=8815): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000060000b00000000000000000850000004100000085000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x0, 0x8005, 0x0, &(0x7f0000000000)='\a\x00\x00\x00\x00\x00\x00\x00', 0x0, 0x8005, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 2m30.678352983s ago: executing program 2 (id=8816): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000380)='./bus\x00', 0x804, &(0x7f00000001c0)={[{@uni_xlateno}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'koi8-r'}}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@rodir}, {@uni_xlateno}, {@shortname_win95}, {@uni_xlate}, {@fat=@uid}, {@fat=@codepage={'codepage', 0x3d, '1250'}}, {@uni_xlateno}, {@utf8no}, {@uni_xlateno}, {@uni_xlate}, {@uni_xlate}]}, 0x81, 0x276, &(0x7f0000000640)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.idle_time\x00', 0x275a, 0x0) 2m30.461865116s ago: executing program 2 (id=8819): r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$IPT_SO_GET_ENTRIES(r0, 0x0, 0x41, 0x0, &(0x7f0000000200)) 2m30.325324818s ago: executing program 2 (id=8821): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f626172726965722c63726561746f723d5c5d07842c63726561746f723dbd3cfff52c6e6c733d63703433372c756d61736b3d3030303030303030303030303030000000000000dc599bad22eebebb0002372c6e6f6465000000000000000000"], 0x1, 0x6a4, &(0x7f0000001380)="$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") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 2m30.118471542s ago: executing program 2 (id=8826): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="6c0000000002010400000000000000000a000800180003801400018008000100e0000001080102007f0000013c0002802c0001801400ebfffc00000000000000000000000000000014000400ff02000000000074febdc300000000010c0002800500010000000000040001"], 0x6c}, 0x1, 0x0, 0x0, 0xc000}, 0x0) 2m29.693024218s ago: executing program 2 (id=8833): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000380)={0x0, 0x1, 0x3}) 2m29.218884345s ago: executing program 32 (id=8833): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000380)={0x0, 0x1, 0x3}) 2.042530899s ago: executing program 4 (id=10811): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x6, 0x14, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000450000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8fffdffb702000008000000b703000000000000850000000500000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 1.916935871s ago: executing program 4 (id=10815): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000000d00)=ANY=[@ANYBLOB="18020000000000000000000000008000850000006100000085000000d000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000300)={r0, 0x0, 0x14, 0x0, &(0x7f0000000000)="243c42e8680d85ffff03762f080071127b58425e", 0x0, 0x2200, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.717535034s ago: executing program 3 (id=10819): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x87}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.692127744s ago: executing program 1 (id=10820): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='loginuid\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 1.642045055s ago: executing program 4 (id=10821): r0 = socket$inet(0x2, 0x3, 0x7f) setsockopt$inet_int(r0, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4) 1.543038546s ago: executing program 1 (id=10823): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_buf(r0, 0x6, 0xe, &(0x7f0000000000)="1dbf3ebe", 0x4) 1.523139937s ago: executing program 3 (id=10824): r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_AUTO_ASCONF(r0, 0x84, 0x1e, &(0x7f00000008c0)=0x2, 0x4) 1.434504058s ago: executing program 4 (id=10825): r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f0000000040)={0x3, 0x0, 0x1, 0x3}) 1.396174148s ago: executing program 3 (id=10827): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x560a, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x2, 0x3, 0x3}) 1.29818922s ago: executing program 1 (id=10829): r0 = socket$pppl2tp(0x18, 0x1, 0x1) ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000a40)={'hsr0\x00', 0x3}) 1.29791461s ago: executing program 4 (id=10830): syz_mount_image$ext4(&(0x7f00000008c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x800080, &(0x7f00000000c0)={[{@test_dummy_encryption}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x3, 0x45f, &(0x7f0000000900)="$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") execve(&(0x7f0000000640)='./file0/file0\x00', 0x0, 0x0) 890.499197ms ago: executing program 4 (id=10832): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000a00)=ANY=[@ANYBLOB="120100007856bb40da0b53813de2010203010902"], 0x0) syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000380)={0x34, &(0x7f0000000280)=ANY=[@ANYBLOB="2e070400000001cc12df"], 0x0, 0x0, 0x0, 0x0, 0x0}) 818.569127ms ago: executing program 1 (id=10834): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="540000001000030400000000fcdbff2500000000", @ANYRES32=0x0, @ANYBLOB="000000005b880300140003006d61637365633000000000000000000014002b80080003000400000008000100", @ANYRES32=r0, @ANYRESHEX=r0], 0x54}}, 0x8000) 798.658038ms ago: executing program 3 (id=10835): r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x101002) writev(r0, &(0x7f0000000540)=[{&(0x7f0000000640)="c3", 0x1}], 0x1) 723.479309ms ago: executing program 0 (id=10836): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000300)={0x24, @short={0x2, 0x1, 0xaaa2}}, 0x14) 572.345011ms ago: executing program 3 (id=10837): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed4040, &(0x7f0000000a00)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@grpid}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@noload}]}, 0xf5, 0x48b, &(0x7f0000000f40)="$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") chroot(&(0x7f00000010c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 571.775871ms ago: executing program 0 (id=10838): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff}) ioctl$TUNDETACHFILTER(r0, 0x8901, 0x1000000000000) 510.608432ms ago: executing program 1 (id=10839): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) shutdown(r0, 0x1) 412.811024ms ago: executing program 0 (id=10840): r0 = fsopen(&(0x7f0000000040)='afs\x00', 0x0) fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='source', &(0x7f0000000840)='%\\/:\x85X\\\x03\xa6\xd7}\xcd\xeb*\xb1\xa8\xb7\x81\xc8\xcbR\xa8?\x97 \xcbz&\x17\xa4\xfd^\xe1I\x11X\x90\x03\xb7W\x05\xb0\x99\x10F0\xb5YP9\xc3\xe2M\xaa\x81\xfev:\xe40\x9e\xdb\x98\xb4\xd0\xdcE\x14\x910\x1b.G\xab\x86\xdfy\xe6\xde11_H]\xe2\xc3\xb2fa\x7f\x8c\xf3\xc6\x85\xc9\xd6j\xff\xaa\xdbWD\x87\xe3\\mUSy\x0f\x82qW\fE\xd15ec>:D+', 0x0) 406.909113ms ago: executing program 1 (id=10841): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f0000000700)={[{@quota}, {@dioread_nolock}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4e1, &(0x7f0000000b00)="$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") lchown(&(0x7f0000000000)='./file0\x00', 0xee01, 0x0) 314.823725ms ago: executing program 0 (id=10842): r0 = socket$kcm(0x10, 0x2, 0x10) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e020031000b05d25a806f8c6394f90324fc602f0009000a740100053582c137153e370248018000f01700d1bd", 0x33fe0}], 0x1}, 0x0) 158.514928ms ago: executing program 3 (id=10843): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, 0x0, 0x0) 76.266239ms ago: executing program 0 (id=10844): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCOUTQ(r0, 0x5411, 0x0) 0s ago: executing program 0 (id=10845): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfc, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'lo\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810) kernel console output (not intermixed with test programs): local) [ 911.356341][ T28] Bluetooth: Can't get state to change to load configuration err [ 911.378673][ T28] Bluetooth: Loading sysconfig file failed [ 911.398076][ T28] ath3k: probe of 5-1:0.0 failed with error -16 [ 911.414832][ T28] usb 5-1: USB disconnect, device number 3 [ 911.656449][T27267] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9286'. [ 911.667148][T27267] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9286'. [ 911.720617][T27270] loop0: detected capacity change from 0 to 256 [ 911.760621][T27270] FAT-fs (loop0): Directory bread(block 64) failed [ 911.780102][T27270] FAT-fs (loop0): Directory bread(block 65) failed [ 911.801582][T27270] FAT-fs (loop0): Directory bread(block 66) failed [ 911.814128][T27270] FAT-fs (loop0): Directory bread(block 67) failed [ 911.838834][T27270] FAT-fs (loop0): Directory bread(block 68) failed [ 911.845388][T27270] FAT-fs (loop0): Directory bread(block 69) failed [ 911.852202][T27270] FAT-fs (loop0): Directory bread(block 70) failed [ 911.870874][T27270] FAT-fs (loop0): Directory bread(block 71) failed [ 911.881660][T27270] FAT-fs (loop0): Directory bread(block 72) failed [ 911.888211][T27270] FAT-fs (loop0): Directory bread(block 73) failed [ 912.051273][T27279] netlink: 104 bytes leftover after parsing attributes in process `syz.4.9294'. [ 912.256213][T27287] loop0: detected capacity change from 0 to 64 [ 912.347583][T27287] Bad inode number on dev loop0: 6 is out of range [ 912.856102][T27306] netlink: 'syz.0.9307': attribute type 30 has an invalid length. [ 913.063411][T27283] loop4: detected capacity change from 0 to 32768 [ 913.077946][T27283] (syz.4.9295,27283,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 913.109357][T27283] (syz.4.9295,27283,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 913.136595][T27316] loop0: detected capacity change from 0 to 256 [ 913.166114][T27283] JBD2: Ignoring recovery information on journal [ 913.172893][T27316] FAT-fs (loop0): "posix" option is obsolete, not supported now [ 913.310906][T27283] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 913.630487][T25807] ocfs2: Unmounting device (7,4) on (node local) [ 914.189742][T27349] loop1: detected capacity change from 0 to 4096 [ 914.221596][T27346] loop3: detected capacity change from 0 to 4096 [ 914.249292][T27346] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 914.742190][T27364] loop3: detected capacity change from 0 to 256 [ 914.826525][T27364] FAT-fs (loop3): Directory bread(block 64) failed [ 914.864257][T27364] FAT-fs (loop3): Directory bread(block 65) failed [ 914.881780][T27364] FAT-fs (loop3): Directory bread(block 66) failed [ 914.906829][T27364] FAT-fs (loop3): Directory bread(block 67) failed [ 914.960556][T27364] FAT-fs (loop3): Directory bread(block 68) failed [ 914.967099][T27364] FAT-fs (loop3): Directory bread(block 69) failed [ 915.001993][T27352] loop4: detected capacity change from 0 to 32768 [ 915.013801][T27364] FAT-fs (loop3): Directory bread(block 70) failed [ 915.020343][T27364] FAT-fs (loop3): Directory bread(block 71) failed [ 915.041391][T27364] FAT-fs (loop3): Directory bread(block 72) failed [ 915.048986][T27364] FAT-fs (loop3): Directory bread(block 73) failed [ 915.070265][T27352] (syz.4.9329,27352,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 915.121075][T27352] (syz.4.9329,27352,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 915.209198][T27352] JBD2: Ignoring recovery information on journal [ 915.216514][T27376] netlink: 'syz.1.9341': attribute type 2 has an invalid length. [ 915.384015][T27352] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 915.687056][T25807] ocfs2: Unmounting device (7,4) on (node local) [ 915.810875][T27396] loop1: detected capacity change from 0 to 512 [ 916.146397][T27406] SET target dimension over the limit! [ 916.178091][T27409] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9356'. [ 916.364629][T27412] loop1: detected capacity change from 0 to 4096 [ 916.382033][T27412] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 916.664705][T27427] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0) [ 916.965400][T27439] netlink: 'syz.3.9371': attribute type 11 has an invalid length. [ 916.995750][T27441] loop4: detected capacity change from 0 to 2048 [ 917.050680][T27441] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 917.206741][ T6455] usb 2-1: new full-speed USB device number 44 using dummy_hcd [ 917.422003][ T6455] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 917.434170][ T6455] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64 [ 917.467133][ T6455] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 30768, setting to 64 [ 917.483617][ T6455] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 917.503146][T27461] netlink: 76 bytes leftover after parsing attributes in process `syz.3.9382'. [ 917.504446][ T6455] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 1.40 [ 917.514418][T27461] netlink: 76 bytes leftover after parsing attributes in process `syz.3.9382'. [ 917.521394][ T6455] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 917.521415][ T6455] usb 2-1: SerialNumber: syz [ 917.532310][T27437] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 917.551978][T27437] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 917.564650][ T6455] cdc_acm 2-1:1.0: Control and data interfaces are not separated! [ 917.811864][ T6455] cdc_acm 2-1:1.0: ttyACM0: USB ACM device [ 917.857852][ T6455] usb 2-1: USB disconnect, device number 44 [ 917.870797][T27471] netlink: 40 bytes leftover after parsing attributes in process `syz.3.9387'. [ 919.295766][T27530] netlink: 404 bytes leftover after parsing attributes in process `syz.3.9416'. [ 919.342065][T27530] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9416'. [ 919.380475][T27530] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9416'. [ 919.391590][T27530] netlink: 72 bytes leftover after parsing attributes in process `syz.3.9416'. [ 919.769753][T27550] loop4: detected capacity change from 0 to 1024 [ 919.825593][ T27] audit: type=1326 audit(1751590823.588:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27551 comm="syz.0.9427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 919.844388][T27554] program syz.3.9428 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 919.866034][ T27] audit: type=1326 audit(1751590823.588:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27551 comm="syz.0.9427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 919.907436][ T27] audit: type=1326 audit(1751590823.588:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27551 comm="syz.0.9427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 919.974203][ T27] audit: type=1326 audit(1751590823.588:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27551 comm="syz.0.9427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 920.049004][ T27] audit: type=1326 audit(1751590823.588:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27551 comm="syz.0.9427" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 920.145543][ T27] audit: type=1326 audit(1751590823.850:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27559 comm="syz.3.9431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 920.242849][ T27] audit: type=1326 audit(1751590823.850:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27559 comm="syz.3.9431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 920.302429][T27568] loop4: detected capacity change from 0 to 256 [ 920.315116][T27563] loop1: detected capacity change from 0 to 4096 [ 920.357727][T27563] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 920.851213][T27583] loop4: detected capacity change from 0 to 2048 [ 920.866896][T27583] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 129: 0x32 != 0x7d [ 920.878691][T27583] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 921.274720][T27600] loop4: detected capacity change from 0 to 128 [ 921.295924][T27600] EXT4-fs: Ignoring removed mblk_io_submit option [ 921.339295][T27600] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 921.371247][T27600] ext4 filesystem being mounted at /130/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 921.424466][T27600] EXT4-fs error (device loop4): ext4_validate_block_bitmap:421: comm syz.4.9450: bg 0: bad block bitmap checksum [ 921.599947][T25807] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 921.778983][T27616] loop0: detected capacity change from 0 to 4096 [ 921.797417][T27616] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 921.815980][T27621] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.9459'. [ 921.961337][T27616] ntfs3: loop0: failed to convert "c46c" to iso8859-9 [ 922.225071][T27635] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 922.240709][ T6455] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 922.301499][T27637] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 922.346025][T27641] AppArmor: change_hat: Invalid input '0' [ 922.445686][ T6455] usb 5-1: Using ep0 maxpacket: 8 [ 922.480720][ T6455] usb 5-1: config 179 has an invalid interface number: 65 but max is 0 [ 922.496099][ T6455] usb 5-1: config 179 has no interface number 0 [ 922.504828][ T6455] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 922.527266][ T6455] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 922.544143][ T6455] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 922.576935][ T6455] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 922.614762][ T6455] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 922.647658][ T6455] usb 5-1: config 179 interface 65 has no altsetting 0 [ 922.654637][ T6455] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 922.671768][ T6455] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 922.711216][ T6455] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input45 [ 922.764765][ T6537] Bluetooth: hci0: command 0x0406 tx timeout [ 923.000832][ T6455] usb 5-1: USB disconnect, device number 4 [ 923.006741][ C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 923.029274][ T6455] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 923.302560][T27674] loop1: detected capacity change from 0 to 64 [ 923.658490][T27688] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9492'. [ 923.717005][ T6455] usb 2-1: new high-speed USB device number 45 using dummy_hcd [ 923.758544][T27690] loop4: detected capacity change from 0 to 256 [ 923.777555][T27690] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 923.948498][T27692] mmap: syz.4.9494 (27692): VmData 37466112 exceed data ulimit 10. Update limits or use boot option ignore_rlimit_data. [ 923.952742][ T6455] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 923.978540][ T6455] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 923.989271][ T6455] usb 2-1: config 220 has no interface number 2 [ 923.996812][ T6455] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 924.015333][ T6455] usb 2-1: config 220 interface 0 has no altsetting 0 [ 924.022367][ T6455] usb 2-1: config 220 interface 76 has no altsetting 0 [ 924.043138][ T6455] usb 2-1: config 220 interface 1 has no altsetting 0 [ 924.067031][ T6455] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 924.076975][ T6455] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 924.100873][ T6455] usb 2-1: Product: syz [ 924.105053][ T6455] usb 2-1: Manufacturer: syz [ 924.109650][ T6455] usb 2-1: SerialNumber: syz [ 924.353285][ T6455] usb 2-1: selecting invalid altsetting 0 [ 924.360530][ T6455] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 924.366910][ T6455] usb 2-1: No valid video chain found. [ 924.383239][ T6455] usb 2-1: selecting invalid altsetting 0 [ 924.390298][ T6455] usbtest: probe of 2-1:220.1 failed with error -22 [ 924.407780][ T6455] usb 2-1: USB disconnect, device number 45 [ 924.517814][T27686] loop3: detected capacity change from 0 to 65536 [ 924.548762][T27686] XFS (loop3): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 924.604621][T27686] XFS (loop3): Ending clean mount [ 924.637164][T27686] XFS (loop3): Quotacheck needed: Please wait. [ 924.713913][T27686] XFS (loop3): Quotacheck: Done. [ 924.765124][T27714] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.9501'. [ 924.774667][T27714] openvswitch: netlink: Key type 2832 is out of range max 32 [ 924.893797][ T6539] XFS (loop3): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 925.265123][T27726] netlink: 'syz.4.9508': attribute type 1 has an invalid length. [ 925.908170][T27747] loop4: detected capacity change from 0 to 256 [ 925.924879][T27747] FAT-fs (loop4): Directory bread(block 1285) failed [ 925.968773][T27747] FAT-fs (loop4): Directory bread(block 1285) failed [ 925.982818][ T6688] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 925.987562][T27747] FAT-fs (loop4): Directory bread(block 1285) failed [ 926.021623][T27747] FAT-fs (loop4): Directory bread(block 1285) failed [ 926.039452][T27750] loop0: detected capacity change from 0 to 256 [ 926.208857][ T6688] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 926.236497][ T6688] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 926.256783][ T6688] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 926.295478][ T6688] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 926.316069][ T6688] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 926.345174][ T6688] usb 4-1: Product: syz [ 926.349961][ T6688] usb 4-1: Manufacturer: syz [ 926.354573][ T6688] usb 4-1: SerialNumber: syz [ 926.385158][ T6688] usb 4-1: config 0 descriptor?? [ 926.402467][ T6688] usb 4-1: Found UVC 34.00 device syz (8086:0b5b) [ 926.414523][ T6688] usb 4-1: No valid video chain found. [ 926.604296][T27763] netlink: 'syz.4.9525': attribute type 1 has an invalid length. [ 926.612206][T27763] netlink: 'syz.4.9525': attribute type 2 has an invalid length. [ 926.643483][ T6455] usb 4-1: USB disconnect, device number 55 [ 926.736598][T27734] loop1: detected capacity change from 0 to 65536 [ 926.803149][T27774] loop0: detected capacity change from 0 to 128 [ 926.806330][T27734] XFS (loop1): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 926.816785][T27774] EXT4-fs: Ignoring removed mblk_io_submit option [ 926.878626][T27774] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 926.900945][T27774] ext4 filesystem being mounted at /2145/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 926.946783][T27774] EXT4-fs error (device loop0): ext4_validate_block_bitmap:421: comm syz.0.9527: bg 0: bad block bitmap checksum [ 926.981311][T27734] XFS (loop1): Ending clean mount [ 926.997555][T27734] XFS (loop1): Quotacheck needed: Please wait. [ 927.027355][ T6542] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 927.068636][T27734] XFS (loop1): Quotacheck: Done. [ 927.110423][T27783] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9530'. [ 927.239317][ T6533] XFS (loop1): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 927.248303][T27785] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9531'. [ 927.632432][ T27] audit: type=1326 audit(1751590830.893:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27794 comm="syz.0.9537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 927.709164][ T27] audit: type=1326 audit(1751590830.893:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27794 comm="syz.0.9537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 927.767761][ T27] audit: type=1326 audit(1751590830.912:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27794 comm="syz.0.9537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 927.791701][T27781] orangefs_mount: mount request failed with -4 [ 927.881882][ T27] audit: type=1326 audit(1751590830.912:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27794 comm="syz.0.9537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 927.960673][ T27] audit: type=1326 audit(1751590830.912:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27794 comm="syz.0.9537" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 927.987874][T27806] netlink: 'syz.0.9542': attribute type 21 has an invalid length. [ 928.015753][T27806] netlink: 'syz.0.9542': attribute type 1 has an invalid length. [ 928.029774][T27807] loop4: detected capacity change from 0 to 256 [ 928.039677][T27803] loop1: detected capacity change from 0 to 4096 [ 928.109973][T27807] FAT-fs (loop4): Directory bread(block 64) failed [ 928.112596][T27803] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 928.119406][T27807] FAT-fs (loop4): Directory bread(block 65) failed [ 928.193822][T27807] FAT-fs (loop4): Directory bread(block 66) failed [ 928.207241][T27807] FAT-fs (loop4): Directory bread(block 67) failed [ 928.226173][T27807] FAT-fs (loop4): Directory bread(block 68) failed [ 928.235011][T27807] FAT-fs (loop4): Directory bread(block 69) failed [ 928.251496][T27807] FAT-fs (loop4): Directory bread(block 70) failed [ 928.258304][T27807] FAT-fs (loop4): Directory bread(block 71) failed [ 928.276141][T27803] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 928.306349][T27807] FAT-fs (loop4): Directory bread(block 72) failed [ 928.325505][T27807] FAT-fs (loop4): Directory bread(block 73) failed [ 928.557171][ T27] audit: type=1326 audit(1751590831.754:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27818 comm="syz.3.9548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 928.616668][ T27] audit: type=1326 audit(1751590831.754:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27818 comm="syz.3.9548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 928.657998][ T27] audit: type=1326 audit(1751590831.791:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27818 comm="syz.3.9548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 928.691927][ T27] audit: type=1326 audit(1751590831.791:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27818 comm="syz.3.9548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 928.974994][T27834] loop1: detected capacity change from 0 to 1024 [ 929.024494][T27834] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 929.223501][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 929.522424][T27863] netlink: 'syz.1.9568': attribute type 21 has an invalid length. [ 930.133660][T27889] tmpfs: Bad value for 'usrquota_inode_hardlimit' [ 930.353631][T27899] netlink: 'syz.1.9587': attribute type 8 has an invalid length. [ 930.643759][T27911] cgroup: name respecified [ 930.978009][T27930] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9602'. [ 931.721961][T27927] loop4: detected capacity change from 0 to 32768 [ 931.792176][T27927] read_mapping_page failed! [ 931.797138][T27927] ERROR: (device loop4): txCommit: [ 931.797138][T27927] [ 931.816417][T27958] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 932.006411][T27964] loop4: detected capacity change from 0 to 1024 [ 932.087438][T27964] hfsplus: xattr searching failed [ 932.578170][T27986] loop3: detected capacity change from 0 to 1024 [ 932.721409][T27990] sctp: [Deprecated]: syz.4.9632 (pid 27990) Use of struct sctp_assoc_value in delayed_ack socket option. [ 932.721409][T27990] Use struct sctp_sack_info instead [ 933.042755][T27970] loop0: detected capacity change from 0 to 32768 [ 933.073565][T27970] XFS: ikeep mount option is deprecated. [ 933.127234][T27970] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 933.143020][T28007] netlink: 'syz.4.9638': attribute type 32 has an invalid length. [ 933.152175][T28007] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9638'. [ 933.204741][T27970] XFS (loop0): Ending clean mount [ 933.227460][T27970] XFS (loop0): Quotacheck needed: Please wait. [ 933.326414][T27970] XFS (loop0): Quotacheck: Done. [ 933.488906][ T6542] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 933.995378][T28031] loop3: detected capacity change from 0 to 1764 [ 934.503264][T13948] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 934.706765][T13948] usb 4-1: Using ep0 maxpacket: 16 [ 934.719585][T13948] usb 4-1: config 254 has an invalid interface number: 235 but max is 0 [ 934.747030][T13948] usb 4-1: config 254 has no interface number 0 [ 934.754430][T13948] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32 [ 934.770103][T13948] usb 4-1: config 254 interface 235 has no altsetting 0 [ 934.779571][T13948] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1 [ 934.799630][T28068] loop4: detected capacity change from 0 to 256 [ 934.806121][T13948] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 934.816280][T13948] usb 4-1: Product: syz [ 934.820460][T13948] usb 4-1: Manufacturer: syz [ 934.827438][T13948] usb 4-1: SerialNumber: syz [ 934.834558][T28068] exfat: Deprecated parameter 'namecase' [ 934.840260][T28068] exfat: Deprecated parameter 'namecase' [ 934.847949][T28040] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 934.878443][T28068] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 935.097276][T28040] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 935.124092][T13948] usbtest 4-1:254.235: Linux gadget zero [ 935.129763][T13948] usbtest 4-1:254.235: high-speed {control in/out bulk-in bulk-out} tests (+alt) [ 935.302082][T28076] x_tables: duplicate underflow at hook 2 [ 935.377437][T13948] usb 4-1: USB disconnect, device number 56 [ 935.385411][T28072] loop1: detected capacity change from 0 to 32768 [ 935.409630][T28072] (syz.1.9669,28072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 935.428648][T28078] loop4: detected capacity change from 0 to 128 [ 935.439162][T28072] (syz.1.9669,28072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 935.450713][T28078] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 935.506137][T28078] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: writeback. [ 935.544286][T28072] JBD2: Ignoring recovery information on journal [ 935.588463][T28078] EXT4-fs error (device loop4): __ext4_find_entry:1696: inode #2: comm syz.4.9672: checksumming directory block 0 [ 935.603473][T28072] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 935.667213][T25807] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 935.804723][ T6533] ocfs2: Unmounting device (7,1) on (node local) [ 936.082531][T28091] loop4: detected capacity change from 0 to 1024 [ 936.093339][T28093] loop3: detected capacity change from 0 to 256 [ 936.141649][T28093] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 936.233631][T28097] netlink: 60 bytes leftover after parsing attributes in process `syz.4.9680'. [ 936.400021][T28101] netlink: 20 bytes leftover after parsing attributes in process `syz.1.9682'. [ 936.614139][T28112] usb usb9: usbfs: process 28112 (syz.1.9686) did not claim interface 0 before use [ 936.761260][T28118] loop1: detected capacity change from 0 to 1024 [ 937.002327][T28128] netlink: 'syz.3.9695': attribute type 10 has an invalid length. [ 937.040381][T28128] team0: Port device dummy0 added [ 937.236519][T28136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9698'. [ 937.272788][T28136] netlink: 'syz.3.9698': attribute type 2 has an invalid length. [ 937.300097][T28136] netlink: 'syz.3.9698': attribute type 1 has an invalid length. [ 937.346453][T28136] netlink: 16 bytes leftover after parsing attributes in process `syz.3.9698'. [ 938.098529][T28177] netlink: 1572 bytes leftover after parsing attributes in process `syz.3.9719'. [ 938.403676][T28191] loop3: detected capacity change from 0 to 512 [ 938.442336][T28191] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 938.450598][T28191] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 938.459441][T28191] System zones: 0-1, 15-15, 18-18, 34-34 [ 938.465383][T28191] EXT4-fs (loop3): orphan cleanup on readonly fs [ 938.472289][T28191] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 938.482549][T28191] EXT4-fs warning (device loop3): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 938.497229][T28191] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 938.504462][T28191] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.9726: bad orphan inode 16 [ 938.514744][T28191] ext4_test_bit(bit=15, block=18) = 1 [ 938.520136][T28191] is_bad_inode(inode)=0 [ 938.524494][T28191] NEXT_ORPHAN(inode)=0 [ 938.528610][T28191] max_ino=32 [ 938.531801][T28191] i_nlink=2 [ 938.536290][T28191] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 938.574589][T28191] fscrypt (loop3, inode 16): Error -61 getting encryption context [ 938.602508][ T6539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 938.640958][ T28] usb 2-1: new high-speed USB device number 46 using dummy_hcd [ 938.716754][T28197] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 938.867612][ T28] usb 2-1: config 1 has an invalid interface number: 27 but max is 0 [ 938.875915][ T28] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 938.893253][ T28] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 1 [ 938.934945][ T28] usb 2-1: config 1 has no interface number 1 [ 938.950522][ T28] usb 2-1: config 1 interface 27 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 938.970203][ T28] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 938.980386][ T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 939.007274][ T28] usb 2-1: SerialNumber: syz [ 939.017037][ T28] usb 2-1: bad CDC descriptors [ 939.034053][T28205] loop4: detected capacity change from 0 to 4096 [ 939.047870][T28205] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 939.172414][T28209] libceph: resolve '4' (ret=-3): failed [ 939.248905][ T28] usb 2-1: USB disconnect, device number 46 [ 939.398066][T28213] loop3: detected capacity change from 0 to 4096 [ 939.430514][T28213] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 939.698074][T28215] loop3: detected capacity change from 0 to 1024 [ 939.773984][T28212] loop4: detected capacity change from 0 to 32768 [ 939.783353][T25884] hfsplus: b-tree write err: -5, ino 4 [ 939.803795][T28212] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 939.896570][T28212] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 940.072016][T28227] usb usb1: check_ctrlrecip: process 28227 (syz.1.9741) requesting ep 01 but needs 81 [ 940.096582][T28227] usb usb1: usbfs: process 28227 (syz.1.9741) did not claim interface 0 before use [ 940.260701][T25807] ocfs2: Unmounting device (7,4) on (node local) [ 940.270507][T28233] netlink: 'syz.3.9744': attribute type 3 has an invalid length. [ 940.487007][T28239] netlink: 1572 bytes leftover after parsing attributes in process `syz.1.9748'. [ 940.574140][T28243] netlink: 180 bytes leftover after parsing attributes in process `syz.4.9745'. [ 940.649001][T28245] loop1: detected capacity change from 0 to 2048 [ 940.699647][T28245] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 940.731209][T28245] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 940.749377][T28245] UDF-fs: Scanning with blocksize 512 failed [ 940.777046][T28245] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 941.078908][T28241] loop3: detected capacity change from 0 to 32768 [ 941.158841][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 941.165430][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 941.569521][ T6455] usb 4-1: new high-speed USB device number 57 using dummy_hcd [ 941.719803][ T28] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 941.783694][ T6455] usb 4-1: Using ep0 maxpacket: 8 [ 941.791578][T28281] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9768'. [ 941.805941][ T6455] usb 4-1: New USB device found, idVendor=0763, idProduct=2081, bcdDevice=d0.ab [ 941.815007][ T6455] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 941.834364][ T6455] usb 4-1: Product: syz [ 941.853198][ T6455] usb 4-1: Manufacturer: syz [ 941.860506][ T6455] usb 4-1: SerialNumber: syz [ 941.867952][ T6455] usb 4-1: config 0 descriptor?? [ 941.933708][ T28] usb 5-1: Using ep0 maxpacket: 32 [ 941.940542][ T28] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 941.965694][ T28] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 941.981237][ T28] usb 5-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 941.999749][ T28] usb 5-1: config 0 interface 0 has no altsetting 1 [ 942.011807][ T28] usb 5-1: New USB device found, idVendor=0582, idProduct=0033, bcdDevice=8e.57 [ 942.021366][ T28] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 942.039631][ T28] usb 5-1: Product: syz [ 942.044769][ T28] usb 5-1: Manufacturer: syz [ 942.049377][ T28] usb 5-1: SerialNumber: syz [ 942.085032][T28287] loop0: detected capacity change from 0 to 4096 [ 942.087004][ T28] usb 5-1: config 0 descriptor?? [ 942.112307][T28287] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 942.251586][ T27] audit: type=1800 audit(1751590844.560:101): pid=28287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.9771" name="file0" dev="loop0" ino=33 res=0 errno=0 [ 942.441779][ T28] usb 5-1: Quirk or no altest; falling back to MIDI 1.0 [ 942.444986][ T6455] usb 4-1: USB disconnect, device number 57 [ 942.459415][T28295] loop1: detected capacity change from 0 to 4096 [ 942.515100][ T28] snd-usb-audio: probe of 5-1:0.0 failed with error -2 [ 942.524474][T28295] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 942.558173][ T28] usb 5-1: USB disconnect, device number 5 [ 942.655111][ T6924] udevd[6924]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card4/controlC4/../uevent} for writing: No such file or directory [ 943.157557][T28311] loop1: detected capacity change from 0 to 256 [ 943.240981][T28311] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 943.253990][T28315] netlink: 220 bytes leftover after parsing attributes in process `syz.4.9784'. [ 943.365576][T28320] loop3: detected capacity change from 0 to 64 [ 943.529348][T28322] loop4: detected capacity change from 0 to 512 [ 943.631637][T28322] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 943.702818][T28322] EXT4-fs (loop4): 1 truncate cleaned up [ 943.745053][T28322] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 943.775415][T28322] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 944.289821][T28355] loop3: detected capacity change from 0 to 8 [ 944.326691][T28358] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9804'. [ 944.355871][T28358] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9804'. [ 944.365719][T28355] SQUASHFS error: zlib decompression failed, data probably corrupt [ 944.375179][T28355] SQUASHFS error: Failed to read block 0x4e8: -5 [ 944.409856][ T27] audit: type=1800 audit(1751590846.580:102): pid=28355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.9802" name="file1" dev="loop3" ino=5 res=0 errno=0 [ 944.630570][T28368] netlink: 'syz.3.9808': attribute type 2 has an invalid length. [ 944.683999][T28371] loop4: detected capacity change from 0 to 512 [ 944.702456][T28371] EXT4-fs: Ignoring removed orlov option [ 944.726981][T28371] EXT4-fs (loop4): orphan cleanup on readonly fs [ 944.733428][T28371] EXT4-fs error (device loop4): ext4_find_extent:900: inode #4: comm syz.4.9810: inode has invalid extent depth: 7 [ 944.883283][T28371] Quota error (device loop4): v2_read_header: Failed header read: expected=8 got=-117 [ 944.893075][T28371] EXT4-fs warning (device loop4): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 944.895429][T28377] loop3: detected capacity change from 0 to 64 [ 944.981049][T28371] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 945.008096][T28371] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 945.053532][T28371] EXT4-fs error (device loop4): ext4_lookup:1855: inode #2: comm syz.4.9810: 'file0' linked to parent dir [ 945.205309][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 945.315945][T28366] loop0: detected capacity change from 0 to 32768 [ 945.393772][T28366] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 945.396915][T28395] loop1: detected capacity change from 0 to 256 [ 945.437814][T28395] exfat: Deprecated parameter 'namecase' [ 945.470364][T28395] exfat: Deprecated parameter 'utf8' [ 945.583573][T28366] XFS (loop0): Ending clean mount [ 945.585234][T28395] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 945.706953][T28406] netlink: 28 bytes leftover after parsing attributes in process `syz.3.9823'. [ 945.774384][ T6542] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 946.602514][T28425] loop4: detected capacity change from 0 to 32768 [ 946.641550][T28425] (syz.4.9831,28425,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 946.656426][T28425] (syz.4.9831,28425,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 946.688936][T28441] xt_CT: You must specify a L4 protocol and not use inversions on it [ 946.715865][T28425] JBD2: Ignoring recovery information on journal [ 946.826086][T28425] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 946.826668][T28443] loop1: detected capacity change from 0 to 2048 [ 946.876380][T28443] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 946.912208][ T27] audit: type=1800 audit(1751590848.919:103): pid=28443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.9839" name="file1" dev="loop1" ino=1367 res=0 errno=0 [ 947.189142][T28450] netlink: 'syz.1.9842': attribute type 1 has an invalid length. [ 947.354473][T25807] ocfs2: Unmounting device (7,4) on (node local) [ 947.659124][T28460] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 948.008214][T28474] netlink: 20 bytes leftover after parsing attributes in process `syz.4.9853'. [ 948.319634][T28486] loop4: detected capacity change from 0 to 8 [ 948.365904][T28486] SQUASHFS error: zlib decompression failed, data probably corrupt [ 948.365986][T28486] SQUASHFS error: Failed to read block 0x4e8: -5 [ 948.367192][ T27] audit: type=1800 audit(1751590850.284:104): pid=28486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.9861" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 949.236095][T28528] sctp: [Deprecated]: syz.3.9879 (pid 28528) Use of int in maxseg socket option. [ 949.236095][T28528] Use struct sctp_assoc_value instead [ 949.282943][T28530] loop4: detected capacity change from 0 to 64 [ 949.662212][ T6456] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 949.723860][T28547] team0: Port device syz_tun removed [ 949.739713][T28547] bridge_slave_0: left allmulticast mode [ 949.745768][T28547] bridge_slave_0: left promiscuous mode [ 949.751979][T28547] bridge0: port 1(bridge_slave_0) entered disabled state [ 949.765482][T28547] bridge_slave_1: left allmulticast mode [ 949.779931][T28547] bridge_slave_1: left promiscuous mode [ 949.792926][T28547] bridge0: port 2(bridge_slave_1) entered disabled state [ 949.830307][T28547] bond0: (slave bond_slave_0): Releasing backup interface [ 949.846025][T28547] bond0: (slave bond_slave_1): Releasing backup interface [ 949.877258][ T6456] usb 2-1: Using ep0 maxpacket: 32 [ 949.890726][ T6456] usb 2-1: config 0 has an invalid interface number: 35 but max is 0 [ 949.897040][T28547] team0: Port device team_slave_0 removed [ 949.916230][ T6456] usb 2-1: config 0 has no interface number 0 [ 949.933154][T28547] team0: Port device team_slave_1 removed [ 949.937891][ T6456] usb 2-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 949.952811][ T6456] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 949.954631][T28547] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 949.960893][ T6456] usb 2-1: Product: syz [ 949.973066][ T6456] usb 2-1: Manufacturer: syz [ 949.977747][ T6456] usb 2-1: SerialNumber: syz [ 949.990514][T28547] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 949.994013][ T6456] usb 2-1: config 0 descriptor?? [ 950.004669][T28547] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 950.012395][T28547] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 950.020444][ T6456] radio-si470x 2-1:0.35: could not find interrupt in endpoint [ 950.052376][ T6456] radio-si470x: probe of 2-1:0.35 failed with error -5 [ 950.252839][ T6456] radio-raremono 2-1:0.35: this is not Thanko's Raremono. [ 950.260411][ T6456] usbhid 2-1:0.35: couldn't find an input interrupt endpoint [ 950.436356][T28566] loop3: detected capacity change from 0 to 8192 [ 950.486499][ T6456] usb 2-1: USB disconnect, device number 47 [ 950.701042][T28579] loop0: detected capacity change from 0 to 64 [ 951.049686][T28589] loop3: detected capacity change from 0 to 1024 [ 951.249003][ T48] hfsplus: b-tree write err: -5, ino 4 [ 951.252572][T28599] netlink: 'syz.4.9915': attribute type 5 has an invalid length. [ 951.417616][T28605] trusted_key: encrypted_key: insufficient parameters specified [ 951.752977][T28620] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9925'. [ 951.866962][T28622] loop4: detected capacity change from 0 to 2048 [ 951.892656][T28622] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 951.944419][T28630] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 951.983621][T28629] loop3: detected capacity change from 0 to 1024 [ 952.098205][T28633] loop0: detected capacity change from 0 to 16 [ 952.143792][T28633] erofs: (device loop0): mounted with root inode @ nid 36. [ 952.427215][T28640] loop3: detected capacity change from 0 to 65 [ 952.463070][T28640] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway [ 953.099148][T28669] netlink: 176 bytes leftover after parsing attributes in process `syz.4.9948'. [ 953.421139][T28686] loop3: detected capacity change from 0 to 1024 [ 953.497618][T28686] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 953.594362][T28686] EXT4-fs error (device loop3): __ext4_remount:6741: comm syz.3.9957: Abort forced by user [ 953.643634][T28686] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 953.715942][T28702] netdevsim netdevsim1: Direct firmware load for ..€ failed with error -2 [ 953.754823][T28702] netdevsim netdevsim1: Falling back to sysfs fallback for: ..€ [ 953.818615][ T6539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 954.012827][T28713] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9968'. [ 954.023609][T28713] netlink: 540 bytes leftover after parsing attributes in process `syz.4.9968'. [ 954.033466][T28714] loop0: detected capacity change from 0 to 128 [ 954.039325][T28713] netlink: 32 bytes leftover after parsing attributes in process `syz.4.9968'. [ 954.075644][T28714] syz.0.9969: attempt to access beyond end of device [ 954.075644][T28714] loop0: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 954.100021][T28714] Buffer I/O error on dev loop0, logical block 3245768, async page read [ 954.214250][ T6542] sysv_free_block: flc_count > flc_size [ 954.229192][ T6542] sysv_free_block: flc_count > flc_size [ 954.235991][ T6542] sysv_free_block: flc_count > flc_size [ 954.242673][ T6542] sysv_free_block: flc_count > flc_size [ 954.248556][ T6542] sysv_free_block: flc_count > flc_size [ 954.254210][ T6542] sysv_free_block: flc_count > flc_size [ 954.260778][ T6542] sysv_free_block: flc_count > flc_size [ 954.266442][ T6542] sysv_free_block: flc_count > flc_size [ 954.272573][ T6542] sysv_free_block: flc_count > flc_size [ 954.278251][ T6542] sysv_free_block: flc_count > flc_size [ 954.285386][ T6542] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 954.409269][ T28] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 954.511002][T28731] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 954.611887][ T28] usb 4-1: Using ep0 maxpacket: 16 [ 954.624194][ T28] usb 4-1: config 0 interface 0 altsetting 67 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 954.666083][ T28] usb 4-1: config 0 interface 0 has no altsetting 0 [ 954.689253][ T28] usb 4-1: New USB device found, idVendor=0c45, idProduct=760b, bcdDevice= 0.00 [ 954.716102][ T28] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 954.739086][ T28] usb 4-1: config 0 descriptor?? [ 954.773042][T28739] loop4: detected capacity change from 0 to 256 [ 954.881595][T28739] FAT-fs (loop4): Directory bread(block 64) failed [ 954.899006][T28739] FAT-fs (loop4): Directory bread(block 65) failed [ 954.909869][T28739] FAT-fs (loop4): Directory bread(block 66) failed [ 954.936121][T28739] FAT-fs (loop4): Directory bread(block 67) failed [ 954.965558][T28739] FAT-fs (loop4): Directory bread(block 68) failed [ 954.972114][T28739] FAT-fs (loop4): Directory bread(block 69) failed [ 954.979191][T28743] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 954.986480][T28743] IPv6: NLM_F_CREATE should be set when creating new route [ 954.989674][T28739] FAT-fs (loop4): Directory bread(block 70) failed [ 954.993745][T28743] IPv6: NLM_F_CREATE should be set when creating new route [ 955.016877][T28739] FAT-fs (loop4): Directory bread(block 71) failed [ 955.024747][ T28] usbhid 4-1:0.0: can't add hid device: -71 [ 955.038485][ T28] usbhid: probe of 4-1:0.0 failed with error -71 [ 955.039566][T28739] FAT-fs (loop4): Directory bread(block 72) failed [ 955.053512][ T28] usb 4-1: USB disconnect, device number 58 [ 955.068388][T28739] FAT-fs (loop4): Directory bread(block 73) failed [ 955.395955][T28737] loop1: detected capacity change from 0 to 32768 [ 955.461693][T28752] delete_channel: no stack [ 955.472581][T28737] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 955.620901][T28737] XFS (loop1): Ending clean mount [ 955.835357][ T6533] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 956.348980][T28785] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10000'. [ 956.355536][T28783] ALSA: mixer_oss: invalid OSS volume '¡' [ 956.380345][T28785] netlink: 108 bytes leftover after parsing attributes in process `syz.4.10000'. [ 956.402189][T28785] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10000'. [ 956.430512][T28785] netlink: 108 bytes leftover after parsing attributes in process `syz.4.10000'. [ 956.455978][T28785] netlink: 84 bytes leftover after parsing attributes in process `syz.4.10000'. [ 956.793654][T28773] loop3: detected capacity change from 0 to 32768 [ 956.824836][T28773] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 956.856871][T28773] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 956.903998][T28773] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 956.936945][ T6455] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 956.948546][ T6455] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 957.149467][ T6455] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 187ms [ 957.174274][ T6455] gfs2: fsid=syz:syz.0: jid=0: Done [ 957.184280][T28773] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 957.436792][T28792] loop0: detected capacity change from 0 to 32768 [ 957.500217][T28794] loop4: detected capacity change from 0 to 32768 [ 957.538695][T28794] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 957.602135][T28805] loop3: detected capacity change from 0 to 256 [ 957.677195][T28805] exfat: Deprecated parameter 'utf8' [ 957.711371][T28805] exfat: Deprecated parameter 'namecase' [ 957.728950][T28794] XFS (loop4): Ending clean mount [ 957.737148][T28805] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 957.979696][T25807] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 958.581781][T28830] syz.0.10018: attempt to access beyond end of device [ 958.581781][T28830] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 958.797408][T28840] netlink: 'syz.3.10022': attribute type 29 has an invalid length. [ 958.805559][ T6390] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 958.824402][T28840] netlink: 'syz.3.10022': attribute type 29 has an invalid length. [ 959.006752][T28850] loop3: detected capacity change from 0 to 512 [ 959.027764][ T6390] usb 5-1: Using ep0 maxpacket: 8 [ 959.039239][ T6390] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 959.062881][ T6390] usb 5-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 959.065394][T28850] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.10026: iget: bad i_size value: 38620345925642 [ 959.072758][ T6390] usb 5-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 959.115937][T28850] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.10026: couldn't read orphan inode 15 (err -117) [ 959.130440][ T6390] usb 5-1: Product: syz [ 959.157463][ T6390] usb 5-1: Manufacturer: syz [ 959.173172][ T6390] usb 5-1: SerialNumber: syz [ 959.185680][T28850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 959.293682][T28859] loop0: detected capacity change from 0 to 1024 [ 959.457892][ T6390] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 959.470287][ T6390] usb 5-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 959.490264][ T6390] usb 5-1: Handspring Visor / Palm OS: Number of ports: 2 [ 959.551013][ T6455] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 959.577551][T28867] netlink: 'syz.0.10034': attribute type 16 has an invalid length. [ 959.691485][ T6390] usb 5-1: palm_os_3_probe - error -71 getting bytes available request [ 959.710686][ T6390] visor 5-1:1.0: Handspring Visor / Palm OS converter detected [ 959.739141][ T6390] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 959.760933][ T6390] usb 5-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 959.776265][ T6390] usb 5-1: USB disconnect, device number 6 [ 959.799699][ T6390] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 959.812213][ T6390] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 959.818570][ T6455] usb 4-1: config 27 interface 0 altsetting 0 has an invalid endpoint with address 0x98, skipping [ 959.823532][ T6390] visor 5-1:1.0: device disconnected [ 959.865789][ T6455] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 47025, setting to 1024 [ 959.915037][ T6455] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 959.945303][ T6455] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 959.965650][ T6455] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 959.991449][T28850] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 960.011042][ T6455] usb 4-1: Quirk or no altest; falling back to MIDI 1.0 [ 960.035700][ T6455] usb 4-1: invalid MIDI in EP 0 [ 960.131256][T28883] gretap0: left allmulticast mode [ 960.166885][T28883] gretap0: left promiscuous mode [ 960.181081][ T6455] snd-usb-audio: probe of 4-1:27.0 failed with error -22 [ 960.186149][T28883] bridge0: port 3(gretap0) entered disabled state [ 960.199381][ T6926] udevd[6926]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 960.253128][ T6455] usb 4-1: USB disconnect, device number 59 [ 960.335332][T28883] team0: Port device syz_tun removed [ 960.364694][T28883] bridge_slave_0: left allmulticast mode [ 960.383925][T28883] bridge_slave_0: left promiscuous mode [ 960.401482][T28883] bridge0: port 1(bridge_slave_0) entered disabled state [ 960.418142][T28883] bridge_slave_1: left allmulticast mode [ 960.433735][T28883] bridge_slave_1: left promiscuous mode [ 960.440831][T28883] bridge0: port 2(bridge_slave_1) entered disabled state [ 960.453358][T28892] Cannot find add_set index 2 as target [ 960.462128][T28883] bond0: (slave bond_slave_0): Releasing backup interface [ 960.488525][T28883] bond0: (slave bond_slave_1): Releasing backup interface [ 960.571273][T28883] team0: Port device team_slave_0 removed [ 960.599685][T28883] team0: Port device team_slave_1 removed [ 960.616171][T28883] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 960.626343][T28883] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 960.638758][T28883] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 960.650238][T28883] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 960.702560][T28899] loop4: detected capacity change from 0 to 512 [ 960.740930][T28899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 960.771756][T28899] ext4 filesystem being mounted at /277/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 960.843150][T28899] Quota error (device loop4): do_check_range: Getting block 3997698 out of range 1-5 [ 960.870802][T28899] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 960.880387][T28899] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.10051: Failed to acquire dquot type 0 [ 960.937000][ T6539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 960.952823][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 960.968184][T28907] loop0: detected capacity change from 0 to 512 [ 961.018366][T28907] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 961.111564][T28907] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.10053: invalid indirect mapped block 4294967295 (level 0) [ 961.171158][T28907] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.10053: invalid indirect mapped block 4294967295 (level 1) [ 961.209887][T28907] EXT4-fs (loop0): 1 orphan inode deleted [ 961.239578][T28907] EXT4-fs (loop0): 1 truncate cleaned up [ 961.274303][T28907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 961.446772][ T6542] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 961.506490][T28926] loop1: detected capacity change from 0 to 256 [ 961.563616][T28926] exfat: Deprecated parameter 'namecase' [ 961.581301][T28925] team0: Port device syz_tun removed [ 961.606852][T28926] exfat: Deprecated parameter 'utf8' [ 961.626929][T28925] team0: Port device dummy0 removed [ 961.649980][T28925] bridge_slave_0: left allmulticast mode [ 961.677574][T28925] bridge_slave_0: left promiscuous mode [ 961.693663][T28926] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 961.713240][T28925] bridge0: port 1(bridge_slave_0) entered disabled state [ 961.749330][T28925] bridge_slave_1: left allmulticast mode [ 961.768062][T28925] bridge_slave_1: left promiscuous mode [ 961.773906][T28926] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 961.785579][T28925] bridge0: port 2(bridge_slave_1) entered disabled state [ 961.864214][T28925] bond0: (slave bond_slave_1): Releasing backup interface [ 961.995033][T28925] team0: Port device team_slave_0 removed [ 962.041049][T28925] team0: Port device team_slave_1 removed [ 962.069803][T28925] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 962.092761][T28925] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 962.103723][T28925] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 962.111358][T28925] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 962.134934][T28942] loop0: detected capacity change from 0 to 4096 [ 962.156364][T28942] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 962.648697][T28958] loop0: detected capacity change from 0 to 256 [ 962.704166][T28958] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001) [ 962.732239][T28958] FAT-fs (loop0): Filesystem has been set read-only [ 963.163969][T28977] loop0: detected capacity change from 0 to 2048 [ 963.189861][T28977] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 963.553829][ T27] audit: type=1326 audit(1751590864.493:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28986 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 963.624090][ T27] audit: type=1326 audit(1751590864.493:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28986 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 963.657560][ T27] audit: type=1326 audit(1751590864.493:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28986 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 963.749178][ T27] audit: type=1326 audit(1751590864.512:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28986 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 963.806463][ T27] audit: type=1326 audit(1751590864.512:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28986 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 963.833320][T28991] loop4: detected capacity change from 0 to 256 [ 963.851193][T28991] exfat: Deprecated parameter 'namecase' [ 963.859538][T28991] exfat: Deprecated parameter 'utf8' [ 963.865204][ T27] audit: type=1326 audit(1751590864.512:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28989 comm="syz.0.10092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f5112fc11e5 code=0x7ffc0000 [ 963.921281][ T27] audit: type=1326 audit(1751590864.530:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28985 comm="syz.4.10093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 963.958980][T28991] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 963.963669][T28995] loop0: detected capacity change from 0 to 2048 [ 963.978032][T28974] loop3: detected capacity change from 0 to 40427 [ 963.995466][T28974] F2FS-fs (loop3): Invalid log blocks per segment (83886089) [ 964.003003][ T27] audit: type=1326 audit(1751590864.530:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28985 comm="syz.4.10093" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 964.027050][T28974] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 964.053470][T28995] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 964.063291][T28974] F2FS-fs (loop3): Unrecognized mount option "checkÿoint=disable" or missing value [ 964.104751][T28991] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 964.116635][T28995] syz.0.10094: attempt to access beyond end of device [ 964.116635][T28995] loop0: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 964.159005][T28996] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 964.195062][T28995] syz.0.10094: attempt to access beyond end of device [ 964.195062][T28995] loop0: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 964.231323][T28995] NILFS (loop0): I/O error reading meta-data file (ino=6, block-offset=0) [ 964.341434][T29000] netdevsim netdevsim3: Direct firmware load for ..€ failed with error -2 [ 964.349983][T29000] netdevsim netdevsim3: Falling back to sysfs fallback for: ..€ [ 964.742738][T29012] vivid-003: disconnect [ 964.777160][T29011] vivid-003: reconnect [ 964.787573][T29014] loop4: detected capacity change from 0 to 1024 [ 965.131802][T29020] loop4: detected capacity change from 0 to 4096 [ 965.361149][T29029] loop1: detected capacity change from 0 to 256 [ 965.420102][T29029] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x389acbd6, utbl_chksum : 0xe619d30d) [ 965.723895][T29016] loop0: detected capacity change from 0 to 32768 [ 965.789921][T29016] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 965.834771][T29016] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 965.846992][T29016] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms [ 965.856622][T18629] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 965.863502][T18629] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 965.914627][T18629] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 47ms [ 965.930332][T29042] binder: 29041:29042 ioctl c018620c 200000000100 returned -1 [ 965.942611][T18629] gfs2: fsid=syz:syz.0: jid=0: Done [ 965.976121][T29016] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 966.403285][T29056] loop4: detected capacity change from 0 to 512 [ 966.458137][T29056] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 966.477440][T29056] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 966.655481][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 966.754603][T29067] geneve2: entered promiscuous mode [ 966.811842][T29073] team0: Port device syz_tun removed [ 966.839063][T29073] bridge_slave_0: left allmulticast mode [ 966.874447][T29073] bridge_slave_0: left promiscuous mode [ 966.881841][T29073] bridge0: port 1(bridge_slave_0) entered disabled state [ 966.935302][T29073] bridge_slave_1: left allmulticast mode [ 966.955282][T29073] bridge_slave_1: left promiscuous mode [ 966.971366][T29073] bridge0: port 2(bridge_slave_1) entered disabled state [ 967.002754][T29073] bond0: (slave bond_slave_0): Releasing backup interface [ 967.045656][T29073] bond0: (slave bond_slave_1): Releasing backup interface [ 967.073710][T29073] team0: Port device team_slave_0 removed [ 967.102933][T29073] team0: Port device team_slave_1 removed [ 967.113139][T29073] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 967.121966][T29073] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 967.129362][T29073] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 968.105971][T29125] loop3: detected capacity change from 0 to 128 [ 968.253126][T18629] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 968.467231][T18629] usb 5-1: Using ep0 maxpacket: 32 [ 968.479017][T18629] usb 5-1: New USB device found, idVendor=041e, idProduct=403c, bcdDevice=cc.d7 [ 968.497976][T29140] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10163'. [ 968.507294][T18629] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 968.537879][T18629] usb 5-1: config 0 descriptor?? [ 968.569306][T18629] gspca_main: sq930x-2.14.0 probing 041e:403c [ 969.013215][T18629] gspca_sq930x: ucbus_write failed -71 [ 969.018792][T18629] sq930x: probe of 5-1:0.0 failed with error -71 [ 969.047786][T18629] usb 5-1: USB disconnect, device number 7 [ 969.162223][ T27] kauditd_printk_skb: 4 callbacks suppressed [ 969.162238][ T27] audit: type=1326 audit(1751590869.741:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29164 comm="syz.0.10175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 969.238067][ T27] audit: type=1326 audit(1751590869.741:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29164 comm="syz.0.10175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 969.253036][T29169] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10177'. [ 969.304710][ T27] audit: type=1326 audit(1751590869.741:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29164 comm="syz.0.10175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=323 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 969.365054][ T27] audit: type=1326 audit(1751590869.741:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29164 comm="syz.0.10175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 969.418329][ T27] audit: type=1326 audit(1751590869.741:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29164 comm="syz.0.10175" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 969.723675][T29183] loop1: detected capacity change from 0 to 4096 [ 969.825656][T29187] loop0: detected capacity change from 0 to 2048 [ 969.847377][T29187] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 969.936809][T29187] UDF-fs: unknown compression code (0) [ 970.099502][T29193] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10189'. [ 970.314886][T29201] Cannot find add_set index 0 as target [ 970.380235][T29203] netlink: 'syz.1.10194': attribute type 29 has an invalid length. [ 970.388605][T29203] netlink: 'syz.1.10194': attribute type 29 has an invalid length. [ 970.627763][T29211] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10198'. [ 970.627788][T29211] netlink: 32 bytes leftover after parsing attributes in process `syz.1.10198'. [ 970.627804][T29211] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10198'. [ 970.627819][T29211] netlink: 2 bytes leftover after parsing attributes in process `syz.1.10198'. [ 970.628064][T29211] netlink: 32 bytes leftover after parsing attributes in process `syz.1.10198'. [ 970.685135][T29195] loop0: detected capacity change from 0 to 32768 [ 971.225002][T18629] usb 2-1: new full-speed USB device number 48 using dummy_hcd [ 971.421008][T18629] usb 2-1: not running at top speed; connect to a high speed hub [ 971.446618][T18629] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 971.446713][T29221] loop4: detected capacity change from 0 to 32768 [ 971.463882][T18629] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 971.477646][T29221] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.10203 (29221) [ 971.481939][T18629] usb 2-1: config 1 has no interface number 1 [ 971.499349][T18629] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 971.532422][T29221] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 971.534472][T18629] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 8192, setting to 64 [ 971.547872][T29221] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 971.571569][T29221] BTRFS info (device loop4): using free space tree [ 971.591089][T18629] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 971.659500][T18629] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 971.683354][T18629] usb 2-1: Product: syz [ 971.694152][T18629] usb 2-1: Manufacturer: syz [ 971.715830][T18629] usb 2-1: SerialNumber: syz [ 971.742449][T29249] loop0: detected capacity change from 0 to 256 [ 971.753649][T29249] exfat: Deprecated parameter 'utf8' [ 971.759065][T29249] exfat: Deprecated parameter 'namecase' [ 971.780939][T29221] BTRFS info (device loop4): enabling ssd optimizations [ 971.798860][T29221] BTRFS info (device loop4): auto enabling async discard [ 971.819864][T29249] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 971.928985][T25807] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 971.995628][T18629] usb 2-1: USB disconnect, device number 48 [ 972.103844][ T5756] udevd[5756]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 972.220173][T29258] netlink: 4 bytes leftover after parsing attributes in process `syz.4.10211'. [ 972.235730][T29260] netlink: 'syz.0.10214': attribute type 9 has an invalid length. [ 972.243994][T29260] netlink: 911 bytes leftover after parsing attributes in process `syz.0.10214'. [ 972.814633][T29275] loop4: detected capacity change from 0 to 2048 [ 972.852880][T29277] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 972.898670][T29275] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 972.959218][T29280] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 973.047325][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.091151][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.117378][T29275] Remounting filesystem read-only [ 973.128550][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.147474][T29283] loop1: detected capacity change from 0 to 4096 [ 973.163731][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.200411][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.224260][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.247059][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.270137][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.291356][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.305580][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.322579][T29268] loop0: detected capacity change from 0 to 32768 [ 973.336721][T29283] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 973.346243][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.379128][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.408443][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.438355][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.448469][T29283] ntfs3: loop1: Failed to load $Extend (-22). [ 973.471731][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.480402][T29283] ntfs3: loop1: Failed to initialize $Extend. [ 973.497746][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.534168][T29268] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 973.558669][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.630819][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.653358][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.663626][T29268] (syz.0.10218,29268,1):ocfs2_find_entry:1086 ERROR: status = -117 [ 973.676561][T29268] (syz.0.10218,29268,1):ocfs2_find_entry:1086 ERROR: status = -117 [ 973.698569][T29268] (syz.0.10218,29268,1):ocfs2_symlink:2068 ERROR: status = -117 [ 973.713388][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.766336][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.816509][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.838571][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.854392][ T6542] (syz-executor,6542,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 76 [ 973.882059][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.895309][ T6542] ocfs2: Unmounting device (7,0) on (node local) [ 973.908093][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.937532][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 973.948323][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 973.991671][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 974.013467][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 974.046261][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 974.115668][T29275] NILFS (loop4): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 974.128055][T29275] NILFS error (device loop4): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 974.159105][ T27] audit: type=1800 audit(1751590874.399:122): pid=29275 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.10221" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 975.089136][T29337] loop3: detected capacity change from 0 to 64 [ 975.091122][T29333] loop1: detected capacity change from 0 to 2048 [ 975.206478][T29333] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 975.263169][T29333] ext4 filesystem being mounted at /2440/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 975.376192][T29333] fscrypt (loop1, inode 13): Error -61 getting encryption context [ 975.396457][T29350] loop4: detected capacity change from 0 to 16 [ 975.454389][T29350] erofs: (device loop4): mounted with root inode @ nid 36. [ 975.621117][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 975.945425][T29370] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 976.171383][T29382] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10271'. [ 976.277861][ T27] audit: type=1107 audit(1751590876.391:123): pid=29383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 976.457352][T29393] loop4: detected capacity change from 0 to 8 [ 976.549645][T29393] SQUASHFS error: Failed to read block 0x26067d: -5 [ 976.556851][T29393] SQUASHFS error: Unable to read metadata cache entry [26067d] [ 976.577349][ T27] audit: type=1400 audit(1751590876.653:124): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=29394 comm="syz.1.10277" [ 976.613339][T29393] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 976.903055][T29407] netlink: 312 bytes leftover after parsing attributes in process `syz.0.10283'. [ 976.969991][T29414] netlink: 'syz.4.10286': attribute type 8 has an invalid length. [ 977.110139][T29420] loop4: detected capacity change from 0 to 512 [ 977.143765][T29420] EXT4-fs: Ignoring removed nomblk_io_submit option [ 977.173171][T29420] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 977.207070][T29420] EXT4-fs (loop4): 1 truncate cleaned up [ 977.260882][T29420] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 977.506325][T29433] ALSA: mixer_oss: invalid OSS volume '—ˆ†' [ 977.520557][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 977.642144][T29438] loop0: detected capacity change from 0 to 256 [ 977.659745][T29438] exfat: Deprecated parameter 'namecase' [ 977.720096][T29438] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x18d51376, utbl_chksum : 0xe619d30d) [ 978.114109][T29458] loop3: detected capacity change from 0 to 256 [ 978.343181][T29466] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 978.373562][T29462] loop4: detected capacity change from 0 to 4096 [ 978.391460][T29462] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 978.626175][T29462] ntfs3: loop4: failed to convert "c46c" to cp737 [ 978.893644][T29488] loop0: detected capacity change from 0 to 16 [ 978.923286][T29488] erofs: (device loop0): mounted with root inode @ nid 36. [ 979.104196][ T6456] usb 4-1: new high-speed USB device number 60 using dummy_hcd [ 979.136314][T18629] usb 2-1: new high-speed USB device number 49 using dummy_hcd [ 979.166222][T29496] netlink: 52 bytes leftover after parsing attributes in process `syz.0.10326'. [ 979.309194][ T6456] usb 4-1: Using ep0 maxpacket: 32 [ 979.330054][ T6456] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 979.341108][T18629] usb 2-1: Using ep0 maxpacket: 16 [ 979.357180][T18629] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 979.371338][ T6456] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 979.392245][T18629] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 979.401279][T18629] usb 2-1: Product: syz [ 979.407061][ T6456] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 979.424714][T18629] usb 2-1: Manufacturer: syz [ 979.429404][ T6456] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 979.437847][T18629] usb 2-1: SerialNumber: syz [ 979.454063][T18629] r8152-cfgselector 2-1: config 0 descriptor?? [ 979.460383][ T6456] usb 4-1: Product: syz [ 979.475407][ T6456] usb 4-1: Manufacturer: syz [ 979.489229][ T6456] hub 4-1:4.0: USB hub found [ 979.527763][T29504] loop0: detected capacity change from 0 to 64 [ 979.555315][T29492] loop4: detected capacity change from 0 to 32768 [ 979.715321][ T6456] hub 4-1:4.0: config failed, hub has too many ports! (err -19) [ 979.940061][T18629] r8152-cfgselector 2-1: Unknown version 0x0000 [ 979.971416][T18629] r8152-cfgselector 2-1: USB disconnect, device number 49 [ 980.017038][T29513] loop0: detected capacity change from 0 to 256 [ 980.066347][ T6456] usb 4-1: USB disconnect, device number 60 [ 980.108558][T29513] FAT-fs (loop0): Directory bread(block 64) failed [ 980.132738][T29513] FAT-fs (loop0): Directory bread(block 65) failed [ 980.150989][T29513] FAT-fs (loop0): Directory bread(block 66) failed [ 980.160563][T29513] FAT-fs (loop0): Directory bread(block 67) failed [ 980.167672][T29513] FAT-fs (loop0): Directory bread(block 68) failed [ 980.176573][T29513] FAT-fs (loop0): Directory bread(block 69) failed [ 980.183561][T29513] FAT-fs (loop0): Directory bread(block 70) failed [ 980.191450][T29513] FAT-fs (loop0): Directory bread(block 71) failed [ 980.198419][T29513] FAT-fs (loop0): Directory bread(block 72) failed [ 980.205897][T29513] FAT-fs (loop0): Directory bread(block 73) failed [ 980.296924][T29513] syz.0.10335: attempt to access beyond end of device [ 980.296924][T29513] loop0: rw=0, sector=1256, nr_sectors = 4 limit=256 [ 980.322248][T29513] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 328) [ 980.332804][T29513] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 328) [ 980.404730][T29520] loop4: detected capacity change from 0 to 1024 [ 980.622291][T29525] netlink: 'syz.3.10340': attribute type 1 has an invalid length. [ 980.673843][T29528] loop0: detected capacity change from 0 to 1024 [ 980.827922][T29534] netlink: 'syz.3.10345': attribute type 21 has an invalid length. [ 980.850357][T29534] netlink: 128 bytes leftover after parsing attributes in process `syz.3.10345'. [ 980.890573][T29534] netlink: 'syz.3.10345': attribute type 4 has an invalid length. [ 980.922020][T29534] netlink: 3 bytes leftover after parsing attributes in process `syz.3.10345'. [ 981.133123][T29547] loop3: detected capacity change from 0 to 1764 [ 981.313805][ T27] audit: type=1326 audit(1751590881.106:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29552 comm="syz.0.10355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 981.369506][ T27] audit: type=1326 audit(1751590881.134:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29552 comm="syz.0.10355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 981.391961][ C0] vkms_vblank_simulate: vblank timer overrun [ 981.403454][ T27] audit: type=1326 audit(1751590881.134:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29552 comm="syz.0.10355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 981.475078][T29561] loop4: detected capacity change from 0 to 256 [ 981.499023][ T27] audit: type=1326 audit(1751590881.218:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29552 comm="syz.0.10355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 981.582208][ T27] audit: type=1326 audit(1751590881.218:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29552 comm="syz.0.10355" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5112f8e929 code=0x7ffc0000 [ 981.604672][ C0] vkms_vblank_simulate: vblank timer overrun [ 981.829900][T29575] loop0: detected capacity change from 0 to 8 [ 982.108393][T29587] netlink: 115 bytes leftover after parsing attributes in process `syz.4.10370'. [ 982.180846][T29581] nvme_fabrics: missing parameter 'transport=%s' [ 982.189037][T29581] nvme_fabrics: missing parameter 'nqn=%s' [ 982.261787][T29592] netlink: 36 bytes leftover after parsing attributes in process `syz.4.10373'. [ 982.395535][T29598] netlink: 'syz.1.10377': attribute type 8 has an invalid length. [ 982.835070][ T6688] IPVS: starting estimator thread 0... [ 982.899814][T29623] loop1: detected capacity change from 0 to 512 [ 982.952727][T29622] IPVS: using max 19 ests per chain, 45600 per kthread [ 983.005697][T29623] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 983.077588][T29623] ext4 filesystem being mounted at /2467/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 983.249606][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 983.297959][T29625] loop0: detected capacity change from 0 to 32768 [ 983.367043][T29625] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 983.439268][T29625] OCFS2: ERROR (device loop0): int ocfs2_claim_suballoc_bits(struct ocfs2_alloc_context *, handle_t *, u32, u32, struct ocfs2_suballoc_result *): Chain allocator dinode 74 has 8388607 used bits but only 2048 total [ 983.519757][T29625] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 983.555318][T29625] OCFS2: File system is now read-only. [ 983.569877][T29625] (syz.0.10389,29625,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 983.600888][T29625] (syz.0.10389,29625,1):ocfs2_claim_new_inode:2216 ERROR: status = -30 [ 983.615550][T29625] (syz.0.10389,29625,1):ocfs2_claim_new_inode:2231 ERROR: status = -30 [ 983.639005][T29625] (syz.0.10389,29625,1):ocfs2_mknod_locked:639 ERROR: status = -30 [ 983.654802][T29636] loop3: detected capacity change from 0 to 32768 [ 983.669045][T29625] (syz.0.10389,29625,1):ocfs2_mknod:385 ERROR: status = -30 [ 983.673207][T29644] loop1: detected capacity change from 0 to 2048 [ 983.691016][T29625] (syz.0.10389,29625,1):ocfs2_mknod:502 ERROR: status = -30 [ 983.700604][T29636] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.10392 (29636) [ 983.721247][T29644] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 983.728997][T29625] (syz.0.10389,29625,1):ocfs2_create:676 ERROR: status = -30 [ 983.788936][T29645] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 983.814991][T29636] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 983.855413][T29636] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 983.874670][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 983.892121][T29636] BTRFS info (device loop3): setting nodatacow, compression disabled [ 983.901879][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 983.912137][ T6542] (syz-executor,6542,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72 [ 983.930722][T29636] BTRFS info (device loop3): max_inline at 0 [ 983.937401][T29636] BTRFS info (device loop3): enabling disk space caching [ 983.951804][T29644] Remounting filesystem read-only [ 983.957477][T29636] BTRFS info (device loop3): turning off barriers [ 983.971124][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 983.989668][T29636] BTRFS info (device loop3): turning on flush-on-commit [ 983.996641][T29636] BTRFS info (device loop3): doing ref verification [ 984.011297][ T6542] ocfs2: Unmounting device (7,0) on (node local) [ 984.032508][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.036449][T29650] netlink: 'syz.4.10399': attribute type 30 has an invalid length. [ 984.054679][T29636] BTRFS info (device loop3): force clearing of disk cache [ 984.062423][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.096696][T29650] (unnamed net_device) (uninitialized): option arp_missed_max: mode dependency failed, not supported in mode balance-alb(6) [ 984.099480][T29636] BTRFS info (device loop3): enabling ssd optimizations [ 984.124141][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.134027][T29636] BTRFS info (device loop3): max_inline at 4096 [ 984.158264][T29636] BTRFS info (device loop3): disk space caching is enabled [ 984.182415][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.231160][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.278984][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.307162][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.334712][T29666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10398'. [ 984.346689][T29666] netlink: 8 bytes leftover after parsing attributes in process `syz.0.10398'. [ 984.347106][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.415069][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.418233][T29636] BTRFS info (device loop3): auto enabling async discard [ 984.506024][T29636] BTRFS info (device loop3): rebuilding free space tree [ 984.513431][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.566413][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.605384][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.606364][T29636] BTRFS info (device loop3): disabling free space tree [ 984.642142][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.668121][T29636] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 984.684838][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.716543][T29636] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 984.772618][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.796221][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.811973][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.841706][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.906590][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.942701][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 984.965711][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 984.978583][ T6539] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 985.005204][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 985.015513][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 985.103406][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 985.153559][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 985.180662][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 985.221276][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 985.290690][T29644] NILFS (loop1): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 985.316092][T29644] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 985.368706][ T27] audit: type=1800 audit(1751590884.885:130): pid=29644 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.10395" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 985.576984][T29700] $Hÿ: renamed from bond0 (while UP) [ 985.606775][T29700] $Hÿ: entered promiscuous mode [ 985.710413][T29706] cgroup: noprefix used incorrectly [ 985.716258][ T6455] usb 4-1: new high-speed USB device number 61 using dummy_hcd [ 985.948122][ T6455] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 985.967413][ T6455] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 985.992460][T29717] loop4: detected capacity change from 0 to 2048 [ 986.011351][ T6455] usb 4-1: config 0 descriptor?? [ 986.032953][T29717] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 986.113636][T29720] loop0: detected capacity change from 0 to 2048 [ 986.155323][T29720] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 986.216254][T29723] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 986.239530][ T6455] [drm] vendor descriptor length:6 data:06 5f 01 ff 00 00 00 00 00 00 00 [ 986.285601][ T6455] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 986.312087][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.315680][T29727] netlink: 'syz.1.10427': attribute type 1 has an invalid length. [ 986.323638][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.342192][T29720] Remounting filesystem read-only [ 986.349953][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.356346][T29727] netlink: 56 bytes leftover after parsing attributes in process `syz.1.10427'. [ 986.368635][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.408406][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.422050][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.435963][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.455663][ T6455] [drm:udl_init] *ERROR* Selecting channel failed [ 986.473381][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.520026][ T6455] [drm] Initialized udl 0.0.1 20120220 for 4-1:0.0 on minor 2 [ 986.528631][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.541097][ T6455] [drm] Initialized udl on minor 2 [ 986.546432][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.571155][ T6455] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 986.582187][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.604685][ T6455] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 986.617747][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.642855][ T8] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 986.651405][ T6455] usb 4-1: USB disconnect, device number 61 [ 986.665442][ T8] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 986.681026][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.700221][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.713158][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.742213][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.760890][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.777391][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.798744][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.825027][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.850056][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.850896][T29739] loop4: detected capacity change from 0 to 256 [ 986.867395][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.897708][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.907439][T29739] FAT-fs (loop4): Directory bread(block 64) failed [ 986.907993][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 986.929809][T29739] FAT-fs (loop4): Directory bread(block 65) failed [ 986.951302][T29739] FAT-fs (loop4): Directory bread(block 66) failed [ 986.958503][T29739] FAT-fs (loop4): Directory bread(block 67) failed [ 986.966347][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 986.971530][T29739] FAT-fs (loop4): Directory bread(block 68) failed [ 986.990245][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 987.004748][T29739] FAT-fs (loop4): Directory bread(block 69) failed [ 987.011441][T29739] FAT-fs (loop4): Directory bread(block 70) failed [ 987.019845][T29739] FAT-fs (loop4): Directory bread(block 71) failed [ 987.029819][T29739] FAT-fs (loop4): Directory bread(block 72) failed [ 987.034286][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 987.045966][T29739] FAT-fs (loop4): Directory bread(block 73) failed [ 987.081742][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 987.142419][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 987.227561][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 987.316525][T29748] loop1: detected capacity change from 0 to 256 [ 987.323253][T29749] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10440'. [ 987.325660][T29720] NILFS (loop0): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 987.335442][T29748] exfat: Deprecated parameter 'utf8' [ 987.373114][T29720] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 987.377962][T29748] exfat: Deprecated parameter 'namecase' [ 987.391459][ T27] audit: type=1800 audit(1751590886.793:131): pid=29720 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.10424" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 987.409519][T29748] exfat: Deprecated parameter 'namecase' [ 987.426222][T29748] exfat: Deprecated parameter 'utf8' [ 987.494623][T29753] netlink: 'syz.3.10441': attribute type 27 has an invalid length. [ 987.503516][T29753] C: renamed from team_slave_0 [ 987.514410][T29748] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 988.253401][T29781] loop0: detected capacity change from 0 to 4096 [ 988.304422][T29786] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 988.368681][T29781] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 988.405470][ T6455] usb 4-1: new high-speed USB device number 62 using dummy_hcd [ 988.422819][T29781] Remounting filesystem read-only [ 988.546325][T29790] loop4: detected capacity change from 0 to 512 [ 988.564362][T29790] EXT4-fs: Ignoring removed nomblk_io_submit option [ 988.596250][T29790] EXT4-fs: Ignoring removed i_version option [ 988.607986][ T6455] usb 4-1: Using ep0 maxpacket: 8 [ 988.622713][ T6455] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 988.653236][ T6455] usb 4-1: config 0 has no interface number 0 [ 988.659348][ T6455] usb 4-1: config 0 interface 1 has no altsetting 0 [ 988.670475][T29790] EXT4-fs (loop4): 1 orphan inode deleted [ 988.705664][T29796] loop1: detected capacity change from 0 to 4096 [ 988.713027][T29796] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 988.725300][T29790] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 988.742250][T29794] loop0: detected capacity change from 0 to 2048 [ 988.776618][ T6455] usb 4-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 988.794242][T29797] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 988.817495][ T6455] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 988.817624][T29790] EXT4-fs error (device loop4): ext4_add_entry:2486: inode #2: comm syz.4.10460: Directory hole found for htree leaf block 0 [ 988.846276][T29796] ntfs: volume version 3.1. [ 988.854774][ T6455] usb 4-1: Product: syz [ 988.858955][ T6455] usb 4-1: Manufacturer: syz [ 988.863558][ T6455] usb 4-1: SerialNumber: syz [ 988.910901][T29794] NILFS error (device loop0): nilfs_check_page: bad entry in directory #2: directory entry across blocks - offset=0, inode=35184372097012, rec_len=8192, name_len=0 [ 988.933413][ T6455] usb 4-1: config 0 descriptor?? [ 988.964944][T29796] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 989.019539][T29796] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 989.041824][T29794] Remounting filesystem read-only [ 989.059050][T29796] ntfs: (device loop1): ntfs_cluster_alloc(): Failed to map page. [ 989.078299][T29796] ntfs: (device loop1): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5). [ 989.093841][T29796] ntfs: (device loop1): ntfs_truncate(): Cannot truncate inode 0x43, attribute type 0x80, because the conversion from resident to non-resident attribute failed with error code -5. [ 989.113227][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 989.201227][ T6455] i2c-cp2615: probe of 4-1:0.1 failed with error -22 [ 989.300422][ T6533] ntfs: (device loop1): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 989.418595][T18629] usb 4-1: USB disconnect, device number 62 [ 989.674004][T29817] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10471'. [ 989.837747][T29825] $Hÿ: renamed from bond0 (while UP) [ 989.859559][T29825] $Hÿ: entered promiscuous mode [ 990.282587][T29841] nftables ruleset with unbound chain [ 990.494701][T29849] $Hÿ: renamed from bond0 (while UP) [ 990.534139][T29849] $Hÿ: entered promiscuous mode [ 990.630416][T29853] delete_channel: no stack [ 990.664565][T29829] loop0: detected capacity change from 0 to 32768 [ 990.699539][T29829] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.10477 (29829) [ 990.752077][T29829] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 990.753968][T29855] loop1: detected capacity change from 0 to 1764 [ 990.775609][T29829] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 990.810269][T29829] BTRFS info (device loop0): setting nodatacow, compression disabled [ 990.833839][T29829] BTRFS info (device loop0): max_inline at 0 [ 990.855678][T29829] BTRFS info (device loop0): enabling disk space caching [ 990.863174][T29855] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 990.878385][T29829] BTRFS info (device loop0): turning off barriers [ 990.884890][T29829] BTRFS info (device loop0): turning on flush-on-commit [ 990.894072][T29829] BTRFS info (device loop0): doing ref verification [ 990.920553][T29829] BTRFS info (device loop0): force clearing of disk cache [ 990.938913][T29829] BTRFS info (device loop0): enabling ssd optimizations [ 990.946363][T29829] BTRFS info (device loop0): max_inline at 4096 [ 990.967421][T29829] BTRFS info (device loop0): disk space caching is enabled [ 991.032182][T29867] tmpfs: Bad value for 'nr_inodes' [ 991.123325][T29877] loop1: detected capacity change from 0 to 1024 [ 991.136201][T29829] BTRFS info (device loop0): auto enabling async discard [ 991.149714][T29829] BTRFS info (device loop0): rebuilding free space tree [ 991.173896][T29877] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 991.223276][T29829] BTRFS info (device loop0): disabling free space tree [ 991.237886][T29829] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 991.269296][T29829] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 991.304764][T29886] loop4: detected capacity change from 0 to 1024 [ 991.354077][T29886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 991.443270][T29886] EXT4-fs error (device loop4): __ext4_remount:6741: comm syz.4.10497: Abort forced by user [ 991.464256][T29886] EXT4-fs (loop4): Remounting filesystem read-only [ 991.470955][T29886] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 991.518409][ T6542] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 991.537259][ T6455] usb 2-1: new high-speed USB device number 50 using dummy_hcd [ 991.602960][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 991.637908][T29894] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 991.679105][ T6924] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 12 /dev/loop0 scanned by udevd (6924) [ 991.743231][ T6455] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 991.753085][ T6455] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 225, changing to 7 [ 991.799993][ T6455] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid maxpacket 42279, setting to 1024 [ 991.818483][T29900] (null): rxe_set_mtu: Set mtu to 1024 [ 991.856875][ T6455] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 991.866160][ T6455] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 991.907019][ T6455] usb 2-1: Product: syz [ 991.924762][ T6455] usb 2-1: Manufacturer: syz [ 991.929387][ T6455] usb 2-1: SerialNumber: syz [ 991.971770][ T6455] usb 2-1: config 0 descriptor?? [ 991.996602][ T6455] usb 2-1: 0:0 : invalid sync pipe. bmAttributes e5, bLength 9, bSynchAddress f3 [ 992.008650][T29903] loop3: detected capacity change from 0 to 1024 [ 992.040776][T29903] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 992.075080][T29903] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 992.136390][T29903] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c800e02c, mo2=0000] [ 992.178267][T29903] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.10504: lblock 2 mapped to illegal pblock 2 (length 1) [ 992.247501][ T6455] usb 2-1: USB disconnect, device number 50 [ 992.264225][T29903] EXT4-fs (loop3): Remounting filesystem read-only [ 992.308232][T29903] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 992.320683][ T6254] udevd[6254]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 992.363740][T29903] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 992.403475][T29903] EXT4-fs (loop3): 1 orphan inode deleted [ 992.419827][T29903] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 992.474389][T29903] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 992.544093][T29900] infiniband syz0: set down [ 992.549768][T29900] infiniband syz0: added ipvlan1 [ 992.595340][T29901] loop0: detected capacity change from 0 to 32768 [ 992.822963][T29900] RDS/IB: syz0: added [ 992.840851][T29900] smc: adding ib device syz0 with port count 1 [ 992.849061][T29900] smc: ib device syz0 port 1 has pnetid [ 992.886652][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 993.065996][T29915] netlink: 'syz.1.10508': attribute type 27 has an invalid length. [ 993.119670][T29915] C: renamed from team_slave_0 [ 994.015617][T29947] loop3: detected capacity change from 0 to 64 [ 994.509223][ T6390] usb 4-1: new high-speed USB device number 63 using dummy_hcd [ 994.583074][T29964] geneve4: entered promiscuous mode [ 994.589281][T29964] geneve4: entered allmulticast mode [ 994.734059][ T6390] usb 4-1: Using ep0 maxpacket: 16 [ 994.747265][ T6390] usb 4-1: unable to get BOS descriptor or descriptor too short [ 994.765831][ T6390] usb 4-1: config 1 has an invalid interface number: 231 but max is 0 [ 994.776967][ T6390] usb 4-1: config 1 has no interface number 0 [ 994.783083][ T6390] usb 4-1: config 1 interface 231 has no altsetting 0 [ 994.815109][ T6390] usb 4-1: string descriptor 0 read error: -22 [ 994.828099][ T6390] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=5c.f5 [ 994.863189][ T6390] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 995.047980][T29980] loop4: detected capacity change from 0 to 128 [ 995.143965][ T6390] usbtest 4-1:1.231: Linux gadget zero [ 995.149500][ T6390] usbtest 4-1:1.231: high-speed {control in/out int-out} tests (+alt) [ 995.413169][ T6390] usb 4-1: USB disconnect, device number 63 [ 995.683181][T30006] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10552'. [ 995.823014][T30013] netlink: 'syz.0.10554': attribute type 10 has an invalid length. [ 995.857607][T30013] team0: Device hsr_slave_0 failed to register rx_handler [ 996.219608][T30027] tipc: Can't bind to reserved service type 0 [ 996.655382][T30043] loop0: detected capacity change from 0 to 256 [ 996.685647][T30043] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 996.749288][T30043] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 996.923058][T30025] loop3: detected capacity change from 0 to 32768 [ 997.014814][T30025] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 997.150251][T30025] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 997.300337][T30025] XFS (loop3): Starting recovery (logdev: internal) [ 997.373345][T30025] XFS (loop3): Ending recovery (logdev: internal) [ 997.508164][T30071] loop4: detected capacity change from 0 to 4096 [ 997.562205][T30077] Unsupported ieee802154 address type: 0 [ 997.730375][ T6539] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 997.754292][T30079] loop1: detected capacity change from 0 to 2048 [ 997.777732][T30079] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 997.811524][T30083] loop4: detected capacity change from 0 to 512 [ 997.839206][T30083] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 997.860884][T30084] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 997.872648][T30079] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 997.886917][T30083] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 997.980838][T30079] Remounting filesystem read-only [ 998.042598][T30083] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:478: comm syz.4.10588: Invalid block bitmap block 0 in block_group 0 [ 998.100946][T30079] NILFS error (device loop1): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 998.134233][T25808] Bluetooth: hci1: command 0x0406 tx timeout [ 998.140432][T30079] NILFS (loop1): error -5 reading inode: ino=12 [ 998.191902][T30083] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6642: Corrupt filesystem [ 998.222446][T30083] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #11: comm syz.4.10588: attempt to clear invalid blocks 983261 len 1 [ 998.264670][T30091] __vm_enough_memory: pid: 30091, comm: syz.0.10597, not enough memory for the allocation [ 998.281736][T30083] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.10588: Invalid inode table block 0 in block_group 0 [ 998.312532][T30083] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 998.337101][T30083] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 998.345971][T30083] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.10588: Invalid inode table block 0 in block_group 0 [ 998.365226][T30083] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5902: Corrupt filesystem [ 998.375214][T30083] EXT4-fs error (device loop4): ext4_truncate:4288: inode #11: comm syz.4.10588: mark_inode_dirty error [ 998.408068][T30083] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 998.440643][T30083] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.10588: Invalid inode table block 0 in block_group 0 [ 998.473509][T30083] EXT4-fs (loop4): 1 truncate cleaned up [ 998.496059][T30083] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 998.542884][T30083] EXT4-fs error (device loop4): __ext4_get_inode_loc:4483: comm syz.4.10588: Invalid inode table block 0 in block_group 0 [ 998.603750][T30098] QAT: failed to copy from user cfg_data. [ 998.675920][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 999.050062][T30116] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 999.490359][T30138] tmpfs: Bad value for 'mpol' [ 999.859082][T30155] loop0: detected capacity change from 0 to 64 [ 1000.212727][T30167] netlink: 'syz.3.10627': attribute type 1 has an invalid length. [ 1000.251336][T30167] netlink: 232 bytes leftover after parsing attributes in process `syz.3.10627'. [ 1000.255763][T30169] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10628'. [ 1000.308239][T30169] netlink: 10 bytes leftover after parsing attributes in process `syz.1.10628'. [ 1000.791145][T30188] loop0: detected capacity change from 0 to 4096 [ 1000.812646][T30188] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1000.930322][T30188] ntfs3: loop0: failed to convert "076c" to cp949 [ 1001.093230][T30199] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10644'. [ 1001.242930][T30203] loop1: detected capacity change from 0 to 2048 [ 1001.263632][T30203] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1001.302336][T30203] syz.1.10645: attempt to access beyond end of device [ 1001.302336][T30203] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1001.303717][T30208] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1001.348537][T30203] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: disallowed inode number - offset=104, inode=6, rec_len=24, name_len=5 [ 1001.417986][T30203] Remounting filesystem read-only [ 1001.839320][T30224] netlink: 20 bytes leftover after parsing attributes in process `syz.0.10655'. [ 1002.041673][T30234] loop3: detected capacity change from 0 to 512 [ 1002.082175][T30234] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1002.218185][T30234] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1002.235234][T30245] netlink: 4 bytes leftover after parsing attributes in process `syz.0.10665'. [ 1002.289123][T30234] ext4 filesystem being mounted at /2478/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1002.363360][T30234] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0 [ 1002.403945][T30234] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 1002.438193][T30234] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.10660: Failed to acquire dquot type 1 [ 1002.550764][ T6539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1003.034040][T30278] netlink: 452 bytes leftover after parsing attributes in process `syz.0.10680'. [ 1003.197343][T30285] loop0: detected capacity change from 0 to 2048 [ 1003.270330][T30289] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1003.321249][T30285] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 1003.364093][T30285] Remounting filesystem read-only [ 1003.369472][T30285] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 1003.390059][T30293] loop3: detected capacity change from 0 to 256 [ 1003.444083][T30293] FAT-fs (loop3): Directory bread(block 64) failed [ 1003.456578][T30293] FAT-fs (loop3): Directory bread(block 65) failed [ 1003.474331][T30295] kAFS: unable to lookup cell '.,' [ 1003.485045][T30293] FAT-fs (loop3): Directory bread(block 66) failed [ 1003.510668][T30293] FAT-fs (loop3): Directory bread(block 67) failed [ 1003.537227][T30293] FAT-fs (loop3): Directory bread(block 68) failed [ 1003.568909][T30293] FAT-fs (loop3): Directory bread(block 69) failed [ 1003.597600][T30293] FAT-fs (loop3): Directory bread(block 70) failed [ 1003.604157][T30293] FAT-fs (loop3): Directory bread(block 71) failed [ 1003.655581][T30293] FAT-fs (loop3): Directory bread(block 72) failed [ 1003.675052][T30293] FAT-fs (loop3): Directory bread(block 73) failed [ 1003.791901][T30305] kernel read not supported for file / œ7³ÏüâW)ës“§Ç!Qöì¥fsõl{T‡rÒ)r§ÖOš˜õ2:"ôÀT+ÍŸv|Õ²DvcŽ“ØÖ Å6Òxãc: (pid: 30305 comm: syz.4.10693) [ 1003.856881][ T27] audit: type=1800 audit(1751590902.190:132): pid=30305 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.10693" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=75511 res=0 errno=0 [ 1004.494245][T30325] libceph: resolve '0.0' (ret=-3): failed [ 1004.645768][T30307] loop1: detected capacity change from 0 to 32768 [ 1004.745861][T30337] loop0: detected capacity change from 0 to 2048 [ 1004.761684][T30307] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1004.765650][T30315] loop3: detected capacity change from 0 to 32768 [ 1004.799000][T30337] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1004.995537][T30342] binfmt_misc: register: failed to install interpreter file ./cgroup [ 1005.018071][T30307] XFS (loop1): Ending clean mount [ 1005.045669][T30307] XFS (loop1): Quotacheck needed: Please wait. [ 1005.215040][T30307] XFS (loop1): Quotacheck: Done. [ 1005.438618][ T6533] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1006.023273][T30374] lo speed is unknown, defaulting to 1000 [ 1006.037965][T30374] lo speed is unknown, defaulting to 1000 [ 1006.050747][T30374] lo speed is unknown, defaulting to 1000 [ 1006.071697][T30374] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 1006.112208][T30374] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98 [ 1006.179098][T30374] lo speed is unknown, defaulting to 1000 [ 1006.192465][T30374] lo speed is unknown, defaulting to 1000 [ 1006.211734][T30374] lo speed is unknown, defaulting to 1000 [ 1006.226358][T30374] lo speed is unknown, defaulting to 1000 [ 1006.519493][T30372] loop3: detected capacity change from 0 to 32768 [ 1006.549651][T30372] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 12 [ 1006.577603][T30390] netlink: 168 bytes leftover after parsing attributes in process `syz.1.10731'. [ 1006.759316][ T6924] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 12 [ 1006.848970][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1006.855920][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1007.010897][ T27] audit: type=1326 audit(1751590905.145:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30405 comm="syz.3.10739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 1007.085559][ T27] audit: type=1326 audit(1751590905.145:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30405 comm="syz.3.10739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 1007.151745][ T27] audit: type=1326 audit(1751590905.145:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30405 comm="syz.3.10739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 1007.237417][ T27] audit: type=1326 audit(1751590905.145:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30405 comm="syz.3.10739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 1007.291858][ T27] audit: type=1326 audit(1751590905.145:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30405 comm="syz.3.10739" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f22cdb8e929 code=0x7ffc0000 [ 1007.458687][T30422] loop1: detected capacity change from 0 to 1024 [ 1007.483597][T30422] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945) [ 1007.512460][T30422] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1007.546192][T30422] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 1007.562782][T30422] EXT4-fs (loop1): orphan cleanup on readonly fs [ 1007.584692][T30422] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.10747: Inode bitmap for bg 0 marked uninitialized [ 1007.603813][T30422] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1007.691292][T30422] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945) [ 1007.739835][T30431] loop0: detected capacity change from 0 to 4096 [ 1007.794763][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1007.804002][T30431] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1007.915932][T30431] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1008.034407][T30431] ntfs3: loop0: failed to convert "c46c" to macgreek [ 1008.068209][T30441] program syz.3.10756 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1008.509321][T30458] bridge6: the hash_elasticity option has been deprecated and is always 16 [ 1008.533978][T30458] bridge6: entered promiscuous mode [ 1008.552023][T30458] bridge6: entered allmulticast mode [ 1009.099309][ T28] usb 2-1: new high-speed USB device number 51 using dummy_hcd [ 1009.306937][T30486] netlink: 56 bytes leftover after parsing attributes in process `syz.4.10779'. [ 1009.328604][ T28] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1009.338067][ T28] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1009.358972][ T28] usb 2-1: config 0 descriptor?? [ 1009.386611][ T28] cp210x 2-1:0.0: cp210x converter detected [ 1009.500153][T30495] loop4: detected capacity change from 0 to 256 [ 1009.509228][T30495] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1009.540789][T30495] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 1009.567727][T30495] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 1009.835151][ T28] usb 2-1: cp210x converter now attached to ttyUSB0 [ 1009.868292][ T28] usb 2-1: USB disconnect, device number 51 [ 1009.921976][ T28] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1009.940214][ T28] cp210x 2-1:0.0: device disconnected [ 1010.008418][T30507] netlink: 'syz.4.10787': attribute type 15 has an invalid length. [ 1010.028022][T30507] netlink: 666 bytes leftover after parsing attributes in process `syz.4.10787'. [ 1010.170394][T30514] loop3: detected capacity change from 0 to 2048 [ 1010.199123][T30514] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1010.290122][T30519] netlink: 20 bytes leftover after parsing attributes in process `syz.4.10794'. [ 1010.494690][ T27] audit: type=1326 audit(1751590908.401:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30527 comm="syz.4.10798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 1010.517120][ C1] vkms_vblank_simulate: vblank timer overrun [ 1010.598501][ T27] audit: type=1326 audit(1751590908.401:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30527 comm="syz.4.10798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 1010.620913][ C1] vkms_vblank_simulate: vblank timer overrun [ 1010.667499][ T27] audit: type=1326 audit(1751590908.429:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30527 comm="syz.4.10798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 1010.735980][ T27] audit: type=1326 audit(1751590908.429:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30527 comm="syz.4.10798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f762598e929 code=0x7ffc0000 [ 1010.932874][T30548] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1010.940140][T30548] IPv6: NLM_F_CREATE should be set when creating new route [ 1011.502099][ T6455] kernel write not supported for file /5183/loginuid (pid: 6455 comm: kworker/0:4) [ 1011.808347][T30590] loop0: detected capacity change from 0 to 256 [ 1011.844795][T30590] FAT-fs (loop0): Directory bread(block 64) failed [ 1011.844829][T30590] FAT-fs (loop0): Directory bread(block 65) failed [ 1011.844915][T30590] FAT-fs (loop0): Directory bread(block 66) failed [ 1011.844940][T30590] FAT-fs (loop0): Directory bread(block 67) failed [ 1011.845023][T30590] FAT-fs (loop0): Directory bread(block 68) failed [ 1011.845048][T30590] FAT-fs (loop0): Directory bread(block 69) failed [ 1011.845166][T30590] FAT-fs (loop0): Directory bread(block 70) failed [ 1011.845191][T30590] FAT-fs (loop0): Directory bread(block 71) failed [ 1011.845279][T30590] FAT-fs (loop0): Directory bread(block 72) failed [ 1011.845303][T30590] FAT-fs (loop0): Directory bread(block 73) failed [ 1011.896346][T30594] loop4: detected capacity change from 0 to 512 [ 1011.906854][T30594] EXT4-fs (loop4): Test dummy encryption mode enabled [ 1011.906874][T30594] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1011.974011][T30594] EXT4-fs (loop4): 1 truncate cleaned up [ 1011.975210][T30594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1012.200999][T25807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1012.365600][T30605] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10834'. [ 1012.422354][T30605] veth1_macvtap: left promiscuous mode [ 1012.619945][T30615] loop3: detected capacity change from 0 to 512 [ 1012.653198][T30615] EXT4-fs error (device loop3): ext4_orphan_get:1425: comm syz.3.10837: bad orphan inode 15 [ 1012.678959][T30615] ext4_test_bit(bit=14, block=5) = 0 [ 1012.686107][T30615] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1012.743193][T30621] kAFS: unable to lookup cell '\/' [ 1012.804666][T30624] loop1: detected capacity change from 0 to 512 [ 1012.813036][T30624] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1012.856501][T30625] netlink: 126588 bytes leftover after parsing attributes in process `syz.0.10842'. [ 1012.892879][T30624] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1012.926846][ T6539] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1012.997125][T30624] ext4 filesystem being mounted at /2585/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1013.054882][T30624] [ 1013.057232][T30624] ====================================================== [ 1013.064251][T30624] WARNING: possible circular locking dependency detected [ 1013.071280][T30624] 6.6.95-syzkaller #0 Not tainted [ 1013.076301][T30624] ------------------------------------------------------ [ 1013.083320][T30624] syz.1.10841/30624 is trying to acquire lock: [ 1013.089474][T30624] ffff88806943fe68 (&dquot->dq_lock){+.+.}-{3:3}, at: dqget+0x6fc/0xeb0 [ 1013.097852][T30624] [ 1013.097852][T30624] but task is already holding lock: [ 1013.105218][T30624] ffff88805d391ec8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_setattr+0x86b/0x1c90 [ 1013.112483][T30631] siw: device registration error -23 [ 1013.114182][T30624] [ 1013.114182][T30624] which lock already depends on the new lock. [ 1013.114182][T30624] [ 1013.114190][T30624] [ 1013.114190][T30624] the existing dependency chain (in reverse order) is: [ 1013.114196][T30624] [ 1013.114196][T30624] -> #5 (&ei->xattr_sem){++++}-{3:3}: [ 1013.146428][T30624] down_read+0x46/0x2e0 [ 1013.151120][T30624] ext4_setattr+0x86b/0x1c90 [ 1013.156232][T30624] notify_change+0xb0d/0xe10 [ 1013.161333][T30624] chown_common+0x3f9/0x5a0 [ 1013.166345][T30624] do_fchownat+0x168/0x270 [ 1013.171269][T30624] __x64_sys_chown+0x82/0x90 [ 1013.176366][T30624] do_syscall_64+0x55/0xb0 [ 1013.181291][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.187695][T30624] [ 1013.187695][T30624] -> #4 (jbd2_handle){++++}-{0:0}: [ 1013.194974][T30624] start_this_handle+0x1e9d/0x20c0 [ 1013.200595][T30624] jbd2__journal_start+0x2bb/0x5b0 [ 1013.206210][T30624] jbd2_journal_start+0x2a/0x40 [ 1013.211565][T30624] ocfs2_start_trans+0x376/0x6c0 [ 1013.217006][T30624] ocfs2_modify_bh+0xe9/0x470 [ 1013.222191][T30624] ocfs2_local_read_info+0x13fd/0x1770 [ 1013.228159][T30624] dquot_load_quota_sb+0x757/0xb80 [ 1013.233772][T30624] dquot_load_quota_inode+0x2dc/0x5d0 [ 1013.239649][T30624] ocfs2_enable_quotas+0x1c7/0x440 [ 1013.245270][T30624] ocfs2_fill_super+0x3f6d/0x4d90 [ 1013.250797][T30624] mount_bdev+0x22b/0x2d0 [ 1013.255632][T30624] legacy_get_tree+0xea/0x180 [ 1013.260816][T30624] vfs_get_tree+0x8c/0x280 [ 1013.265735][T30624] do_new_mount+0x24b/0xa40 [ 1013.270740][T30624] __se_sys_mount+0x2da/0x3c0 [ 1013.275919][T30624] do_syscall_64+0x55/0xb0 [ 1013.280843][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.287245][T30624] [ 1013.287245][T30624] -> #3 (&journal->j_trans_barrier){.+.+}-{3:3}: [ 1013.295742][T30624] down_read+0x46/0x2e0 [ 1013.300410][T30624] ocfs2_start_trans+0x36a/0x6c0 [ 1013.305849][T30624] ocfs2_modify_bh+0xe9/0x470 [ 1013.311033][T30624] ocfs2_local_read_info+0x13fd/0x1770 [ 1013.316998][T30624] dquot_load_quota_sb+0x757/0xb80 [ 1013.322614][T30624] dquot_load_quota_inode+0x2dc/0x5d0 [ 1013.328493][T30624] ocfs2_enable_quotas+0x1c7/0x440 [ 1013.334109][T30624] ocfs2_fill_super+0x3f6d/0x4d90 [ 1013.339635][T30624] mount_bdev+0x22b/0x2d0 [ 1013.344468][T30624] legacy_get_tree+0xea/0x180 [ 1013.349653][T30624] vfs_get_tree+0x8c/0x280 [ 1013.354574][T30624] do_new_mount+0x24b/0xa40 [ 1013.359593][T30624] __se_sys_mount+0x2da/0x3c0 [ 1013.364788][T30624] do_syscall_64+0x55/0xb0 [ 1013.369716][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.376119][T30624] [ 1013.376119][T30624] -> #2 (sb_internal#4){.+.+}-{0:0}: [ 1013.383583][T30624] ocfs2_start_trans+0x26b/0x6c0 [ 1013.389039][T30624] ocfs2_acquire_dquot+0x67b/0xaf0 [ 1013.394660][T30624] dqget+0x77c/0xeb0 [ 1013.399070][T30624] dquot_set_dqblk+0x2b/0xf90 [ 1013.404252][T30624] quota_setquota+0x4b0/0x530 [ 1013.409432][T30624] __se_sys_quotactl+0x27b/0x950 [ 1013.414887][T30624] do_syscall_64+0x55/0xb0 [ 1013.419820][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.426230][T30624] [ 1013.426230][T30624] -> #1 (&ocfs2_quota_ip_alloc_sem_key){++++}-{3:3}: [ 1013.435076][T30624] down_write+0x97/0x1f0 [ 1013.439826][T30624] ocfs2_create_local_dquot+0x1a4/0x1790 [ 1013.445964][T30624] ocfs2_acquire_dquot+0x7cf/0xaf0 [ 1013.451579][T30624] dqget+0x77c/0xeb0 [ 1013.455983][T30624] dquot_set_dqblk+0x2b/0xf90 [ 1013.461164][T30624] quota_setquota+0x4b0/0x530 [ 1013.466345][T30624] __se_sys_quotactl+0x27b/0x950 [ 1013.471789][T30624] do_syscall_64+0x55/0xb0 [ 1013.476714][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.483118][T30624] [ 1013.483118][T30624] -> #0 (&dquot->dq_lock){+.+.}-{3:3}: [ 1013.490758][T30624] __lock_acquire+0x2ddb/0x7c80 [ 1013.496121][T30624] lock_acquire+0x197/0x410 [ 1013.501128][T30624] __mutex_lock+0x129/0xcc0 [ 1013.506137][T30624] dqget+0x6fc/0xeb0 [ 1013.510539][T30624] dquot_transfer+0x2f9/0x6d0 [ 1013.515724][T30624] ext4_setattr+0x87d/0x1c90 [ 1013.520818][T30624] notify_change+0xb0d/0xe10 [ 1013.525916][T30624] chown_common+0x3f9/0x5a0 [ 1013.530925][T30624] do_fchownat+0x168/0x270 [ 1013.535845][T30624] __x64_sys_lchown+0x85/0x90 [ 1013.541027][T30624] do_syscall_64+0x55/0xb0 [ 1013.545950][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.552372][T30624] [ 1013.552372][T30624] other info that might help us debug this: [ 1013.552372][T30624] [ 1013.562584][T30624] Chain exists of: [ 1013.562584][T30624] &dquot->dq_lock --> jbd2_handle --> &ei->xattr_sem [ 1013.562584][T30624] [ 1013.575179][T30624] Possible unsafe locking scenario: [ 1013.575179][T30624] [ 1013.582617][T30624] CPU0 CPU1 [ 1013.587963][T30624] ---- ---- [ 1013.593308][T30624] rlock(&ei->xattr_sem); [ 1013.597710][T30624] lock(jbd2_handle); [ 1013.604280][T30624] lock(&ei->xattr_sem); [ 1013.611109][T30624] lock(&dquot->dq_lock); [ 1013.615508][T30624] [ 1013.615508][T30624] *** DEADLOCK *** [ 1013.615508][T30624] [ 1013.623628][T30624] 3 locks held by syz.1.10841/30624: [ 1013.628889][T30624] #0: ffff88807d13a418 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 1013.638015][T30624] #1: ffff88805d392210 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: chown_common+0x313/0x5a0 [ 1013.648362][T30624] #2: ffff88805d391ec8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_setattr+0x86b/0x1c90 [ 1013.657736][T30624] [ 1013.657736][T30624] stack backtrace: [ 1013.663609][T30624] CPU: 1 PID: 30624 Comm: syz.1.10841 Not tainted 6.6.95-syzkaller #0 [ 1013.671742][T30624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 1013.681780][T30624] Call Trace: [ 1013.685044][T30624] [ 1013.687959][T30624] dump_stack_lvl+0x16c/0x230 [ 1013.692627][T30624] ? load_image+0x3b0/0x3b0 [ 1013.697116][T30624] ? show_regs_print_info+0x20/0x20 [ 1013.702309][T30624] ? print_circular_bug+0x12b/0x1a0 [ 1013.707492][T30624] check_noncircular+0x2bd/0x3c0 [ 1013.712419][T30624] ? look_up_lock_class+0x75/0x140 [ 1013.717513][T30624] ? print_deadlock_bug+0x5d0/0x5d0 [ 1013.722692][T30624] ? lockdep_lock+0xe0/0x220 [ 1013.727269][T30624] ? _find_first_zero_bit+0xd3/0x100 [ 1013.732552][T30624] __lock_acquire+0x2ddb/0x7c80 [ 1013.737402][T30624] ? mark_lock+0x94/0x320 [ 1013.741727][T30624] ? verify_lock_unused+0x140/0x140 [ 1013.746911][T30624] ? __lock_acquire+0x1334/0x7c80 [ 1013.751929][T30624] lock_acquire+0x197/0x410 [ 1013.756425][T30624] ? dqget+0x6fc/0xeb0 [ 1013.760484][T30624] ? __might_sleep+0xe0/0xe0 [ 1013.765071][T30624] ? read_lock_is_recursive+0x20/0x20 [ 1013.770434][T30624] ? mark_lock+0x94/0x320 [ 1013.774750][T30624] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 1013.780727][T30624] __mutex_lock+0x129/0xcc0 [ 1013.785229][T30624] ? dqget+0x6fc/0xeb0 [ 1013.789291][T30624] ? percpu_counter_add_batch+0x1d9/0x280 [ 1013.795003][T30624] ? lockdep_hardirqs_on+0x98/0x150 [ 1013.800200][T30624] ? percpu_counter_add_batch+0x22b/0x280 [ 1013.805908][T30624] ? dqget+0x6fc/0xeb0 [ 1013.809965][T30624] ? mutex_lock_nested+0x20/0x20 [ 1013.814890][T30624] ? percpu_counter_set+0x1a0/0x1a0 [ 1013.820076][T30624] ? make_kuid+0x640/0x640 [ 1013.824481][T30624] ? do_raw_spin_unlock+0x121/0x230 [ 1013.829667][T30624] dqget+0x6fc/0xeb0 [ 1013.833554][T30624] dquot_transfer+0x2f9/0x6d0 [ 1013.838230][T30624] ? __dquot_transfer+0x22f0/0x22f0 [ 1013.843422][T30624] ? down_read+0x1ac/0x2e0 [ 1013.847826][T30624] ext4_setattr+0x87d/0x1c90 [ 1013.852404][T30624] ? evm_inode_setattr+0x94/0x6a0 [ 1013.857424][T30624] ? bpf_lsm_inode_setattr+0x9/0x10 [ 1013.862608][T30624] ? try_break_deleg+0x79/0x120 [ 1013.867449][T30624] ? ext4_write_inode+0x550/0x550 [ 1013.872457][T30624] notify_change+0xb0d/0xe10 [ 1013.877040][T30624] chown_common+0x3f9/0x5a0 [ 1013.881534][T30624] ? __ia32_sys_chmod+0x70/0x70 [ 1013.886375][T30624] ? rcu_read_lock_any_held+0xb4/0x120 [ 1013.891820][T30624] ? __mnt_want_write+0x223/0x2a0 [ 1013.896832][T30624] do_fchownat+0x168/0x270 [ 1013.901236][T30624] ? chown_common+0x5a0/0x5a0 [ 1013.905902][T30624] __x64_sys_lchown+0x85/0x90 [ 1013.910568][T30624] do_syscall_64+0x55/0xb0 [ 1013.914977][T30624] ? clear_bhb_loop+0x40/0x90 [ 1013.919640][T30624] ? clear_bhb_loop+0x40/0x90 [ 1013.924300][T30624] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1013.930184][T30624] RIP: 0033:0x7f442598e929 [ 1013.934589][T30624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1013.954179][T30624] RSP: 002b:00007f4426873038 EFLAGS: 00000246 ORIG_RAX: 000000000000005e [ 1013.962580][T30624] RAX: ffffffffffffffda RBX: 00007f4425bb5fa0 RCX: 00007f442598e929 [ 1013.970539][T30624] RDX: 0000000000000000 RSI: 000000000000ee01 RDI: 0000200000000000 [ 1013.978506][T30624] RBP: 00007f4425a10b39 R08: 0000000000000000 R09: 0000000000000000 [ 1013.986491][T30624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1013.994446][T30624] R13: 0000000000000000 R14: 00007f4425bb5fa0 R15: 00007ffe83058e38 [ 1014.002408][T30624] [ 1014.005503][ C1] vkms_vblank_simulate: vblank timer overrun [ 1014.068935][ T6533] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.