last executing test programs: 6.777429397s ago: executing program 3 (id=1810): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="2400000020000f0700000000000000000a000000ffffffff000000000500160089"], 0x24}}, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd604dd308002889"], 0x0) 6.21325074s ago: executing program 1 (id=1813): r0 = socket$kcm(0x10, 0x2, 0x4) setresuid(0x0, 0xee01, 0x0) sendmsg$kcm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)="48000000140081fb7059ae08060c040002ff0f03900000000000000000006fabca3b4e7d06a6bd7c00000000030000068a562ad6e74703c48f93bc2a02000000461eb886a5e54f8f", 0x48}], 0x1}, 0x0) 6.198358735s ago: executing program 4 (id=1814): r0 = socket$inet_sctp(0x2, 0x5, 0x84) connect$inet(r0, &(0x7f0000000380)={0x10, 0x2}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x24, &(0x7f0000000280), 0x8c) 5.426311448s ago: executing program 4 (id=1817): r0 = socket(0x10, 0x3, 0x0) r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000480)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ppp={{0x8}, {0xc, 0x2, 0x0, 0x1, {0x8, 0x1, r1}}}}]}, 0x38}}, 0x0) 5.40672471s ago: executing program 3 (id=1818): mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$netlink(r0, 0x10e, 0x9, 0x0, &(0x7f0000000100)) 5.12341034s ago: executing program 1 (id=1819): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000540)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x14, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @hash={{0x9}, @void}}]}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, "bb"}]}], {0x14}}, 0x70}}, 0x0) 4.773815287s ago: executing program 0 (id=1821): r0 = openat$ppp(0xffffff9c, &(0x7f0000000040), 0x8000, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000100)=0x2) ioctl$PPPIOCSACTIVE(r0, 0x40087446, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x8, 0x5, 0x1, 0x7}]}) 4.552188332s ago: executing program 4 (id=1822): r0 = socket$igmp(0x2, 0x3, 0x2) setreuid(0x0, 0xee00) setsockopt$MRT_TABLE(r0, 0x0, 0xcf, 0x0, 0x0) 4.477109789s ago: executing program 1 (id=1823): unshare(0x22020400) r0 = socket$xdp(0x2c, 0x3, 0x0) ppoll(&(0x7f0000000200)=[{r0, 0x4000}], 0x1, &(0x7f00000002c0), 0x0, 0x0) 4.43740875s ago: executing program 3 (id=1824): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20) setsockopt$inet6_mreq(r0, 0x29, 0x1c, &(0x7f0000000140)={@local}, 0x14) 3.863998287s ago: executing program 0 (id=1826): syz_mount_image$hfs(&(0x7f0000000040), &(0x7f0000000100)='./file0\x00', 0x30008c0, &(0x7f00000002c0)={[{}, {@codepage={'codepage', 0x3d, 'macgaelic'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@uid}, {@dir_umask={'dir_umask', 0x3d, 0x47}}]}, 0x11, 0x2b7, &(0x7f0000000b00)="$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") r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00') sendfile(r0, r0, &(0x7f0000000040)=0xfff, 0x2) 3.692654913s ago: executing program 4 (id=1828): r0 = socket$rxrpc(0x21, 0x2, 0xa) poll(&(0x7f00000000c0)=[{r0, 0x1000}], 0x1, 0xf45) setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000300), 0x4) 3.55837407s ago: executing program 1 (id=1830): syz_mount_image$hfs(&(0x7f0000000040), &(0x7f00000001c0)='./file0\x00', 0x1200c86, &(0x7f0000000700)=ANY=[@ANYBLOB='codepage=euc-jp,umask=00000000000000000000000,iocharset=cp932,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c66696c655f756d61736b3d30303030303030303030303030303030303030303430312c00c994e48a9982fd053a91804fd916d456fbdad755abc919da7043fe4b61596d3ff66315b84278e675ecc2703026dae370642e1e144299773d50b3e346959705c70300e831d95fbcaf24ffda352e6218b6df10ccfa7bd138ca492d5ccd6443fee65a368969318ca163c876cf2ea518"], 0x1, 0x286, &(0x7f0000000200)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents(r0, &(0x7f0000000080)=""/43, 0x2b) 3.229390607s ago: executing program 3 (id=1832): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1400}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_SELECT={0x5}]}}}]}, 0x3c}}, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0000000000008000280012800a00010076786c616e"], 0x50}}, 0x4000800) 3.031670227s ago: executing program 0 (id=1833): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x0, &(0x7f0000000200)={{}, {0x0, 0x989680}}, 0x0) 2.662384839s ago: executing program 1 (id=1834): r0 = socket(0x10, 0x80002, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="c30c424700000000280012800a00010076786c616e00000018000280140010", @ANYRES8=0x0, @ANYRES8=r0], 0x48}}, 0x0) sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0) 2.298615588s ago: executing program 1 (id=1835): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56e, 0x10c, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x3, [{{0x9, 0x4, 0x0, 0x5, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, &(0x7f0000000000)={0x0, 0x11, 0x7, {0x7, 0x0, "5a7da32917"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 2.130408661s ago: executing program 0 (id=1837): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) listen(r0, 0x0) ppoll(&(0x7f00000000c0)=[{r0, 0x9329}], 0x1, &(0x7f0000000100)={0x0, 0x3938700}, 0x0, 0x0) 1.92570002s ago: executing program 4 (id=1838): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000040)={[{@errors_remount}, {@bsdgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}, {@noauto_da_alloc}, {@jqfmt_vfsv1}, {@oldalloc}, {@init_itable}]}, 0x2, 0x460, &(0x7f0000000200)="$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") r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00') pread64(r0, &(0x7f000000f3c0)=""/4083, 0xff3, 0x9) 1.692973005s ago: executing program 2 (id=1839): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe) listen(r0, 0x3) 1.507262963s ago: executing program 0 (id=1840): munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x43033, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000584000/0x800000)=nil, 0x800000) 1.454619942s ago: executing program 2 (id=1841): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a90000000060a0b0400000000000000000200000064000480600001800a000100696e6e65720000005000028008000240000000320800034000000007080004400000000f08000140000000002c0005800c0001007061796c6f6164001c00028008000340000000e1080004400000008b2c000240000000050900010073797a30000000000900020073797a32"], 0xb8}}, 0x40000) 1.316460261s ago: executing program 3 (id=1842): openat$pfkey(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) mkdir(&(0x7f0000000080)='./file0\x00', 0x0) 1.105299245s ago: executing program 2 (id=1843): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000002c80), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_RELOAD(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x70bd24, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @DEVLINK_ATTR_NETNS_FD={0x8}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40084}, 0x0) 625.491581ms ago: executing program 4 (id=1844): mount(0x0, &(0x7f0000000100)='./file0/../file0/../file0\x00', 0x0, 0x0, 0x0) open(&(0x7f0000000080)='./bus\x00', 0x143862, 0x0) mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 523.993875ms ago: executing program 2 (id=1845): r0 = socket$nl_generic(0x10, 0x3, 0x10) bind$netlink(r0, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfd}, 0xc) bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x25dfdbfd, 0x21}, 0xc) 477.855271ms ago: executing program 3 (id=1846): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000000)={0x0, 0x200000}) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) open_by_handle_at(r0, 0x0, 0x10000) 392.293769ms ago: executing program 0 (id=1847): syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000200)='./file0\x00', 0x2, &(0x7f0000001500)=ANY=[@ANYRES8=0x0, @ANYRES16=0x0, @ANYRES64, @ANYRES64], 0x1, 0x25f, &(0x7f0000000cc0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0) write$binfmt_script(r0, &(0x7f0000000000), 0x208e24b) 315.187139ms ago: executing program 2 (id=1848): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x4008050) sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x10, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a09000000000000000000020000000900020073797a320000000008000440040000000900010073797a30000000000800034000000007"], 0x64}}, 0x0) 0s ago: executing program 2 (id=1849): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f00000018c0)={&(0x7f0000000500), 0x14, &(0x7f0000001880)={0x0}, 0x1, 0x0, 0x0, 0x24000080}, 0x0) kernel console output (not intermixed with test programs): : 51 but max is 0 [ 324.043807][ T10] usb 1-1: config 0 has no interface number 0 [ 324.081387][ T10] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 324.087961][ T6826] loop2: detected capacity change from 0 to 256 [ 324.091015][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 324.107040][ T10] usb 1-1: Product: syz [ 324.111970][ T10] usb 1-1: Manufacturer: syz [ 324.116958][ T10] usb 1-1: SerialNumber: syz [ 324.124984][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 324.134426][ T10] usb 1-1: config 0 descriptor?? [ 324.159141][ T10] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 324.183251][ T51] Bluetooth: hci4: command 0x0c1a tx timeout [ 324.206801][ T6825] loop4: detected capacity change from 0 to 512 [ 324.221738][ T6825] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 324.379185][ T6825] EXT4-fs (loop4): 1 truncate cleaned up [ 324.390974][ T6825] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 324.446054][ T10] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 324.493598][ T10] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 324.988075][ C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 324.993079][ T5848] usb 1-1: USB disconnect, device number 4 [ 325.021627][ T5848] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 325.054765][ T5848] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 325.069448][ T5848] quatech2 1-1:0.51: device disconnected [ 325.213114][ T6819] ntfs3(loop3): failed to convert "076c" to iso8859-1 [ 325.248402][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 326.027413][ T51] Bluetooth: hci1: command 0x0c1a tx timeout [ 326.121190][ T51] Bluetooth: hci2: command 0x0c1a tx timeout [ 326.183012][ T51] Bluetooth: hci3: command 0x0c1a tx timeout [ 326.317240][ T51] Bluetooth: hci4: command 0x0c1a tx timeout [ 326.849311][ T29] audit: type=1326 audit(1736890943.248:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 326.872141][ T29] audit: type=1326 audit(1736890943.248:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 326.894819][ T29] audit: type=1326 audit(1736890943.258:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=143 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 326.917666][ T29] audit: type=1326 audit(1736890943.258:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 326.940293][ T29] audit: type=1326 audit(1736890943.258:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6848 comm="syz.2.390" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 327.742890][ T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 327.857018][ T6868] loop2: detected capacity change from 0 to 64 [ 327.962722][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 328.013753][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 328.026448][ T10] usb 2-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.00 [ 328.037738][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 328.051390][ T10] usb 2-1: config 0 descriptor?? [ 328.687245][ T6873] loop3: detected capacity change from 0 to 512 [ 328.885084][ T10] apple 0003:05AC:027A.0006: hidraw0: USB HID v0.00 Device [HID 05ac:027a] on usb-dummy_hcd.1-1/input0 [ 329.287258][ T6873] EXT4-fs error (device loop3): ext4_ext_check_inode:524: inode #15: comm syz.3.399: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0) [ 329.340950][ T5848] usb 2-1: USB disconnect, device number 4 [ 329.374219][ T6873] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.399: couldn't read orphan inode 15 (err -117) [ 329.389509][ T6873] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 329.407605][ T6873] ext4 filesystem being mounted at /88/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 329.805374][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 330.703793][ T10] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 330.904386][ T10] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 330.914962][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 330.926554][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 330.941717][ T10] usb 4-1: New USB device found, idVendor=056a, idProduct=00c6, bcdDevice= 0.00 [ 330.953240][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 331.199046][ T10] usb 4-1: config 0 descriptor?? [ 331.293380][ T6913] loop1: detected capacity change from 0 to 512 [ 331.469766][ T6917] loop4: detected capacity change from 0 to 1024 [ 331.806006][ T6913] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 331.819883][ T6913] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 331.950751][ T10] wacom 0003:056A:00C6.0007: unknown main item tag 0x0 [ 331.958269][ T10] wacom 0003:056A:00C6.0007: unknown main item tag 0x0 [ 331.973518][ T10] wacom 0003:056A:00C6.0007: unknown main item tag 0x0 [ 331.980743][ T10] wacom 0003:056A:00C6.0007: unknown main item tag 0x0 [ 331.990036][ T10] wacom 0003:056A:00C6.0007: unknown main item tag 0x0 [ 331.998222][ T6921] loop2: detected capacity change from 0 to 1024 [ 332.043258][ T10] wacom 0003:056A:00C6.0007: hidraw0: USB HID vff.fe Device [HID 056a:00c6] on usb-dummy_hcd.3-1/input0 [ 332.228846][ T10] usb 4-1: USB disconnect, device number 4 [ 332.281307][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 332.872590][ T4473] hfsplus: b-tree write err: -5, ino 4 [ 333.362090][ T6933] loop1: detected capacity change from 0 to 1024 [ 333.783133][ T6943] loop3: detected capacity change from 0 to 512 [ 333.903420][ T6943] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 333.929969][ T4178] hfsplus: b-tree write err: -5, ino 8 [ 334.254107][ T6951] loop0: detected capacity change from 0 to 128 [ 334.371612][ T6951] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (39871!=39978) [ 334.397952][ T6951] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 334.528749][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 334.638008][ T6943] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 335.093511][ T6943] EXT4-fs (loop3): 1 truncate cleaned up [ 335.101056][ T6943] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.329842][ T6943] overlayfs: failed to create directory ./file0/work (errno: 117); mounting read-only [ 335.343673][ T6943] overlayfs: conflicting lowerdir path [ 335.885873][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.920736][ T6990] fuse: Bad value for 'user_id' [ 336.926254][ T6990] fuse: Bad value for 'user_id' [ 337.237257][ T7001] loop1: detected capacity change from 0 to 256 [ 337.457426][ T7001] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 337.892995][ T7009] loop3: detected capacity change from 0 to 164 [ 338.084301][ T7009] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 339.319738][ T7030] loop3: detected capacity change from 0 to 512 [ 339.378293][ T7030] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 340.273681][ T7040] tipc: Enabling of bearer rejected, failed to enable media [ 340.479349][ T7030] EXT4-fs (loop3): failed to open journal device unknown-block(0,0) -6 [ 342.266563][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 342.273586][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 342.299162][ T7069] usb usb9: usbfs: process 7069 (syz.4.485) did not claim interface 0 before use [ 343.178455][ T7082] netlink: 8 bytes leftover after parsing attributes in process `syz.4.489'. [ 343.320968][ T7087] netlink: 56 bytes leftover after parsing attributes in process `syz.1.492'. [ 343.483304][ T5848] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 343.682673][ T5848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 343.694331][ T5848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 343.704639][ T5848] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 343.714538][ T5848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.808472][ T5848] usb 4-1: config 0 descriptor?? [ 344.135179][ T7094] binder_alloc: binder_alloc_mmap_handler: 7093 20ffb000-20ffd000 already mapped failed -16 [ 344.290489][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.298336][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.305715][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.312915][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.320023][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.327358][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.334695][ T5848] pyra 0003:1E7D:2CF6.0008: unknown main item tag 0x0 [ 344.478972][ T5848] pyra 0003:1E7D:2CF6.0008: hidraw0: USB HID v0.00 Device [HID 1e7d:2cf6] on usb-dummy_hcd.3-1/input0 [ 344.534894][ T5848] pyra 0003:1E7D:2CF6.0008: couldn't init struct pyra_device [ 344.543057][ T5848] pyra 0003:1E7D:2CF6.0008: couldn't install mouse [ 344.617099][ T5848] pyra 0003:1E7D:2CF6.0008: probe with driver pyra failed with error -71 [ 344.714456][ T5848] usb 4-1: USB disconnect, device number 5 [ 344.774364][ T7101] netlink: 60 bytes leftover after parsing attributes in process `syz.0.498'. [ 344.826000][ T7100] netlink: 60 bytes leftover after parsing attributes in process `syz.0.498'. [ 345.281080][ T7107] loop4: detected capacity change from 0 to 64 [ 345.719258][ T7111] loop0: detected capacity change from 0 to 512 [ 345.958898][ T7111] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 345.968197][ T7111] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 345.984086][ T7120] loop1: detected capacity change from 0 to 128 [ 346.083025][ T10] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 346.100846][ T29] audit: type=1800 audit(1736890962.528:30): pid=7120 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.507" name="file1" dev="loop1" ino=1048627 res=0 errno=0 [ 346.207558][ T7111] EXT4-fs (loop0): 1 truncate cleaned up [ 346.215721][ T7111] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 346.424682][ T7123] loop4: detected capacity change from 0 to 1024 [ 346.516737][ T10] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 346.528092][ T10] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 346.550517][ T7123] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 346.560411][ T7111] EXT4-fs: group quota file already specified [ 346.564906][ T10] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 346.569066][ T7123] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 346.577520][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 346.577658][ T10] usb 4-1: SerialNumber: syz [ 346.601548][ T7123] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 346.894466][ T10] usb 4-1: 0:2 : does not exist [ 346.921881][ T7123] EXT4-fs error (device loop4): ext4_get_journal_inode:5809: inode #5: comm syz.4.506: unexpected bad inode w/o EXT4_IGET_BAD [ 346.947921][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 347.034403][ T7123] EXT4-fs (loop4): no journal found [ 347.040042][ T7123] EXT4-fs (loop4): can't get journal size [ 347.076070][ T7123] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 347.113849][ T10] usb 4-1: USB disconnect, device number 6 [ 347.269126][ T7128] loop1: detected capacity change from 0 to 1024 [ 347.595676][ T6214] udevd[6214]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 347.772876][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.220036][ T7174] netlink: 52 bytes leftover after parsing attributes in process `syz.1.524'. [ 350.229565][ T7174] netlink: 64 bytes leftover after parsing attributes in process `syz.1.524'. [ 350.239224][ T7174] netlink: 52 bytes leftover after parsing attributes in process `syz.1.524'. [ 350.279454][ T7170] loop0: detected capacity change from 0 to 4096 [ 350.310422][ T7170] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 350.884761][ T7170] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 352.053652][ T7195] netlink: 4 bytes leftover after parsing attributes in process `syz.2.540'. [ 352.193900][ T7199] netlink: 104 bytes leftover after parsing attributes in process `syz.2.540'. [ 352.203345][ T7199] netlink: 104 bytes leftover after parsing attributes in process `syz.2.540'. [ 352.448159][ T7204] netlink: 4 bytes leftover after parsing attributes in process `syz.1.544'. [ 352.481148][ T7198] loop4: detected capacity change from 0 to 2048 [ 352.618044][ T7198] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.719688][ T7198] UDF-fs: error (device loop4): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376) [ 353.945153][ T7224] netlink: 8 bytes leftover after parsing attributes in process `syz.4.554'. [ 353.954443][ T7224] netlink: 4 bytes leftover after parsing attributes in process `syz.4.554'. [ 353.963647][ T7224] netlink: 'syz.4.554': attribute type 6 has an invalid length. [ 354.105547][ T7225] netlink: 8 bytes leftover after parsing attributes in process `syz.1.552'. [ 354.883381][ T7238] loop4: detected capacity change from 0 to 256 [ 355.526620][ T7246] netlink: 72 bytes leftover after parsing attributes in process `syz.1.564'. [ 355.536913][ T7246] netlink: 16 bytes leftover after parsing attributes in process `syz.1.564'. [ 355.546892][ T7246] netlink: 72 bytes leftover after parsing attributes in process `syz.1.564'. [ 356.054822][ T7238] FAT-fs (loop4): Directory bread(block 64) failed [ 356.061772][ T7238] FAT-fs (loop4): Directory bread(block 65) failed [ 356.069458][ T7238] FAT-fs (loop4): Directory bread(block 66) failed [ 356.076413][ T7238] FAT-fs (loop4): Directory bread(block 67) failed [ 356.083531][ T7238] FAT-fs (loop4): Directory bread(block 68) failed [ 356.090312][ T7238] FAT-fs (loop4): Directory bread(block 69) failed [ 356.097696][ T7238] FAT-fs (loop4): Directory bread(block 70) failed [ 356.104682][ T7238] FAT-fs (loop4): Directory bread(block 71) failed [ 356.111626][ T7238] FAT-fs (loop4): Directory bread(block 72) failed [ 356.118601][ T7238] FAT-fs (loop4): Directory bread(block 73) failed [ 356.687501][ T7260] netlink: 60 bytes leftover after parsing attributes in process `syz.2.571'. [ 356.715328][ T7259] netlink: 60 bytes leftover after parsing attributes in process `syz.2.571'. [ 356.928891][ T7263] netlink: 'syz.0.574': attribute type 13 has an invalid length. [ 357.262766][ T5848] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 357.422745][ T5848] usb 5-1: Using ep0 maxpacket: 16 [ 357.506365][ T5848] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 357.518016][ T5848] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 357.530700][ T5848] usb 5-1: New USB device found, idVendor=056a, idProduct=00d0, bcdDevice= 0.00 [ 357.542153][ T5848] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.570995][ T5848] usb 5-1: config 0 descriptor?? [ 357.804662][ T7271] loop2: detected capacity change from 0 to 128 [ 358.044818][ T7271] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 358.092709][ T7279] loop1: detected capacity change from 0 to 16 [ 358.120779][ T7271] ext4 filesystem being mounted at /125/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 358.151210][ T7271] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.576: No space for directory leaf checksum. Please run e2fsck -D. [ 358.168253][ T7271] EXT4-fs error (device loop2): htree_dirblock_to_tree:1083: inode #2: comm syz.2.576: Directory block failed checksum [ 358.219645][ T7279] erofs (device loop1): mounted with root inode @ nid 36. [ 358.259430][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.267896][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.275326][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.287757][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.296472][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.303747][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.310936][ T5848] wacom 0003:056A:00D0.0009: unknown main item tag 0x0 [ 358.323186][ T5848] wacom 0003:056A:00D0.0009: Unknown device_type for 'HID 056a:00d0'. Assuming pen. [ 358.339846][ T5848] wacom 0003:056A:00D0.0009: hidraw0: USB HID v0.36 Device [HID 056a:00d0] on usb-dummy_hcd.4-1/input0 [ 358.355698][ T5848] input: Wacom Bamboo 2FG Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:00D0.0009/input/input16 [ 358.525924][ T5786] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 358.841137][ T7283] loop0: detected capacity change from 0 to 64 [ 358.942839][ T5848] usb 5-1: USB disconnect, device number 6 [ 359.398722][ T5788] hfs: node 4:3 still has 1 user(s)! [ 361.108351][ T7308] loop0: detected capacity change from 0 to 1024 [ 361.131868][ T7308] EXT4-fs: Ignoring removed i_version option [ 361.138535][ T7308] EXT4-fs: Ignoring removed bh option [ 361.304552][ T5848] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 361.463007][ T5848] usb 5-1: Using ep0 maxpacket: 32 [ 361.525118][ T5848] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 361.537086][ T5848] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 362.033931][ T5848] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 362.043948][ T5848] usb 5-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 362.052881][ T5848] usb 5-1: Product: syz [ 362.057304][ T5848] usb 5-1: Manufacturer: syz [ 362.063435][ T7308] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 362.174283][ T5848] hub 5-1:4.0: USB hub found [ 362.363911][ T5848] hub 5-1:4.0: 7 ports detected [ 362.370383][ T5848] hub 5-1:4.0: insufficient power available to use all downstream ports [ 362.395191][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 362.657824][ T5848] hub 5-1:4.0: hub_hub_status failed (err = -71) [ 362.664662][ T5848] hub 5-1:4.0: config failed, can't get hub status (err -71) [ 363.110674][ T7330] loop2: detected capacity change from 0 to 1024 [ 363.222082][ T5848] usb 5-1: USB disconnect, device number 7 [ 363.350457][ T7334] loop1: detected capacity change from 0 to 128 [ 363.666864][ T7334] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 363.675397][ T7334] FAT-fs (loop1): Filesystem has been set read-only [ 363.738020][ T7334] FAT-fs (loop1): error, corrupted directory (invalid entries) [ 366.153250][ T7363] loop4: detected capacity change from 0 to 128 [ 366.258775][ T7363] VFS: Found a Xenix FS (block size = 512) on device loop4 [ 366.688483][ T7343] loop2: detected capacity change from 0 to 32768 [ 366.873381][ T5801] sysv_free_block: trying to free block not in datazone [ 366.886802][ T5801] sysv_free_block: trying to free block not in datazone [ 366.896043][ T5801] sysv_free_block: trying to free block not in datazone [ 366.903426][ T5801] sysv_free_block: trying to free block not in datazone [ 366.910585][ T5801] sysv_free_block: trying to free block not in datazone [ 366.917943][ T5801] sysv_free_block: trying to free block not in datazone [ 366.925234][ T5801] sysv_free_block: trying to free block not in datazone [ 366.973237][ T5801] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 367.429420][ T7374] netlink: 8 bytes leftover after parsing attributes in process `syz.0.621'. [ 367.473135][ T7374] nbd: socks must be embedded in a SOCK_ITEM attr [ 367.571902][ T7377] netlink: 16 bytes leftover after parsing attributes in process `syz.4.620'. [ 367.581659][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.4.620'. [ 368.747403][ T7383] loop4: detected capacity change from 0 to 4096 [ 368.789540][ T7383] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 369.253619][ T7395] netlink: 'syz.3.630': attribute type 29 has an invalid length. [ 369.266427][ T7395] netlink: 'syz.3.630': attribute type 29 has an invalid length. [ 369.942557][ T7406] netlink: 24 bytes leftover after parsing attributes in process `syz.4.634'. [ 369.957567][ T7406] netlink: 348 bytes leftover after parsing attributes in process `syz.4.634'. [ 370.787099][ T7418] loop4: detected capacity change from 0 to 512 [ 371.001383][ T7418] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 371.009949][ T7418] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c01c, mo2=0002] [ 371.019176][ T7418] System zones: 1-12 [ 371.024382][ T7418] EXT4-fs (loop4): couldn't mount RDWR because of unsupported optional features (80) [ 371.034346][ T7418] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features [ 371.163875][ T7418] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 371.962287][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 372.040076][ T7439] loop3: detected capacity change from 0 to 256 [ 372.149481][ T7442] loop4: detected capacity change from 0 to 512 [ 372.355961][ T7439] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 372.393401][ T7442] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 372.777859][ T7442] EXT4-fs (loop4): 1 truncate cleaned up [ 372.815529][ T7442] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 373.168075][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 373.568646][ T7459] loop2: detected capacity change from 0 to 256 [ 373.884428][ T7462] loop4: detected capacity change from 0 to 128 [ 373.936196][ T7462] VFS: Found a Xenix FS (block size = 1024) on device loop4 [ 374.083208][ T7462] syz.4.655: attempt to access beyond end of device [ 374.083208][ T7462] loop4: rw=0, sector=6491536, nr_sectors = 2 limit=128 [ 374.097834][ T7462] Buffer I/O error on dev loop4, logical block 3245768, async page read [ 374.345443][ T7471] netlink: 20 bytes leftover after parsing attributes in process `syz.1.659'. [ 374.441761][ T7459] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 374.696530][ T5801] sysv_free_block: flc_count > flc_size [ 374.702321][ T5801] sysv_free_block: flc_count > flc_size [ 374.708419][ T5801] sysv_free_block: flc_count > flc_size [ 374.714477][ T5801] sysv_free_block: flc_count > flc_size [ 374.720231][ T5801] sysv_free_block: flc_count > flc_size [ 374.726101][ T5801] sysv_free_block: flc_count > flc_size [ 374.731849][ T5801] sysv_free_block: flc_count > flc_size [ 374.737879][ T5801] sysv_free_block: flc_count > flc_size [ 374.743838][ T5801] sysv_free_block: flc_count > flc_size [ 374.749646][ T5801] sysv_free_block: flc_count > flc_size [ 374.756316][ T5801] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 374.999778][ T7474] exFAT-fs (loop2): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294930442) [ 374.999778][ T7474] [ 375.012293][ T7474] exFAT-fs (loop2): Filesystem has been set read-only [ 375.064193][ T7478] netlink: 8 bytes leftover after parsing attributes in process `syz.1.666'. [ 375.079111][ T7478] netlink: 4 bytes leftover after parsing attributes in process `syz.1.666'. [ 376.887272][ T7503] warning: `syz.2.677' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 377.096648][ T7506] vivid-007: disconnect [ 377.134370][ T7504] vivid-007: reconnect [ 377.337471][ T7510] program syz.3.680 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 380.073245][ T7550] smc: net device bond0 applied user defined pnetid SYZ0 [ 380.264872][ T7553] netlink: 36 bytes leftover after parsing attributes in process `syz.4.699'. [ 380.727202][ T7559] loop0: detected capacity change from 0 to 16 [ 380.874023][ T7559] erofs (device loop0): mounted with root inode @ nid 36. [ 380.989359][ T7563] binder: 7561:7563 ioctl c0306201 20000540 returned -22 [ 381.821254][ T7567] loop3: detected capacity change from 0 to 1024 [ 382.511011][ T7586] loop0: detected capacity change from 0 to 256 [ 383.133509][ T10] IPVS: starting estimator thread 0... [ 383.232789][ T7595] IPVS: using max 240 ests per chain, 12000 per kthread [ 385.027662][ T7625] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 385.488986][ T7631] loop3: detected capacity change from 0 to 128 [ 385.649478][ T7631] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 385.768045][ T7631] ext4 filesystem being mounted at /144/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 386.224660][ T5785] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 387.339375][ T7657] loop0: detected capacity change from 0 to 4096 [ 387.386231][ T7660] loop4: detected capacity change from 0 to 512 [ 387.403351][ T7657] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 387.601052][ T7660] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 387.614608][ T7660] ext4 filesystem being mounted at /143/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 387.648083][ T7660] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.744: corrupted xattr block 19: ea_inode specified without ea_inode feature enabled [ 387.842264][ T7668] loop1: detected capacity change from 0 to 64 [ 388.114757][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 388.721631][ T7676] loop4: detected capacity change from 0 to 1024 [ 388.899439][ T7676] hfsplus: invalid catalog entry type in lookup [ 390.629311][ T7700] loop2: detected capacity change from 0 to 256 [ 390.657027][ T7700] exfat: Deprecated parameter 'namecase' [ 390.664515][ T7700] exfat: Deprecated parameter 'namecase' [ 391.064766][ T7706] netlink: 20 bytes leftover after parsing attributes in process `syz.1.767'. [ 391.094842][ T7706] vlan2: entered promiscuous mode [ 391.102514][ T7706] gretap0: entered promiscuous mode [ 391.173982][ T7700] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 391.844941][ T7713] netlink: 200 bytes leftover after parsing attributes in process `syz.3.771'. [ 392.048714][ T7718] loop4: detected capacity change from 0 to 512 [ 392.347244][ T7718] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 392.642984][ T7718] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 392.656373][ T7718] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 392.698098][ T7728] loop3: detected capacity change from 0 to 1024 [ 392.907144][ T7728] hfsplus: bad catalog entry type [ 392.918518][ T7718] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 393.233368][ T7736] netlink: 'syz.1.780': attribute type 1 has an invalid length. [ 393.456591][ T4178] hfsplus: b-tree write err: -5, ino 4 [ 393.524631][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 394.026062][ T7743] loop2: detected capacity change from 0 to 256 [ 394.209134][ T7743] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 394.231725][ T7747] netlink: 32 bytes leftover after parsing attributes in process `syz.4.782'. [ 394.328227][ T10] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 394.737884][ T10] usb 2-1: Using ep0 maxpacket: 8 [ 394.752725][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 394.763522][ T10] usb 2-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00 [ 394.773098][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 394.945110][ T10] usb 2-1: config 0 descriptor?? [ 395.318169][ T7759] loop4: detected capacity change from 0 to 256 [ 395.501282][ T10] waltop 0003:172F:0502.000A: item fetching failed at offset 2/5 [ 395.530881][ T10] waltop 0003:172F:0502.000A: probe with driver waltop failed with error -22 [ 395.738633][ T10] usb 2-1: USB disconnect, device number 5 [ 396.594390][ T7767] loop2: detected capacity change from 0 to 4096 [ 396.940871][ T7767] ntfs3(loop2): Failed to initialize $Extend/$ObjId. [ 397.057729][ T7767] ntfs3(loop2): ino=1e, "file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" attr_set_size [ 397.283037][ T7779] loop1: detected capacity change from 0 to 512 [ 397.462961][ T7779] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 397.493821][ T7779] EXT4-fs (loop1): orphan cleanup on readonly fs [ 397.562788][ T7779] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 397.639723][ T7779] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 397.656013][ T7779] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #13: comm syz.1.801: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 397.722833][ T10] usb 1-1: new full-speed USB device number 5 using dummy_hcd [ 397.731021][ T7779] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.801: couldn't read orphan inode 13 (err -117) [ 397.806665][ T7786] loop4: detected capacity change from 0 to 1024 [ 397.828135][ T7779] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 398.004266][ T7786] hfsplus: small dir entry [ 398.069369][ T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 398.081056][ T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 398.092336][ T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 398.105899][ T10] usb 1-1: New USB device found, idVendor=0755, idProduct=2626, bcdDevice= 0.00 [ 398.119879][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 398.180287][ T7791] loop2: detected capacity change from 0 to 1024 [ 398.185170][ T10] usb 1-1: config 0 descriptor?? [ 398.227110][ T7783] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 398.394323][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 398.769468][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.777060][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.787294][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.794660][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.802156][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.809809][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.817231][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.824683][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.839085][ T7796] loop4: detected capacity change from 0 to 64 [ 398.847949][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.855335][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.862822][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.870116][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.877594][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.884961][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.892241][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.899644][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.907030][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.914473][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.921737][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.937066][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.946309][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.953843][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.961155][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.968596][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.975998][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.984389][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.991670][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 398.999103][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.006571][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.014025][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.021287][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.028693][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.043982][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.051286][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.060968][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.068473][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.076624][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.083991][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.091447][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.098818][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.106402][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.116164][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.123600][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.130911][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.146041][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.156279][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.163704][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.170971][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.178406][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.185785][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.193248][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.200596][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.208055][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.215605][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.223048][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.230318][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.245726][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.255086][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.262368][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.269837][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.277239][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.284594][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.291965][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.299318][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.306698][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.314154][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.321422][ T10] aureal 0003:0755:2626.000B: unknown main item tag 0x0 [ 399.735447][ T7798] loop1: detected capacity change from 0 to 256 [ 399.762314][ T10] aureal 0003:0755:2626.000B: hidraw0: USB HID v0.00 Device [HID 0755:2626] on usb-dummy_hcd.0-1/input0 [ 399.765970][ T7798] exfat: Deprecated parameter 'namecase' [ 399.884329][ T10] usb 1-1: USB disconnect, device number 5 [ 400.000895][ T7798] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 400.724808][ T7808] loop3: detected capacity change from 0 to 256 [ 400.938079][ T7808] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 400.950124][ T7808] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 401.479061][ T7808] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62ddea0, utbl_chksum : 0xe619d30d) [ 402.274134][ T7826] loop4: detected capacity change from 0 to 4096 [ 402.665418][ T7826] ntfs3(loop4): failed to convert "0000" to iso8859-3 [ 402.697568][ T7826] ntfs3(loop4): failed to convert name for inode 1e. [ 402.769722][ T7835] loop1: detected capacity change from 0 to 1024 [ 403.049601][ T7839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.829'. [ 403.109386][ T7841] netlink: 16 bytes leftover after parsing attributes in process `syz.2.828'. [ 403.295508][ T4473] hfsplus: b-tree write err: -5, ino 4 [ 403.565437][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 403.572134][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 404.211535][ T7852] loop1: detected capacity change from 0 to 2048 [ 404.337778][ T7852] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 404.345988][ T7852] UDF-fs: Scanning with blocksize 512 failed [ 404.437880][ T7855] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 404.444714][ T7855] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 404.453168][ T7855] vhci_hcd vhci_hcd.0: Device attached [ 404.484103][ T7852] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 404.604883][ T7853] loop2: detected capacity change from 0 to 4096 [ 404.655109][ T10] vhci_hcd: vhci_device speed not set [ 404.661645][ T7852] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 404.829536][ T10] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 404.873995][ T2043] usb 5-1: new low-speed USB device number 8 using dummy_hcd [ 404.975180][ T7860] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 404.995462][ T7862] netlink: 24 bytes leftover after parsing attributes in process `syz.0.838'. [ 405.536424][ T2043] usb 5-1: config 0 has no interfaces? [ 405.542243][ T2043] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 405.552124][ T2043] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 405.615633][ T2043] usb 5-1: config 0 descriptor?? [ 405.887879][ T2043] usb 5-1: USB disconnect, device number 8 [ 405.911467][ T7856] usb 41-1: recv xbuf, -104 [ 405.926744][ T2976] vhci_hcd: stop threads [ 405.931291][ T2976] vhci_hcd: release socket [ 405.937007][ T2976] vhci_hcd: disconnect device [ 405.983299][ T10] vhci_hcd: vhci_device speed not set [ 407.756249][ T7898] loop0: detected capacity change from 0 to 1024 [ 407.767894][ T7898] EXT4-fs: Ignoring removed mblk_io_submit option [ 407.851061][ T7900] loop1: detected capacity change from 0 to 1024 [ 407.978006][ T7898] EXT4-fs (loop0): stripe (9) is not aligned with cluster size (4096), stripe is disabled [ 408.025025][ T7900] hfsplus: bad catalog entry type [ 408.180622][ T7898] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 408.199225][ T3875] hfsplus: b-tree write err: -5, ino 4 [ 408.244171][ T7898] EXT4-fs (loop0): orphan cleanup on readonly fs [ 408.293702][ T7898] EXT4-fs error (device loop0): __ext4_get_inode_loc:4435: comm syz.0.852: Invalid inode table block 0 in block_group 0 [ 408.372813][ T7898] EXT4-fs (loop0): Remounting filesystem read-only [ 408.379631][ T7898] Quota error (device loop0): write_blk: dquota write failed [ 408.387819][ T7898] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 408.398307][ T7898] EXT4-fs (loop0): 1 truncate cleaned up [ 408.478225][ T7903] binder: BINDER_SET_CONTEXT_MGR already set [ 408.484630][ T7903] binder: 7902:7903 ioctl 40046207 0 returned -16 [ 408.519507][ T7905] loop2: detected capacity change from 0 to 128 [ 408.665129][ T7898] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 408.911694][ T7905] VFS: Found a Xenix FS (block size = 512) on device loop2 [ 408.914050][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 409.113839][ T7905] sysv_count_free_blocks: free block count was -2041545935, correcting to 3 [ 409.623093][ T7905] sysv_count_free_inodes: unable to read inode table [ 409.963279][ T5786] sysv_free_block: trying to free block not in datazone [ 409.975652][ T5786] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 410.450397][ T7927] sp0: Synchronizing with TNC [ 413.110689][ T7963] loop1: detected capacity change from 0 to 512 [ 413.171296][ T7963] EXT4-fs: Ignoring removed nomblk_io_submit option [ 413.304471][ T7963] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 413.317922][ T7963] ext4 filesystem being mounted at /170/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 413.904759][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 414.647380][ T7987] loop1: detected capacity change from 0 to 8 [ 414.799112][ T7987] squashfs image failed sanity check [ 414.964537][ T7989] loop4: detected capacity change from 0 to 1024 [ 415.498789][ T2976] hfsplus: b-tree write err: -5, ino 4 [ 416.138091][ T8005] can0: slcan on ptm0. [ 416.303824][ T8004] can0 (unregistered): slcan off ptm0. [ 416.315425][ T8007] loop3: detected capacity change from 0 to 256 [ 416.478660][ T8007] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 416.603209][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.612183][ T8007] FAT-fs (loop3): Filesystem has been set read-only [ 416.619362][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.628398][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.637353][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.657501][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.667000][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.675972][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.685017][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.694440][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.703408][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.712250][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.721171][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.730491][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.739449][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.755496][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.766350][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.779603][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.791220][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.800361][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.809322][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.818230][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.827690][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.836649][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 416.845567][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.031691][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.040889][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.049834][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.063495][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.072347][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.083958][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.092925][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.101762][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.110850][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.120093][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.129098][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.138085][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.147165][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.160869][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.171741][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.180744][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.189746][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.198906][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.207833][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.216905][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.225931][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.234932][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.243883][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.253324][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.267196][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.277354][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.286339][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.295446][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.304477][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.313450][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.322279][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.331285][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.340280][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.349251][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.358303][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.372003][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.382124][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.391288][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.400365][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.409379][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.418467][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.427435][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.436469][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.445509][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.454441][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.468151][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.478418][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.487426][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.496417][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.505452][ T8007] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 417.585003][ T8018] loop4: detected capacity change from 0 to 128 [ 417.604381][ T29] audit: type=1800 audit(1736891033.956:31): pid=8007 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.903" name="file1" dev="loop3" ino=1048647 res=0 errno=0 [ 418.227137][ T8007] syz.3.903 (8007) used greatest stack depth: 4320 bytes left [ 420.603255][ T5848] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 420.892844][ T5848] usb 2-1: Using ep0 maxpacket: 16 [ 420.918078][ T5848] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 420.929618][ T5848] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 420.939927][ T5848] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 420.956330][ T5848] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 420.967020][ T5848] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 421.162239][ T5848] usb 2-1: config 0 descriptor?? [ 421.220445][ T8068] loop3: detected capacity change from 0 to 128 [ 421.446224][ T8068] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 421.454952][ T8068] FAT-fs (loop3): Filesystem has been set read-only [ 421.533404][ T8068] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 421.646440][ T5848] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0 [ 421.654297][ T5848] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0 [ 421.709281][ T5848] microsoft 0003:045E:07DA.000C: No inputs registered, leaving [ 421.772058][ T5848] microsoft 0003:045E:07DA.000C: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 421.784442][ T5848] microsoft 0003:045E:07DA.000C: no inputs found [ 421.791031][ T5848] microsoft 0003:045E:07DA.000C: could not initialize ff, continuing anyway [ 421.814044][ T8075] loop4: detected capacity change from 0 to 256 [ 421.824288][ T8075] exfat: Deprecated parameter 'namecase' [ 422.141195][ T5848] usb 2-1: USB disconnect, device number 6 [ 422.408711][ T8075] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 424.280408][ T8106] loop1: detected capacity change from 0 to 512 [ 424.402254][ T8107] loop3: detected capacity change from 0 to 512 [ 424.630537][ T8107] EXT4-fs: Ignoring removed bh option [ 424.642681][ T8107] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 424.660571][ T8107] EXT4-fs (loop3): invalid journal inode [ 424.667322][ T8107] EXT4-fs (loop3): can't get journal size [ 424.728301][ T8106] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 424.732985][ T8107] EXT4-fs (loop3): 1 truncate cleaned up [ 424.747176][ T8106] ext4 filesystem being mounted at /180/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 424.751891][ T8107] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 424.775910][ T5848] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 424.954233][ T5848] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 424.964985][ T5848] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 424.974577][ T5848] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 425.060718][ T5848] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 425.376725][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 425.545496][ T8119] process 'syz.4.955' launched '/dev/fd/3' with NULL argv: empty string added [ 425.566897][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 425.601230][ T8118] syz.0.954 (8118): /proc/8116/oom_adj is deprecated, please use /proc/8116/oom_score_adj instead. [ 426.109709][ T5848] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 426.118564][ T5848] stv0680 3-1:4.0: STV(e): camera ping failed!! [ 426.143255][ T10] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 426.201765][ T5848] stv0680 3-1:4.0: last error: 0, command = 0x0 [ 426.347289][ T8127] netlink: 48 bytes leftover after parsing attributes in process `syz.4.959'. [ 426.353247][ T10] usb 4-1: Using ep0 maxpacket: 16 [ 426.414797][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 426.418199][ T5848] usb 3-1: USB disconnect, device number 2 [ 426.426319][ T10] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 426.426475][ T10] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 426.426707][ T10] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 426.426862][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 426.686000][ T10] usb 4-1: config 0 descriptor?? [ 427.239242][ T10] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.000D/input/input21 [ 427.306451][ T8135] program syz.1.962 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 427.474917][ T10] microsoft 0003:045E:07DA.000D: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 427.610479][ T10] usb 4-1: USB disconnect, device number 7 [ 428.113734][ T8143] loop1: detected capacity change from 0 to 1024 [ 428.175120][ T8143] EXT4-fs: Ignoring removed nobh option [ 428.246280][ T8143] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 428.365275][ T8143] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #11: comm syz.1.966: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 428.398795][ T8143] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.966: couldn't read orphan inode 11 (err -117) [ 428.434879][ T8143] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 429.467557][ T8169] netlink: 8 bytes leftover after parsing attributes in process `syz.4.978'. [ 429.714417][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 430.533628][ T8178] netlink: 10 bytes leftover after parsing attributes in process `syz.1.981'. [ 430.599303][ T8179] netlink: 92 bytes leftover after parsing attributes in process `syz.3.982'. [ 430.979407][ T8186] loop2: detected capacity change from 0 to 512 [ 431.123425][ T8186] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 431.176554][ T8186] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c198, mo2=0002] [ 431.312345][ T8186] System zones: 1-12 [ 431.334616][ T8186] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.985: corrupted in-inode xattr: e_value size too large [ 431.384574][ T8186] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.985: couldn't read orphan inode 15 (err -117) [ 431.511164][ T8186] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 431.561699][ T8191] loop4: detected capacity change from 0 to 2048 [ 431.682242][ T8196] netlink: 'syz.0.988': attribute type 1 has an invalid length. [ 431.690522][ T8196] netlink: 16255 bytes leftover after parsing attributes in process `syz.0.988'. [ 431.805381][ T8197] loop3: detected capacity change from 0 to 64 [ 431.893247][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 431.955117][ T8191] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 432.287325][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 432.488148][ T8206] program syz.2.992 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 432.880306][ T8214] vivid-003: disconnect [ 432.886363][ T8213] vivid-003: reconnect [ 433.088855][ T29] audit: type=1326 audit(1736891049.526:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.999" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x0 [ 434.303250][ T8234] CUSE: unknown device info "KJ éH+ßãÛ¤2Lh¸änLþ1Õ`†CcÝòn§õ†îì8­¨×0º©®(À3Õ¶ië®â>f¡Çè_Ù®,°ð<Ö_e¤FÀÆ" [ 434.315613][ T8234] CUSE: unknown device info "3ÜŸ•,²¥Ì˜õ" [ 434.321715][ T8234] CUSE: unknown device info "Jô©Ð2S Zûü !e/ëÅúãõž‘­J½+-n´¸a4¼ßØÁDÿ|G$öó­5O~©q ´ƒ [ 434.321715][ T8234] f𳦧ìýzóÚXÁSAäx¡Ùjª½T¾Ç”¨åw— üæšxRÉQ÷®(hÒj pøVdY0¨Æ|M?2JÿúIšvö^RÎ@´å" [ 434.341368][ T8234] CUSE: unknown device info "!ToÛ}Ý&|L+U²®oæõϲ±„Ð"–¨FstVµ:׌E• gJºî‹ÂÁ<@cÁ”²ûŽ4ÊTáM˜M|©·š‚ô" [ 434.353462][ T8234] CUSE: DEVNAME unspecified [ 435.143273][ T5848] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 435.491571][ T8249] loop2: detected capacity change from 0 to 512 [ 435.625146][ T8249] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 435.798667][ T8249] EXT4-fs (loop2): 1 truncate cleaned up [ 435.806975][ T8249] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 435.874674][ T5848] usb 1-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 435.884254][ T5848] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 435.892830][ T5848] usb 1-1: Product: syz [ 435.900362][ T5848] usb 1-1: Manufacturer: syz [ 435.906366][ T5848] usb 1-1: SerialNumber: syz [ 435.975420][ T5848] usb 1-1: config 0 descriptor?? [ 436.063424][ T8261] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1017'. [ 436.215137][ T5848] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 436.555866][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 436.704125][ T5848] gspca_sq905c: sq905c_command: usb_control_msg failed (-71) [ 436.712025][ T5848] sq905c 1-1:0.0: probe with driver sq905c failed with error -71 [ 436.741872][ T5848] usb 1-1: USB disconnect, device number 6 [ 438.079327][ T8286] loop3: detected capacity change from 0 to 512 [ 438.477545][ T8290] loop1: detected capacity change from 0 to 1024 [ 438.724057][ T5848] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 439.169309][ T5848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 439.184144][ T5848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 439.195569][ T5848] usb 3-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 439.205171][ T5848] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 439.245321][ T5848] usb 3-1: config 0 descriptor?? [ 439.293536][ T4473] hfsplus: b-tree write err: -5, ino 4 [ 439.331557][ T10] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 439.829359][ T8304] loop4: detected capacity change from 0 to 128 [ 439.875895][ T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 439.887357][ T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 439.902149][ T10] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 439.913124][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 440.031358][ T5848] razer 0003:1532:010E.000E: unknown main item tag 0x0 [ 440.038846][ T5848] razer 0003:1532:010E.000E: unknown main item tag 0x0 [ 440.057208][ T5848] razer 0003:1532:010E.000E: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.2-1/input0 [ 440.105520][ T10] usb 1-1: config 0 descriptor?? [ 440.155129][ T8304] VFS: Found a Xenix FS (block size = 512) on device loop4 [ 440.238157][ T2043] usb 3-1: USB disconnect, device number 3 [ 440.588239][ T5801] sysv_free_block: trying to free block not in datazone [ 440.598001][ T5801] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 440.693831][ T10] petalynx 0003:18B1:0037.000F: hidraw0: USB HID v0.00 Device [HID 18b1:0037] on usb-dummy_hcd.0-1/input0 [ 441.057085][ T10] usb 1-1: USB disconnect, device number 7 [ 441.194087][ T8322] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1045'. [ 441.412277][ T8326] vim2m vim2m.0: vidioc_s_fmt queue busy [ 441.850661][ T8328] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1048'. [ 441.860203][ T8328] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1048'. [ 443.367472][ T8355] loop2: detected capacity change from 0 to 64 [ 444.045767][ T8358] loop3: detected capacity change from 0 to 8192 [ 446.315246][ T8380] binder: 8379:8380 ioctl c018620c 20000300 returned -22 [ 446.964412][ T10] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 447.134411][ T10] usb 2-1: Using ep0 maxpacket: 16 [ 447.181389][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 447.193329][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 447.205453][ T10] usb 2-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00 [ 447.215079][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 447.346877][ T10] usb 2-1: config 0 descriptor?? [ 447.805304][ T10] microsoft 0003:045E:009D.0010: hidraw0: USB HID v0.00 Device [HID 045e:009d] on usb-dummy_hcd.1-1/input0 [ 447.817455][ T10] microsoft 0003:045E:009D.0010: no inputs found [ 447.824255][ T10] microsoft 0003:045E:009D.0010: could not initialize ff, continuing anyway [ 448.038629][ T10] usb 2-1: USB disconnect, device number 7 [ 448.463127][ T8410] loop2: detected capacity change from 0 to 256 [ 448.499795][ T8410] exfat: Deprecated parameter 'utf8' [ 448.635085][ T8410] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d) [ 449.376956][ T8418] netlink: 72 bytes leftover after parsing attributes in process `syz.4.1086'. [ 449.833213][ T5848] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 450.014347][ T5848] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 450.026073][ T5848] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 450.040753][ T5848] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 450.050351][ T5848] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 450.259041][ T5848] usb 1-1: config 0 descriptor?? [ 450.450526][ T8430] netlink: 536 bytes leftover after parsing attributes in process `syz.1.1091'. [ 451.045938][ T5848] hid-steam 0003:28DE:1142.0011: item fetching failed at offset 3/5 [ 451.066669][ T5848] hid-steam 0003:28DE:1142.0011: steam_probe:parse of hid interface failed [ 451.078159][ T5848] hid-steam 0003:28DE:1142.0011: probe with driver hid-steam failed with error -22 [ 451.339836][ T10] usb 1-1: USB disconnect, device number 8 [ 451.492214][ T8442] sp0: Synchronizing with TNC [ 452.869595][ T8451] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 452.876448][ T8451] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 452.884897][ T8451] vhci_hcd vhci_hcd.0: Device attached [ 453.137341][ T8454] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6) [ 453.144185][ T8454] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed) [ 453.152806][ T8454] vhci_hcd vhci_hcd.0: Device attached [ 453.255660][ T8456] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(5) [ 453.262502][ T8456] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 453.270820][ T8456] vhci_hcd vhci_hcd.0: Device attached [ 453.366638][ T8457] vhci_hcd: connection closed [ 453.367517][ T8455] vhci_hcd: connection closed [ 453.373490][ T8452] vhci_hcd: connection closed [ 453.383395][ T2976] vhci_hcd: stop threads [ 453.383356][ T5848] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 453.400586][ T2976] vhci_hcd: release socket [ 453.405293][ T2976] vhci_hcd: disconnect device [ 453.551328][ T2976] vhci_hcd: stop threads [ 453.557536][ T2976] vhci_hcd: release socket [ 453.563419][ T2976] vhci_hcd: disconnect device [ 453.579440][ T2976] vhci_hcd: stop threads [ 453.584646][ T2976] vhci_hcd: release socket [ 453.589738][ T2976] vhci_hcd: disconnect device [ 453.620146][ T44] vhci_hcd: vhci_device speed not set [ 453.838359][ T5848] usb 3-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 453.848305][ T5848] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 453.856957][ T5848] usb 3-1: Product: syz [ 453.861372][ T5848] usb 3-1: Manufacturer: syz [ 453.866516][ T5848] usb 3-1: SerialNumber: syz [ 453.873239][ T5850] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 453.955306][ T5848] usb 3-1: config 0 descriptor?? [ 454.073148][ T5850] usb 1-1: Using ep0 maxpacket: 8 [ 454.085910][ T5850] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 454.098028][ T5850] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 454.108351][ T5850] usb 1-1: config 0 interface 0 has no altsetting 0 [ 454.115466][ T5850] usb 1-1: New USB device found, idVendor=046d, idProduct=ca04, bcdDevice= 0.00 [ 454.128956][ T5850] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 454.280247][ T5848] usb 3-1: USB disconnect, device number 4 [ 454.317391][ T5850] usb 1-1: config 0 descriptor?? [ 454.409293][ T6214] udevd[6214]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 454.803217][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.810836][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.818788][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.827670][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.835470][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.848093][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 454.857069][ T5850] logitech 0003:046D:CA04.0012: unknown main item tag 0x0 [ 455.105906][ T5850] logitech 0003:046D:CA04.0012: hidraw0: USB HID v74.2b Device [HID 046d:ca04] on usb-dummy_hcd.0-1/input0 [ 455.117995][ T5850] logitech 0003:046D:CA04.0012: no inputs found [ 455.369018][ T5850] usb 1-1: USB disconnect, device number 9 [ 455.651082][ T8476] loop4: detected capacity change from 0 to 2048 [ 456.002793][ T5850] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 456.149689][ T8487] loop2: detected capacity change from 0 to 512 [ 456.246694][ T8487] EXT4-fs error (device loop2): ext4_orphan_get:1415: comm syz.2.1113: bad orphan inode 11 [ 456.271300][ T5850] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 44, changing to 9 [ 456.286109][ T5850] usb 2-1: New USB device found, idVendor=5543, idProduct=0005, bcdDevice= 0.00 [ 456.297310][ T5850] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 456.325491][ T8487] ext4_test_bit(bit=10, block=4) = 1 [ 456.331054][ T8487] is_bad_inode(inode)=0 [ 456.336032][ T8487] NEXT_ORPHAN(inode)=2080374784 [ 456.341081][ T8487] max_ino=32 [ 456.344763][ T8487] i_nlink=0 [ 456.348272][ T8487] EXT4-fs (loop2): 1 truncate cleaned up [ 456.355934][ T8487] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 456.516486][ T5850] usb 2-1: config 0 descriptor?? [ 456.570803][ T8487] cgroup: noprefix used incorrectly [ 457.248432][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 457.494980][ T5850] uclogic 0003:5543:0005.0013: collection stack underflow [ 457.507901][ T5850] uclogic 0003:5543:0005.0013: item 0 4 0 12 parsing failed [ 457.579730][ T5850] uclogic 0003:5543:0005.0013: parse failed [ 457.587909][ T5850] uclogic 0003:5543:0005.0013: probe with driver uclogic failed with error -22 [ 457.947229][ T8505] loop2: detected capacity change from 0 to 64 [ 457.952800][ T5850] usb 2-1: USB disconnect, device number 8 [ 458.021757][ T8508] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1123'. [ 459.057089][ T8517] veth0_to_team: entered promiscuous mode [ 459.191462][ T8517] veth0_to_team: left promiscuous mode [ 459.983131][ T8528] loop3: detected capacity change from 0 to 512 [ 460.043106][ T8528] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 460.112919][ T8532] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1131'. [ 460.146498][ T8528] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec019, mo2=0002] [ 460.159813][ T8530] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1131'. [ 460.185462][ T8528] System zones: 1-12 [ 460.283007][ T8528] EXT4-fs (loop3): 1 truncate cleaned up [ 460.290534][ T8528] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 460.314451][ T8536] loop0: detected capacity change from 0 to 256 [ 460.539502][ T8536] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 460.916606][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 462.353778][ T8558] loop0: detected capacity change from 0 to 1024 [ 462.478359][ T8558] syz.0.1143: attempt to access beyond end of device [ 462.478359][ T8558] loop0: rw=0, sector=5778, nr_sectors = 2 limit=1024 [ 462.740590][ T2108] hfsplus: b-tree write err: -5, ino 8 [ 463.711673][ T8566] loop3: detected capacity change from 0 to 4096 [ 464.705596][ T8580] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1153'. [ 464.926833][ T8566] ntfs3(loop3): failed to convert "0000" to iso8859-2 [ 465.028703][ T8566] ntfs3(loop3): failed to convert name for inode 1e. [ 465.093915][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 465.100661][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 465.918899][ T8598] loop0: detected capacity change from 0 to 256 [ 467.584855][ T8612] netdevsim netdevsim2 nr0: renamed from netdevsim0 (while UP) [ 467.695909][ T8612] net_ratelimit: 1990 callbacks suppressed [ 467.695991][ T8612] A link change request failed with some changes committed already. Interface nr0 may have been left with an inconsistent configuration, please check. [ 468.609837][ T8632] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 468.626684][ T8631] overlayfs: lower data-only dirs require metacopy support. [ 470.968771][ T8653] loop4: detected capacity change from 0 to 256 [ 472.602861][ T8653] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 472.869969][ T8653] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008) [ 472.879740][ T8653] exFAT-fs (loop4): error, failed to bmap (inode : ffff888012f00db0 iblock : 8, err : -5) [ 472.979814][ T8653] exFAT-fs (loop4): error, invalid access to FAT free cluster (entry 0x00000008) [ 473.576740][ T8677] loop3: detected capacity change from 0 to 512 [ 473.846803][ T8677] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 473.856994][ T8677] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 474.339431][ T8677] System zones: 0-1, 15-15, 18-18, 34-34 [ 474.366116][ T8685] xt_CT: No such helper "netbios-ns" [ 474.393840][ T8677] EXT4-fs (loop3): orphan cleanup on readonly fs [ 474.404412][ T8677] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 474.415438][ T8677] EXT4-fs warning (device loop3): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 474.430624][ T8677] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 474.447139][ T8677] EXT4-fs error (device loop3): ext4_orphan_get:1415: comm syz.3.1199: bad orphan inode 16 [ 474.574127][ T8677] ext4_test_bit(bit=15, block=18) = 1 [ 474.579991][ T8677] is_bad_inode(inode)=0 [ 474.585014][ T8677] NEXT_ORPHAN(inode)=0 [ 474.589434][ T8677] max_ino=32 [ 474.592978][ T8677] i_nlink=2 [ 474.598152][ T8677] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 474.838747][ T8677] fscrypt (loop3, inode 16): Error -61 getting encryption context [ 475.330033][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 476.102213][ T8711] futex_wake_op: syz.0.1212 tries to shift op by 144; fix this program [ 477.613154][ T44] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 477.814054][ T44] usb 5-1: Using ep0 maxpacket: 16 [ 477.833281][ T44] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11 [ 477.845235][ T44] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 477.858705][ T44] usb 5-1: New USB device found, idVendor=046d, idProduct=c71c, bcdDevice= 0.00 [ 477.868357][ T44] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 477.914450][ T44] usb 5-1: config 0 descriptor?? [ 478.167967][ T8729] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1222'. [ 478.633818][ T8733] syz.0.1224 uses obsolete (PF_INET,SOCK_PACKET) [ 478.871149][ T44] logitech-djreceiver 0003:046D:C71C.0014: item fetching failed at offset 0/3 [ 478.911124][ T44] logitech-djreceiver 0003:046D:C71C.0014: logi_dj_probe: parse failed [ 478.921522][ T44] logitech-djreceiver 0003:046D:C71C.0014: probe with driver logitech-djreceiver failed with error -22 [ 479.088088][ T44] usb 5-1: USB disconnect, device number 9 [ 480.866085][ T8757] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1235'. [ 481.718181][ T8768] netlink: del zone limit has 4 unknown bytes [ 482.036107][ T8774] loop0: detected capacity change from 0 to 2048 [ 482.135817][ T8774] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 482.244158][ T8774] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 160: 0x9b != 0xd4 [ 482.813567][ T8769] UDF-fs: unknown compression code (0) [ 483.592355][ T8797] team0: Device veth0_macvtap failed to register rx_handler [ 483.773434][ T8799] loop1: detected capacity change from 0 to 1024 [ 483.783456][ T8799] EXT4-fs: Ignoring removed orlov option [ 483.854234][ T8799] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 484.109180][ T8799] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 484.791620][ T8815] loop3: detected capacity change from 0 to 4096 [ 484.824813][ T8815] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 484.925255][ T8817] loop0: detected capacity change from 0 to 256 [ 485.023387][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 485.547779][ T8820] loop1: detected capacity change from 0 to 512 [ 485.633189][ T8820] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 485.853903][ T8820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 485.870987][ T8820] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 486.547475][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 486.936479][ T8833] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1263'. [ 487.599717][ T8841] loop0: detected capacity change from 0 to 128 [ 487.676640][ T8841] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 488.332900][ T8845] loop2: detected capacity change from 0 to 2048 [ 488.408727][ T8845] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 488.473479][ T5850] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 488.494704][ T8845] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 488.663958][ T5850] usb 4-1: Using ep0 maxpacket: 32 [ 488.698976][ T5850] usb 4-1: config 0 interface 0 has no altsetting 0 [ 488.706573][ T5850] usb 4-1: New USB device found, idVendor=172f, idProduct=0037, bcdDevice= 0.00 [ 488.717041][ T5850] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 488.799549][ T5850] usb 4-1: config 0 descriptor?? [ 488.863214][ T44] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 489.003757][ T5786] UDF-fs: warning (device loop2): udf_evict_inode: Inode 1367 (mode 120777) has inode size 28 different from extent length 512. Filesystem need not be standards compliant. [ 489.066658][ T8853] Bluetooth: MGMT ver 1.23 [ 489.082799][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 489.094268][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 489.105129][ T44] usb 1-1: New USB device found, idVendor=056a, idProduct=030c, bcdDevice= 0.00 [ 489.114636][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 489.210598][ T44] usb 1-1: config 0 descriptor?? [ 489.418305][ T5850] waltop 0003:172F:0037.0015: item fetching failed at offset 2/5 [ 489.468582][ T5850] waltop 0003:172F:0037.0015: probe with driver waltop failed with error -22 [ 489.673093][ T5850] usb 4-1: USB disconnect, device number 8 [ 489.806275][ T44] wacom 0003:056A:030C.0016: hidraw0: USB HID v0.06 Device [HID 056a:030c] on usb-dummy_hcd.0-1/input0 [ 490.012534][ T10] usb 1-1: USB disconnect, device number 10 [ 491.947454][ T8881] netlink: 'syz.3.1287': attribute type 4 has an invalid length. [ 492.173565][ T8881] netlink: 'syz.3.1287': attribute type 4 has an invalid length. [ 493.781574][ T8919] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1300'. [ 494.736005][ T8939] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4) [ 494.742851][ T8939] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 494.751481][ T8939] vhci_hcd vhci_hcd.0: Device attached [ 494.826946][ T8941] vhci_hcd: connection closed [ 494.833003][ T8945] loop0: detected capacity change from 0 to 64 [ 494.852803][ T4178] vhci_hcd: stop threads [ 494.857505][ T4178] vhci_hcd: release socket [ 494.862320][ T4178] vhci_hcd: disconnect device [ 495.195663][ T8953] loop0: detected capacity change from 0 to 256 [ 495.210607][ T8953] exfat: Deprecated parameter 'utf8' [ 495.216905][ T8953] exfat: Deprecated parameter 'namecase' [ 495.223287][ T8953] exfat: Deprecated parameter 'utf8' [ 495.267871][ T8953] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xce600a6f, utbl_chksum : 0xe619d30d) [ 496.493296][ T5850] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 496.743316][ T5850] usb 3-1: Using ep0 maxpacket: 32 [ 496.762101][ T5850] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 496.814359][ T5850] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 496.828340][ T5850] usb 3-1: New USB device strings: Mfr=10, Product=131, SerialNumber=0 [ 496.838964][ T5850] usb 3-1: Product: syz [ 496.844272][ T5850] usb 3-1: Manufacturer: syz [ 497.023958][ T5850] hub 3-1:4.0: bad descriptor, ignoring hub [ 497.034912][ T5850] hub 3-1:4.0: probe with driver hub failed with error -5 [ 497.050547][ T5850] usbhid 3-1:4.0: couldn't find an input interrupt endpoint [ 497.565566][ T5850] usb 3-1: reset high-speed USB device number 5 using dummy_hcd [ 497.776065][ T9013] loop1: detected capacity change from 0 to 128 [ 497.838826][ T9013] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 497.905369][ T9013] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 498.133631][ T5850] usb 3-1: USB disconnect, device number 5 [ 498.639830][ T9033] loop3: detected capacity change from 0 to 256 [ 498.973096][ T9033] FAT-fs (loop3): Directory bread(block 64) failed [ 498.983965][ T9033] FAT-fs (loop3): Directory bread(block 65) failed [ 498.990949][ T9033] FAT-fs (loop3): Directory bread(block 66) failed [ 499.000024][ T9033] FAT-fs (loop3): Directory bread(block 67) failed [ 499.007125][ T9033] FAT-fs (loop3): Directory bread(block 68) failed [ 499.014069][ T9033] FAT-fs (loop3): Directory bread(block 69) failed [ 499.021009][ T9033] FAT-fs (loop3): Directory bread(block 70) failed [ 499.028069][ T9033] FAT-fs (loop3): Directory bread(block 71) failed [ 499.035168][ T9033] FAT-fs (loop3): Directory bread(block 72) failed [ 499.042054][ T9033] FAT-fs (loop3): Directory bread(block 73) failed [ 499.237712][ T9040] loop0: detected capacity change from 0 to 8 [ 499.507900][ T9040] SQUASHFS error: Unable to read directory block [2c0:35] [ 500.712892][ T10] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 500.767738][ T9071] nftables ruleset with unbound set [ 500.942134][ T10] usb 4-1: New USB device found, idVendor=093a, idProduct=2601, bcdDevice= 8.8f [ 500.952482][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 501.045553][ T10] usb 4-1: config 0 descriptor?? [ 501.081341][ T10] gspca_main: pac7311-2.14.0 probing 093a:2601 [ 501.385623][ T9079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1338'. [ 501.395263][ T9079] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1338'. [ 501.681473][ T9083] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1340'. [ 501.757371][ T9086] overlayfs: conflicting options: verity=on,redirect_dir=follow [ 501.810008][ T10] gspca_pac7311: reg_w() failed index 0x78, value 0x40, error -71 [ 501.821867][ T10] pac7311 4-1:0.0: probe with driver pac7311 failed with error -71 [ 502.028175][ T10] usb 4-1: USB disconnect, device number 9 [ 502.115155][ T9097] loop4: detected capacity change from 0 to 512 [ 502.536836][ T9097] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 502.550371][ T9097] ext4 filesystem being mounted at /251/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 502.929883][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 503.758861][ T9134] loop0: detected capacity change from 0 to 256 [ 504.167056][ T9134] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 504.372355][ T9148] RDS: rds_bind could not find a transport for 4601:c3b7:6c6b:1a83:7ba5:6142:f807:2940, load rds_tcp or rds_rdma? [ 505.437096][ T9164] loop1: detected capacity change from 0 to 2048 [ 505.541832][ T9164] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 505.770510][ T9171] loop0: detected capacity change from 0 to 2048 [ 506.108923][ T9180] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 506.227432][ T9171] NILFS (loop0): error -2 truncating bmap (ino=16) [ 507.010249][ T9180] NILFS (loop0): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 507.021448][ T9180] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=16) [ 507.218334][ T9180] Remounting filesystem read-only [ 507.367742][ T5788] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 508.245936][ T9223] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1374'. [ 508.299136][ T9223] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1374'. [ 508.892962][ T10] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 508.998468][ T29] audit: type=1326 audit(1736891125.436:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.4.1380" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fbf579 code=0x0 [ 509.103314][ T10] usb 4-1: Using ep0 maxpacket: 8 [ 509.160542][ T10] usb 4-1: New USB device found, idVendor=2770, idProduct=9120, bcdDevice=6c.77 [ 509.170505][ T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=239 [ 509.182015][ T10] usb 4-1: Product: syz [ 509.186832][ T10] usb 4-1: Manufacturer: syz [ 509.191736][ T10] usb 4-1: SerialNumber: syz [ 509.257922][ T10] usb 4-1: config 0 descriptor?? [ 509.284296][ T10] gspca_main: sq905-2.14.0 probing 2770:9120 [ 509.455216][ T9253] loop0: detected capacity change from 0 to 256 [ 510.077059][ T10] gspca_sq905: sq905_command: usb_control_msg failed (-71) [ 510.087738][ T10] sq905 4-1:0.0: probe with driver sq905 failed with error -71 [ 510.123819][ T10] usb 4-1: USB disconnect, device number 10 [ 511.274889][ T9292] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1389'. [ 511.284778][ T9292] netlink: 'syz.1.1389': attribute type 1 has an invalid length. [ 511.292979][ T9292] netlink: 'syz.1.1389': attribute type 2 has an invalid length. [ 511.300947][ T9292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1389'. [ 512.923471][ T9301] loop0: detected capacity change from 0 to 4096 [ 513.068149][ T9321] program syz.1.1401 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 513.115707][ T9301] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 513.660361][ T9301] ntfs3(loop0): failed to convert "c46c" to macceltic [ 513.973640][ T9335] netlink: 160 bytes leftover after parsing attributes in process `syz.2.1406'. [ 513.985766][ T9335] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check. [ 514.056965][ T9337] loop1: detected capacity change from 0 to 256 [ 515.299155][ T9362] 9pnet_rdma: rdma_create_trans (9362): problem binding to privport: 13 [ 515.532236][ T9370] loop0: detected capacity change from 0 to 256 [ 515.731412][ T29] audit: type=1326 audit(1736891132.166:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9367 comm="syz.2.1415" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x0 [ 516.137293][ T9370] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d) [ 516.494861][ T5850] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 516.708121][ T9391] loop2: detected capacity change from 0 to 512 [ 516.856012][ T9391] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 516.893277][ T5850] usb 4-1: Using ep0 maxpacket: 8 [ 516.935043][ T9391] EXT4-fs (loop2): orphan cleanup on readonly fs [ 516.960592][ T5850] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 516.973074][ T5850] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 516.983689][ T5850] usb 4-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 516.999812][ T5850] usb 4-1: config 0 interface 0 has no altsetting 0 [ 517.007670][ T5850] usb 4-1: New USB device found, idVendor=0079, idProduct=1846, bcdDevice= 0.00 [ 517.017210][ T5850] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 517.028487][ T9391] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6). [ 517.042759][ T9391] EXT4-fs warning (device loop2): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 517.085091][ T9391] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 517.117226][ T5850] usb 4-1: config 0 descriptor?? [ 517.160365][ T9391] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1421: bg 0: block 40: padding at end of block bitmap is not set [ 517.179129][ T9391] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem [ 517.276068][ T9391] EXT4-fs (loop2): 1 truncate cleaned up [ 517.284239][ T9391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 517.503222][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.506665][ T9409] Illegal XDP return value 65535 on prog (id 65) dev N/A, expect packet loss! [ 517.552344][ T5850] hid_mf 0003:0079:1846.0017: unbalanced collection at end of report description [ 517.599310][ T5850] hid_mf 0003:0079:1846.0017: HID parse failed. [ 517.606512][ T5850] hid_mf 0003:0079:1846.0017: probe with driver hid_mf failed with error -22 [ 517.768711][ T10] usb 4-1: USB disconnect, device number 11 [ 518.613789][ T29] audit: type=1326 audit(1736891135.056:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9436 comm="syz.4.1428" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fbf579 code=0x0 [ 518.851079][ T9444] loop2: detected capacity change from 0 to 1024 [ 519.597727][ T9456] loop0: detected capacity change from 0 to 1024 [ 520.124701][ T9470] loop4: detected capacity change from 0 to 512 [ 520.231905][ T9470] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors [ 520.243714][ T9470] EXT4-fs (loop4): ext4_check_descriptors: Inode table for group 0 not in group (block 2)! [ 520.254347][ T9470] EXT4-fs (loop4): group descriptors corrupted! [ 520.393422][ T9473] loop0: detected capacity change from 0 to 512 [ 520.515741][ T9470] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1436'. [ 520.746043][ T9485] loop3: detected capacity change from 0 to 256 [ 520.823556][ T9473] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.1437: invalid indirect mapped block 4294967295 (level 1) [ 520.908894][ T9473] EXT4-fs (loop0): Remounting filesystem read-only [ 521.035442][ T9473] EXT4-fs (loop0): 2 truncates cleaned up [ 521.044406][ T9473] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 521.224238][ T9485] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 521.624438][ T10] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 521.646981][ T9505] loop4: detected capacity change from 0 to 512 [ 521.849832][ T9507] loop2: detected capacity change from 0 to 512 [ 521.873845][ T9505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 521.897379][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 521.909312][ T9507] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31 [ 522.026316][ T10] usb 2-1: Using ep0 maxpacket: 8 [ 522.048134][ T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 522.059694][ T10] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 522.076103][ T10] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 522.085672][ T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 522.145330][ T9507] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1443'. [ 522.205677][ T10] usb 2-1: config 0 descriptor?? [ 522.565735][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 522.761840][ T9527] loop3: detected capacity change from 0 to 512 [ 522.777344][ T10] wacom 0003:056A:0331.0018: hidraw0: USB HID v0.02 Device [HID 056a:0331] on usb-dummy_hcd.1-1/input0 [ 522.855083][ T9527] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 522.982299][ T2043] usb 2-1: USB disconnect, device number 9 [ 523.084527][ T9546] loop4: detected capacity change from 0 to 64 [ 523.171553][ T9527] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.1447: iget: bad extended attribute block 19 [ 523.248003][ T9527] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.1447: couldn't read orphan inode 15 (err -117) [ 523.287418][ T9527] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 523.335436][ T10] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 523.567859][ T10] usb 3-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c [ 523.580093][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 523.588863][ T10] usb 3-1: Product: syz [ 523.593441][ T10] usb 3-1: Manufacturer: syz [ 523.598302][ T10] usb 3-1: SerialNumber: syz [ 523.719899][ T10] usb 3-1: config 0 descriptor?? [ 524.291209][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 524.724015][ T10] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 524.737603][ T10] asix 3-1:0.0: probe with driver asix failed with error -71 [ 524.773136][ T10] usb 3-1: USB disconnect, device number 6 [ 525.839627][ T9615] ebtables: wrong size: *len 264, entries_size 144, replsz 144 [ 526.273866][ T9623] veth1_macvtap: left promiscuous mode [ 526.277293][ T9624] loop0: detected capacity change from 0 to 128 [ 526.279514][ T9623] macsec0: entered promiscuous mode [ 526.311160][ T9624] VFS: Found a Xenix FS (block size = 1024) on device loop0 [ 526.336931][ T9626] veth1_macvtap: entered promiscuous mode [ 526.344219][ T9626] macsec0: left promiscuous mode [ 526.394900][ T9625] netlink: 'syz.1.1467': attribute type 1 has an invalid length. [ 526.575641][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.582330][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.775085][ T5788] sysv_free_block: flc_count > flc_size [ 526.780959][ T5788] sysv_free_block: flc_count > flc_size [ 526.787063][ T5788] sysv_free_block: flc_count > flc_size [ 526.793886][ T5788] sysv_free_block: flc_count > flc_size [ 526.799628][ T5788] sysv_free_block: flc_count > flc_size [ 526.805651][ T5788] sysv_free_block: flc_count > flc_size [ 526.811405][ T5788] sysv_free_block: flc_count > flc_size [ 526.817384][ T5788] sysv_free_block: flc_count > flc_size [ 526.825019][ T5788] sysv_free_block: flc_count > flc_size [ 526.839563][ T5788] sysv_free_block: flc_count > flc_size [ 526.846498][ T5788] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 527.147320][ T9638] loop2: detected capacity change from 0 to 2048 [ 528.381595][ T9658] loop3: detected capacity change from 0 to 256 [ 528.397587][ T9658] exfat: Deprecated parameter 'namecase' [ 528.397757][ T9658] exfat: Deprecated parameter 'utf8' [ 528.397981][ T9658] exfat: Deprecated parameter 'utf8' [ 528.656540][ T9658] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x4a8cc721, utbl_chksum : 0xe619d30d) [ 529.752022][ T9684] loop1: detected capacity change from 0 to 1024 [ 529.870036][ T9684] EXT4-fs (loop1): stripe (8) is not aligned with cluster size (16), stripe is disabled [ 530.418871][ T9706] loop3: detected capacity change from 0 to 64 [ 530.431078][ T9684] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 531.061403][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 531.369517][ T9724] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1492'. [ 531.818178][ T9730] usb usb9: usbfs: process 9730 (syz.4.1494) did not claim interface 4 before use [ 531.860309][ T9736] loop3: detected capacity change from 0 to 128 [ 532.417518][ T9745] netlink: 16178 bytes leftover after parsing attributes in process `syz.1.1497'. [ 533.670530][ T9779] loop1: detected capacity change from 0 to 2048 [ 533.918138][ T9779] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 533.981455][ T9781] loop2: detected capacity change from 0 to 4096 [ 534.474568][ T9789] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 535.528563][ T9816] loop2: detected capacity change from 0 to 64 [ 535.559184][ T9817] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1511'. [ 535.913088][ T5850] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 535.949714][ T9829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1513'. [ 535.962968][ T9829] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1513'. [ 536.082855][ T5850] usb 5-1: Using ep0 maxpacket: 8 [ 536.097558][ T5850] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 536.110173][ T5850] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 536.121067][ T5850] usb 5-1: New USB device found, idVendor=046d, idProduct=c52f, bcdDevice= 0.00 [ 536.131193][ T5850] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 536.254529][ T5850] usb 5-1: config 0 descriptor?? [ 537.108079][ T9854] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 537.115749][ T9854] IPv6: NLM_F_CREATE should be set when creating new route [ 537.123508][ T9854] IPv6: NLM_F_CREATE should be set when creating new route [ 537.324149][ T10] usb 5-1: USB disconnect, device number 10 [ 538.252909][ T5850] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 538.446138][ T5850] usb 4-1: Using ep0 maxpacket: 16 [ 538.470703][ T5850] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 538.479578][ T5850] usb 4-1: config 0 has no interface number 0 [ 538.512995][ T5850] usb 4-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d [ 538.522937][ T5850] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 538.531238][ T5850] usb 4-1: Product: syz [ 538.536115][ T5850] usb 4-1: Manufacturer: syz [ 538.541053][ T5850] usb 4-1: SerialNumber: syz [ 538.567428][ T5850] usb 4-1: config 0 descriptor?? [ 538.606839][ T5850] gspca_main: spca1528-2.14.0 probing 04fc:1528 [ 538.723907][ T44] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 538.914546][ T44] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 538.925328][ T44] usb 3-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 538.935218][ T44] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 539.030387][ T44] usb 3-1: config 0 descriptor?? [ 539.210699][ T5850] gspca_spca1528: reg_w err -71 [ 539.233743][ T5850] spca1528 4-1:0.1: probe with driver spca1528 failed with error -71 [ 539.261245][ T5850] usb 4-1: USB disconnect, device number 12 [ 539.548657][ T44] lg-g15 0003:046D:C222.001A: unbalanced delimiter at end of report description [ 539.622363][ T44] lg-g15 0003:046D:C222.001A: probe with driver lg-g15 failed with error -22 [ 539.869809][ T10] usb 3-1: USB disconnect, device number 7 [ 540.171088][ T9933] loop0: detected capacity change from 0 to 256 [ 540.717616][ T9933] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 540.833194][ T9943] qrtr: Invalid version 0 [ 540.933160][ T9947] loop1: detected capacity change from 0 to 64 [ 541.072227][ T9951] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1538'. [ 542.983045][ T51] Bluetooth: hci0: command 0x0c1a tx timeout [ 542.994490][ T44] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 543.223875][ T44] usb 4-1: Using ep0 maxpacket: 16 [ 543.268646][ T44] usb 4-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 543.280134][ T44] usb 4-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 543.290474][ T44] usb 4-1: config 0 interface 0 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 543.303985][ T44] usb 4-1: config 0 interface 0 has no altsetting 0 [ 543.310924][ T44] usb 4-1: New USB device found, idVendor=0458, idProduct=5010, bcdDevice= 0.00 [ 543.323212][ T44] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 543.535533][ T44] usb 4-1: config 0 descriptor?? [ 544.725834][T10017] netlink: 'syz.2.1556': attribute type 21 has an invalid length. [ 544.734399][T10017] netlink: 156 bytes leftover after parsing attributes in process `syz.2.1556'. [ 544.747415][T10017] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1556'. [ 546.680557][T10037] loop3: detected capacity change from 0 to 2048 [ 546.823926][T10037] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 547.227517][T10031] loop4: detected capacity change from 0 to 4096 [ 548.666021][ T44] usbhid 4-1:0.0: can't add hid device: -71 [ 548.666593][ T44] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 548.671217][ T44] usb 4-1: USB disconnect, device number 13 [ 549.132725][T10052] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 549.399706][T10031] NILFS error (device loop4): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 549.426127][T10031] Remounting filesystem read-only [ 549.633985][T10061] loop0: detected capacity change from 0 to 4096 [ 549.773239][T10061] ntfs3(loop0): It is recommened to use chkdsk. [ 549.843012][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 549.851385][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 549.859867][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 549.871717][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00 [ 549.881104][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00 [ 549.889564][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00 [ 549.899328][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00 [ 549.907822][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00 [ 549.916322][T10061] ntfs3(loop0): try to read out of volume at offset 0x3fffffd0c00 [ 550.212710][T10076] raw_sendmsg: syz.3.1567 forgot to set AF_INET. Fix it! [ 551.374614][T10095] loop0: detected capacity change from 0 to 1024 [ 551.492927][ T29] audit: type=1800 audit(1736891167.926:36): pid=10095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1573" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 552.156054][T10111] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1581'. [ 552.165607][T10111] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1581'. [ 553.703872][ T29] audit: type=1326 audit(1736891170.126:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10133 comm="syz.4.1588" exe="/root/syz-executor" sig=31 arch=40000003 syscall=20 compat=1 ip=0xf7fbf579 code=0x0 [ 554.628959][T10152] loop1: detected capacity change from 0 to 1024 [ 554.660751][T10152] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 554.671732][T10152] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 554.684987][T10152] EXT4-fs (loop1): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 554.809288][T10152] EXT4-fs error (device loop1): ext4_get_journal_inode:5809: inode #5: comm syz.1.1593: unexpected bad inode w/o EXT4_IGET_BAD [ 554.875578][T10157] loop0: detected capacity change from 0 to 1024 [ 554.888220][T10152] EXT4-fs (loop1): no journal found [ 554.893922][T10152] EXT4-fs (loop1): can't get journal size [ 554.940172][T10152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 555.186087][T10164] loop2: detected capacity change from 0 to 2048 [ 555.280424][T10164] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 555.379646][T10169] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 555.574652][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.407553][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.418220][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.432300][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.441677][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.452319][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.460220][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.468143][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.478753][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.486768][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.494644][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.505246][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.513155][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.520963][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.534256][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.542074][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.551483][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.562162][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.570150][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.581028][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.592603][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.600420][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.608534][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.619311][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.634161][ T5845] hid-generic 0000:0000:10000.001B: unknown main item tag 0x0 [ 556.655717][ T5845] hid-generic 0000:0000:10000.001B: hidraw0: HID vffffff.ff Device [syz0] on syz0 [ 556.753453][T10192] loop3: detected capacity change from 0 to 1024 [ 556.999982][T10192] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 557.486643][T10216] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1608'. [ 557.697547][T10218] syz.0.1609 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 557.724686][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.145882][T10220] loop1: detected capacity change from 0 to 4096 [ 558.384665][T10220] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 558.745558][ T5790] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 559.688646][T10259] loop1: detected capacity change from 0 to 64 [ 560.946842][T10280] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1628'. [ 562.324790][T10290] loop1: detected capacity change from 0 to 4096 [ 562.377389][T10299] loop2: detected capacity change from 0 to 8 [ 562.393679][T10290] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 562.934258][T10290] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 563.353557][ T5790] ntfs3(loop1): ino=1a, ntfs_sync_fs failed, -22. [ 563.360304][ T5790] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 563.430317][T10320] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1638'. [ 565.515890][T10359] loop2: detected capacity change from 0 to 256 [ 565.603713][T10359] exfat: Deprecated parameter 'namecase' [ 565.737378][T10359] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 565.978078][T10365] loop4: detected capacity change from 0 to 2048 [ 566.102113][T10365] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 566.488094][T10378] sch_tbf: burst 4 is lower than device ip6tnl0 mtu (1452) ! [ 566.606531][T10395] loop0: detected capacity change from 0 to 512 [ 566.616304][T10395] EXT4-fs: Ignoring removed oldalloc option [ 566.980151][T10395] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.1655: Parent and EA inode have the same ino 15 [ 567.000456][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 567.019062][T10395] EXT4-fs error (device loop0): ext4_xattr_inode_iget:436: comm syz.0.1655: Parent and EA inode have the same ino 15 [ 567.032315][ T44] IPVS: starting estimator thread 0... [ 567.074386][T10395] EXT4-fs (loop0): 1 orphan inode deleted [ 567.081986][T10395] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 567.142840][T10404] IPVS: using max 240 ests per chain, 12000 per kthread [ 567.453422][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 568.150398][T10436] loop4: detected capacity change from 0 to 2048 [ 568.239534][T10436] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 568.840929][T10436] syz.4.1660: attempt to access beyond end of device [ 568.840929][T10436] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 568.867582][T10443] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 569.884882][ T10] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 570.123366][ T10] usb 2-1: Using ep0 maxpacket: 8 [ 570.155151][ T10] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 570.168437][ T10] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 570.178160][ T10] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 570.232665][ T10] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 570.242324][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 570.255144][ T10] usb 2-1: Product: syz [ 570.259572][ T10] usb 2-1: Manufacturer: syz [ 570.268980][ T10] usb 2-1: SerialNumber: syz [ 570.361893][ T10] cdc_ncm 2-1:1.0: CDC Union missing and no IAD found [ 570.371841][ T10] cdc_ncm 2-1:1.0: bind() failure [ 570.596767][ T10] usb 2-1: USB disconnect, device number 10 [ 572.680799][T10477] loop0: detected capacity change from 0 to 4096 [ 572.968459][T10496] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 574.403731][ T44] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 575.095872][T10517] loop4: detected capacity change from 0 to 64 [ 575.892624][ T29] audit: type=1326 audit(1736891192.226:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 575.915271][ T29] audit: type=1326 audit(1736891192.236:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 575.937868][ T29] audit: type=1326 audit(1736891192.236:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 575.960375][ T29] audit: type=1326 audit(1736891192.236:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 575.986219][ T29] audit: type=1326 audit(1736891192.236:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=258 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 576.008777][ T29] audit: type=1326 audit(1736891192.236:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 576.031790][ T29] audit: type=1326 audit(1736891192.236:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10530 comm="syz.1.1689" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715d579 code=0x7ffc0000 [ 576.418145][T10534] loop3: detected capacity change from 0 to 1024 [ 577.259028][T10518] loop0: detected capacity change from 0 to 32768 [ 577.378774][T10518] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 577.403609][T10427] syz.2.1665 (10427): drop_caches: 1 [ 577.530803][T10549] tipc: Enabling not permitted [ 577.537511][T10549] tipc: Enabling of bearer rejected, failed to enable media [ 578.260627][ T5788] ocfs2: Unmounting device (7,0) on (node local) [ 579.060396][T10570] loop3: detected capacity change from 0 to 2048 [ 579.179698][T10570] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 579.241309][T10570] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 579.486736][T10570] tmpfs: Bad value for 'mpol' [ 579.488737][T10564] syz.2.1696 (10564): drop_caches: 2 [ 580.688393][T10589] loop0: detected capacity change from 0 to 512 [ 580.763362][T10589] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 581.016547][T10596] loop3: detected capacity change from 0 to 512 [ 581.026163][T10596] EXT4-fs: Ignoring removed bh option [ 581.059120][T10589] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002] [ 581.070504][T10589] System zones: 1-12 [ 581.133723][T10589] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1705: corrupted in-inode xattr: e_value size too large [ 581.212244][T10597] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1707'. [ 581.245196][T10596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 581.254339][T10589] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.1705: couldn't read orphan inode 15 (err -117) [ 581.258366][T10596] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 581.298842][T10589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 581.795477][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.796483][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 582.803041][T10639] loop3: detected capacity change from 0 to 24 [ 583.470442][T10649] loop1: detected capacity change from 0 to 256 [ 583.487121][T10638] loop4: detected capacity change from 0 to 4096 [ 583.921336][T10649] FAT-fs (loop1): Directory bread(block 64) failed [ 583.930935][T10649] FAT-fs (loop1): Directory bread(block 65) failed [ 583.938143][T10649] FAT-fs (loop1): Directory bread(block 66) failed [ 583.945100][T10649] FAT-fs (loop1): Directory bread(block 67) failed [ 583.952042][T10649] FAT-fs (loop1): Directory bread(block 68) failed [ 583.961583][T10649] FAT-fs (loop1): Directory bread(block 69) failed [ 583.974134][T10649] FAT-fs (loop1): Directory bread(block 70) failed [ 583.982645][T10649] FAT-fs (loop1): Directory bread(block 71) failed [ 583.989685][T10649] FAT-fs (loop1): Directory bread(block 72) failed [ 583.999353][T10649] FAT-fs (loop1): Directory bread(block 73) failed [ 584.637042][T10666] loop0: detected capacity change from 0 to 8192 [ 584.757781][T10673] loop2: detected capacity change from 0 to 64 [ 585.665384][T10693] program syz.3.1726 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 585.875570][T10701] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1731'. [ 586.067884][T10695] loop4: detected capacity change from 0 to 1024 [ 586.417377][T10711] overlayfs: option "workdir=./file1" is useless in a non-upper mount, ignore [ 586.430461][T10711] overlayfs: missing 'lowerdir' [ 586.925888][ T11] hfsplus: b-tree write err: -5, ino 4 [ 587.380405][T10729] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1739'. [ 587.775441][T10738] loop1: detected capacity change from 0 to 256 [ 587.784499][T10738] exfat: Deprecated parameter 'utf8' [ 587.958449][ T1278] ieee802154 phy0 wpan0: encryption failed: -22 [ 587.968538][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.081521][T10738] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5183de56, utbl_chksum : 0xe619d30d) [ 588.181985][T10739] loop3: detected capacity change from 0 to 2048 [ 588.654890][T10739] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 588.770078][T10758] netlink: 'syz.0.1747': attribute type 3 has an invalid length. [ 589.634906][T10773] tipc: Invalid UDP bearer configuration [ 589.635122][T10773] tipc: Enabling of bearer rejected, failed to enable media [ 590.630745][ T29] audit: type=1326 audit(1736891206.986:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.654518][ T29] audit: type=1326 audit(1736891206.986:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.678251][ T29] audit: type=1326 audit(1736891207.066:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=344 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.701573][ T29] audit: type=1326 audit(1736891207.066:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.724730][ T29] audit: type=1326 audit(1736891207.066:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.750194][ T29] audit: type=1326 audit(1736891207.066:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.773569][ T29] audit: type=1326 audit(1736891207.066:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 590.796005][ T29] audit: type=1326 audit(1736891207.066:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10791 comm="syz.3.1757" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000 [ 591.184917][T10805] loop4: detected capacity change from 0 to 128 [ 591.436995][ T29] audit: type=1800 audit(1736891207.846:53): pid=10805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1761" name="file1" dev="loop4" ino=1048729 res=0 errno=0 [ 592.003943][T10819] program syz.1.1765 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 592.331173][ T44] kernel write not supported for file /input/event0 (pid: 44 comm: kworker/1:1) [ 592.409606][T10836] netlink: 256 bytes leftover after parsing attributes in process `syz.3.1769'. [ 592.659796][T10844] program syz.1.1771 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 593.948739][T10861] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1777'. [ 594.173824][T10871] loop1: detected capacity change from 0 to 512 [ 594.217613][T10871] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 594.228143][T10871] UDF-fs: Scanning with blocksize 512 failed [ 594.301549][T10871] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 594.314528][T10871] UDF-fs: Scanning with blocksize 1024 failed [ 594.358826][T10871] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 594.366891][T10871] UDF-fs: Scanning with blocksize 2048 failed [ 594.449896][T10871] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 594.540617][T10871] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 594.966966][T10889] tmpfs: Bad value for 'nr_inodes' [ 595.452189][T10903] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1788'. [ 595.461689][T10903] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1788'. [ 595.761410][T10911] loop2: detected capacity change from 0 to 2048 [ 595.842952][T10911] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 596.019513][T10914] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 597.113075][T10932] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1795'. [ 598.354728][T10946] loop3: detected capacity change from 0 to 4096 [ 598.388006][T10946] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 598.651096][T10946] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 598.902356][T10946] ntfs3(loop3): failed to convert name for inode 20. [ 599.677917][T10982] loop2: detected capacity change from 0 to 512 [ 600.202314][T10982] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 601.194625][ T5786] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 602.638839][T11048] loop0: detected capacity change from 0 to 64 [ 603.286242][T11060] loop1: detected capacity change from 0 to 64 [ 603.708710][T11076] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 603.718974][T11076] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 603.729026][T11076] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 603.744351][T11076] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 604.123680][T11108] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1832'. [ 604.133150][T11108] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1832'. [ 604.436455][ T5845] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 604.490006][T11125] loop4: detected capacity change from 0 to 512 [ 604.535301][T11125] EXT4-fs: Ignoring removed oldalloc option [ 604.781459][T11131] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1841'. [ 604.907654][ T5845] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 604.919595][ T5845] usb 2-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 604.935972][ T5845] usb 2-1: config 0 interface 0 has no altsetting 0 [ 604.943206][ T5845] usb 2-1: New USB device found, idVendor=056e, idProduct=010c, bcdDevice= 0.00 [ 604.953579][ T5845] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 605.176605][ T5845] usb 2-1: config 0 descriptor?? [ 605.194307][T11125] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1838: corrupted in-inode xattr: invalid ea_ino [ 605.258092][T11125] EXT4-fs (loop4): Remounting filesystem read-only [ 605.270187][T11125] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 605.591395][ T5801] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 606.259313][T11166] ===================================================== [ 606.266909][T11166] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x971/0xb90 [ 606.274902][T11166] ieee802154_hdr_push+0x971/0xb90 [ 606.280774][T11166] ieee802154_header_create+0x9bc/0xc70 [ 606.290009][T11166] dgram_sendmsg+0xd5a/0x15a0 [ 606.300080][T11166] ieee802154_sock_sendmsg+0x96/0xd0 [ 606.307201][T11166] __sock_sendmsg+0x30f/0x380 [ 606.312572][T11166] ____sys_sendmsg+0x877/0xb60 [ 606.317542][T11166] ___sys_sendmsg+0x28d/0x3c0 [ 606.325273][T11166] __sys_sendmsg+0x1b6/0x300 [ 606.330085][T11166] __ia32_compat_sys_sendmsg+0x9d/0xe0 [ 606.336053][T11166] ia32_sys_call+0x2685/0x4180 [ 606.341450][T11166] __do_fast_syscall_32+0xb0/0x110 [ 606.347608][T11166] do_fast_syscall_32+0x38/0x80 [ 606.355381][T11166] do_SYSENTER_32+0x1f/0x30 [ 606.360091][T11166] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 606.368460][T11166] [ 606.370898][T11166] Local variable hdr created at: [ 606.376114][T11166] ieee802154_header_create+0x4e/0xc70 [ 606.381777][T11166] dgram_sendmsg+0xd5a/0x15a0 [ 606.389525][T11166] [ 606.396950][T11166] CPU: 0 UID: 0 PID: 11166 Comm: syz.2.1849 Not tainted 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0 [ 606.409479][T11166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 606.422594][T11166] ===================================================== [ 606.429655][T11166] Disabling lock debugging due to kernel taint [ 606.436081][T11166] Kernel panic - not syncing: kmsan.panic set ... [ 606.442655][T11166] CPU: 0 UID: 0 PID: 11166 Comm: syz.2.1849 Tainted: G B 6.13.0-rc7-syzkaller-00039-gc3812b15000c #0 [ 606.455133][T11166] Tainted: [B]=BAD_PAGE [ 606.459406][T11166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 606.469628][T11166] Call Trace: [ 606.473025][T11166] [ 606.476069][T11166] dump_stack_lvl+0x216/0x2d0 [ 606.480953][T11166] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 606.486964][T11166] dump_stack+0x1e/0x24 [ 606.491342][T11166] panic+0x4e2/0xcf0 [ 606.495453][T11166] ? kmsan_get_metadata+0x111/0x1c0 [ 606.500859][T11166] kmsan_report+0x2c7/0x2d0 [ 606.505542][T11166] ? kmsan_internal_chain_origin+0xb0/0xd0 [ 606.511587][T11166] ? __msan_warning+0x95/0x120 [ 606.516575][T11166] ? ieee802154_hdr_push+0x971/0xb90 [ 606.522073][T11166] ? ieee802154_header_create+0x9bc/0xc70 [ 606.527982][T11166] ? dgram_sendmsg+0xd5a/0x15a0 [ 606.533010][T11166] ? ieee802154_sock_sendmsg+0x96/0xd0 [ 606.538667][T11166] ? __sock_sendmsg+0x30f/0x380 [ 606.543724][T11166] ? ____sys_sendmsg+0x877/0xb60 [ 606.548852][T11166] ? ___sys_sendmsg+0x28d/0x3c0 [ 606.553884][T11166] ? __sys_sendmsg+0x1b6/0x300 [ 606.558927][T11166] ? __ia32_compat_sys_sendmsg+0x9d/0xe0 [ 606.564769][T11166] ? ia32_sys_call+0x2685/0x4180 [ 606.569886][T11166] ? __do_fast_syscall_32+0xb0/0x110 [ 606.575391][T11166] ? do_fast_syscall_32+0x38/0x80 [ 606.580590][T11166] ? do_SYSENTER_32+0x1f/0x30 [ 606.585434][T11166] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 606.592274][T11166] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 606.599014][T11166] ? __sock_sendmsg+0x30f/0x380 [ 606.604074][T11166] ? ____sys_sendmsg+0x877/0xb60 [ 606.609198][T11166] ? kmsan_get_metadata+0x13e/0x1c0 [ 606.614596][T11166] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 606.620582][T11166] ? ieee802154_hdr_push+0x4c/0xb90 [ 606.625993][T11166] ? filter_irq_stacks+0x60/0x1a0 [ 606.631240][T11166] ? stack_depot_save_flags+0x2c/0x750 [ 606.636927][T11166] ? kmsan_get_metadata+0x13e/0x1c0 [ 606.642330][T11166] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 606.648901][T11166] ? kmsan_get_metadata+0x13e/0x1c0 [ 606.654282][T11166] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 606.660278][T11166] __msan_warning+0x95/0x120 [ 606.665073][T11166] ieee802154_hdr_push+0x971/0xb90 [ 606.670427][T11166] ? __msan_memcpy+0x108/0x1c0 [ 606.675402][T11166] ieee802154_header_create+0x9bc/0xc70 [ 606.681164][T11166] ? __pfx_ieee802154_header_create+0x10/0x10 [ 606.687438][T11166] dgram_sendmsg+0xd5a/0x15a0 [ 606.692325][T11166] ? __pfx_dgram_sendmsg+0x10/0x10 [ 606.697643][T11166] ieee802154_sock_sendmsg+0x96/0xd0 [ 606.703418][T11166] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 606.709613][T11166] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 606.715813][T11166] __sock_sendmsg+0x30f/0x380 [ 606.720736][T11166] ____sys_sendmsg+0x877/0xb60 [ 606.725709][T11166] ___sys_sendmsg+0x28d/0x3c0 [ 606.730573][T11166] ? kmsan_get_metadata+0x13e/0x1c0 [ 606.735947][T11166] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 606.741938][T11166] ? __rcu_read_unlock+0x7b/0xe0 [ 606.747091][T11166] ? __fget_files+0x42b/0x500 [ 606.751944][T11166] ? kmsan_get_metadata+0x13e/0x1c0 [ 606.757319][T11166] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 606.763314][T11166] __sys_sendmsg+0x1b6/0x300 [ 606.768121][T11166] __ia32_compat_sys_sendmsg+0x9d/0xe0 [ 606.773805][T11166] ia32_sys_call+0x2685/0x4180 [ 606.778740][T11166] __do_fast_syscall_32+0xb0/0x110 [ 606.784033][T11166] ? irqentry_exit+0x16/0x60 [ 606.788775][T11166] do_fast_syscall_32+0x38/0x80 [ 606.793794][T11166] do_SYSENTER_32+0x1f/0x30 [ 606.798468][T11166] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 606.805061][T11166] RIP: 0023:0xf715d579 [ 606.809345][T11166] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 606.829207][T11166] RSP: 002b:00000000f514f55c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 606.837829][T11166] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000200018c0 [ 606.845965][T11166] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 606.854077][T11166] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 606.862197][T11166] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 606.870306][T11166] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 606.878435][T11166] [ 606.881854][T11166] Kernel Offset: disabled [ 606.886261][T11166] Rebooting in 86400 seconds..