last executing test programs: 3.670917644s ago: executing program 4 (id=6702): r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f0000000040)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7}) 3.227048778s ago: executing program 0 (id=6706): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="3400000011000100000000000020000000000000", @ANYRES32=0x0, @ANYBLOB="0000000008c00000140003006d616373656330"], 0x34}}, 0x0) 3.122531819s ago: executing program 1 (id=6707): r0 = socket$phonet_pipe(0x23, 0x5, 0x2) getsockopt$PNPIPE_IFINDEX(r0, 0x113, 0x2, 0x0, &(0x7f0000000100)) 3.093607027s ago: executing program 4 (id=6708): r0 = fsopen(&(0x7f0000000240)='xfs\x00', 0x0) fsconfig$FSCONFIG_SET_BINARY(r0, 0x2, &(0x7f0000000080)='discard', &(0x7f0000000200)='\t', 0x1) 2.930884655s ago: executing program 3 (id=6709): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='attr/prev\x00') writev(r0, &(0x7f00000006c0)=[{0x0}, {&(0x7f00000004c0)='\n', 0x1}], 0x2) 2.907843637s ago: executing program 2 (id=6710): r0 = socket(0x1d, 0x2, 0x6) getsockname$packet(r0, 0x0, &(0x7f0000000200)) 2.623757133s ago: executing program 1 (id=6711): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@test_dummy_encryption}, {@dioread_lock}, {@test_dummy_encryption}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}]}, 0xd, 0x5f7, &(0x7f0000001940)="$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") syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000)) 2.603121297s ago: executing program 4 (id=6712): syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3200c00, &(0x7f0000001bc0)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0x3, 0xa73, &(0x7f0000003cc0)="$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") truncate(&(0x7f0000000340)='./file2\x00', 0x0) 2.424024209s ago: executing program 0 (id=6713): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000001700)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="020400090e000000000000000000000005000600000000000a00000000000000fc01000000000000000000000000000000000000000000000200010000000000000002010000000005000500000000000a"], 0x70}, 0x1, 0x7}, 0x0) 2.375165919s ago: executing program 3 (id=6714): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SCALLUSERDATA(r0, 0x89e5, &(0x7f0000000000)={0x5a, "f28bd8e67b5a35b7de5003bdd8105a9fe2badbfeffac4bcba57dc8fb35ece218e57c5c949413a55a5a4954b7dbd1fd41a4ff5a80426cbd7f78ab9d3eaa45a72c4e3655bcda8bf99d7e5f466812d4676ae95465968f0442145d97961970d7d22f519b5d44691b5795329974b2e50e619c81eceb804c97fb489a7959ab32406064"}) 2.37492087s ago: executing program 2 (id=6715): r0 = socket$inet6_dccp(0xa, 0x6, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1c8, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0) 1.950512149s ago: executing program 0 (id=6716): r0 = openat$apparmor_thread_exec(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0) write$apparmor_exec(r0, &(0x7f0000000500)=ANY=[@ANYBLOB='stack : :'], 0x11) 1.944593736s ago: executing program 2 (id=6717): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) bind$rose(r0, &(0x7f0000000040)=@full={0xb, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null, 0x2, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @null, @null, @null]}, 0x40) 1.827590694s ago: executing program 1 (id=6718): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) ioctl$SIOCRSACCEPT(r0, 0x89e3) 1.775253363s ago: executing program 3 (id=6719): r0 = syz_open_dev$video4linux(&(0x7f0000000200), 0x308000, 0x0) ioctl$VIDIOC_ENUM_DV_TIMINGS(r0, 0xc0945662, &(0x7f0000000600)={0x0, 0x0, '\x00', {0x0, @reserved}}) 1.678694907s ago: executing program 4 (id=6720): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200000, &(0x7f0000000180), 0xf2, 0x5be, &(0x7f0000000440)="$eJzs3c9rFFkeAPBvVX4Yo9lEEGH3sAQ8rItrxyT7w4U9uMdlV1bYvWtI2iDp2JLuiMkKq4fx4mWQgWEYYZi5z32OMv/A/BXCjCCDhJnDMNBDdapNm3THTtLpZKY/Hyh9r151fd/req981VVSAfStyeyPNOLXEfF+EjHeVDYYeeHk5nYbrx/MZ0sStdp/vk0iydc1tk/yv0/lmR9rtdqX70VcTHfGraytL82VSsWVPD8Vyd2pytr6pdvLc4vFxeKdmdnZK3+anfnrX/7ctbb+/vr3H/37+T+uPDm/8eHnL888TeJq1P6/WdbcjgN42JyZjMn8OxmKq9s2nO5CsOMkOeoKsC8D+TgfiuwcMB4D+ahvqTbey6oBhyz7568G9KnE+Ic+1ZgHNK7tu3Qd/LPx6u+bF0A72z+4+dtIjNSvjUY3kreujLLr3YkuxM9ifPHNs6fZEt37HQLgnR4+iojLg4M7z39Jfv7bv8sdbLM9Rj3+Lj9BAd3zPJv//KHV/Cd9M/+JFvOfUy3G7n60HP9vSV92IUxb2fzvby3nv29uWk0M5Lmx+pxvKLl1u1TMzm2/iogLMXQiy+9yP+dmuvGi1q6wef6XLVn8xlwwr8fLwRNvf2Zhrjp3oEY3efUo4jct57/Jm+OftDj+2fdxvcMY54rPftuu7N3t33JzLw3rUO3TiN+1PP5bd7Sy1FR1ud39yal6f5hq9Iqdvnt87qt28be3fyzat/8wZMd/dPf2TyTN92sre4/xycgPxXZl++3/w8l/6+nhfN39uWp1ZTpiOPnXzvUzW59t5BvbZ+2/cH7381+r/n9yD/3x8dnHzZuO7Nb+oQ732S1Z+xf2dPz3nnjxz/993C5+Z8f/j/XUhXxNJ+e/Tit4kO8OAAAAAAAAjps0Ik5Hkm6l07RQ2Hy+42yMpqVypXrxVnn1zkJWVn/+IW3c6R5veh5iOn8etpGf2ZafjYgzEfHBwMl6vjBfLi0cdeMBAAAAAAAAAAAAAAAAAADgmDgVMXI6krSw7f//Z74eOOraAYduH+9b6vV7CoBD0n785yXdeNMTcCw1j/8TrTYY611dgN7a3/tWh7teD6D3Ohj/aS/qAfSe961D/zL+oX8Z/9C/jH/oX3sZ/59dO8SKAAAAAAAAAAAAAAAAAAAAAAAAAAAAwC/D9WvXsqW28frBfJZfuLe2ulS+d2mhWFkqLK/OF+bLK3cLi+XyYqlYmC8vv2t/pXL57vRMrN6fqhYr1anK2vqN5fLqneqN28tzi8UbRe8NBwAAAAAAAAAAAAAAAAAAgJ0qa+tLc6VScaVbiWynB9zPcDfr00+JmIjoUaxI64mxWBs8lBBPRjf754F3mOYd/QiPTqTHoG/sOXGEJyUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2OanAAAA//9aRCuc") mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='ecryptfs\x00', 0x800000, &(0x7f0000000280)='sit0\x00') 1.322182435s ago: executing program 2 (id=6721): syz_mount_image$squashfs(&(0x7f00000001c0), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f00000043c0)=ANY=[@ANYBLOB="003bfa093f92d25f4b42889f58b36282edd6f82c49e007ed49b9ed030962f330bd57af2a"], 0x2, 0x1a2, &(0x7f0000000440)="$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") bpf$OBJ_GET_PROG(0x7, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file1\x00'}, 0x18) 1.252573561s ago: executing program 3 (id=6722): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000200)="9902000012006b9c9e3fe3d86e6c1d0000147ea60864160af36504b68675f8001d000a00a0e69ee517d24460bc24eab556a705251e6182949a36c2151fef08d8cdbf9367b41ad206000000f408000300040100030800000000000000", 0x5c}, {&(0x7f00000000c0)="d557fc16674b56c0a96a733c232d6790c63ca969a688b06e3da58f3c4568bf0a77bdff6f41d7890e18defe94ef1a392dc00dea94a1bfe64982de7cf1c91e1103cc1840210cbb57222bc2bfa30369992a6bc5156c00aeadd359a7991ad1de01feec401dba6d7694a14785839d3c2d67188cd07827c934897de4676743c192c4a4b24f7f8747141a1325d29da89694574c32eba56e5bbc8f80376f3325dd89937e990089294183a4829e21849004c538378d41066cb7de399450b3544067", 0xbd}, {&(0x7f0000000280)="5e191aea3468a5eab1c3d6024b43dece099475c81c53aa9244d866f68b8e31e93b41b432fb0454234620a25706bfb6f01ce01093b7ff634785d8b345ef8f7a928034820bbd37467d1049ac7a724c153c358d6f7efd919bb918734e846598b03733a6f4bbce06471d3a440e14dae67170cbfea76bc33481c28ec2cfad1f3d83ddece3006d5bb30dc4288dd40bd476cc7f94d143c56e54ed4d84b9c1ecc87fc035c7c992767edcfe2218bc6542a6a3a9b879e8aa6d652d277ee640cc15d2e9efe30584ed57ab208ca4db6cf63381804a5ee5950020", 0xd4}, {&(0x7f0000000380)="fd7617adb877574c4a4489fcaccde0c97bdb2d9d89dba8ab9fc9ebbdcedc770661e1971989a787890de32eebe4008ac8bfafa034add91f6ea4acc741521abecc6cbb4fcfeb61d7d08a8911e59550055d17897194afc1ffd04c18c2506d41bec374a6e5b1ed5fd07db55483fef2dc9ad8ae7c6044b08a303f256ff7e7dd720c72fc0d513110468d44e31a8fc9833d521b95c3b04378ca1c67b4faca350009045628c7f7196510f14ebdc68ba7", 0xac}], 0x4, 0x0, 0x0, 0x1f00c00e}, 0x0) 1.204704134s ago: executing program 1 (id=6723): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000010c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000001300550000000000000037000100ffffffff95"], &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10) 1.179539609s ago: executing program 0 (id=6724): mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x3000003, 0x200000006c832, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000037000/0x4000)=nil, 0x4000, 0x4) 911.173408ms ago: executing program 4 (id=6725): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000900)={'bridge0\x00', @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}) 724.689714ms ago: executing program 3 (id=6726): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, [@jmp={0x5, 0x0, 0xb}, @alu={0x7, 0x0, 0x3, 0x0, 0x0, 0xfffffffffffffff8, 0xffffffffffffffff}]}, &(0x7f00000005c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='tlb_flush\x00', r0}, 0x10) 644.083702ms ago: executing program 1 (id=6727): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) write$sequencer(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="9401", @ANYRES64], 0x24) 603.157241ms ago: executing program 2 (id=6728): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x28, 0x3, 0x6, 0x101, 0xf0, 0x0, {0x0, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}]}, 0x28}}, 0x0) 486.438929ms ago: executing program 0 (id=6729): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@func={0x2, 0x0, 0x0, 0xc, 0x2}, @func_proto]}, {0x0, [0x0, 0x5f]}}, 0x0, 0x34, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x11}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r0, 0xc, &(0x7f00000000c0)={0x0, 0x1}, 0x1, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, @void, @value}, 0x90) 449.168625ms ago: executing program 4 (id=6730): futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000000480), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, 0x0, &(0x7f0000048000), 0x0) 102.922605ms ago: executing program 1 (id=6731): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)=@gettaction={0x18, 0x5a, 0x1, 0x0, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x4}]}, 0x18}}, 0x0) 70.418991ms ago: executing program 3 (id=6732): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'netdevsim0\x00', &(0x7f0000000340)=@ethtool_cmd={0x11, 0x0, 0x97, 0x0, 0x1d, 0x0, 0x6, 0x0, 0x0, 0x3, 0x3f, 0x1000000, 0x0, 0x0, 0x7, 0x2}}) 38.371026ms ago: executing program 0 (id=6733): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x8, &(0x7f0000006680)) process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) 0s ago: executing program 2 (id=6734): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000780)=ANY=[@ANYBLOB="9feb010018000000000000003c0000003c00000002000000000000000200000408000000000000000300000000000000000000000200000000000000000000000000000200000000000000000000000400"], 0x0, 0x56, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28) bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000017c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0x1, '\x00', 0x0, r0, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x48) kernel console output (not intermixed with test programs): ses=4294967295 subj=unconfined pid=14605 comm="syz.2.4281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f103358cd29 code=0x7ffc0000 [ 965.445370][ T29] audit: type=1326 audit(2000000213.073:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.2.4281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=292 compat=0 ip=0x7f103358cd29 code=0x7ffc0000 [ 965.470565][ T29] audit: type=1326 audit(2000000213.073:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.2.4281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f103358cd29 code=0x7ffc0000 [ 965.493393][ T29] audit: type=1326 audit(2000000213.073:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14605 comm="syz.2.4281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f103358cd29 code=0x7ffc0000 [ 965.535240][T14608] netdevsim netdevsim4 netdevsim0: entered promiscuous mode [ 965.551321][T14608] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 965.608192][T14602] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #15: comm syz.0.4279: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 965.653814][T14602] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.4279: couldn't read orphan inode 15 (err -117) [ 965.725407][T14602] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 965.844525][T14602] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 1 index 0 [ 965.855624][T14602] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 965.865590][T14602] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.4279: Failed to acquire dquot type 0 [ 966.241302][ T6072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 968.044829][T14653] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4303'. [ 968.228009][ T2206] usb 2-1: new high-speed USB device number 127 using dummy_hcd [ 968.470941][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 968.484970][ T2206] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 968.496412][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 968.506535][ T2206] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 968.516750][ T2206] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 968.526588][ T2206] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 968.741619][ T2206] usb 2-1: config 0 descriptor?? [ 968.956126][ T2206] hdpvr 2-1:0.0: firmware version 0x27 dated gk­;Ú½!ê(÷íʽÂL5áÉD flc_size [ 972.606982][ T6082] sysv_free_block: flc_count > flc_size [ 972.612720][ T6082] sysv_free_block: flc_count > flc_size [ 972.618880][ T6082] sysv_free_block: flc_count > flc_size [ 972.624848][ T6082] sysv_free_block: flc_count > flc_size [ 972.630588][ T6082] sysv_free_block: flc_count > flc_size [ 972.636442][ T6082] sysv_free_block: flc_count > flc_size [ 972.642417][ T6082] sysv_free_block: flc_count > flc_size [ 972.648145][ T6082] sysv_free_block: flc_count > flc_size [ 972.659376][ T6082] sysv_free_block: flc_count > flc_size [ 972.666863][ T6082] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 973.553247][T14736] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4343'. [ 973.766600][T14740] loop2: detected capacity change from 0 to 512 [ 973.901345][T14744] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4347'. [ 973.957413][T14740] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 973.970611][T14740] ext4 filesystem being mounted at /815/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 974.206170][T14752] netlink: 40 bytes leftover after parsing attributes in process `syz.0.4349'. [ 974.407537][T14752] bond0: (slave bond_slave_0): Releasing backup interface [ 974.478491][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 974.689317][T14758] loop3: detected capacity change from 0 to 1024 [ 974.713241][T14758] EXT4-fs: Ignoring removed bh option [ 974.719417][T14758] EXT4-fs: inline encryption not supported [ 974.758245][T14758] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 974.831940][T14758] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 974.995913][T14758] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 2: comm syz.3.4353: lblock 2 mapped to illegal pblock 2 (length 1) [ 975.067237][T14758] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 975.075879][T14758] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 48: comm syz.3.4353: lblock 0 mapped to illegal pblock 48 (length 1) [ 975.176976][T14758] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 975.186201][T14758] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.4353: Failed to acquire dquot type 0 [ 975.268866][T14758] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 975.307367][T14758] EXT4-fs error (device loop3): ext4_evict_inode:256: inode #11: comm syz.3.4353: mark_inode_dirty error [ 975.365740][T14758] EXT4-fs warning (device loop3): ext4_evict_inode:259: couldn't mark inode dirty (err -117) [ 975.376656][T14758] EXT4-fs (loop3): 1 orphan inode deleted [ 975.384731][T14758] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 975.395466][T14771] loop0: detected capacity change from 0 to 764 [ 975.414179][ T4303] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:22: lblock 1 mapped to illegal pblock 1 (length 1) [ 975.476208][ T4303] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 975.485974][ T4303] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:22: Failed to release dquot type 0 [ 975.933001][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 975.945112][ T4303] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 1: comm kworker/u8:22: lblock 1 mapped to illegal pblock 1 (length 1) [ 976.019906][ T4303] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 976.028947][ T4303] EXT4-fs error (device loop3): ext4_release_dquot:6961: comm kworker/u8:22: Failed to release dquot type 0 [ 976.097408][ T6080] EXT4-fs error (device loop3): __ext4_get_inode_loc:4435: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 976.155438][ T6080] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5838: Corrupt filesystem [ 976.174740][ T6080] EXT4-fs error (device loop3): ext4_quota_off:7205: inode #3: comm syz-executor: mark_inode_dirty error [ 976.635836][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 976.642849][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 977.299872][T14801] loop0: detected capacity change from 0 to 256 [ 977.357880][T14801] exfat: Deprecated parameter 'namecase' [ 977.440829][T14801] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 977.673016][T14801] exFAT-fs (loop0): start_clu is invalid cluster(0x0) [ 977.853764][ T6128] usb 3-1: new high-speed USB device number 118 using dummy_hcd [ 977.856948][T14807] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4375'. [ 977.871346][T14807] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4375'. [ 978.103337][ T6128] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 978.113149][ T6128] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 978.121385][ T6128] usb 3-1: Product: syz [ 978.129555][ T6128] usb 3-1: Manufacturer: syz [ 978.135728][ T6128] usb 3-1: SerialNumber: syz [ 978.290669][ T6128] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 978.541521][ T8] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 978.813400][ C0] usb 3-1: ath9k_htc: invalid pkt_len (fe65) [ 979.067527][ T6128] usb 3-1: USB disconnect, device number 118 [ 979.524344][ T8] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 979.533033][ T8] ath9k_htc: Failed to initialize the device [ 979.614805][ T6128] usb 3-1: ath9k_htc: USB layer deinitialized [ 981.943997][T14865] smb3: Unknown parameter 'ndma' [ 983.222113][ T29] audit: type=1326 audit(2000000232.171:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14885 comm="syz.1.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 983.397678][ T29] audit: type=1326 audit(2000000232.246:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14885 comm="syz.1.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 983.420465][ T29] audit: type=1326 audit(2000000232.246:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14885 comm="syz.1.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 983.443686][ T29] audit: type=1326 audit(2000000232.246:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14885 comm="syz.1.4412" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 983.510341][T14890] $Hÿ: renamed from bond0 (while UP) [ 983.561206][T14890] $Hÿ: entered promiscuous mode [ 983.566868][T14890] bond_slave_1: entered promiscuous mode [ 984.238167][T14904] openvswitch: netlink: Missing key (keys=40, expected=80) [ 984.809823][T14914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4424'. [ 984.978913][T14919] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4426'. [ 984.992964][T14919] netlink: 920 bytes leftover after parsing attributes in process `syz.3.4426'. [ 985.262174][T14922] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 985.623996][T14926] loop0: detected capacity change from 0 to 1024 [ 985.891146][T14926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 985.937116][T14926] EXT4-fs error (device loop0): ext4_lookup:1805: inode #2: comm syz.0.4429: bad inode number: 6 [ 985.988064][T14926] EXT4-fs (loop0): Remounting filesystem read-only [ 986.207325][T14941] netlink: 'syz.4.4434': attribute type 1 has an invalid length. [ 986.215497][T14941] netlink: 'syz.4.4434': attribute type 2 has an invalid length. [ 986.332597][ T6072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 987.169509][T14948] nvme_fabrics: missing parameter 'transport=%s' [ 987.176434][T14948] nvme_fabrics: missing parameter 'nqn=%s' [ 988.561746][ T6128] usb 5-1: new high-speed USB device number 121 using dummy_hcd [ 988.846866][ T6128] usb 5-1: config 0 has an invalid interface number: 69 but max is 0 [ 988.855489][ T6128] usb 5-1: config 0 has no interface number 0 [ 988.862180][ T6128] usb 5-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 988.872580][ T6128] usb 5-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 989.034974][ T6128] usb 5-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 989.044682][ T6128] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 989.053052][ T6128] usb 5-1: Product: syz [ 989.057543][ T6128] usb 5-1: Manufacturer: syz [ 989.062347][ T6128] usb 5-1: SerialNumber: syz [ 989.236130][ T6128] usb 5-1: config 0 descriptor?? [ 989.244243][T14974] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 989.291103][ T6128] cyberjack 5-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 989.413062][ T6128] usb 5-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 989.783696][ T6128] usb 5-1: USB disconnect, device number 121 [ 989.802774][ T6128] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 989.805602][ T6128] cyberjack 5-1:0.69: device disconnected [ 990.608252][ T51] Bluetooth: hci1: unexpected event for opcode 0x200f [ 991.146140][ T51] Bluetooth: hci1: Malformed HCI Event: 0x22 [ 992.074184][T15036] loop0: detected capacity change from 0 to 164 [ 992.753880][T15049] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4477'. [ 992.763954][T15049] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4477'. [ 992.773127][T15049] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4477'. [ 993.137624][T15055] overlayfs: conflicting options: metacopy=off,verity=require [ 997.355904][T15129] netlink: 20 bytes leftover after parsing attributes in process `syz.3.4510'. [ 997.656425][T15135] loop0: detected capacity change from 0 to 47 [ 998.258898][T15145] netlink: 'syz.1.4517': attribute type 1 has an invalid length. [ 998.267027][T15145] netlink: 224 bytes leftover after parsing attributes in process `syz.1.4517'. [ 999.629797][T15159] xt_connbytes: Forcing CT accounting to be enabled [ 999.801388][ T29] audit: type=1326 audit(2000000249.938:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15166 comm="syz.4.4527" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1000.251949][T15175] cgroup: Invalid name [ 1000.475578][T15183] netlink: 'syz.4.4532': attribute type 10 has an invalid length. [ 1000.553019][T15183] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 1001.679060][T15187] loop2: detected capacity change from 0 to 4096 [ 1001.730021][T15187] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1002.059074][T15187] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1002.094735][T15187] ntfs3(loop2): Failed to load $Extend (-22). [ 1002.101083][T15187] ntfs3(loop2): Failed to initialize $Extend. [ 1004.053009][T15239] netlink: 'syz.3.4555': attribute type 1 has an invalid length. [ 1004.061195][T15239] netlink: 'syz.3.4555': attribute type 2 has an invalid length. [ 1004.069128][T15239] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4555'. [ 1004.404255][T15245] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4557'. [ 1004.414418][T15245] netlink: 16 bytes leftover after parsing attributes in process `syz.4.4557'. [ 1005.159829][T15256] loop2: detected capacity change from 0 to 512 [ 1005.340087][T15256] EXT4-fs error (device loop2): ext4_orphan_get:1389: comm syz.2.4562: inode #13: comm syz.2.4562: iget: illegal inode # [ 1005.416485][T15256] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.4562: couldn't read orphan inode 13 (err -117) [ 1005.446136][T15256] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1005.512369][T15256] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.4562: Logical block already allocated [ 1005.673159][ T29] audit: type=1326 audit(2000000256.258:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15265 comm="syz.0.4566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1005.817963][ T29] audit: type=1326 audit(2000000256.322:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15265 comm="syz.0.4566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=93 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1005.841001][ T29] audit: type=1326 audit(2000000256.322:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15265 comm="syz.0.4566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1005.864502][ T29] audit: type=1326 audit(2000000256.322:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15265 comm="syz.0.4566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1005.962384][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1007.390586][T15294] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4580'. [ 1007.400083][T15294] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4580'. [ 1008.436352][ T29] audit: type=1326 audit(2000000259.219:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15312 comm="syz.3.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1008.459713][ T29] audit: type=1326 audit(2000000259.219:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15312 comm="syz.3.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1008.486177][ T29] audit: type=1326 audit(2000000259.230:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15312 comm="syz.3.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1008.510193][ T29] audit: type=1326 audit(2000000259.230:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15312 comm="syz.3.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1008.534729][ T29] audit: type=1326 audit(2000000259.230:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15312 comm="syz.3.4590" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1009.152402][T15326] netlink: 40 bytes leftover after parsing attributes in process `syz.1.4595'. [ 1009.271460][T15331] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem [ 1009.862445][T15343] kernel read not supported for file /   (pid: 15343 comm: syz.0.4602) [ 1009.875734][ T29] audit: type=1800 audit(2000000260.775:44): pid=15343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4602" name=20042008010208 dev="mqueue" ino=36301 res=0 errno=0 [ 1009.989158][ T2206] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 1010.210833][ T2206] usb 2-1: Using ep0 maxpacket: 32 [ 1010.247913][ T2206] usb 2-1: config 0 has an invalid interface number: 184 but max is 0 [ 1010.257861][ T2206] usb 2-1: config 0 has no interface number 0 [ 1010.264463][ T2206] usb 2-1: config 0 interface 184 has no altsetting 0 [ 1010.356652][ T2206] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 1010.366174][ T2206] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1010.378570][ T2206] usb 2-1: Product: syz [ 1010.384469][ T2206] usb 2-1: Manufacturer: syz [ 1010.389422][ T2206] usb 2-1: SerialNumber: syz [ 1010.435176][ T2206] usb 2-1: config 0 descriptor?? [ 1010.473689][ T2206] smsc75xx v1.0.0 [ 1010.477553][ T2206] smsc75xx 2-1:0.184 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22 [ 1010.490282][ T2206] smsc75xx 2-1:0.184: probe with driver smsc75xx failed with error -22 [ 1010.828974][T15354] netlink: 88 bytes leftover after parsing attributes in process `syz.3.4608'. [ 1010.839978][T15354] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4608'. [ 1010.849390][T15354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4608'. [ 1011.283234][T15357] loop0: detected capacity change from 0 to 1024 [ 1011.369016][T15361] netlink: 'syz.4.4612': attribute type 10 has an invalid length. [ 1011.377091][T15361] netlink: 40 bytes leftover after parsing attributes in process `syz.4.4612'. [ 1011.386930][T15361] team0: entered promiscuous mode [ 1011.392181][T15361] team_slave_0: entered promiscuous mode [ 1011.399098][T15361] team_slave_1: entered promiscuous mode [ 1011.406102][T15361] team0: entered allmulticast mode [ 1011.411429][T15361] team_slave_0: entered allmulticast mode [ 1011.417605][T15361] team_slave_1: entered allmulticast mode [ 1011.436513][T15361] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1011.476489][ T2206] usb 2-1: USB disconnect, device number 2 [ 1012.479571][T15377] overlayfs: missing 'lowerdir' [ 1013.279380][T15393] deleting an unspecified loop device is not supported. [ 1014.065516][T15404] loop3: detected capacity change from 0 to 1764 [ 1015.187055][T15418] loop3: detected capacity change from 0 to 2048 [ 1015.404608][T15418] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1016.366934][T15441] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4648'. [ 1018.422362][T15481] netlink: 'syz.4.4662': attribute type 2 has an invalid length. [ 1018.430629][T15481] netlink: 'syz.4.4662': attribute type 1 has an invalid length. [ 1018.440173][T15481] netlink: 'syz.4.4662': attribute type 1 has an invalid length. [ 1018.759703][ T6128] usb 3-1: new full-speed USB device number 119 using dummy_hcd [ 1018.988848][ T6128] usb 3-1: config 0 has an invalid interface number: 120 but max is 0 [ 1018.997450][ T6128] usb 3-1: config 0 has no interface number 0 [ 1019.004341][ T6128] usb 3-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 30768, setting to 64 [ 1019.015901][ T6128] usb 3-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 1019.025608][ T6128] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1019.204542][ T6128] usb 3-1: config 0 descriptor?? [ 1019.274623][ T6128] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.120/input/input42 [ 1019.475294][ T2206] usb 3-1: USB disconnect, device number 119 [ 1021.060704][T15522] bridge2: entered allmulticast mode [ 1021.473580][T15527] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4682'. [ 1022.881377][ T6128] usb 1-1: new high-speed USB device number 98 using dummy_hcd [ 1023.112299][ T6128] usb 1-1: too many configurations: 253, using maximum allowed: 8 [ 1023.305798][ T6128] usb 1-1: string descriptor 0 read error: -71 [ 1023.312949][ T6128] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1023.322944][ T6128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1023.399320][ T6128] usb 1-1: can't set config #1, error -71 [ 1023.464370][ T6128] usb 1-1: USB disconnect, device number 98 [ 1025.212831][T15590] ebt_among: wrong size: 2080 against expected 2280, rounded to 2280 [ 1025.301598][T15594] random: crng reseeded on system resumption [ 1026.039637][T15605] netlink: 'syz.3.4722': attribute type 10 has an invalid length. [ 1026.491869][T15611] loop0: detected capacity change from 0 to 512 [ 1026.554770][T15611] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 1026.581258][T15615] netlink: 240 bytes leftover after parsing attributes in process `syz.1.4727'. [ 1026.608625][T15611] EXT4-fs (loop0): orphan cleanup on readonly fs [ 1026.747492][T15611] EXT4-fs error (device loop0): mb_free_blocks:1948: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 1026.762809][T15611] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #11: comm syz.0.4725: corrupted inode contents [ 1026.831743][T15611] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #11: comm syz.0.4725: mark_inode_dirty error [ 1026.919776][T15611] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.4725: invalid indirect mapped block 1 (level 1) [ 1026.999619][T15611] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #11: comm syz.0.4725: corrupted inode contents [ 1027.054274][T15611] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 1027.085136][T15611] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #11: comm syz.0.4725: corrupted inode contents [ 1027.148791][ T2206] usb 5-1: new high-speed USB device number 122 using dummy_hcd [ 1027.177001][T15611] EXT4-fs error (device loop0): ext4_truncate:4240: inode #11: comm syz.0.4725: mark_inode_dirty error [ 1027.231804][T15611] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 1027.273990][T15611] EXT4-fs (loop0): 1 truncate cleaned up [ 1027.282025][T15611] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1027.352776][T15611] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1027.396922][ T2206] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 1027.407344][ T2206] usb 5-1: New USB device strings: Mfr=13, Product=2, SerialNumber=3 [ 1027.416669][ T2206] usb 5-1: Product: syz [ 1027.422032][ T2206] usb 5-1: Manufacturer: syz [ 1027.429012][ T2206] usb 5-1: SerialNumber: syz [ 1027.495036][ T2206] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1027.502194][ T2206] r8152-cfgselector 5-1: config 0 descriptor?? [ 1027.951635][ T6128] r8152-cfgselector 5-1: USB disconnect, device number 122 [ 1029.912389][T15667] binfmt_misc: register: failed to install interpreter file ./file0 [ 1030.028255][T15671] AppArmor: change_hat: Invalid input, NULL hat and NULL magic [ 1030.774236][ T2206] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 1030.993720][ T2206] usb 2-1: Using ep0 maxpacket: 8 [ 1031.034780][ T2206] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1031.083196][ T2206] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E [ 1031.099204][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 1031.112069][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1031.127518][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1031.137685][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0 [ 1031.147790][ T2206] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 0 [ 1031.157925][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 1031.168007][ T2206] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB1, changing to 0x81 [ 1031.183925][ T2206] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1031.433985][ T2206] usb 2-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84 [ 1031.443770][ T2206] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1031.452221][ T2206] usb 2-1: Product: syz [ 1031.457513][ T2206] usb 2-1: Manufacturer: syz [ 1031.462435][ T2206] usb 2-1: SerialNumber: syz [ 1031.569548][ T2206] usb 2-1: config 0 descriptor?? [ 1031.627388][ T2206] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 1031.729399][T15695] loop0: detected capacity change from 0 to 512 [ 1031.968733][ T2206] usb 2-1: USB disconnect, device number 3 [ 1032.361814][T15695] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1032.375254][T15695] ext4 filesystem being mounted at /875/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1032.477882][T13725] udevd[13725]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1032.915936][ T6072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1033.202546][T15714] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4775'. [ 1033.900471][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 1033.907423][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 1035.136001][T15751] netlink: 412 bytes leftover after parsing attributes in process `syz.1.4792'. [ 1035.863156][T15768] QAT: Stopping all acceleration devices. [ 1036.997321][T15785] syz.0.4806 uses old SIOCAX25GETINFO [ 1037.411087][T15792] netlink: 'syz.4.4809': attribute type 10 has an invalid length. [ 1037.421727][T15792] bridge0: port 3(netdevsim3) entered blocking state [ 1037.434628][T15792] bridge0: port 3(netdevsim3) entered disabled state [ 1037.442318][T15792] netdevsim netdevsim4 netdevsim3: entered allmulticast mode [ 1037.453004][T15792] netdevsim netdevsim4 netdevsim3: entered promiscuous mode [ 1037.463118][T15792] bridge0: port 3(netdevsim3) entered blocking state [ 1037.470600][T15792] bridge0: port 3(netdevsim3) entered forwarding state [ 1037.789024][T15800] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 1040.036307][T15837] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1040.789311][T15851] loop3: detected capacity change from 0 to 1024 [ 1040.909233][T15845] loop0: detected capacity change from 0 to 4096 [ 1040.998228][T15845] ntfs3(loop0): Different NTFS sector size (2048) and media sector size (512). [ 1041.438266][T15845] ntfs3(loop0): Failed to initialize $Extend/$ObjId. [ 1041.633905][T15835] Bluetooth: hci3: command 0x0406 tx timeout [ 1041.798748][T15865] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4844'. [ 1042.438933][T15875] syz.0.4848: attempt to access beyond end of device [ 1042.438933][T15875] nbd0: rw=6144, sector=128, nr_sectors = 8 limit=0 [ 1042.458868][T15875] gfs2: error -5 reading superblock [ 1043.116493][T15889] cgroup: No subsys list or none specified [ 1043.614634][T15898] netlink: 'syz.3.4861': attribute type 1 has an invalid length. [ 1043.645551][ T6128] usb 5-1: new full-speed USB device number 123 using dummy_hcd [ 1043.845616][ T6128] usb 5-1: config 4 has an invalid interface number: 231 but max is 0 [ 1043.854817][ T6128] usb 5-1: config 4 has no interface number 0 [ 1043.929949][ T6128] usb 5-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 1043.939694][ T6128] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1043.948104][ T6128] usb 5-1: Product: syz [ 1043.952585][ T6128] usb 5-1: Manufacturer: syz [ 1043.957407][ T6128] usb 5-1: SerialNumber: syz [ 1044.063814][ T6128] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 1044.500446][ T6128] vp7045: USB control message 'in' went wrong. [ 1044.506971][ T6128] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1044.518006][ T6128] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 1044.569324][ T6128] usb 5-1: USB disconnect, device number 123 [ 1044.958036][T15914] futex_wake_op: syz.0.4869 tries to shift op by 32; fix this program [ 1045.811130][T15926] batadv0: entered promiscuous mode [ 1047.358047][T15954] trusted_key: encrypted_key: keyword 'new4<Óy' not recognized [ 1047.828933][T15962] Malformed UNC in devname [ 1047.828933][T15962] [ 1047.836051][T15962] CIFS: VFS: Malformed UNC in devname [ 1047.868463][T15963] netlink: 'syz.2.4892': attribute type 1 has an invalid length. [ 1047.999446][T15965] netlink: 'syz.0.4893': attribute type 5 has an invalid length. [ 1048.007662][T15965] netlink: 156 bytes leftover after parsing attributes in process `syz.0.4893'. [ 1048.136965][T15968] loop3: detected capacity change from 0 to 128 [ 1049.104779][T15986] netlink: 'syz.2.4904': attribute type 10 has an invalid length. [ 1049.113274][T15986] team0: Device . is up. Set it down before adding it as a team port [ 1049.565478][T15980] loop3: detected capacity change from 0 to 4096 [ 1049.643558][T15980] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1049.767068][T15995] bridge1: the hash_elasticity option has been deprecated and is always 16 [ 1049.777696][T15995] bridge1: entered promiscuous mode [ 1049.783149][T15995] bridge1: entered allmulticast mode [ 1050.126446][T15999] netlink: 64 bytes leftover after parsing attributes in process `syz.0.4910'. [ 1050.944062][T16011] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4915'. [ 1050.954083][T16011] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0) [ 1050.963954][T16011] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535 [ 1051.782640][T16027] CIFS mount error: No usable UNC path provided in device string! [ 1051.782640][T16027] [ 1051.793087][T16027] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1051.822821][ T6128] usb 4-1: new high-speed USB device number 112 using dummy_hcd [ 1052.043230][ T6128] usb 4-1: Using ep0 maxpacket: 16 [ 1052.057127][ T6128] usb 4-1: config 0 has an invalid interface number: 8 but max is 0 [ 1052.065534][ T6128] usb 4-1: config 0 has no interface number 0 [ 1052.184518][ T6128] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 1052.194129][ T6128] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 1052.202646][ T6128] usb 4-1: Product: syz [ 1052.207066][ T6128] usb 4-1: SerialNumber: syz [ 1052.325704][ T6128] usb 4-1: config 0 descriptor?? [ 1052.349624][ T6128] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input43 [ 1052.468381][T16037] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 1052.541258][ C0] cm109_urb_ctl_callback: 9 callbacks suppressed [ 1052.541358][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.559230][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.575280][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.587347][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.595705][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.603236][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.610812][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.618402][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.627983][ T6128] usb 4-1: USB disconnect, device number 112 [ 1052.634463][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1052.634584][ C0] cm109 4-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 1052.677589][ T6128] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 1053.787132][T16055] netlink: 'syz.1.4939': attribute type 5 has an invalid length. [ 1053.795242][T16055] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4939'. [ 1053.808656][T16055] netlink: 'syz.1.4939': attribute type 1 has an invalid length. [ 1053.837335][ T8] usb 5-1: new high-speed USB device number 124 using dummy_hcd [ 1054.028544][ T8] usb 5-1: Using ep0 maxpacket: 16 [ 1054.066342][ T8] usb 5-1: config 0 has an invalid interface number: 237 but max is 0 [ 1054.075055][ T8] usb 5-1: config 0 has no interface number 0 [ 1054.081372][ T8] usb 5-1: config 0 interface 237 has no altsetting 0 [ 1054.203001][ T8] usb 5-1: New USB device found, idVendor=0e41, idProduct=5057, bcdDevice= 6.ad [ 1054.212566][ T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1054.221015][ T8] usb 5-1: Product: syz [ 1054.225508][ T8] usb 5-1: Manufacturer: syz [ 1054.230322][ T8] usb 5-1: SerialNumber: syz [ 1054.338508][ T8] usb 5-1: config 0 descriptor?? [ 1054.387909][ T8] snd_usb_podhd 5-1:0.237: Line 6 POD HD300 found [ 1054.428874][T16057] loop0: detected capacity change from 0 to 1764 [ 1054.572279][ T8] snd_usb_podhd 5-1:0.237: cannot get proper max packet size [ 1054.580384][ T8] snd_usb_podhd 5-1:0.237: Line 6 POD HD300 now disconnected [ 1054.598993][ T8] snd_usb_podhd 5-1:0.237: probe with driver snd_usb_podhd failed with error -22 [ 1054.777352][ T8] usb 5-1: USB disconnect, device number 124 [ 1058.428490][T16129] netlink: 'syz.1.4970': attribute type 21 has an invalid length. [ 1058.437257][T16129] netlink: 'syz.1.4970': attribute type 1 has an invalid length. [ 1059.012668][T16139] QAT: failed to copy from user. [ 1059.511600][T16147] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4978'. [ 1059.958983][T16153] loop3: detected capacity change from 0 to 1024 [ 1060.304134][ T13] hfsplus: b-tree write err: -5, ino 4 [ 1061.187582][T16173] netlink: 1010 bytes leftover after parsing attributes in process `syz.2.4991'. [ 1061.197418][T16173] bridge: RTM_NEWNEIGH with invalid state 0x1 [ 1061.985085][ T29] audit: type=1326 audit(2000000316.662:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16186 comm="syz.3.4998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1062.090456][ T29] audit: type=1326 audit(2000000316.748:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16186 comm="syz.3.4998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1062.117691][ T29] audit: type=1326 audit(2000000316.748:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16186 comm="syz.3.4998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1062.143812][ T29] audit: type=1326 audit(2000000316.748:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16186 comm="syz.3.4998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1062.894524][T16201] loop2: detected capacity change from 0 to 256 [ 1063.816412][T16220] kAFS: No cell specified [ 1064.539901][T16229] loop3: detected capacity change from 0 to 1024 [ 1064.926251][ T3926] hfsplus: b-tree write err: -5, ino 4 [ 1065.802871][T16253] loop2: detected capacity change from 0 to 256 [ 1065.853361][T16253] exfat: Deprecated parameter 'utf8' [ 1065.965581][ T29] audit: type=1326 audit(2000000320.921:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16256 comm="syz.1.5032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1066.073337][ T29] audit: type=1326 audit(2000000321.018:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16256 comm="syz.1.5032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1066.096600][ T29] audit: type=1326 audit(2000000321.018:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16256 comm="syz.1.5032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1066.123195][ T29] audit: type=1326 audit(2000000321.018:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16256 comm="syz.1.5032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1066.235354][T16253] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 1066.734815][T16267] IPv6: sit1: Disabled Multicast RS [ 1066.744502][T16267] sit1: entered promiscuous mode [ 1066.848528][T16269] loop0: detected capacity change from 0 to 16 [ 1066.901922][T16269] erofs (device loop0): mounted with root inode @ nid 36. [ 1066.937987][T16269] erofs (device loop0): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1067.003161][T16269] erofs (device loop0): failed to decompress -6 in[55, 4041] out[1851] [ 1067.012022][T16269] erofs (device loop0): read error -117 @ 43 of nid 36 [ 1067.041312][T16272] program syz.2.5039 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1068.788640][ T8] usb 2-1: new full-speed USB device number 4 using dummy_hcd [ 1069.023891][ T8] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1069.046802][ T8] usb 2-1: not running at top speed; connect to a high speed hub [ 1069.091628][ T8] usb 2-1: config 255 has an invalid interface number: 1 but max is 0 [ 1069.100169][ T8] usb 2-1: config 255 has no interface number 0 [ 1069.106681][ T8] usb 2-1: config 255 interface 1 has no altsetting 0 [ 1069.203062][ T8] usb 2-1: string descriptor 0 read error: -22 [ 1069.209873][ T8] usb 2-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=84.f4 [ 1069.219594][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1069.267276][ T2206] usb 4-1: new high-speed USB device number 113 using dummy_hcd [ 1069.461560][ T2206] usb 4-1: Using ep0 maxpacket: 8 [ 1069.523310][ T8] i2c-cp2615 2-1:255.1: probe with driver i2c-cp2615 failed with error -22 [ 1069.567261][ T2206] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee [ 1069.576831][ T2206] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1069.585271][ T2206] usb 4-1: Product: syz [ 1069.589736][ T2206] usb 4-1: Manufacturer: syz [ 1069.595184][ T2206] usb 4-1: SerialNumber: syz [ 1069.655301][ T2206] usb 4-1: config 0 descriptor?? [ 1069.775030][ T8] usb 2-1: USB disconnect, device number 4 [ 1069.919421][ T2206] dvb_usb_rtl28xxu 4-1:0.0: chip type detection failed -71 [ 1069.927668][ T2206] dvb_usb_rtl28xxu 4-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71 [ 1070.058114][ T2206] usb 4-1: USB disconnect, device number 113 [ 1070.221340][T16318] netlink: 'syz.2.5062': attribute type 1 has an invalid length. [ 1070.229523][T16318] netlink: 'syz.2.5062': attribute type 2 has an invalid length. [ 1070.983860][ T8] usb 3-1: new high-speed USB device number 120 using dummy_hcd [ 1071.023527][T16330] block device autoloading is deprecated and will be removed. [ 1071.032251][T16330] syz.3.5068: attempt to access beyond end of device [ 1071.032251][T16330] md0: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 1071.216701][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 1071.257227][ T8] usb 3-1: config 0 has an invalid interface number: 238 but max is 0 [ 1071.269698][ T8] usb 3-1: config 0 has no interface number 0 [ 1071.313234][ T8] usb 3-1: New USB device found, idVendor=046d, idProduct=08f0, bcdDevice=70.50 [ 1071.323119][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1071.331876][ T8] usb 3-1: Product: syz [ 1071.336354][ T8] usb 3-1: Manufacturer: syz [ 1071.341172][ T8] usb 3-1: SerialNumber: syz [ 1071.374296][ T8] usb 3-1: config 0 descriptor?? [ 1071.395357][ T8] gspca_main: STV06xx-2.14.0 probing 046d:08f0 [ 1071.401924][ T8] gspca_stv06xx: st6422 sensor detected [ 1071.849391][ T8] STV06xx 3-1:0.238: probe with driver STV06xx failed with error -71 [ 1071.905588][ T8] usb 3-1: unknown interface protocol 0x9, assuming v1 [ 1071.912823][ T8] usb 3-1: cannot find UAC_HEADER [ 1072.014609][ T8] snd-usb-audio 3-1:0.238: probe with driver snd-usb-audio failed with error -22 [ 1072.172909][ T8] usb 3-1: USB disconnect, device number 120 [ 1072.403882][T13935] udevd[13935]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.238/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1072.567655][ T6128] usb 1-1: new high-speed USB device number 99 using dummy_hcd [ 1072.997466][ T6128] usb 1-1: Using ep0 maxpacket: 16 [ 1073.015264][ T6128] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1073.047491][ T6128] usb 1-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=ff.76 [ 1073.057442][ T6128] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1073.057571][ T6128] usb 1-1: Product: syz [ 1073.057665][ T6128] usb 1-1: Manufacturer: syz [ 1073.057764][ T6128] usb 1-1: SerialNumber: syz [ 1073.076332][ T6128] usb 1-1: config 0 descriptor?? [ 1073.131307][T16358] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5082'. [ 1073.346583][ T6128] usb 1-1: ignoring: not an USB2CAN converter [ 1073.450567][T16362] loop2: detected capacity change from 0 to 512 [ 1073.573930][ T6128] usb 1-1: USB disconnect, device number 99 [ 1073.684550][T16362] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 1073.698208][T16362] ext4 filesystem being mounted at /964/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1073.895341][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1073.904448][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1073.911791][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1074.310854][T16371] infiniband syz0: set active [ 1074.315812][T16371] infiniband syz0: added vcan0 [ 1074.328696][ T6128] vcan0 speed is unknown, defaulting to 1000 [ 1074.396340][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 1074.427698][T16371] RDS/IB: syz0: added [ 1074.432202][T16371] smc: adding ib device syz0 with port count 1 [ 1074.438588][T16371] smc: ib device syz0 port 1 has pnetid [ 1074.446473][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1074.461531][ T6128] vcan0 speed is unknown, defaulting to 1000 [ 1075.056905][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1075.151704][T16382] loop0: detected capacity change from 0 to 1024 [ 1075.240006][T16382] hfsplus: Filesystem is marked locked, mounting read-only. [ 1075.375793][T16382] hfsplus: invalid catalog entry type in lookup [ 1075.477639][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1075.961585][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1076.373920][T16371] vcan0 speed is unknown, defaulting to 1000 [ 1078.276854][T16418] xt_addrtype: both incoming and outgoing interface limitation cannot be selected [ 1078.456849][T16422] loop3: detected capacity change from 0 to 256 [ 1078.950814][T16422] FAT-fs (loop3): Directory bread(block 64) failed [ 1078.959295][T16422] FAT-fs (loop3): Directory bread(block 65) failed [ 1078.967401][T16422] FAT-fs (loop3): Directory bread(block 66) failed [ 1078.974357][T16422] FAT-fs (loop3): Directory bread(block 67) failed [ 1078.981432][T16422] FAT-fs (loop3): Directory bread(block 68) failed [ 1078.988192][T16422] FAT-fs (loop3): Directory bread(block 69) failed [ 1078.995238][T16422] FAT-fs (loop3): Directory bread(block 70) failed [ 1079.006692][T16422] FAT-fs (loop3): Directory bread(block 71) failed [ 1079.015250][T16422] FAT-fs (loop3): Directory bread(block 72) failed [ 1079.022886][T16422] FAT-fs (loop3): Directory bread(block 73) failed [ 1081.465232][T16466] loop0: detected capacity change from 0 to 1024 [ 1081.627184][ T29] audit: type=1326 audit(2000000337.734:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16467 comm="syz.2.5135" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f103358cd29 code=0x0 [ 1081.688982][T16474] syz.1.5138: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1081.704772][T16474] CPU: 0 UID: 0 PID: 16474 Comm: syz.1.5138 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1081.704911][T16474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1081.704996][T16474] Call Trace: [ 1081.705046][T16474] [ 1081.705095][T16474] dump_stack_lvl+0x216/0x2d0 [ 1081.705279][T16474] dump_stack+0x1e/0x24 [ 1081.705425][T16474] warn_alloc+0x455/0x650 [ 1081.705590][T16474] ? kmsan_get_metadata+0x13e/0x1c0 [ 1081.705733][T16474] ? __vmalloc_node_range_noprof+0xd6/0x26b0 [ 1081.705897][T16474] __vmalloc_node_range_noprof+0x130/0x26b0 [ 1081.706056][T16474] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1081.706208][T16474] ? kmsan_get_metadata+0x13e/0x1c0 [ 1081.706344][T16474] ? kmsan_get_metadata+0x13e/0x1c0 [ 1081.706480][T16474] ? kmsan_get_metadata+0x13e/0x1c0 [ 1081.706629][T16474] ? __kmalloc_cache_noprof+0x932/0xdf0 [ 1081.706809][T16474] ? kmsan_get_metadata+0x13e/0x1c0 [ 1081.706940][T16474] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1081.707085][T16474] vmalloc_user_noprof+0x90/0xb0 [ 1081.707229][T16474] ? xskq_create+0x105/0x270 [ 1081.707355][T16474] xskq_create+0x105/0x270 [ 1081.707471][T16474] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1081.707620][T16474] xsk_init_queue+0x115/0x1f0 [ 1081.707752][T16474] xsk_setsockopt+0x882/0xcc0 [ 1081.707943][T16474] do_sock_setsockopt+0x4bb/0x7d0 [ 1081.708097][T16474] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1081.708279][T16474] __x64_sys_setsockopt+0x33d/0x4f0 [ 1081.708440][T16474] x64_sys_call+0x30b9/0x3c30 [ 1081.708610][T16474] do_syscall_64+0xcd/0x1e0 [ 1081.708740][T16474] ? clear_bhb_loop+0x25/0x80 [ 1081.708864][T16474] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1081.709060][T16474] RIP: 0033:0x7f2a0e18cd29 [ 1081.709168][T16474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1081.709283][T16474] RSP: 002b:00007f2a0f05a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1081.709409][T16474] RAX: ffffffffffffffda RBX: 00007f2a0e3a5fa0 RCX: 00007f2a0e18cd29 [ 1081.709505][T16474] RDX: 0000000000000002 RSI: 000000000000011b RDI: 0000000000000003 [ 1081.709583][T16474] RBP: 00007f2a0e20e2a0 R08: 0000000000000020 R09: 0000000000000000 [ 1081.709666][T16474] R10: 00000000200000c0 R11: 0000000000000246 R12: 0000000000000000 [ 1081.709753][T16474] R13: 0000000000000000 R14: 00007f2a0e3a5fa0 R15: 00007ffc649246a8 [ 1081.709862][T16474] [ 1081.948525][ C0] vkms_vblank_simulate: vblank timer overrun [ 1081.959353][T16474] Mem-Info: [ 1081.964058][T16474] active_anon:5714 inactive_anon:0 isolated_anon:0 [ 1081.964058][T16474] active_file:12036 inactive_file:38734 isolated_file:0 [ 1081.964058][T16474] unevictable:768 dirty:362 writeback:0 [ 1081.964058][T16474] slab_reclaimable:4996 slab_unreclaimable:25531 [ 1081.964058][T16474] mapped:29944 shmem:1804 pagetables:769 [ 1081.964058][T16474] sec_pagetables:0 bounce:0 [ 1081.964058][T16474] kernel_misc_reclaimable:0 [ 1081.964058][T16474] free:378221 free_pcp:1439 free_cma:0 [ 1082.009390][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.015879][T16474] Node 0 active_anon:22856kB inactive_anon:0kB active_file:48144kB inactive_file:154860kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:119776kB dirty:1448kB writeback:0kB shmem:5680kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4992kB pagetables:3076kB sec_pagetables:0kB all_unreclaimable? no [ 1082.048564][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.059029][T16474] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no [ 1082.089568][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.097293][T16474] Node 0 DMA free:4096kB boost:0kB min:160kB low:200kB high:240kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1082.124669][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.131130][T16474] lowmem_reserve[]: 0 927 1240 0 0 [ 1082.136858][T16474] Node 0 DMA32 free:535596kB boost:0kB min:36036kB low:45044kB high:54052kB reserved_highatomic:0KB active_anon:6460kB inactive_anon:0kB active_file:40744kB inactive_file:72472kB unevictable:0kB writepending:856kB present:3129332kB managed:949472kB mlocked:0kB bounce:0kB free_pcp:2532kB local_pcp:936kB free_cma:0kB [ 1082.167025][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.178822][T16474] lowmem_reserve[]: 0 0 312 0 0 [ 1082.184220][T16474] Node 0 Normal free:15644kB boost:0kB min:12684kB low:15852kB high:19020kB reserved_highatomic:0KB active_anon:16396kB inactive_anon:0kB active_file:7400kB inactive_file:82388kB unevictable:1536kB writepending:592kB present:1048580kB managed:320496kB mlocked:0kB bounce:0kB free_pcp:1132kB local_pcp:452kB free_cma:0kB [ 1082.214642][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.221022][T16474] lowmem_reserve[]: 0 0 0 0 0 [ 1082.226788][T16474] Node 1 Normal free:957548kB boost:0kB min:41224kB low:51528kB high:61832kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:76kB unevictable:1536kB writepending:0kB present:4194300kB managed:1041624kB mlocked:0kB bounce:0kB free_pcp:2048kB local_pcp:0kB free_cma:0kB [ 1082.260797][T16474] lowmem_reserve[]: 0 0 0 0 0 [ 1082.266070][T16474] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 1*4096kB (M) = 4096kB [ 1082.280577][T16474] Node 0 DMA32: 385*4kB (M) 728*8kB (UME) 521*16kB (UM) 389*32kB (ME) 238*64kB (UME) 59*128kB (UME) 30*256kB (UME) 17*512kB (UM) 9*1024kB (UM) 4*2048kB (M) 110*4096kB (UM) = 535284kB [ 1082.300652][T16474] Node 0 Normal: 1*4kB (U) 99*8kB (M) 48*16kB (M) 32*32kB (UM) 18*64kB (UME) 1*128kB (U) 14*256kB (UM) 6*512kB (UME) 1*1024kB (E) 0*2048kB 1*4096kB (M) = 15644kB [ 1082.318524][ C0] vkms_vblank_simulate: vblank timer overrun [ 1082.324959][T16474] Node 1 Normal: 17*4kB (UM) 25*8kB (UME) 16*16kB (UE) 29*32kB (UME) 19*64kB (UME) 10*128kB (UE) 7*256kB (UME) 3*512kB (UM) 8*1024kB (UME) 4*2048kB (UME) 228*4096kB (UM) = 957548kB [ 1082.349231][T16474] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1082.360497][T16474] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1082.370227][T16474] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1082.380248][T16474] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1082.389998][T16474] 52565 total pagecache pages [ 1082.394858][T16474] 0 pages in swap cache [ 1082.399394][T16474] Free swap = 124480kB [ 1082.403725][T16474] Total swap = 124996kB [ 1082.408064][T16474] 2097051 pages RAM [ 1082.412248][T16474] 0 pages HighMem/MovableOnly [ 1082.417113][T16474] 1518129 pages reserved [ 1082.421712][T16474] 0 pages cma reserved [ 1082.455414][T14400] hfsplus: b-tree write err: -5, ino 4 [ 1084.435651][T16507] tmpfs: Bad value for 'mpol' [ 1086.717715][T16547] netlink: 'syz.3.5173': attribute type 7 has an invalid length. [ 1086.726173][T16547] netlink: 'syz.3.5173': attribute type 8 has an invalid length. [ 1088.294002][T16575] loop2: detected capacity change from 0 to 1024 [ 1088.760663][ T5040] hfsplus: b-tree write err: -5, ino 4 [ 1089.224026][T16588] loop2: detected capacity change from 0 to 512 [ 1089.276531][T16591] xt_hashlimit: max too large, truncated to 1048576 [ 1089.375268][T16588] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1089.388721][T16588] ext4 filesystem being mounted at /984/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1089.816501][T16601] netlink: 'syz.3.5198': attribute type 9 has an invalid length. [ 1089.825021][T16601] netlink: 'syz.3.5198': attribute type 6 has an invalid length. [ 1089.848350][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1089.864834][T16603] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5200'. [ 1090.027322][ T2206] usb 5-1: new high-speed USB device number 125 using dummy_hcd [ 1090.253938][ T2206] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1090.267452][ T2206] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1090.277264][ T2206] usb 5-1: Product: syz [ 1090.281682][ T2206] usb 5-1: Manufacturer: syz [ 1090.286702][ T2206] usb 5-1: SerialNumber: syz [ 1090.342127][ C1] hrtimer: interrupt took 264135 ns [ 1090.396309][ T2206] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1090.555317][ T6129] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1091.050825][ T2206] usb 5-1: USB disconnect, device number 125 [ 1091.166211][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 1091.173480][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 1091.613122][ T6129] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 1091.621200][ T6129] ath9k_htc: Failed to initialize the device [ 1091.676009][ T2206] usb 5-1: ath9k_htc: USB layer deinitialized [ 1091.932232][T16625] netlink: 'syz.3.5210': attribute type 10 has an invalid length. [ 1091.940550][T16625] netlink: 40 bytes leftover after parsing attributes in process `syz.3.5210'. [ 1091.950426][T16625] bridge0: port 3(bond0) entered blocking state [ 1091.957517][T16625] bridge0: port 3(bond0) entered disabled state [ 1091.964606][T16625] bond0: entered allmulticast mode [ 1091.969949][T16625] bond_slave_0: entered allmulticast mode [ 1091.982285][T16625] bond_slave_1: entered allmulticast mode [ 1091.993705][T16625] bond0: entered promiscuous mode [ 1091.999009][T16625] bond_slave_0: entered promiscuous mode [ 1092.006027][T16625] bond_slave_1: entered promiscuous mode [ 1092.015575][T16625] bridge0: port 3(bond0) entered blocking state [ 1092.022594][T16625] bridge0: port 3(bond0) entered forwarding state [ 1093.273439][T16647] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1093.871778][T16657] loop3: detected capacity change from 0 to 164 [ 1094.017934][T16657] Unsupported NM flag settings (8) [ 1094.384253][T16667] loop0: detected capacity change from 0 to 128 [ 1095.836156][T16691] netlink: 'syz.1.5242': attribute type 1 has an invalid length. [ 1096.207764][ T29] audit: type=1326 audit(2000000353.377:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16696 comm="syz.0.5246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1096.230833][ T29] audit: type=1326 audit(2000000353.398:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16696 comm="syz.0.5246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=192 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1096.254094][ T29] audit: type=1326 audit(2000000353.398:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16696 comm="syz.0.5246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1096.280464][ T29] audit: type=1326 audit(2000000353.398:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16696 comm="syz.0.5246" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4d4878cd29 code=0x7ffc0000 [ 1096.657720][T16703] loop2: detected capacity change from 0 to 256 [ 1096.896533][T16709] bridge0: port 1(bridge_slave_0) entered disabled state [ 1096.905595][T16709] bridge_slave_0: left allmulticast mode [ 1096.911724][T16709] bridge_slave_0: left promiscuous mode [ 1096.918379][T16709] bridge0: port 1(bridge_slave_0) entered disabled state [ 1096.956788][T16703] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 1096.986857][T16709] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1097.266885][T15835] Bluetooth: hci3: command 0x0406 tx timeout [ 1098.234365][T16729] kAFS: unable to lookup cell '/,c¾ûL' [ 1099.099475][T16746] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1100.146608][T16766] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5278'. [ 1100.174894][T16765] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1100.712118][T16772] program syz.3.5283 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1101.625344][T16788] tmpfs: Bad value for 'mpol' [ 1101.768675][T16791] netlink: 240 bytes leftover after parsing attributes in process `syz.2.5292'. [ 1103.708390][T16810] loop2: detected capacity change from 0 to 8192 [ 1103.846084][T16810] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1103.898608][T16830] overlayfs: option "index=on" is useless in a non-upper mount, ignore [ 1103.911844][T16830] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 1103.923406][T16830] overlayfs: missing 'lowerdir' [ 1105.363714][T16852] netlink: 'syz.4.5322': attribute type 1 has an invalid length. [ 1106.022094][T16866] netlink: 'syz.4.5329': attribute type 1 has an invalid length. [ 1106.545155][T16873] netlink: 9 bytes leftover after parsing attributes in process `syz.3.5331'. [ 1107.845790][T16897] netlink: 'syz.3.5343': attribute type 1 has an invalid length. [ 1107.853762][T16897] netlink: 224 bytes leftover after parsing attributes in process `syz.3.5343'. [ 1111.164851][T16945] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5366'. [ 1111.854252][T16957] netlink: 'syz.0.5372': attribute type 10 has an invalid length. [ 1111.890098][T16957] team0: Cannot enslave team device to itself [ 1112.376529][T16964] loop3: detected capacity change from 0 to 256 [ 1112.396810][T16964] exfat: Deprecated parameter 'namecase' [ 1112.407603][T16964] exfat: Deprecated parameter 'namecase' [ 1112.514970][T16964] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1113.609447][ T29] audit: type=1326 audit(2000000372.056:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16981 comm="syz.4.5384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1113.633128][ T29] audit: type=1326 audit(2000000372.056:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16981 comm="syz.4.5384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1113.659901][ T29] audit: type=1326 audit(2000000372.109:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16981 comm="syz.4.5384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1113.685085][ T29] audit: type=1326 audit(2000000372.109:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16981 comm="syz.4.5384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1113.708309][ T29] audit: type=1326 audit(2000000372.109:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16981 comm="syz.4.5384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1114.765599][T16998] loop3: detected capacity change from 0 to 1024 [ 1114.791399][T16998] EXT4-fs: Ignoring removed orlov option [ 1114.799510][T16998] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1114.968330][T16998] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1115.398312][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1115.465872][T17011] binder: 17010:17011 ioctl 541b 0 returned -22 [ 1116.972085][ T6128] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 1117.180015][ T6128] usb 2-1: Using ep0 maxpacket: 8 [ 1117.205107][T17039] No such timeout policy "syz1" [ 1117.207384][ T6128] usb 2-1: config 0 has an invalid interface number: 29 but max is 0 [ 1117.219029][ T6128] usb 2-1: config 0 has no interface number 0 [ 1117.225449][ T6128] usb 2-1: config 0 interface 29 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1117.237149][ T6128] usb 2-1: config 0 interface 29 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 1117.249080][ T6128] usb 2-1: config 0 interface 29 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024 [ 1117.260797][ T6128] usb 2-1: config 0 interface 29 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 1117.275024][ T6128] usb 2-1: config 0 interface 29 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 1117.286402][ T6128] usb 2-1: config 0 interface 29 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 1117.296512][ T6128] usb 2-1: config 0 interface 29 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1117.543770][ T6128] usb 2-1: New USB device found, idVendor=03f0, idProduct=0207, bcdDevice= 0.01 [ 1117.553493][ T6128] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1117.565618][ T6128] usb 2-1: Product: syz [ 1117.571323][ T6128] usb 2-1: Manufacturer: syz [ 1117.576319][ T6128] usb 2-1: SerialNumber: syz [ 1117.586099][ T6128] usb 2-1: config 0 descriptor?? [ 1117.594903][T17031] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1117.627720][ T6128] ums-usbat 2-1:0.29: USB Mass Storage device detected [ 1117.903177][ T6128] ums-usbat 2-1:0.29: probe with driver ums-usbat failed with error -5 [ 1117.964185][ T29] audit: type=1326 audit(2000000376.712:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17049 comm="syz.4.5414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1118.020571][ T6128] usb 2-1: USB disconnect, device number 5 [ 1118.088776][ T29] audit: type=1326 audit(2000000376.766:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17049 comm="syz.4.5414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1118.112818][ T29] audit: type=1326 audit(2000000376.776:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17049 comm="syz.4.5414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1118.140152][ T29] audit: type=1326 audit(2000000376.798:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17049 comm="syz.4.5414" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1119.156399][T17065] loop3: detected capacity change from 0 to 1024 [ 1119.202246][T17067] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1119.231539][T17069] netlink: 'syz.4.5423': attribute type 1 has an invalid length. [ 1119.240652][T17069] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5423'. [ 1119.253041][T17065] EXT4-fs (loop3): stripe (32767) is not aligned with cluster size (16), stripe is disabled [ 1119.324755][T17055] syz.2.5416 (17055): drop_caches: 2 [ 1119.423870][T17065] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1119.524958][T17065] EXT4-fs error (device loop3): ext4_empty_dir:3135: inode #11: block 36: comm syz.3.5421: bad entry in directory: directory entry overrun - offset=4096, inode=0, rec_len=53504, size=1024 fake=0 [ 1119.698076][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1120.391910][T17085] netlink: 'syz.0.5430': attribute type 4 has an invalid length. [ 1120.400098][T17085] netlink: 152 bytes leftover after parsing attributes in process `syz.0.5430'. [ 1120.506496][T17085] A link change request failed with some changes committed already. Interface veth0_virt_wifi may have been left with an inconsistent configuration, please check. [ 1121.472562][ T2206] usb 5-1: new high-speed USB device number 126 using dummy_hcd [ 1121.657238][ T2206] usb 5-1: Using ep0 maxpacket: 16 [ 1121.719751][ T2206] usb 5-1: config 0 has an invalid interface number: 3 but max is 0 [ 1121.728908][ T2206] usb 5-1: config 0 has no interface number 0 [ 1121.778128][ T2206] usb 5-1: New USB device found, idVendor=0711, idProduct=5200, bcdDevice=a7.9f [ 1121.788045][ T2206] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1121.796306][ T2206] usb 5-1: Product: syz [ 1121.800937][ T2206] usb 5-1: Manufacturer: syz [ 1121.805760][ T2206] usb 5-1: SerialNumber: syz [ 1121.888786][ T2206] usb 5-1: config 0 descriptor?? [ 1121.950609][ T2206] sisusb 5-1:0.3: Invalid USB2VGA device [ 1121.958163][ T2206] sisusb 5-1:0.3: probe with driver sisusb failed with error -22 [ 1122.099406][ T51] Bluetooth: hci3: unexpected event for opcode 0x200c [ 1122.115298][ T2206] usb 5-1: USB disconnect, device number 126 [ 1122.787593][T17121] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1123.901267][T17139] netlink: 'syz.2.5458': attribute type 1 has an invalid length. [ 1123.998144][T17143] netlink: 'syz.1.5460': attribute type 3 has an invalid length. [ 1124.394995][T17149] loop0: detected capacity change from 0 to 64 [ 1125.731610][T17172] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app [ 1125.871118][ T6128] usb 1-1: new high-speed USB device number 100 using dummy_hcd [ 1126.058327][ T6128] usb 1-1: Using ep0 maxpacket: 32 [ 1126.070523][ T6128] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1126.081847][ T6128] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1126.092119][ T6128] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 1126.101602][ T6128] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1126.116306][ T6128] usb 1-1: config 0 descriptor?? [ 1126.153042][ T6128] hub 1-1:0.0: USB hub found [ 1126.341456][ T6128] hub 1-1:0.0: config failed, hub has too many ports! (err -19) [ 1126.549868][ T6128] usbhid 1-1:0.0: can't add hid device: -71 [ 1126.557598][ T6128] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1126.659936][ T6128] usb 1-1: USB disconnect, device number 100 [ 1128.041201][T17205] dvmrp1: entered allmulticast mode [ 1128.222290][T17207] netlink: 'syz.2.5492': attribute type 29 has an invalid length. [ 1128.230640][T17207] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5492'. [ 1128.418382][T17213] cgroup: noprefix used incorrectly [ 1129.189913][T17225] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5501'. [ 1131.249668][T17263] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5520'. [ 1131.995335][T17277] netlink: 'syz.0.5527': attribute type 1 has an invalid length. [ 1132.003769][T17277] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5527'. [ 1132.694659][T17290] Unsupported ieee802154 address type: 0 [ 1133.747889][T17309] netlink: 'syz.3.5540': attribute type 58 has an invalid length. [ 1133.756413][T17309] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5540'. [ 1134.282566][T17316] SET target dimension over the limit! [ 1134.373586][T17319] bridge1: the hash_elasticity option has been deprecated and is always 16 [ 1134.912467][ T2206] usb 3-1: new high-speed USB device number 121 using dummy_hcd [ 1134.993925][T17330] openvswitch: netlink: EtherType 0 is less than min 600 [ 1135.027391][T17331] autofs4:pid:17331:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.46), cmd(0xc018937e) [ 1135.042439][T17331] autofs4:pid:17331:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc018937e) [ 1135.138262][ T2206] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1135.148157][ T2206] usb 3-1: New USB device strings: Mfr=223, Product=2, SerialNumber=3 [ 1135.157017][ T2206] usb 3-1: Product: syz [ 1135.161399][ T2206] usb 3-1: Manufacturer: syz [ 1135.166352][ T2206] usb 3-1: SerialNumber: syz [ 1135.240899][ T2206] usb 3-1: config 0 descriptor?? [ 1135.304170][ T2206] ch341 3-1:0.0: ch341-uart converter detected [ 1135.681525][ T2206] usb 3-1: failed to send control message: -71 [ 1135.694977][ T2206] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 1135.723528][ T2206] usb 3-1: USB disconnect, device number 121 [ 1135.812495][ T2206] ch341 3-1:0.0: device disconnected [ 1136.925373][T17356] dvmrp5: entered allmulticast mode [ 1138.071277][T17377] xt_TCPMSS: Only works on TCP SYN packets [ 1139.786670][T17408] tipc: Can't bind to reserved service type 1 [ 1140.650034][T17426] loop2: detected capacity change from 0 to 256 [ 1140.854786][T17426] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 1140.957775][T17426] exFAT-fs (loop2): start_clu is invalid cluster(0x0) [ 1141.100342][T17434] loop3: detected capacity change from 0 to 8 [ 1141.220260][T17434] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1141.233648][T17434] SQUASHFS error: Failed to read block 0x0: -5 [ 1141.241952][T17434] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1141.250318][T17434] SQUASHFS error: Failed to read block 0x0: -5 [ 1141.278225][ T29] audit: type=1800 audit(2000000401.721:67): pid=17434 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5604" name="file2" dev="loop3" ino=3 res=0 errno=0 [ 1141.521966][T17436] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5606'. [ 1143.383720][T17440] syz.0.5607 (17440): drop_caches: 2 [ 1143.557842][T17456] JFS: charset not found [ 1143.655127][ T6129] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 1143.853449][ T6129] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1143.926263][ T6129] usb 2-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18 [ 1143.935892][ T6129] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1143.944422][ T6129] usb 2-1: Product: syz [ 1143.948823][ T6129] usb 2-1: Manufacturer: syz [ 1143.953933][ T6129] usb 2-1: SerialNumber: syz [ 1144.047851][ T6129] usb 2-1: config 0 descriptor?? [ 1144.300797][ T6129] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 1144.426800][ T6129] snd-usb-audio 2-1:0.0: probe with driver snd-usb-audio failed with error -2 [ 1144.494035][T17475] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5624'. [ 1144.540436][ T6128] usb 2-1: USB disconnect, device number 6 [ 1144.826249][T13935] udevd[13935]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1144.859625][T17479] xt_addrtype: ipv6 BLACKHOLE matching not supported [ 1147.590363][T17525] overlayfs: unescaped trailing colons in lowerdir mount option. [ 1148.443931][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 1148.450848][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 1148.731705][T17545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5660'. [ 1148.741158][T17545] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5660'. [ 1148.926626][T17549] netlink: 52 bytes leftover after parsing attributes in process `syz.2.5662'. [ 1149.574949][T17561] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1150.334549][T17575] netlink: 80 bytes leftover after parsing attributes in process `syz.3.5675'. [ 1150.344076][T17575] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5675'. [ 1150.353659][T17575] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5675'. [ 1150.539148][T17577] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5676'. [ 1150.998785][ T6129] usb 4-1: new high-speed USB device number 114 using dummy_hcd [ 1151.175832][ T6129] usb 4-1: Using ep0 maxpacket: 32 [ 1151.234977][ T6129] usb 4-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 1151.244533][ T6129] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1151.256623][ T6129] usb 4-1: Product: syz [ 1151.262503][ T6129] usb 4-1: Manufacturer: syz [ 1151.267358][ T6129] usb 4-1: SerialNumber: syz [ 1151.303238][T17589] loop0: detected capacity change from 0 to 2048 [ 1151.356984][ T6129] usb 4-1: config 0 descriptor?? [ 1151.456587][T17594] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1151.554690][T17589] NILFS error (device loop0): nilfs_lookup: deleted inode referenced: 12 [ 1151.607313][T17589] Remounting filesystem read-only [ 1151.782598][ T6129] airspy 4-1:0.0: usb_control_msg() failed -71 request 0a [ 1151.790005][ T6129] airspy 4-1:0.0: Could not detect board [ 1151.797074][ T6129] airspy 4-1:0.0: probe with driver airspy failed with error -71 [ 1151.922359][ T6129] usb 4-1: USB disconnect, device number 114 [ 1153.507585][T17626] virtio-fs: tag <(null)> not found [ 1154.007490][T17636] ieee802154 phy0 wpan0: encryption failed: -22 [ 1154.354855][T17640] netlink: 24 bytes leftover after parsing attributes in process `syz.3.5707'. [ 1156.130693][T17671] netlink: 'syz.3.5722': attribute type 7 has an invalid length. [ 1156.839655][T17683] loop0: detected capacity change from 0 to 1024 [ 1157.280082][T17692] netlink: 4100 bytes leftover after parsing attributes in process `syz.3.5733'. [ 1157.336384][ T4086] hfsplus: b-tree write err: -5, ino 4 [ 1158.315463][ T8] usb 3-1: new high-speed USB device number 122 using dummy_hcd [ 1158.532847][ T8] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 1158.543428][ T8] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1158.639809][ T8] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 1158.649398][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1158.658038][ T8] usb 3-1: Product: syz [ 1158.662495][ T8] usb 3-1: Manufacturer: syz [ 1158.667297][ T8] usb 3-1: SerialNumber: syz [ 1158.771512][ T8] usb 3-1: config 0 descriptor?? [ 1158.822833][ T8] usb 3-1: selecting invalid altsetting 0 [ 1159.099116][ T8] usb 3-1: USB disconnect, device number 122 [ 1159.434592][ T6129] usb 4-1: new high-speed USB device number 115 using dummy_hcd [ 1159.500227][T13933] udevd[13933]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1159.639279][ T6129] usb 4-1: Using ep0 maxpacket: 32 [ 1159.671189][ T6129] usb 4-1: config 0 has an invalid interface number: 96 but max is 0 [ 1159.681998][ T6129] usb 4-1: config 0 has no interface number 0 [ 1159.688618][ T6129] usb 4-1: config 0 interface 96 has no altsetting 0 [ 1159.810683][ T6129] usb 4-1: New USB device found, idVendor=057b, idProduct=0000, bcdDevice= 1.d0 [ 1159.820629][ T6129] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1159.829073][ T6129] usb 4-1: Product: syz [ 1159.833464][ T6129] usb 4-1: Manufacturer: syz [ 1159.842059][ T6129] usb 4-1: SerialNumber: syz [ 1159.951620][ T6129] usb 4-1: config 0 descriptor?? [ 1159.961820][T17730] netlink: 'syz.1.5751': attribute type 10 has an invalid length. [ 1159.970291][T17730] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1160.176449][ T6129] usb-storage 4-1:0.96: USB Mass Storage device detected [ 1160.229038][ T6129] usb-storage 4-1:0.96: Quirks match for vid 057b pid 0000: 1 [ 1160.383363][ T6129] usb 4-1: USB disconnect, device number 115 [ 1160.673392][T17743] loop0: detected capacity change from 0 to 128 [ 1161.398335][T17758] SET target dimension over the limit! [ 1161.563171][ T6129] usb 1-1: new high-speed USB device number 101 using dummy_hcd [ 1161.787660][ T6129] usb 1-1: config 27 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1161.799076][ T6129] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid maxpacket 19503, setting to 1024 [ 1161.810790][ T6129] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 1024 [ 1161.930382][ T6129] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1161.943815][ T6129] usb 1-1: New USB device strings: Mfr=0, Product=157, SerialNumber=189 [ 1161.953922][ T6129] usb 1-1: Product: syz [ 1161.958313][ T6129] usb 1-1: SerialNumber: syz [ 1161.979864][ T8] usb 4-1: new high-speed USB device number 116 using dummy_hcd [ 1162.046084][T17755] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1162.095817][ T6129] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1162.107438][ T6129] usb 1-1: invalid MIDI in EP 0 [ 1162.190635][ T8] usb 4-1: config 0 has an invalid interface number: 156 but max is 0 [ 1162.199758][ T8] usb 4-1: config 0 has no interface number 0 [ 1162.206787][ T8] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 1162.219226][ T8] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1162.233676][ T8] usb 4-1: config 0 interface 156 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 1162.245190][ T8] usb 4-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice=d6.b9 [ 1162.254835][ T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1162.460628][ T8] usb 4-1: config 0 descriptor?? [ 1162.513068][ T8] gspca_main: spca561-2.14.0 probing abcd:cdee [ 1162.525850][ T6129] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 1162.632356][ T6129] usb 1-1: USB disconnect, device number 101 [ 1162.767248][ T8] spca561 4-1:0.156: probe with driver spca561 failed with error -22 [ 1162.778621][ T8] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 1162.786102][ T8] usb 4-1: MIDIStreaming interface descriptor not found [ 1162.882012][T13725] udevd[13725]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1163.009199][T17777] rdma_rxe: rxe_newlink: failed to add bond_slave_1 [ 1163.101656][ T8] usb 4-1: USB disconnect, device number 116 [ 1163.513219][T17781] IPVS: length: 40 != 8 [ 1163.705037][T13725] udevd[13725]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1164.457541][T17797] loop3: detected capacity change from 0 to 64 [ 1165.249661][T17810] netlink: 56 bytes leftover after parsing attributes in process `syz.2.5788'. [ 1166.257740][T17816] bridge0: port 3(bond0) entered disabled state [ 1166.264966][T17816] bridge0: port 2(bridge_slave_1) entered disabled state [ 1166.273119][T17816] bridge0: port 1(bridge_slave_0) entered disabled state [ 1166.403554][T17816] infiniband syz0: set down [ 1166.685261][T17834] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5799'. [ 1167.036293][T17816] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1167.105991][T17816] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1167.258246][T17840] ksmbd: Daemon and kernel module version mismatch. ksmbd: 124, kernel module: 1. User-space ksmbd should terminate. [ 1167.391960][T17816] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1167.401644][T17816] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1167.412986][T17816] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1167.424465][T17816] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1167.596232][T17816] bridge2: left allmulticast mode [ 1167.716660][ T2206] vcan0 speed is unknown, defaulting to 1000 [ 1167.807295][ T2206] vcan0 speed is unknown, defaulting to 1000 [ 1169.818140][T17873] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5818'. [ 1169.919283][T17868] loop3: detected capacity change from 0 to 4096 [ 1169.985181][T17868] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1170.172944][T17880] SET target dimension over the limit! [ 1170.358145][T17884] loop2: detected capacity change from 0 to 164 [ 1170.489534][T17884] iso9660: Corrupted directory entry in block 0 of inode 1792 [ 1170.753914][T17888] gre1: entered promiscuous mode [ 1170.759282][T17888] gre1: entered allmulticast mode [ 1171.465556][ T29] audit: type=1400 audit(2000000434.123:68): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=17899 comm="syz.0.5831" [ 1171.612019][T17902] loop2: detected capacity change from 0 to 512 [ 1171.696760][T17902] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (3832!=33349) [ 1171.791390][T17904] loop3: detected capacity change from 0 to 1024 [ 1171.800529][T17902] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e02c, mo2=0002] [ 1171.847574][T17902] System zones: 1-12 [ 1171.853153][T17902] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1171.860224][T17902] EXT4-fs error (device loop2): ext4_read_inode_bitmap:167: comm syz.2.5832: Inode bitmap for bg 0 marked uninitialized [ 1171.891601][T17902] EXT4-fs (loop2): Remounting filesystem read-only [ 1171.900463][T17902] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1171.944544][T17904] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1172.223744][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1172.392701][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1172.648347][T17921] netlink: 48 bytes leftover after parsing attributes in process `syz.0.5840'. [ 1172.922242][T17927] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5843'. [ 1173.431773][T17933] loop0: detected capacity change from 0 to 512 [ 1173.483047][T17933] EXT4-fs: Ignoring removed nobh option [ 1173.608564][T17933] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1173.623473][T17933] ext4 filesystem being mounted at /1088/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1173.718021][T17933] Quota error (device loop0): do_check_range: Getting block 1879048195 out of range 1-5 [ 1173.728492][T17933] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 1173.738620][T17933] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.5845: Failed to acquire dquot type 1 [ 1173.826526][T17933] EXT4-fs (loop0): Remounting filesystem read-only [ 1174.189422][ T6072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1175.848711][T17981] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5869'. [ 1175.903840][ T1690] usb 4-1: new high-speed USB device number 117 using dummy_hcd [ 1176.101134][ T1690] usb 4-1: Using ep0 maxpacket: 16 [ 1176.133609][ T1690] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0 [ 1176.191352][ T1690] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1176.200991][ T1690] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1176.209359][ T1690] usb 4-1: Product: syz [ 1176.213896][ T1690] usb 4-1: Manufacturer: syz [ 1176.218721][ T1690] usb 4-1: SerialNumber: syz [ 1176.266830][ T1690] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22 [ 1176.501157][ T1690] usb 4-1: USB disconnect, device number 117 [ 1176.954415][T17995] loop0: detected capacity change from 0 to 128 [ 1177.007864][T17995] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1177.074008][T17995] ext4 filesystem being mounted at /1093/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1177.273174][ T6072] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1177.346296][T18003] openvswitch: netlink: Message has 8 unknown bytes. [ 1178.400581][T18022] IPv6: NLM_F_CREATE should be specified when creating new route [ 1178.409921][T18022] netlink: 1 bytes leftover after parsing attributes in process `syz.0.5888'. [ 1180.674007][T18061] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5907'. [ 1180.683402][T18061] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5907'. [ 1180.692833][T18061] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5907'. [ 1181.919793][ T29] audit: type=1107 audit(2000000445.345:69): pid=18085 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='š¤' [ 1182.375974][T18090] sctp: [Deprecated]: syz.3.5919 (pid 18090) Use of int in maxseg socket option. [ 1182.375974][T18090] Use struct sctp_assoc_value instead [ 1182.525202][T18093] loop2: detected capacity change from 0 to 1024 [ 1182.918541][ T3926] hfsplus: b-tree write err: -5, ino 4 [ 1183.542124][T18111] netlink: 'syz.0.5930': attribute type 10 has an invalid length. [ 1183.611222][T18111] team0: Port device geneve1 added [ 1184.640815][T18128] (syz.4.5939,18128,0):ocfs2_fill_super:990 ERROR: superblock probe failed! [ 1184.654325][T18128] (syz.4.5939,18128,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 1184.721734][T18129] xt_NFQUEUE: number of total queues is 0 [ 1186.230408][T18159] netlink: 164 bytes leftover after parsing attributes in process `syz.1.5954'. [ 1186.240337][T18159] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5954'. [ 1186.249975][T18159] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5954'. [ 1186.380044][ T2206] usb 1-1: new high-speed USB device number 102 using dummy_hcd [ 1186.554406][ T2206] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 1186.567448][ T2206] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1186.630220][ T2206] usb 1-1: config 0 descriptor?? [ 1186.674223][ T2206] cp210x 1-1:0.0: cp210x converter detected [ 1187.026854][ T2206] cp210x 1-1:0.0: failed to get vendor val 0x370c size 13: -71 [ 1187.034965][ T2206] cp210x 1-1:0.0: GPIO initialisation failed: -71 [ 1187.050517][T17828] usb 4-1: new high-speed USB device number 118 using dummy_hcd [ 1187.111053][ T2206] usb 1-1: cp210x converter now attached to ttyUSB0 [ 1187.167082][ T2206] usb 1-1: USB disconnect, device number 102 [ 1187.192779][ T2206] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 1187.203409][ T2206] cp210x 1-1:0.0: device disconnected [ 1187.222697][T18170] overlay: Unknown parameter '\' [ 1187.255869][T17828] usb 4-1: Using ep0 maxpacket: 8 [ 1187.269339][T17828] usb 4-1: config 0 has an invalid interface number: 128 but max is 0 [ 1187.278084][T17828] usb 4-1: config 0 has no interface number 0 [ 1187.360384][T17828] usb 4-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 1187.369965][T17828] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1187.378499][T17828] usb 4-1: Product: syz [ 1187.382887][T17828] usb 4-1: Manufacturer: syz [ 1187.387906][T17828] usb 4-1: SerialNumber: syz [ 1187.417187][T17828] usb 4-1: config 0 descriptor?? [ 1187.453194][T17828] radio-usb-si4713 4-1:0.128: Si4713 development board discovered: (10C4:8244) [ 1187.549691][T18174] loop2: detected capacity change from 0 to 1024 [ 1187.702165][T17828] radio-usb-si4713 4-1:0.128: probe with driver radio-usb-si4713 failed with error -71 [ 1187.717383][T17828] usbhid 4-1:0.128: couldn't find an input interrupt endpoint [ 1187.827625][T17828] usb 4-1: USB disconnect, device number 118 [ 1189.317225][T18201] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5974'. [ 1189.330038][T18201] netlink: 'syz.2.5974': attribute type 3 has an invalid length. [ 1189.339257][T18201] netlink: 40 bytes leftover after parsing attributes in process `syz.2.5974'. [ 1189.697919][T18209] libceph: resolve '0..' (ret=-3): failed [ 1189.967458][T18212] netlink: 'syz.2.5979': attribute type 5 has an invalid length. [ 1191.502015][T18236] loop3: detected capacity change from 0 to 2048 [ 1191.658424][T18236] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1191.700581][T18244] cgroup: release_agent respecified [ 1191.744837][T18236] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1192.499116][T18255] netlink: 700 bytes leftover after parsing attributes in process `syz.2.6001'. [ 1192.793620][T18261] netlink: 232 bytes leftover after parsing attributes in process `syz.4.6004'. [ 1194.651285][T18295] netlink: 256 bytes leftover after parsing attributes in process `syz.2.6020'. [ 1194.738726][T18297] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 1195.577961][T18314] tc_dump_action: action bad kind [ 1195.596102][T18312] loop3: detected capacity change from 0 to 512 [ 1195.657126][T18312] EXT4-fs: Ignoring removed mblk_io_submit option [ 1195.664067][T18312] EXT4-fs: Ignoring removed oldalloc option [ 1195.861405][T18312] EXT4-fs error (device loop3): ext4_xattr_inode_iget:436: comm syz.3.6027: Parent and EA inode have the same ino 15 [ 1195.875718][T18312] EXT4-fs (loop3): Remounting filesystem read-only [ 1195.883394][T18312] EXT4-fs (loop3): 1 orphan inode deleted [ 1195.891145][T18312] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1196.211465][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1196.745882][T18334] netlink: 'syz.1.6037': attribute type 1 has an invalid length. [ 1197.161712][T18341] loop3: detected capacity change from 0 to 16 [ 1197.224939][T18341] erofs (device loop3): mounted with root inode @ nid 36. [ 1198.416181][T18363] loop3: detected capacity change from 0 to 47 [ 1198.733150][T17828] usb 1-1: new full-speed USB device number 103 using dummy_hcd [ 1198.881377][T18370] netlink: 'syz.1.6055': attribute type 9 has an invalid length. [ 1198.944759][T17828] usb 1-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 1198.954372][T17828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1199.030426][T17828] usb 1-1: config 0 descriptor?? [ 1199.108810][T17828] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1199.508032][T17828] gp8psk: usb in 128 operation failed. [ 1199.525170][T17828] gp8psk: usb in 137 operation failed. [ 1199.531065][T17828] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1199.546834][T17828] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1199.568859][T18380] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1199.660764][T17828] usb 1-1: USB disconnect, device number 103 [ 1199.679666][T18384] netlink: 192 bytes leftover after parsing attributes in process `syz.4.6061'. [ 1199.971033][T18386] XFS (nullb0): Invalid superblock magic number [ 1200.061955][T18393] ieee802154 phy0 wpan0: encryption failed: -22 [ 1201.260846][T17828] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 1201.482501][T17828] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1201.493964][T17828] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1201.504828][T17828] usb 2-1: New USB device found, idVendor=05ac, idProduct=022a, bcdDevice= 0.00 [ 1201.514322][T17828] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1201.612278][T17828] usb 2-1: config 0 descriptor?? [ 1202.012166][T17828] appletouch 2-1:0.0: Failed to request geyser raw mode [ 1202.024892][T17828] appletouch 2-1:0.0: probe with driver appletouch failed with error -5 [ 1202.085877][T17828] usb 2-1: USB disconnect, device number 7 [ 1202.296015][T18431] netlink: 'syz.3.6083': attribute type 11 has an invalid length. [ 1202.304489][T18431] netlink: 224 bytes leftover after parsing attributes in process `syz.3.6083'. [ 1202.337628][T18430] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1203.243380][T18448] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6089'. [ 1203.253380][T18448] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6089'. [ 1203.472340][T18452] loop3: detected capacity change from 0 to 64 [ 1204.062660][T17828] usb 1-1: new high-speed USB device number 104 using dummy_hcd [ 1204.073541][T18461] block nbd3: NBD_DISCONNECT [ 1204.275833][T17828] usb 1-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b [ 1204.285547][T17828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1204.296403][T18464] overlayfs: workdir and upperdir must be separate subtrees [ 1204.348032][T17828] usb 1-1: config 0 descriptor?? [ 1204.807605][T17828] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 1204.819194][T17828] asix 1-1:0.0: probe with driver asix failed with error -71 [ 1204.881911][T17828] usb 1-1: USB disconnect, device number 104 [ 1205.711594][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 1205.718249][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 1206.596367][ T1690] usb 5-1: new high-speed USB device number 127 using dummy_hcd [ 1206.624463][T18503] netlink: 20 bytes leftover after parsing attributes in process `syz.2.6118'. [ 1206.815203][ T1690] usb 5-1: config 0 has an invalid interface number: 194 but max is 0 [ 1206.824042][ T1690] usb 5-1: config 0 has no interface number 0 [ 1206.916214][ T1690] usb 5-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=7d.d2 [ 1206.925946][ T1690] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1206.934412][ T1690] usb 5-1: Product: syz [ 1206.938805][ T1690] usb 5-1: Manufacturer: syz [ 1206.943825][ T1690] usb 5-1: SerialNumber: syz [ 1206.996144][ T1690] usb 5-1: config 0 descriptor?? [ 1207.411249][T17828] usb 5-1: USB disconnect, device number 127 [ 1207.418678][T17828] f81534a_ctrl 5-1:0.194: failed to set register 0x116: -19 [ 1207.426518][T17828] f81534a_ctrl 5-1:0.194: failed to enable ports: -19 [ 1208.496958][T18531] dvmrp0: entered allmulticast mode [ 1210.257682][T18565] loop0: detected capacity change from 0 to 128 [ 1210.565203][T18564] loop3: detected capacity change from 0 to 4096 [ 1210.783803][T18572] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1210.879549][T18564] NILFS (loop3): the device already has a read/write mount. [ 1211.425020][T18583] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6156'. [ 1211.434575][T18583] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6156'. [ 1215.305537][T18650] netlink: 'syz.2.6189': attribute type 32 has an invalid length. [ 1215.314042][T18650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6189'. [ 1215.323849][T18650] (unnamed net_device) (uninitialized): Setting coupled_control to off (0) [ 1215.695968][T18659] netlink: 'syz.2.6194': attribute type 1 has an invalid length. [ 1215.704460][T18659] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6194'. [ 1216.225339][T18670] xt_hashlimit: overflow, try lower: 18446744073709551615/7 [ 1216.661108][T18679] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 1217.263984][T18690] afs: Unknown parameter 'dont_appraise' [ 1217.662790][T18698] netlink: 'syz.2.6213': attribute type 9 has an invalid length. [ 1217.671803][T18698] netlink: 'syz.2.6213': attribute type 7 has an invalid length. [ 1217.683704][T18698] netlink: 'syz.2.6213': attribute type 8 has an invalid length. [ 1217.724642][T18697] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6211'. [ 1218.041981][ T1690] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 1218.237387][ T1690] usb 2-1: Using ep0 maxpacket: 16 [ 1218.281534][ T1690] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1218.292849][ T1690] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1218.368522][ T1690] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1218.378641][ T1690] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1218.387109][ T1690] usb 2-1: Product: syz [ 1218.391497][ T1690] usb 2-1: Manufacturer: syz [ 1218.396426][ T1690] usb 2-1: SerialNumber: syz [ 1218.905673][ T1690] usb 2-1: cannot find UAC_HEADER [ 1219.023393][T18717] loop2: detected capacity change from 0 to 512 [ 1219.063843][ T1690] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 1219.089957][T18717] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 1219.099912][T18717] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 1219.142772][ T1690] usb 2-1: USB disconnect, device number 8 [ 1219.208895][T18717] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 1219.272546][T18717] System zones: 0-2, 18-18, 34-34 [ 1219.333839][T18717] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1219.414951][T18717] EXT4-fs (loop2): 1 truncate cleaned up [ 1219.465322][T18717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1219.578397][T13935] udevd[13935]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1219.630266][T18717] EXT4-fs error (device loop2): ext4_find_dest_de:2079: inode #2: block 3: comm syz.2.6222: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1 [ 1219.916242][ T1690] usb 1-1: new high-speed USB device number 105 using dummy_hcd [ 1220.074075][ T1690] usb 1-1: Using ep0 maxpacket: 8 [ 1220.100610][ T1690] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 1220.111610][ T1690] usb 1-1: config 2 has 1 interface, different from the descriptor's value: 3 [ 1220.140913][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1220.149467][ T1690] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=f0.c9 [ 1220.162557][ T1690] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1220.171935][ T1690] usb 1-1: Product: syz [ 1220.176414][ T1690] usb 1-1: Manufacturer: syz [ 1220.181217][ T1690] usb 1-1: SerialNumber: syz [ 1221.696341][T18753] x_tables: unsorted underflow at hook 1 [ 1222.152625][T18762] loop2: detected capacity change from 0 to 64 [ 1222.266284][T18765] netlink: 'syz.4.6245': attribute type 1 has an invalid length. [ 1222.274779][T18765] netlink: 'syz.4.6245': attribute type 2 has an invalid length. [ 1222.405193][T17828] usb 1-1: USB disconnect, device number 105 [ 1224.591393][T18805] loop2: detected capacity change from 0 to 256 [ 1224.699812][T18807] cgroup: noprefix used incorrectly [ 1225.663000][T18819] netlink: 'syz.4.6272': attribute type 2 has an invalid length. [ 1229.339217][T18885] syz.3.6303: attempt to access beyond end of device [ 1229.339217][T18885] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0 [ 1229.629881][T18887] loop0: detected capacity change from 0 to 1024 [ 1230.256915][T18902] netlink: 'syz.4.6311': attribute type 10 has an invalid length. [ 1231.252821][ T1690] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 1231.368431][T18920] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6322'. [ 1231.463329][ T1690] usb 5-1: Using ep0 maxpacket: 32 [ 1231.507123][ T1690] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1231.519806][ T1690] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1231.591415][ T1690] usb 5-1: config 0 descriptor?? [ 1231.648715][ T1690] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1232.035291][ T1690] gspca_nw80x: reg_r err -71 [ 1232.040915][ T1690] nw80x 5-1:0.0: probe with driver nw80x failed with error -71 [ 1232.075292][ T1690] usb 5-1: USB disconnect, device number 2 [ 1233.223571][T18947] loop3: detected capacity change from 0 to 256 [ 1234.525699][T18973] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6345'. [ 1234.716320][ T1690] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 1234.876814][T18968] "syz.2.6343" (18968) uses obsolete ecb(arc4) skcipher [ 1234.902984][ T1690] usb 2-1: Using ep0 maxpacket: 16 [ 1234.941804][ T1690] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 1234.953425][ T1690] usb 2-1: config 0 has no interface number 0 [ 1234.960972][ T1690] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1234.992216][ T1690] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 1235.002161][ T1690] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 1235.010674][ T1690] usb 2-1: Product: syz [ 1235.015230][ T1690] usb 2-1: SerialNumber: syz [ 1235.075893][ T1690] usb 2-1: config 0 descriptor?? [ 1235.117218][ T1690] cm109 2-1:0.8: invalid payload size 208, expected 4 [ 1235.127767][ T1690] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input47 [ 1235.415090][ T29] audit: type=1326 audit(2000000502.735:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18984 comm="syz.4.6350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1235.441010][ T29] audit: type=1326 audit(2000000502.767:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18984 comm="syz.4.6350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1235.464992][ T29] audit: type=1326 audit(2000000502.789:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18984 comm="syz.4.6350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1235.488093][ T29] audit: type=1326 audit(2000000502.789:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18984 comm="syz.4.6350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef19d8cd29 code=0x7ffc0000 [ 1235.534097][ C0] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71 [ 1235.546181][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.553710][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.562240][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.571389][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.579635][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.587159][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.594775][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.602305][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.609863][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.621725][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1235.634772][ C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 1235.644437][ T1690] usb 2-1: USB disconnect, device number 9 [ 1235.652170][ T1690] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 1236.824159][T19005] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6360'. [ 1236.846220][T19005] xfrm1: entered promiscuous mode [ 1236.851681][T19005] xfrm1: entered allmulticast mode [ 1236.927231][ T1690] usb 1-1: new full-speed USB device number 106 using dummy_hcd [ 1236.970069][T19007] netlink: 48 bytes leftover after parsing attributes in process `syz.3.6361'. [ 1237.140653][ T1690] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1237.154528][ T1690] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 1237.167598][ T1690] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10 [ 1237.179122][ T1690] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 1237.189389][ T1690] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 1237.360898][ T1690] usb 1-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 1237.370672][ T1690] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 1237.379318][ T1690] usb 1-1: Product: syz [ 1237.383793][ T1690] usb 1-1: Manufacturer: syz [ 1237.388619][ T1690] usb 1-1: SerialNumber: syz [ 1237.482094][ T1690] usb 1-1: config 0 descriptor?? [ 1237.715916][ T1690] radio-si470x 1-1:0.0: DeviceID=0x6465 ChipID=0x7669 [ 1237.904658][ T1690] radio-si470x 1-1:0.0: si470x_get_report: usb_control_msg returned -71 [ 1237.918056][ T1690] radio-si470x 1-1:0.0: si470x_get_scratch: si470x_get_report returned -71 [ 1237.929724][ T1690] radio-si470x 1-1:0.0: probe with driver radio-si470x failed with error -5 [ 1238.047267][ T1690] usb 1-1: USB disconnect, device number 106 [ 1240.203270][T19058] loop3: detected capacity change from 0 to 512 [ 1240.337119][T19058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1240.350401][T19058] ext4 filesystem being mounted at /1239/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1240.700246][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1241.031100][T19072] loop3: detected capacity change from 0 to 256 [ 1241.329474][T19072] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x421408f7, utbl_chksum : 0xe619d30d) [ 1241.347015][T19072] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 1241.688363][ T1690] usb 4-1: new high-speed USB device number 119 using dummy_hcd [ 1241.920025][ T1690] usb 4-1: config 0 has an invalid descriptor of length 234, skipping remainder of the config [ 1241.931412][ T1690] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1241.940826][ T1690] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1242.030379][ T1690] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 1242.040268][ T1690] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1242.049166][ T1690] usb 4-1: Product: syz [ 1242.053628][ T1690] usb 4-1: Manufacturer: syz [ 1242.058443][ T1690] usb 4-1: SerialNumber: syz [ 1242.137568][ T1690] usb 4-1: config 0 descriptor?? [ 1242.160491][ T29] audit: type=1326 audit(2000000509.988:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19087 comm="syz.1.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1242.293744][ T29] audit: type=1326 audit(2000000510.063:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19087 comm="syz.1.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1242.294026][ T29] audit: type=1326 audit(2000000510.063:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19087 comm="syz.1.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1242.294285][ T29] audit: type=1326 audit(2000000510.074:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19087 comm="syz.1.6400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a0e18cd29 code=0x7ffc0000 [ 1242.344440][ T1690] usb 4-1: Found UVC 34.00 device syz (8086:0b5b) [ 1242.408384][ T1690] usb 4-1: No valid video chain found. [ 1242.458121][T19092] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6402'. [ 1242.468222][T19092] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6402'. [ 1242.656074][ T1690] usb 4-1: USB disconnect, device number 119 [ 1242.820924][T19095] loop2: detected capacity change from 0 to 512 [ 1242.908678][T19095] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1242.916947][T19095] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 1243.006780][T19095] System zones: 0-1, 15-15, 18-18, 34-34 [ 1243.014476][T19095] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1243.021324][T19095] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 1243.034027][T19095] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1243.049838][T19095] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 1243.095608][T19095] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.6403: bad orphan inode 16 [ 1243.136995][T19095] ext4_test_bit(bit=15, block=18) = 1 [ 1243.142873][T19095] is_bad_inode(inode)=0 [ 1243.147323][T19095] NEXT_ORPHAN(inode)=0 [ 1243.152098][T19095] max_ino=32 [ 1243.155461][T19095] i_nlink=2 [ 1243.165128][T19095] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1243.317277][T19095] fscrypt (loop2, inode 16): Error -61 getting encryption context [ 1243.450557][T19105] kAFS: No cell specified [ 1243.723315][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1243.770018][T17828] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 1243.972299][T17828] usb 5-1: Using ep0 maxpacket: 16 [ 1244.038512][T17828] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1244.048127][T17828] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1244.056988][T17828] usb 5-1: Product: syz [ 1244.061385][T17828] usb 5-1: Manufacturer: syz [ 1244.066500][T17828] usb 5-1: SerialNumber: syz [ 1244.173279][T17828] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1244.181220][T17828] r8152-cfgselector 5-1: config 0 descriptor?? [ 1244.677293][T19121] loop3: detected capacity change from 0 to 1024 [ 1244.718035][ T1690] r8152-cfgselector 5-1: USB disconnect, device number 3 [ 1244.817300][T19121] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1245.013716][T19121] EXT4-fs warning (device loop3): ext4_rmdir:3201: inode #11: comm syz.3.6415: empty directory 'file1' has too many links (111) [ 1245.426289][T17828] usb 3-1: new high-speed USB device number 123 using dummy_hcd [ 1245.465808][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1245.651155][T17828] usb 3-1: config 0 has an invalid interface number: 239 but max is 0 [ 1245.660598][T17828] usb 3-1: config 0 has no interface number 0 [ 1245.667192][T17828] usb 3-1: config 0 interface 239 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1245.677861][T17828] usb 3-1: config 0 interface 239 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 511 [ 1245.764201][T17828] usb 3-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73 [ 1245.773722][T17828] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1245.782280][T17828] usb 3-1: Product: syz [ 1245.786678][T17828] usb 3-1: Manufacturer: syz [ 1245.791827][T17828] usb 3-1: SerialNumber: syz [ 1245.863374][T17828] usb 3-1: config 0 descriptor?? [ 1245.871552][T19134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1245.885763][T19134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1246.135683][T19134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1246.190301][T19134] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1246.430221][T17828] asix 3-1:0.239 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71 [ 1246.441709][T17828] asix 3-1:0.239: probe with driver asix failed with error -71 [ 1246.578457][T17828] usb 3-1: USB disconnect, device number 123 [ 1248.194071][T19178] loop2: detected capacity change from 0 to 256 [ 1248.303575][T19178] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d) [ 1248.699655][T19186] vivid-007: disconnect [ 1248.708852][T19185] vivid-007: reconnect [ 1248.875459][T19188] snd_dummy snd_dummy.0: control 5:-7:24:syz1:0 is already present [ 1249.518660][T19199] syz.0.6452: attempt to access beyond end of device [ 1249.518660][T19199] nbd0: rw=0, sector=0, nr_sectors = 2 limit=0 [ 1249.761636][T19205] xt_connbytes: Forcing CT accounting to be enabled [ 1250.347513][T19216] loop2: detected capacity change from 0 to 1024 [ 1250.738597][T19222] netlink: 256 bytes leftover after parsing attributes in process `syz.4.6464'. [ 1250.934588][ T3725] hfsplus: b-tree write err: -5, ino 4 [ 1251.818383][T19238] batadv1: entered promiscuous mode [ 1251.828682][T19238] 8021q: adding VLAN 0 to HW filter on device batadv1 [ 1251.969714][T19243] Cannot find add_set index 4 as target [ 1253.367478][ T1690] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 1253.583640][ T1690] usb 5-1: Using ep0 maxpacket: 16 [ 1253.627105][ T1690] usb 5-1: config 0 has an invalid descriptor of length 119, skipping remainder of the config [ 1253.637923][ T1690] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFC, changing to 0x8C [ 1253.649858][ T1690] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8C has an invalid bInterval 50, changing to 9 [ 1253.665358][ T1690] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8C has invalid maxpacket 8491, setting to 1024 [ 1253.676816][ T1690] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1253.748994][T19274] netlink: 144 bytes leftover after parsing attributes in process `syz.3.6489'. [ 1253.897174][ T1690] usb 5-1: New USB device found, idVendor=045e, idProduct=0284, bcdDevice=a4.8f [ 1253.906521][ T1690] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1253.915234][ T1690] usb 5-1: Product: syz [ 1253.919789][ T1690] usb 5-1: Manufacturer: syz [ 1253.924604][ T1690] usb 5-1: SerialNumber: syz [ 1254.012315][ T1690] usb 5-1: config 0 descriptor?? [ 1254.433796][ T1690] rc_core: IR keymap rc-xbox-dvd not found [ 1254.440381][ T1690] Registered IR keymap rc-empty [ 1254.448158][ T1690] rc rc0: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 1254.460465][ T1690] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input48 [ 1254.783202][T19285] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1254.790652][T19285] IPv6: NLM_F_CREATE should be set when creating new route [ 1254.798399][T19285] IPv6: NLM_F_CREATE should be set when creating new route [ 1254.839763][ T1690] usb 5-1: USB disconnect, device number 4 [ 1254.839981][ C0] xbox_remote 5-1:0.0: xbox_remote_irq_in: usb_submit_urb()=-19 [ 1256.699402][T19320] netlink: 256 bytes leftover after parsing attributes in process `syz.4.6512'. [ 1256.715204][T19320] unsupported nlmsg_type 40 [ 1257.794807][T19338] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6521'. [ 1258.373298][T19350] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6527'. [ 1259.994008][ T1690] usb 4-1: new high-speed USB device number 120 using dummy_hcd [ 1260.173016][ T1690] usb 4-1: Using ep0 maxpacket: 32 [ 1260.209039][ T1690] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1260.219920][ T1690] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1260.229679][ T1690] usb 4-1: config 0 interface 0 altsetting 245 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1260.246255][ T1690] usb 4-1: config 0 interface 0 has no altsetting 1 [ 1260.350934][ T1690] usb 4-1: New USB device found, idVendor=0582, idProduct=0016, bcdDevice=8e.57 [ 1260.360478][ T1690] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1260.368901][ T1690] usb 4-1: Product: syz [ 1260.373300][ T1690] usb 4-1: Manufacturer: syz [ 1260.378291][ T1690] usb 4-1: SerialNumber: syz [ 1260.459475][ T1690] usb 4-1: config 0 descriptor?? [ 1260.794718][T19387] loop0: detected capacity change from 0 to 256 [ 1260.916225][T19387] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1260.944458][T17828] usb 4-1: USB disconnect, device number 120 [ 1260.974847][T19387] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1260.984511][T19387] FAT-fs (loop0): Filesystem has been set read-only [ 1261.219628][T13935] udevd[13935]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1261.696458][T19401] netlink: 'syz.0.6550': attribute type 11 has an invalid length. [ 1261.704781][T19401] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6550'. [ 1262.966835][ T1283] ieee802154 phy0 wpan0: encryption failed: -22 [ 1262.973487][ T1283] ieee802154 phy1 wpan1: encryption failed: -22 [ 1264.613770][T19450] loop0: detected capacity change from 0 to 1024 [ 1264.773900][T19450] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1264.826051][T19455] nvme_fabrics: unknown parameter or missing value ']' in ctrl creation request [ 1265.175128][ T6072] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1266.142391][T19478] loop2: detected capacity change from 0 to 512 [ 1266.185211][T19478] EXT4-fs: Ignoring removed i_version option [ 1266.191639][T19478] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1266.295026][T19478] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1266.303838][T19478] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e12c, mo2=0002] [ 1266.317007][T19478] System zones: 0-1, 15-15, 18-18, 34-34 [ 1266.386056][T19478] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1266.393002][T19478] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 1266.402976][T19478] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 1266.417972][T19478] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 1266.450747][T19483] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1266.508982][T19485] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6591'. [ 1266.520594][T19478] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.6588: bg 0: block 40: padding at end of block bitmap is not set [ 1266.634835][T19478] EXT4-fs (loop2): Remounting filesystem read-only [ 1266.646198][T19478] EXT4-fs (loop2): 1 truncate cleaned up [ 1266.654985][T19478] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1267.073158][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1268.383737][T19514] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.6606'. [ 1269.559187][T19535] loop3: detected capacity change from 0 to 512 [ 1269.587603][T19535] EXT4-fs: Ignoring removed i_version option [ 1269.640393][T19535] EXT4-fs (loop3): Test dummy encryption mode enabled [ 1269.647435][T19535] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1269.752515][T19535] EXT4-fs (loop3): 1 truncate cleaned up [ 1269.760310][T19535] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1270.054206][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1270.094536][T19547] netlink: 'syz.0.6621': attribute type 46 has an invalid length. [ 1270.163460][T19548] loop2: detected capacity change from 0 to 512 [ 1270.354813][T19548] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1270.371605][T19548] ext4 filesystem being mounted at /1269/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1270.526356][T19554] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6623'. [ 1270.658529][ T6082] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1270.721924][T19559] netlink: 'syz.4.6625': attribute type 21 has an invalid length. [ 1271.045016][T19563] netdevsim netdevsim3: Firmware load for './cgroup/../file0' refused, path contains '..' component [ 1271.281950][T19567] 9pnet_fd: Insufficient options for proto=fd [ 1271.653391][T19573] netlink: 'syz.3.6632': attribute type 64 has an invalid length. [ 1271.661578][T19573] netlink: 32 bytes leftover after parsing attributes in process `syz.3.6632'. [ 1271.958372][T19578] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 1272.015988][T19578] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1272.325782][T19586] netlink: 'syz.1.6639': attribute type 21 has an invalid length. [ 1272.334234][T19586] netlink: 'syz.1.6639': attribute type 5 has an invalid length. [ 1273.274261][T19601] xt_socket: unknown flags 0x4 [ 1273.294442][T19602] Cannot find del_set index 4 as target [ 1273.488248][T19606] netlink: 2 bytes leftover after parsing attributes in process `syz.1.6649'. [ 1275.199640][T19632] loop3: detected capacity change from 0 to 2048 [ 1275.384162][T19632] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1275.504316][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1275.556035][T19640] vcan0 speed is unknown, defaulting to 1000 [ 1276.042362][T19647] nftables ruleset with unbound chain [ 1277.027190][T19662] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6674'. [ 1278.802135][T19686] netlink: 'syz.3.6686': attribute type 1 has an invalid length. [ 1278.810246][T19686] netlink: 220 bytes leftover after parsing attributes in process `syz.3.6686'. [ 1278.819704][T19686] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6686'. [ 1279.324490][T19697] loop3: detected capacity change from 0 to 512 [ 1279.370203][T19697] EXT4-fs: Ignoring removed i_version option [ 1279.385434][T19697] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1279.468684][T19697] EXT4-fs (loop3): 1 truncate cleaned up [ 1279.477690][T19697] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1279.853116][ T6080] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1280.247619][T19711] netlink: 'syz.3.6697': attribute type 1 has an invalid length. [ 1280.256383][T19711] nbd: couldn't find a device at index 20 [ 1280.893213][ T29] audit: type=1326 audit(2000000551.530:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19724 comm="syz.3.6704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1281.004118][ T29] audit: type=1326 audit(2000000551.573:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19724 comm="syz.3.6704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1281.027069][ T29] audit: type=1326 audit(2000000551.584:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19724 comm="syz.3.6704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd907b8cd29 code=0x7ffc0000 [ 1281.253849][T19729] veth1_macvtap: left promiscuous mode [ 1283.152163][T19759] loop2: detected capacity change from 0 to 8 [ 1284.303784][T19780] netlink: 'syz.1.6731': attribute type 1 has an invalid length. [ 1284.379474][T19782] ===================================================== [ 1284.386870][T19782] BUG: KMSAN: uninit-value in nsim_get_ringparam+0xa8/0xe0 [ 1284.397780][T19782] nsim_get_ringparam+0xa8/0xe0 [ 1284.402835][T19782] ethtool_set_ringparam+0x268/0x570 [ 1284.409654][T19782] dev_ethtool+0x126d/0x2a40 [ 1284.414698][T19782] dev_ioctl+0xb0e/0x1280 [ 1284.419225][T19782] sock_do_ioctl+0x28c/0x540 [ 1284.424181][T19782] sock_ioctl+0x721/0xd70 [ 1284.428723][T19782] __se_sys_ioctl+0x246/0x440 [ 1284.434941][T19782] __x64_sys_ioctl+0x96/0xe0 [ 1284.439764][T19782] x64_sys_call+0x19f0/0x3c30 [ 1284.444879][T19782] do_syscall_64+0xcd/0x1e0 [ 1284.449641][T19782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1284.455986][T19782] [ 1284.458411][T19782] Local variable kernel_ringparam created at: [ 1284.464851][T19782] ethtool_set_ringparam+0x96/0x570 [ 1284.470374][T19782] dev_ethtool+0x126d/0x2a40 [ 1284.475192][T19782] [ 1284.477621][T19782] CPU: 0 UID: 0 PID: 19782 Comm: syz.3.6732 Not tainted 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1284.491769][T19782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1284.503467][T19782] ===================================================== [ 1284.510728][T19782] Disabling lock debugging due to kernel taint [ 1284.517275][T19782] Kernel panic - not syncing: kmsan.panic set ... [ 1284.523844][T19782] CPU: 0 UID: 0 PID: 19782 Comm: syz.3.6732 Tainted: G B 6.13.0-syzkaller-04788-g7004a2e46d16 #0 [ 1284.535987][T19782] Tainted: [B]=BAD_PAGE [ 1284.540267][T19782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 1284.550487][T19782] Call Trace: [ 1284.553898][T19782] [ 1284.556975][T19782] dump_stack_lvl+0x216/0x2d0 [ 1284.561885][T19782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1284.567926][T19782] dump_stack+0x1e/0x24 [ 1284.572310][T19782] panic+0x4e2/0xcf0 [ 1284.576424][T19782] ? kmsan_get_metadata+0xf1/0x1c0 [ 1284.581761][T19782] kmsan_report+0x2c7/0x2d0 [ 1284.586466][T19782] ? kmsan_get_metadata+0x13e/0x1c0 [ 1284.591875][T19782] ? __alloc_pages_noprof+0x9a7/0xe00 [ 1284.597471][T19782] ? __msan_warning+0x95/0x120 [ 1284.602511][T19782] ? nsim_get_ringparam+0xa8/0xe0 [ 1284.607728][T19782] ? ethtool_set_ringparam+0x268/0x570 [ 1284.613394][T19782] ? dev_ethtool+0x126d/0x2a40 [ 1284.618405][T19782] ? dev_ioctl+0xb0e/0x1280 [ 1284.623098][T19782] ? sock_do_ioctl+0x28c/0x540 [ 1284.628100][T19782] ? sock_ioctl+0x721/0xd70 [ 1284.632828][T19782] ? __se_sys_ioctl+0x246/0x440 [ 1284.637925][T19782] ? __x64_sys_ioctl+0x96/0xe0 [ 1284.642940][T19782] ? x64_sys_call+0x19f0/0x3c30 [ 1284.648125][T19782] ? do_syscall_64+0xcd/0x1e0 [ 1284.653007][T19782] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1284.659344][T19782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1284.665471][T19782] ? kmsan_get_metadata+0x13e/0x1c0 [ 1284.670883][T19782] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1284.677485][T19782] ? kmsan_get_metadata+0x13e/0x1c0 [ 1284.682896][T19782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1284.688941][T19782] ? kmsan_get_metadata+0x13e/0x1c0 [ 1284.694350][T19782] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 1284.700862][T19782] ? kmsan_get_metadata+0x13e/0x1c0 [ 1284.706276][T19782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1284.712311][T19782] __msan_warning+0x95/0x120 [ 1284.717095][T19782] nsim_get_ringparam+0xa8/0xe0 [ 1284.722140][T19782] ? __pfx_nsim_set_ringparam+0x10/0x10 [ 1284.727886][T19782] ? __pfx_nsim_get_ringparam+0x10/0x10 [ 1284.733642][T19782] ethtool_set_ringparam+0x268/0x570 [ 1284.739135][T19782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1284.745178][T19782] dev_ethtool+0x126d/0x2a40 [ 1284.750036][T19782] dev_ioctl+0xb0e/0x1280 [ 1284.754567][T19782] sock_do_ioctl+0x28c/0x540 [ 1284.759427][T19782] sock_ioctl+0x721/0xd70 [ 1284.764001][T19782] ? __pfx_sock_ioctl+0x10/0x10 [ 1284.769077][T19782] __se_sys_ioctl+0x246/0x440 [ 1284.773991][T19782] __x64_sys_ioctl+0x96/0xe0 [ 1284.778819][T19782] x64_sys_call+0x19f0/0x3c30 [ 1284.783737][T19782] do_syscall_64+0xcd/0x1e0 [ 1284.788420][T19782] ? clear_bhb_loop+0x25/0x80 [ 1284.793285][T19782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1284.799430][T19782] RIP: 0033:0x7fd907b8cd29 [ 1284.804010][T19782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1284.823844][T19782] RSP: 002b:00007fd9059f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1284.832473][T19782] RAX: ffffffffffffffda RBX: 00007fd907da5fa0 RCX: 00007fd907b8cd29 [ 1284.840626][T19782] RDX: 0000000020000040 RSI: 0000000000008946 RDI: 0000000000000003 [ 1284.848762][T19782] RBP: 00007fd907c0e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 1284.856897][T19782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1284.865142][T19782] R13: 0000000000000000 R14: 00007fd907da5fa0 R15: 00007ffe839a7208 [ 1284.873301][T19782] [ 1284.876727][T19782] Kernel Offset: disabled [ 1284.881120][T19782] Rebooting in 86400 seconds..