last executing test programs: 2m47.82318128s ago: executing program 5 (id=6368): r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x90, 0x2b, 0x80, 0x10, 0xbb4, 0xa7e, 0x60c4, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x45, 0x2, 0x2, 0xfb, 0xd4, 0x3, 0x0, [], [{{0x9, 0x5, 0x4, 0x2, 0x10, 0x0, 0xfa}}, {{0x9, 0x5, 0x81, 0x2, 0x40, 0x0, 0x3d, 0x1}}]}}]}}]}}, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) 2m45.792447144s ago: executing program 5 (id=6411): syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0), 0x1, 0x22e, &(0x7f0000000540)="$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") setxattr(0x0, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0) 2m45.376612948s ago: executing program 5 (id=6419): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_rxfh_indir={0x4e}}) 2m45.110089208s ago: executing program 5 (id=6422): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x24, 0x2c, 0x107, 0x70bd2b, 0x25dfdbff, {0x7, 0x7c}, [@nested={0x8, 0x1, 0x0, 0x1, [@nested={0x4, 0xdd}]}, @nested={0x8, 0x3, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x24}}, 0xc010) 2m44.854022005s ago: executing program 5 (id=6427): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x800, &(0x7f0000001180)=ANY=[], 0x1, 0x17c, &(0x7f0000000380)="$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") execveat(0xffffffffffffff9c, &(0x7f0000000280)='./file2\x00', 0x0, 0x0, 0x0) 2m43.77498812s ago: executing program 5 (id=6447): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x60}}, 0x0) 2m27.644414965s ago: executing program 32 (id=6447): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x60, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8}, @IPSET_ATTR_BUCKETSIZE={0x5}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x14, 0x3, 'hash:ip,port,ip\x00'}]}, 0x60}}, 0x0) 2m24.227402033s ago: executing program 0 (id=6788): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_mr_cache\x00') read$char_usb(r0, &(0x7f00000003c0)=""/132, 0x84) 2m23.994613102s ago: executing program 0 (id=6791): r0 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000200)="480000001400190d7ebdeb75fd0d8c562c84d8c033ed7a80fae0090f000000000000a2bc5603ca00000f7f89000000200000004a2471083ec6811778581acb6c0101ff0000000309", 0x48}], 0x1) 2m23.786704546s ago: executing program 0 (id=6794): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]}) migrate_pages(0x0, 0x3, 0x0, &(0x7f0000000300)=0xa) 2m23.522693764s ago: executing program 0 (id=6797): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0) 2m23.302549594s ago: executing program 0 (id=6802): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0) ioctl$SNDCTL_DSP_SYNC(r0, 0x80105013, 0x0) 2m22.871736259s ago: executing program 0 (id=6809): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_NUM_PEER_NOTIF={0x5}]}}}]}, 0x3c}}, 0x0) 2m22.344468949s ago: executing program 33 (id=6809): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bond={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BOND_NUM_PEER_NOTIF={0x5}]}}}]}, 0x3c}}, 0x0) 1m52.350881359s ago: executing program 7 (id=7172): syz_mount_image$udf(&(0x7f0000000080), &(0x7f00000000c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000102,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000011,fileset=00000000000000000011,uid=', @ANYBLOB="d6d84c0df937ed4a0cd30000f2e9ea9568eab74a46c525dc386983eade0b0ce5f1dd911706cf7d32d7d508d1823b8871e001000000eb4ce0a008f5cdea622fc6675e5486860a752ed0298a948efa72b2c8d8525181644a3124f3544a50f192b98f055ad125fd4674534413c6044136ea5aefac5267e43739626ea9391d8f346c4694f70400000000000000cee1f628d1cec3462830606bb612bfed91181cdc107bb91a2e86de2ad5", @ANYBLOB="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", @ANYRESOCT, @ANYRES8], 0x12, 0xc4f, &(0x7f0000000840)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x10000, 0x90) 1m51.024074732s ago: executing program 7 (id=7184): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a05000000000000000000010000000900010073797a300000000048000000030a05020000000000000000010000000900030073797a320000000014000480080002400000000008000140000000000900010073797a3000000000080007006e6174003c000000060a01040000000000000000010000001400048010000180090001006d6173710000000008000b40000000000900010073797a30"], 0xcc}, 0x1, 0x0, 0x0, 0x880}, 0x0) 1m50.088050301s ago: executing program 7 (id=7198): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_cmd={0x9, 0x0, 0x0, 0x202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffff7fc, 0x0, 0x0, 0x0, 0x47, [0xfffffffc, 0x80]}}) 1m49.653638665s ago: executing program 7 (id=7203): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000002240)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 1m48.655802335s ago: executing program 7 (id=7216): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWSET={0x48, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xd}, @NFTA_SET_TIMEOUT={0xc, 0xb, 0x1, 0x0, 0x80}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x5, 0x84}}}, 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x20050800) 1m47.102821291s ago: executing program 7 (id=7239): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000040}, 0x0) 1m46.677264315s ago: executing program 34 (id=7239): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000005c0)={0x58, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8, 0x11}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,port\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x24000040}, 0x0) 3.800514471s ago: executing program 2 (id=8765): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000400)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000280)=@ethtool_sfeatures={0x2d}}) 3.297980715s ago: executing program 2 (id=8772): r0 = syz_usb_connect(0x5, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010003ac9bcc20d118af1ebb5a0102030109022400010700800b0904"], &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, &(0x7f0000000880)={0x84, &(0x7f00000003c0)=ANY=[@ANYBLOB="600d03"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.573672713s ago: executing program 3 (id=8782): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001e00010026bd7000fbdbdf2507000000", @ANYRES32=r0, @ANYBLOB="000002000a0002"], 0x28}}, 0x20000800) 2.267977928s ago: executing program 3 (id=8786): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@newtaction={0x80, 0x1c, 0x1, 0x70bd2b, 0x0, {0x0, 0x0, 0x1300}, [{0x6c, 0x1, [@m_tunnel_key={0x38, 0x17, 0x0, 0x0, {{0xf}, {0x4}, {0x6, 0x6, "1388"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_gact={0x30, 0x11, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x4}}}}]}]}, 0x80}, 0x1, 0x0, 0x0, 0x4}, 0x0) 1.971280401s ago: executing program 1 (id=8789): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=@newsa={0x144, 0x10, 0x713, 0x70bd26, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in=@dev={0xac, 0x14, 0x14, 0x13}, 0x4e22, 0x1, 0x0, 0x3, 0x2, 0x0, 0x0, 0x3a, 0x0, 0xffffffffffffffff}, {@in6=@remote, 0x0, 0x32}, @in6=@local, {0x0, 0x0, 0x8, 0xa, 0x6, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x2, 0xfffffffffffffff8}, {0xc, 0x0, 0x2}, 0x70bd29, 0x0, 0x2, 0x1, 0x0, 0x28}, [@algo_aead={0x4c, 0x12, {{'rfc4543(gcm(aes))\x00'}, 0x0, 0x80}}, @tfcpad={0x8, 0x29, 0x4}]}, 0x144}, 0x1, 0x0, 0x0, 0xc0}, 0x0) 1.970653101s ago: executing program 3 (id=8791): r0 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0) ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x1000) 1.642656828s ago: executing program 1 (id=8795): syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000180)={[{@check_relaxed}, {@gid}, {@check_relaxed}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@gid}, {@map_acorn}, {@nojoliet}, {}, {@block={'block', 0x3d, 0x400}}, {@gid}, {@unhide}, {@map_off}]}, 0x1, 0xa00, &(0x7f00000003c0)="$eJzs3UtsXFf9B/Dv9SNx3SpJ2/z7L1XbTFKSuq1xbIcmRF2UxJ4kLn4g25EasWhK46AQQ6EBqa2QmkqIFRVIIBawq1jBplI3dIO6gx2sWCChrthXrMLK6M6M49eMx3YdO00/n+h67uN3z/nd58mMr+eEz5eF/SumFhZqwxanL/5hBzLmLnZ29JP3P3ivHN69mT3pzPPFn5KeJJWkK8mjSffI6PTURJuCrieXk3ycFEn2pv66IZdT/CIPLE1/nOJ3Zb0t7dloybSzwBfabp9/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwNypGRgcHh4o9GZu8+HKlLqmsMTI6PVVkYWHtksV16j6q9fpdfNS23qQoh/T0LHb1/ejBpcWPJKkcyeP1qcdrHZKnJ2/f/8iBFx7u6lhcv1U2n8nejRd74623r786Pz/3RuuQhXfq27A9ud1lzlcnx2amxibOnK9WxmamKqdPnhw8fuHcTOXc2Hh15tLMbHWiMjJdPTM7NV3pG3mmMnT69IlKdeDS1MXJ86MD49XFmae+Mjw4eLLy0sA3q2emZ6Ymj780MDNyYWx8fGzyfC2mXFzGnCpPxG+MzVZmq2cmKpWr1+bnTqzKqXP1zi6DhtptSRk03C5oeHB4eGhoeHjo3Ubv2bdnnHz+9POnBge7BlfJmog7dNJyd7mv9WHe5js4bF1Hvf3Pd8czlslczMupNP03ktFMZyoTLZY3LLb/R49X1613efvfaOW7li1+rPxxJE82JntatP8tctm5fzfyVt7O9bya+cxnLm/sekY7++98qpnMWGYylbFM5ExtTqUxp5LTOZmTGcwruZBDmUkl5zKW8VQzk0uZyWyqtTNqJNOp5kxmM5XpVNKXkTyTSoZyOqdzIpVUM5BLmcrFTOZ8RnOmVsrVXKvt9xPr5Hg7aGgjQcPrBK1uzMtzfXPtf/Ve/Z8gG7b9N3HYooVG+7+nfWjfyE4kBAAAAGy7L/01+w4+9Jd/JUWeqH0uf25svPribqcFAAAAbKPa43qPly/d5dgTPbX3/4O7nRYAAACwjYra39gVSXpzqD62+JdQPgQAAACAe0Tt9/9Ppji0NMP7fwAAALjHtP+O/bYRRf/i1/9WrtRfrzQi6lNF77mx8erAyNT4C0M5VvuWgSRPrC2tMym6a39+8GwO16MO99Zfe5dKLOvsKaOGBl4YyrM50tiQvqfKl6f6mkQO1yOfrkc+vTyyMysiT5SRAHCvO7JOe7zR9v/Z9Ncj+h+rNfldjzVpgwe1rABwt7jdx85/G12aNWn/GxFPtmr/v7rO+/8y4qFcPVR/pGAgr+X1zOdK+tN44uBQs1IXeyOoP4bQ3+bTgN7GIwt/P9WR/jWfB/Tc3tblsXMZTn/TTwSWlVss5nCiHtd5Z44BAOy0I+u2wxtr//vbvP/v9UghANxVbvdgv4mRdzYTPPfGjd3eRgBgJa00AAAAAAAAAAAAAAAAAAAAAAAAAAAAbL8NfYH/344l8/NzyRY6C9jySM9mMlx/pCM7lPOuj3Qm2a3aX8ym1yqP8Weo9I/3NVb/9+7v+XtuZJdvTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOyIIulsNr8j2ZtkMMnxnc/qzrm52wlsl8qeLa1W3MqtvJl9254PAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAXXOP7/ztSf72/PitdHcnRJJeTfGu3c9xOt3Y7gTujaB/yvXrg0vf/dyTdWSjSVT/sKbpHRqenJsqiir3l8k/e/+C9cmhf9tpeFcoCyhpWdC7RqGHZnO6Vaz1YW6t3dO7G9R+9/oPK6NnaiXl29tz46MT56a8vBT5SfJhUUh8WLeb7k6N//uWy2Y2OEooPyy1tbnW952r1jq6t9/+brd2i3g24Nj83XNY0W3159sffv/bmskUP5XDyVF/St7Km75RDi5oOr96fKxWfFj8r9uU3uVw7/uXeKBaK8hDtr23/fVevzc8NvPb6/JXbOb2zIqcDOZTkStKz8ZwOtT43a2ddR3dZ62AtqPxxsE1561pW4lCL/fpg7ZTp3dQ2VNpcX232eyOjE00z+tUPH86xTR/pY21qbKr4tPhncSH/yE+X9f/RUR7/o2l6dTYpoha57ExZvmzF5dVRj6xt+fDyBa+sLrPlVckd8PN8O1+7ffw7lt3/G8dqZ+5Hy2psfl0km78ufr9/TYuypNYiHVzVIjXuPq3WaeR5sB7VIs//y3P1MjdxR3muXYt9h67/3xZ9+U9u6v8HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4+xVJZ7P5HcnRJAeS7C+nK8nC6pibW6ivo7fYSprbZis5f/4ULTe0uJVbeTP7djojAAAAAAAAAO6Ms6OfvP/Be+VQ+318Z77c0VhSSbqSHCh+3T0yOj010aag7uTy4q/0ezaXw+XyxwNL0x+XU4+2WWl3Hx8AgM+1/wUAAP//p2dujQ==") open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="20000000020000001d"], 0x0) 1.569697702s ago: executing program 6 (id=8796): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}) 1.463619462s ago: executing program 8 (id=8797): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x1c, 0x21, 0x9, 0x2, 0x25dfdbff, {0x2}, [@typed={0x8, 0x8, 0x0, 0x0, @fd}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000) 1.40278692s ago: executing program 3 (id=8798): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)={0x38, 0x2, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0) 1.30439311s ago: executing program 6 (id=8799): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'ip6tnl0\x00', &(0x7f0000000300)=@ethtool_rxnfc={0x2f, 0x2, 0x6, {0xe, @usr_ip6_spec={@loopback, @local, 0xfffffff8, 0x3d, 0xe}, {0x0, @broadcast, 0xe, 0x4, [0x7, 0x6]}, @ah_ip4_spec={@remote, @rand_addr=0x64010100, 0x0, 0x25}, {0x0, @random="5774d77c5f82", 0x8, 0x5, [0xf, 0x9]}, 0xff, 0x3}}}) 1.300862611s ago: executing program 4 (id=8800): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) uname(&(0x7f00000002c0)=""/198) 1.246078966s ago: executing program 2 (id=8801): syz_mount_image$exfat(&(0x7f0000000140), &(0x7f0000000240)='./file2\x00', 0x22200c8c, &(0x7f0000000000)=ANY=[], 0x1, 0x1526, &(0x7f000000a000)="$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") creat(&(0x7f00000000c0)='./file0\x00', 0x1f4) 1.19529196s ago: executing program 1 (id=8802): r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x0) 1.194564539s ago: executing program 3 (id=8803): r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4) ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f00000000c0)={0x0, @multicast}) 1.188614498s ago: executing program 8 (id=8804): r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x437, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, 0x40483}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x81}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x11}, 0x0) 1.02609359s ago: executing program 6 (id=8805): r0 = socket$l2tp6(0xa, 0x2, 0x73) sendmmsg$inet6(r0, &(0x7f0000002540)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty, 0x2f1}, 0x1c, 0x0}}, {{&(0x7f0000002200)={0xa, 0x4e21, 0x8, @dev={0xfe, 0x80, '\x00', 0x11}, 0x400}, 0x1c, 0x0, 0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="80000000000000002900000036"], 0x150}}], 0x2, 0x400ff40) 884.689688ms ago: executing program 4 (id=8806): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000000)={'filter\x00', 0x4, [{}, {}, {}, {}]}, 0x68) 838.338916ms ago: executing program 3 (id=8807): r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000044e22008d31324320dcb010c03010902120001040020000904"], 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) 821.97891ms ago: executing program 8 (id=8808): r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f0000000000)={0xb, @pix_mp={0x9, 0x3, 0x55595659, 0x4, 0x8, [{0x410, 0x10}, {0x5, 0xa}, {0xbaab}, {0x2, 0x3532}, {0x7fff, 0x7}, {0x9, 0xa}, {0x2, 0x21000}, {0x7, 0x401}], 0x0, 0x63, 0x1, 0x0, 0x7}}) 772.867238ms ago: executing program 1 (id=8809): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_int(r0, 0x29, 0x11, &(0x7f00000004c0)=0xd, 0x4) 692.359391ms ago: executing program 2 (id=8810): r0 = socket(0x10, 0x2, 0x0) sendto$inet6(r0, &(0x7f00000007c0)="7800000018002507b9199b02ffff48000203be04020406050a02040c5c000900580006050a0000000d0085a168d0bf46d32345653600648d27000b000a00070849935ade4a460c89b6ec0cff3959547f509058ad86c902007a00004a32000407160005000a0000000000e000e21800003b6ed538f6523250", 0x78, 0x2251197285d76a80, 0x0, 0x0) 664.962775ms ago: executing program 6 (id=8811): r0 = socket(0xa, 0x2, 0x0) setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x18) 656.084983ms ago: executing program 4 (id=8812): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x6, 0xc, &(0x7f00000008c0)=ANY=[@ANYBLOB="180200000400000000000000000000008500000041000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff85850000007100000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0xfe4f, 0x0, &(0x7f0000000000)="5fd63edbfd8a4a6077fd87686f9a", 0x0, 0x704, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 641.261862ms ago: executing program 8 (id=8813): r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000080)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000100)=0x10) 504.559939ms ago: executing program 1 (id=8814): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000100)={'veth0\x00', &(0x7f00000000c0)=@ethtool_link_settings={0x4c, 0x2, 0x5, 0x0, 0x50, 0x5, 0x0, 0x1b, 0x8, 0xfd, [0x0, 0x7, 0x2, 0x4, 0xfffffff8, 0x8, 0x2, 0x4]}}) 422.045494ms ago: executing program 4 (id=8815): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x2000000000000005, 0x2) ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000080)={0x1e, 0x1, 0x2, "bb1f000200000080007f28accf05000700", 0x34363248}) 421.357096ms ago: executing program 8 (id=8816): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000140)={0x30, 0x3, 0x8, 0x3, 0x0, 0x0, {0x5, 0x0, 0x4}, [@CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x884c}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}]}, 0x30}, 0x1, 0x0, 0x0, 0x4090041}, 0x404c810) 405.421862ms ago: executing program 2 (id=8817): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=@newlink={0x4c, 0x10, 0x1, 0x70bd2c, 0x20, {0x0, 0x0, 0x0, 0x0, 0xdf15003157970113, 0x8084}, [@IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_VFINFO_LIST={0x18, 0x16, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN={0x10, 0x2, {0x7ffffffe, 0x17e, 0xfffffff9}}]}]}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000084}, 0x800) 404.858729ms ago: executing program 6 (id=8818): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000088c0)={0x14, 0x16, 0xa01, 0x0, 0x25dfdbfe, {0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x0) 250.940094ms ago: executing program 1 (id=8819): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x42, 0x0) fsync(r0) 197.750793ms ago: executing program 4 (id=8820): r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x1018, 0xffffffffffffffff, {0x29}}, './file0\x00'}) 181.854348ms ago: executing program 6 (id=8821): r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x3fe, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000580)={0x1, @pix_mp={0x2, 0x0, 0x32315659, 0x4, 0x2, [{}, {0x277c, 0x4}, {}, {}, {0x0, 0x4}, {0xd360}, {0x0, 0x2}, {0x0, 0x80000}], 0x10}}) 181.25369ms ago: executing program 2 (id=8822): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fd\x00') getdents64(r0, 0x0, 0x0) 138.804065ms ago: executing program 8 (id=8823): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x80000) 0s ago: executing program 4 (id=8824): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$UHID_INPUT(r0, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x375) kernel console output (not intermixed with test programs): : probe with driver snd-usb-audio failed with error -71 [ 739.827615][ T913] usb 2-1: USB disconnect, device number 3 [ 740.111335][T22737] loop2: detected capacity change from 0 to 40427 [ 740.132585][T22737] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 740.140770][T22737] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 740.177712][T22737] F2FS-fs (loop2): invalid crc value [ 740.275482][ T50] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 740.313043][ T50] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 740.335068][ T50] bond0 (unregistering): Released all slaves [ 740.339183][T22737] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 740.361415][T22737] F2FS-fs (loop2): Try to recover 1th superblock, ret: -30 [ 740.379339][T22737] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 740.902393][T22783] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7309'. [ 740.939849][T22788] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7311'. [ 741.084196][T22662] chnl_net:caif_netlink_parms(): no params data found [ 741.254740][T22798] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7315'. [ 741.273499][T22799] loop4: detected capacity change from 0 to 512 [ 741.331306][T22798] netlink: 248 bytes leftover after parsing attributes in process `syz.1.7315'. [ 741.390957][T22799] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 741.684302][ T913] usb 4-1: new high-speed USB device number 112 using dummy_hcd [ 741.723064][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 741.748326][T21537] Bluetooth: hci1: command tx timeout [ 741.888720][ T913] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 741.911826][ T913] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 741.946545][ T50] hsr_slave_0: left promiscuous mode [ 741.952584][ T913] usb 4-1: config 0 descriptor?? [ 741.986237][T22826] netlink: 'syz.1.7323': attribute type 3 has an invalid length. [ 741.992673][ T50] hsr_slave_1: left promiscuous mode [ 742.020859][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 742.021770][T22826] netlink: 236 bytes leftover after parsing attributes in process `syz.1.7323'. [ 742.053041][ T50] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 742.075541][ T50] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 742.095357][ T50] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 742.198873][ T913] udl 4-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 742.248762][ T50] veth1_macvtap: left promiscuous mode [ 742.318354][ T50] veth0_macvtap: left promiscuous mode [ 742.324035][ T50] veth1_vlan: left promiscuous mode [ 742.350470][ T50] veth0_vlan: left promiscuous mode [ 742.429544][ T913] [drm:udl_init] *ERROR* Selecting channel failed [ 742.593186][ T913] [drm] Initialized udl 0.0.1 for 4-1:0.0 on minor 2 [ 742.600372][ T913] [drm] Initialized udl on minor 2 [ 742.650572][ T913] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 742.691513][ T913] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 742.735719][T16874] udl 4-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 742.750662][ T913] usb 4-1: USB disconnect, device number 112 [ 742.786517][T16874] udl 4-1:0.0: [drm] Cannot find any crtc or sizes [ 743.035077][T22861] loop6: detected capacity change from 0 to 8 [ 743.075413][T22861] MTD: Attempt to mount non-MTD device "/dev/loop6" [ 743.105487][ T6235] udevd[6235]: incorrect cramfs checksum on /dev/loop6 [ 743.129006][T22861] cramfs: Error -3 while decompressing! [ 743.134901][T22861] cramfs: ffffffff998d0f28(26)->ffff888042f18000(4096) [ 743.184005][T22861] cramfs: Error -3 while decompressing! [ 743.202001][ T6235] udevd[6235]: incorrect cramfs checksum on /dev/loop6 [ 743.209181][T22861] cramfs: ffffffff998d0f42(26)->ffff888051dff000(4096) [ 743.216564][T22861] cramfs: Error -3 while decompressing! [ 743.222182][T22861] cramfs: ffffffff998d0f5c(16)->ffff88807e182000(4096) [ 743.234424][T22861] cramfs: Error -3 while decompressing! [ 743.249514][T22861] cramfs: ffffffff998d0f28(26)->ffff888042f18000(4096) [ 743.973327][T21537] Bluetooth: hci1: command tx timeout [ 744.065128][ T50] team0 (unregistering): Port device team_slave_1 removed [ 744.102352][ T50] team0 (unregistering): Port device team_slave_0 removed [ 744.438613][T22883] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7349'. [ 744.670447][T22895] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7354'. [ 744.745222][T22662] bridge0: port 1(bridge_slave_0) entered blocking state [ 744.755261][T22662] bridge0: port 1(bridge_slave_0) entered disabled state [ 744.788614][T22662] bridge_slave_0: entered allmulticast mode [ 744.821798][T22662] bridge_slave_0: entered promiscuous mode [ 744.843362][T22662] bridge0: port 2(bridge_slave_1) entered blocking state [ 744.865205][T22662] bridge0: port 2(bridge_slave_1) entered disabled state [ 744.872916][T22662] bridge_slave_1: entered allmulticast mode [ 744.880903][T22662] bridge_slave_1: entered promiscuous mode [ 744.936639][ T6199] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 745.091268][T22662] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 745.116837][ T6199] usb 2-1: Using ep0 maxpacket: 16 [ 745.143071][T22662] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 745.146836][ T6199] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 745.201471][T22917] blktrace: Concurrent blktraces are not allowed on sg0 [ 745.215681][ T6199] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e [ 745.246915][ T6199] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 745.278113][ T6199] usb 2-1: Product: syz [ 745.285361][ T6199] usb 2-1: Manufacturer: syz [ 745.297811][ T6199] usb 2-1: SerialNumber: syz [ 745.341806][ T6199] usb 2-1: config 0 descriptor?? [ 745.355617][T22662] team0: Port device team_slave_0 added [ 745.359309][ T6199] hub 2-1:0.0: bad descriptor, ignoring hub [ 745.383297][T22662] team0: Port device team_slave_1 added [ 745.395283][ T6199] hub 2-1:0.0: probe with driver hub failed with error -5 [ 745.451573][ T6199] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input61 [ 745.656416][T22932] netlink: 5 bytes leftover after parsing attributes in process `syz.2.7367'. [ 745.712266][T22932] openvswitch: netlink: IP tunnel attribute has 1026 unknown bytes. [ 745.718585][T22926] netlink: 'syz.3.7365': attribute type 2 has an invalid length. [ 745.739167][T22935] loop6: detected capacity change from 0 to 256 [ 745.952326][T22935] FAT-fs (loop6): Directory bread(block 64) failed [ 745.958877][T22935] FAT-fs (loop6): Directory bread(block 65) failed [ 745.968863][T22662] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 745.976692][T22935] FAT-fs (loop6): Directory bread(block 66) failed [ 745.989426][ T6199] usb 2-1: USB disconnect, device number 4 [ 745.990218][T22935] FAT-fs (loop6): Directory bread(block 67) failed [ 746.012661][T22946] loop2: detected capacity change from 0 to 64 [ 746.013058][T22662] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 746.066072][T22935] FAT-fs (loop6): Directory bread(block 68) failed [ 746.081519][T22935] FAT-fs (loop6): Directory bread(block 69) failed [ 746.101757][T22935] FAT-fs (loop6): Directory bread(block 70) failed [ 746.109213][T22946] syz.2.7370: attempt to access beyond end of device [ 746.109213][T22946] loop2: rw=0, sector=128, nr_sectors = 2 limit=64 [ 746.148183][T22935] FAT-fs (loop6): Directory bread(block 71) failed [ 746.155218][T22935] FAT-fs (loop6): Directory bread(block 72) failed [ 746.169584][T22662] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 746.186728][T22935] FAT-fs (loop6): Directory bread(block 73) failed [ 746.195419][T22946] Trying to free block not in datazone [ 746.202274][T21537] Bluetooth: hci1: command tx timeout [ 746.212886][T22662] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 746.227899][T22946] Trying to free block not in datazone [ 746.236172][T22662] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 746.262607][T22946] Trying to free block not in datazone [ 746.268089][T22946] Trying to free block not in datazone [ 746.295198][T22946] Trying to free block not in datazone [ 746.325774][T22946] Trying to free block not in datazone [ 746.336410][T22662] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 746.380755][T22946] minix_free_block (loop2:6): bit already cleared [ 746.610150][T22959] netlink: 'syz.1.7378': attribute type 1 has an invalid length. [ 746.697378][T22662] hsr_slave_0: entered promiscuous mode [ 746.749380][T22662] hsr_slave_1: entered promiscuous mode [ 746.786737][T22662] debugfs: 'hsr0' already exists in 'hsr' [ 746.822895][T22662] Cannot create hsr debugfs directory [ 746.847861][T22967] loop4: detected capacity change from 0 to 64 [ 747.034115][T22965] bond0: option packets_per_slave: mode dependency failed, not supported in mode balance-xor(2) [ 747.118887][T22965] bond0 (unregistering): Released all slaves [ 747.188399][T22983] netlink: 156 bytes leftover after parsing attributes in process `syz.6.7389'. [ 747.213903][T22983] netlink: 156 bytes leftover after parsing attributes in process `syz.6.7389'. [ 747.428027][T22989] netlink: 'syz.1.7390': attribute type 16 has an invalid length. [ 747.458029][T22990] loop4: detected capacity change from 0 to 128 [ 747.479853][T22989] netlink: 'syz.1.7390': attribute type 17 has an invalid length. [ 747.738215][T22989] bridge0: port 2(bridge_slave_1) entered disabled state [ 747.745601][T22989] bridge0: port 1(bridge_slave_0) entered disabled state [ 747.802199][T23000] vivid-007: ================= START STATUS ================= [ 747.820636][T23000] vivid-007: Enable Output Cropping: true [ 747.841827][T23000] vivid-007: Enable Output Composing: true [ 747.860409][T23000] vivid-007: Enable Output Scaler: true [ 747.877225][T23000] vivid-007: Tx RGB Quantization Range: Automatic [ 747.898419][T22989] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 747.912546][T23000] vivid-007: Transmit Mode: HDMI [ 747.914853][T22989] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 747.933379][T23000] vivid-007: Hotplug Present: 0x00000000 [ 747.947675][T23000] vivid-007: RxSense Present: 0x00000000 [ 747.953881][T23000] vivid-007: EDID Present: 0x00000000 [ 747.959412][T23000] vivid-007: ================== END STATUS ================== [ 748.105931][T23010] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7402'. [ 748.115349][T23010] netlink: 40 bytes leftover after parsing attributes in process `syz.4.7402'. [ 748.192373][T23012] netlink: 'syz.4.7403': attribute type 2 has an invalid length. [ 748.220764][ T60] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 748.252116][ T60] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 748.272552][ T60] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 748.384251][ T60] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 748.440003][T23019] loop6: detected capacity change from 0 to 256 [ 748.483886][T23019] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 748.935943][T23036] loop4: detected capacity change from 0 to 1764 [ 748.976699][T23041] loop2: detected capacity change from 0 to 256 [ 749.016139][T23036] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 749.130103][T23038] loop1: detected capacity change from 0 to 4096 [ 749.163620][T23041] FAT-fs (loop2): Directory bread(block 64) failed [ 749.187610][T23041] FAT-fs (loop2): Directory bread(block 65) failed [ 749.218746][T23041] FAT-fs (loop2): Directory bread(block 66) failed [ 749.242034][T23048] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 749.253235][T23041] FAT-fs (loop2): Directory bread(block 67) failed [ 749.274852][T23041] FAT-fs (loop2): Directory bread(block 68) failed [ 749.283723][T23041] FAT-fs (loop2): Directory bread(block 69) failed [ 749.290713][T23041] FAT-fs (loop2): Directory bread(block 70) failed [ 749.309722][T23041] FAT-fs (loop2): Directory bread(block 71) failed [ 749.331558][T23038] NILFS error (device loop1): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 749.355644][T23041] FAT-fs (loop2): Directory bread(block 72) failed [ 749.362198][T23041] FAT-fs (loop2): Directory bread(block 73) failed [ 749.418266][T23038] Remounting filesystem read-only [ 749.538202][T22662] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 749.616613][T22662] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 749.682939][T23053] loop4: detected capacity change from 0 to 4096 [ 749.719889][T22662] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 749.731584][T23053] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 749.800747][T23053] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 749.857126][T22662] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 749.980675][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 750.304565][T23080] netlink: 'syz.3.7426': attribute type 32 has an invalid length. [ 750.397866][T22662] 8021q: adding VLAN 0 to HW filter on device bond0 [ 750.477939][T22662] 8021q: adding VLAN 0 to HW filter on device team0 [ 750.541161][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 750.548329][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 750.611964][ T60] bridge0: port 2(bridge_slave_1) entered blocking state [ 750.619156][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state [ 750.678522][T23047] loop6: detected capacity change from 0 to 32768 [ 750.713323][T23047] btrfs: Deprecated parameter 'usebackuproot' [ 750.733754][T23047] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 750.795572][T23047] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7416 (23047) [ 750.880529][T23047] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 750.923138][T23047] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm [ 751.134253][ T50] BTRFS warning (device loop6): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0x32b4fbab level 0 [ 751.226230][T23047] BTRFS error (device loop6): failed to load root extent [ 751.234021][T23047] BTRFS warning (device loop6): try to load backup roots slot 1 [ 751.354387][T23047] BTRFS info (device loop6): setting nodatasum [ 751.360919][T23047] BTRFS info (device loop6): setting nodatacow [ 751.407973][T23124] netlink: 'syz.1.7434': attribute type 7 has an invalid length. [ 751.423627][T23047] BTRFS info (device loop6): turning on flush-on-commit [ 751.442057][T23124] netlink: 'syz.1.7434': attribute type 8 has an invalid length. [ 751.459812][T23047] BTRFS info (device loop6): turning on sync discard [ 751.477423][T23047] BTRFS info (device loop6): enabling free space tree [ 751.505976][T23047] BTRFS info (device loop6): force clearing of disk cache [ 751.534597][T23047] BTRFS info (device loop6): trying to use backup root at mount time [ 751.570172][T23081] loop2: detected capacity change from 0 to 32768 [ 751.784074][T22662] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 751.799321][T21355] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 752.313840][T23151] netlink: 'syz.1.7444': attribute type 1 has an invalid length. [ 752.642751][T23160] loop3: detected capacity change from 0 to 512 [ 752.783488][T23160] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 752.860863][T23160] ext4 filesystem being mounted at /1328/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 752.916992][ T913] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 752.927065][T23160] EXT4-fs error (device loop3): ext4_empty_dir:3096: inode #12: block 31: comm syz.3.7449: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=1, rec_len=6, size=1024 fake=1 [ 752.996948][T22662] veth0_vlan: entered promiscuous mode [ 753.022408][T23160] EXT4-fs warning (device loop3): ext4_empty_dir:3099: inode #12: comm syz.3.7449: directory missing '..' [ 753.097333][T22662] veth1_vlan: entered promiscuous mode [ 753.110959][ T913] usb 2-1: config 0 has an invalid interface number: 251 but max is 0 [ 753.139595][ T913] usb 2-1: config 0 has no interface number 0 [ 753.158620][ T5926] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 753.182459][ T913] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 753.215317][ T913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 753.223679][ T913] usb 2-1: Product: syz [ 753.249611][ T913] usb 2-1: Manufacturer: syz [ 753.254234][ T913] usb 2-1: SerialNumber: syz [ 753.284882][T22662] veth0_macvtap: entered promiscuous mode [ 753.301405][ T913] usb 2-1: config 0 descriptor?? [ 753.346002][T22662] veth1_macvtap: entered promiscuous mode [ 753.410342][T22662] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 753.427523][T23180] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 753.474103][T22662] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 753.527761][ T60] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 753.558964][ T60] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 753.600211][ T60] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 753.616965][ T60] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 753.649629][T23185] loop3: detected capacity change from 0 to 16 [ 753.737925][T23185] erofs (device loop3): mounted with root inode @ nid 36. [ 753.782347][ T913] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 753.817914][ T913] asix 2-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 753.855787][ T913] asix 2-1:0.251: probe with driver asix failed with error -5 [ 753.888691][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 753.899038][ T913] usb 2-1: USB disconnect, device number 5 [ 753.934468][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 753.948069][T23171] loop2: detected capacity change from 0 to 32768 [ 753.977672][T23171] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7452 (23171) [ 754.029790][T23171] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 754.064393][T23192] ip6gretap0: entered promiscuous mode [ 754.070634][T23171] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 754.098104][T16882] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 754.127843][T16882] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 754.318401][T23171] BTRFS info (device loop2): enabling ssd optimizations [ 754.350632][T23171] BTRFS info (device loop2): turning on async discard [ 754.357424][T23171] BTRFS info (device loop2): enabling free space tree [ 754.587563][ T5940] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 754.618384][ T30] kauditd_printk_skb: 2 callbacks suppressed [ 754.618402][ T30] audit: type=1400 audit(2000000255.956:136): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=23227 comm="syz.8.7470" [ 754.813678][T23233] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7474'. [ 754.915596][T23238] netlink: 'syz.8.7477': attribute type 10 has an invalid length. [ 754.924246][T23238] netlink: 40 bytes leftover after parsing attributes in process `syz.8.7477'. [ 754.996956][T23238] net veth1_virt_wifi virt_wifi0: entered promiscuous mode [ 755.078994][T23238] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 755.134140][T23238] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 755.457052][T23253] overlay: ./file0 is not a directory [ 755.583063][T23258] netlink: 'syz.2.7485': attribute type 1 has an invalid length. [ 755.744563][T23264] QAT: Invalid ioctl 21531 [ 755.752208][T23225] loop1: detected capacity change from 0 to 32768 [ 755.769246][T23225] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7469 (23225) [ 755.838538][T23225] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 755.869193][T23225] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 755.966251][T23277] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7490'. [ 756.079779][ T913] usb 9-1: new high-speed USB device number 2 using dummy_hcd [ 756.105432][T23225] BTRFS info (device loop1): enabling ssd optimizations [ 756.146594][T23225] BTRFS info (device loop1): turning on async discard [ 756.157424][T23225] BTRFS info (device loop1): enabling free space tree [ 756.240861][ T913] usb 9-1: Using ep0 maxpacket: 8 [ 756.279559][ T913] usb 9-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76 [ 756.290651][ T913] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 756.336435][ T913] usb 9-1: Product: syz [ 756.340611][ T913] usb 9-1: Manufacturer: syz [ 756.345199][ T913] usb 9-1: SerialNumber: syz [ 756.385863][ T5938] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 756.413674][ T913] usb 9-1: config 0 descriptor?? [ 756.434650][ T913] gspca_main: ALi m5602-2.14.0 probing 0402:5602 [ 756.540180][T23301] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7499'. [ 756.870247][ T913] gspca_m5602: Failed to find a sensor [ 756.890896][ T913] ALi m5602 9-1:0.0: ALi m5602 webcam failed [ 756.944440][ T913] usb 9-1: USB disconnect, device number 2 [ 757.367245][T23292] loop2: detected capacity change from 0 to 32768 [ 757.384166][T23292] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7494 (23292) [ 757.473856][T23292] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 757.513780][T23292] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 757.636847][T23331] loop6: detected capacity change from 0 to 512 [ 757.735775][T23331] EXT4-fs: Ignoring removed oldalloc option [ 757.752241][T23292] BTRFS info (device loop2): rebuilding free space tree [ 757.823854][T23292] BTRFS info (device loop2): disabling free space tree [ 757.827356][T23331] EXT4-fs error (device loop6): ext4_xattr_inode_iget:437: comm syz.6.7508: Parent and EA inode have the same ino 15 [ 757.875948][T23331] EXT4-fs (loop6): Remounting filesystem read-only [ 757.888976][T23292] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 757.912325][T23349] netlink: 'syz.8.7510': attribute type 16 has an invalid length. [ 757.930096][T23331] EXT4-fs warning (device loop6): ext4_evict_inode:274: xattr delete (err -30) [ 757.930342][T23292] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 757.939085][T23331] EXT4-fs (loop6): 1 orphan inode deleted [ 757.994174][T23349] netlink: 'syz.8.7510': attribute type 17 has an invalid length. [ 758.004189][T23292] BTRFS info (device loop2): enabling ssd optimizations [ 758.046219][T23292] BTRFS info (device loop2): turning on flush-on-commit [ 758.073584][T23292] BTRFS info (device loop2): turning on async discard [ 758.104019][T23292] BTRFS info (device loop2): force clearing of disk cache [ 758.122027][T23292] BTRFS info (device loop2): enabling auto defrag [ 758.148892][T23292] BTRFS info (device loop2): max_inline set to 57 [ 758.189854][T23331] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 758.267914][T23349] bridge0: port 2(bridge_slave_1) entered disabled state [ 758.275645][T23349] bridge0: port 1(bridge_slave_0) entered disabled state [ 758.334824][T23359] loop4: detected capacity change from 0 to 2048 [ 758.417259][T23359] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 758.429038][ T5940] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 758.460864][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 759.011465][T23376] loop3: detected capacity change from 0 to 128 [ 759.042917][T23349] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 759.087596][T23376] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 759.097647][T23349] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 759.127656][T23376] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 759.264026][T23376] Process accounting resumed [ 759.643346][T23398] netlink: 'syz.4.7534': attribute type 2 has an invalid length. [ 759.654188][T23401] x_tables: duplicate entry at hook 3 [ 759.948324][T23409] loop2: detected capacity change from 0 to 4096 [ 759.983255][T23409] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 760.006440][ T1097] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 760.048653][ T1097] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 760.090217][ T1097] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 760.112876][T23409] ntfs3(loop2): ino=19, mi_enum_attr [ 760.122722][ T1097] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 760.146098][T23409] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 760.485067][T23419] loop1: detected capacity change from 0 to 4096 [ 760.581504][T23419] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 760.638631][T23426] loop2: detected capacity change from 0 to 64 [ 760.688120][T23395] loop6: detected capacity change from 0 to 32768 [ 760.751292][T23395] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 760.871879][T23426] hfs: inconsistency in B*Tree (1,0,2,2,3) [ 760.973651][ T5938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 761.203088][T23411] loop4: detected capacity change from 0 to 32768 [ 761.300666][T23395] XFS (loop6): Ending clean mount [ 761.325296][T23411] ea_get: invalid extended attribute [ 761.615883][T21355] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 761.691908][T23415] loop3: detected capacity change from 0 to 32768 [ 761.702706][T23461] loop4: detected capacity change from 0 to 512 [ 761.743728][T23461] EXT4-fs: Ignoring removed orlov option [ 761.791135][T23461] EXT4-fs: Ignoring removed nobh option [ 761.830417][T23461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 761.840187][T23415] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 761.886102][T23415] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 761.945287][T23461] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.7557: bg 0: block 248: padding at end of block bitmap is not set [ 762.074098][T23461] Quota error (device loop4): write_blk: dquota write failed [ 762.117205][T23472] bridge2: entered promiscuous mode [ 762.151166][T23461] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 762.168510][T23472] bridge2: entered allmulticast mode [ 762.227515][T23461] EXT4-fs error (device loop4): ext4_acquire_dquot:6945: comm syz.4.7557: Failed to acquire dquot type 1 [ 762.316521][T23461] EXT4-fs (loop4): 1 truncate cleaned up [ 762.369231][ T5926] ocfs2: Unmounting device (7,3) on (node local) [ 762.390796][T23461] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 762.482609][T23461] ext4 filesystem being mounted at /1277/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 762.572186][T23461] EXT4-fs: Ignoring removed orlov option [ 762.593104][T23461] EXT4-fs: Ignoring removed nobh option [ 762.620348][T23461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 762.638010][T23486] bridge0: port 1(bridge_slave_0) entered disabled state [ 762.704510][T23461] EXT4-fs error (device loop4): __ext4_remount:6748: comm syz.4.7557: Abort forced by user [ 762.769828][T23461] EXT4-fs (loop4): Remounting filesystem read-only [ 762.785267][T23461] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 762.944740][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 763.432252][T23520] netlink: 84 bytes leftover after parsing attributes in process `syz.8.7578'. [ 763.454378][T23519] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7577'. [ 763.673390][T16874] usb 4-1: new high-speed USB device number 113 using dummy_hcd [ 763.857576][T16874] usb 4-1: Using ep0 maxpacket: 32 [ 763.900181][T16874] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 763.950085][T16874] usb 4-1: config 0 has no interface number 0 [ 764.030056][T16874] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 764.050886][T16874] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 764.091378][T16874] usb 4-1: Product: syz [ 764.095580][T16874] usb 4-1: Manufacturer: syz [ 764.142562][T16874] usb 4-1: SerialNumber: syz [ 764.203137][T16874] usb 4-1: config 0 descriptor?? [ 764.232591][T16874] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 764.450613][T16874] usb 4-1: qt2_setup_urbs - submit read urb failed -8 [ 764.471808][T16874] quatech2 4-1:0.51: probe with driver quatech2 failed with error -8 [ 764.506895][T23562] loop4: detected capacity change from 0 to 4096 [ 764.620002][T23575] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 764.637650][T23562] NILFS (loop4): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed [ 764.685335][T16874] usb 4-1: USB disconnect, device number 113 [ 764.721596][T23578] netlink: 424 bytes leftover after parsing attributes in process `syz.6.7600'. [ 764.730669][T23578] netlink: 'syz.6.7600': attribute type 1 has an invalid length. [ 765.093309][T23594] loop6: detected capacity change from 0 to 256 [ 765.172913][T23594] FAT-fs (loop6): Directory bread(block 64) failed [ 765.206763][T23594] FAT-fs (loop6): Directory bread(block 65) failed [ 765.235393][T23594] FAT-fs (loop6): Directory bread(block 66) failed [ 765.241953][T23594] FAT-fs (loop6): Directory bread(block 67) failed [ 765.294606][T23594] FAT-fs (loop6): Directory bread(block 68) failed [ 765.374343][T23594] FAT-fs (loop6): Directory bread(block 69) failed [ 765.397640][T23594] FAT-fs (loop6): Directory bread(block 70) failed [ 765.404191][T23594] FAT-fs (loop6): Directory bread(block 71) failed [ 765.460269][T23594] FAT-fs (loop6): Directory bread(block 72) failed [ 765.466881][T23594] FAT-fs (loop6): Directory bread(block 73) failed [ 765.538489][T23606] netlink: 'syz.3.7611': attribute type 4 has an invalid length. [ 766.486270][T23650] ieee802154 phy0 wpan0: encryption failed: -22 [ 766.542636][T23648] loop3: detected capacity change from 0 to 2048 [ 766.771088][T23656] loop8: detected capacity change from 0 to 512 [ 766.839284][T23648] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 766.855361][T23656] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 766.947182][T23656] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 767.029194][T23665] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 767.354831][T22662] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 767.566110][T23674] loop1: detected capacity change from 0 to 2048 [ 767.682346][T23674] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 767.791174][ T9] usb 4-1: new low-speed USB device number 114 using dummy_hcd [ 767.911063][ T5938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 767.997002][ T9] usb 4-1: config 9 has an invalid interface number: 1 but max is 0 [ 768.021226][ T9] usb 4-1: config 9 has no interface number 0 [ 768.078594][ T9] usb 4-1: config 9 interface 1 has no altsetting 0 [ 768.144870][T23627] syz.6.7617 (23627): drop_caches: 2 [ 768.152089][ T9] usb 4-1: string descriptor 0 read error: -22 [ 768.176505][ T9] usb 4-1: New USB device found, idVendor=2040, idProduct=b140, bcdDevice=75.36 [ 768.185575][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 768.286157][ T9] cx231xx 4-1:9.1: New device @ 1.5 Mbps (2040:b140) with 1 interfaces [ 768.318660][ T9] cx231xx 4-1:9.1: Not found matching IAD interface [ 768.554207][ T7979] usb 4-1: USB disconnect, device number 114 [ 768.600448][T23708] netlink: 'syz.8.7649': attribute type 29 has an invalid length. [ 768.743090][T23712] netdevsim netdevsim6: Direct firmware load for ..€ failed with error -2 [ 768.782459][T23660] loop4: detected capacity change from 0 to 40427 [ 768.792524][T23712] netdevsim netdevsim6: Falling back to sysfs fallback for: ..€ [ 768.838442][T23660] F2FS-fs (loop4): invalid crc value [ 768.980389][T23724] loop2: detected capacity change from 0 to 64 [ 769.175887][T23660] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1 [ 769.205279][T23660] F2FS-fs (loop4): Start checkpoint disabled! [ 769.228696][T23660] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0 [ 769.246087][T23660] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 769.528035][T23741] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7661'. [ 769.879555][T23753] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7667'. [ 769.905368][T23753] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7667'. [ 769.915051][T23753] netlink: 5 bytes leftover after parsing attributes in process `syz.6.7667'. [ 769.961026][ T50] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 770.359969][T23772] loop8: detected capacity change from 0 to 256 [ 770.801425][T23788] loop3: detected capacity change from 0 to 128 [ 770.856507][T23788] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 770.958620][T23788] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 771.026835][T23750] loop2: detected capacity change from 0 to 32768 [ 771.053950][T23750] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7666 (23750) [ 771.094969][T23796] bond3: option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 771.153574][T23796] bond3 (unregistering): Released all slaves [ 771.195107][T23750] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 771.229709][T23750] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 771.290538][T23806] IPVS: length: 149 != 8 [ 771.448932][T23750] BTRFS info (device loop2): enabling ssd optimizations [ 771.513257][T23750] BTRFS info (device loop2): turning on async discard [ 771.520064][T23750] BTRFS info (device loop2): enabling free space tree [ 771.751523][T23832] loop4: detected capacity change from 0 to 1764 [ 771.867861][ T5940] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 772.036042][T23838] bridge0: port 2(bridge_slave_1) entered disabled state [ 772.103825][T23846] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7704'. [ 772.165375][T23846] netlink: 60 bytes leftover after parsing attributes in process `syz.4.7704'. [ 772.988516][T23874] netlink: 104 bytes leftover after parsing attributes in process `syz.4.7717'. [ 773.186861][T23835] loop1: detected capacity change from 0 to 32768 [ 773.234985][T23835] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7699 (23835) [ 773.300019][T23835] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 773.346052][T23835] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm [ 773.381878][T23835] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 773.683750][T23835] BTRFS info (device loop1): rebuilding free space tree [ 773.744866][T23912] loop4: detected capacity change from 0 to 256 [ 773.751995][T23835] BTRFS info (device loop1): disabling free space tree [ 773.770023][T23914] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7729'. [ 773.791003][T23835] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 773.800713][T23835] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 773.806996][T23912] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xd6e00b17, utbl_chksum : 0xe619d30d) [ 773.897179][T23835] BTRFS info (device loop1): enabling ssd optimizations [ 773.921436][T23835] BTRFS info (device loop1): enabling disk space caching [ 773.953631][T23912] exFAT-fs (loop4): valid_size(4096) is greater than size(0) [ 773.972902][T23835] BTRFS info (device loop1): force clearing of disk cache [ 773.991038][T23835] BTRFS info (device loop1): force zstd compression, level 3 [ 774.087271][T23835] BTRFS info: 'norecovery' is for compatibility only, recommended to use 'rescue=nologreplay' [ 774.112257][T23835] BTRFS error (device loop1 state M): nologreplay must be used with ro mount option [ 774.187055][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 774.293112][ T5938] BTRFS info (device loop1 state M): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 774.390652][T23926] netlink: 'syz.2.7736': attribute type 21 has an invalid length. [ 774.398621][T23926] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7736'. [ 774.517330][T23871] loop8: detected capacity change from 0 to 40427 [ 774.560620][T23871] F2FS-fs (loop8): Magic Mismatch, valid(0xf2f52010) - read(0x1f52010) [ 774.605173][T23871] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock [ 774.640093][T23871] F2FS-fs (loop8): invalid crc value [ 775.227861][T23871] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 775.291029][T23871] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0 [ 775.316042][T23960] netlink: 300 bytes leftover after parsing attributes in process `syz.1.7751'. [ 775.341875][T23871] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5 [ 775.498057][T23958] loop3: detected capacity change from 0 to 4096 [ 775.547700][T23958] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 775.698391][T22662] syz-executor: attempt to access beyond end of device [ 775.698391][T22662] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 775.761317][T23958] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 775.762279][T22662] CPU: 1 UID: 0 PID: 22662 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 775.762308][T22662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 775.762323][T22662] Call Trace: [ 775.762334][T22662] [ 775.762345][T22662] dump_stack_lvl+0x189/0x250 [ 775.762388][T22662] ? __pfx_dump_stack_lvl+0x10/0x10 [ 775.762423][T22662] ? __pfx_queue_work_on+0x10/0x10 [ 775.762450][T22662] ? _raw_spin_unlock_irqrestore+0xad/0x110 [ 775.762489][T22662] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 775.762536][T22662] f2fs_handle_critical_error+0x37c/0x540 [ 775.762582][T22662] f2fs_write_end_io+0x886/0xb60 [ 775.762629][T22662] __submit_merged_bio+0x27a/0x6a0 [ 775.762674][T22662] __submit_merged_write_cond+0x255/0x530 [ 775.762724][T22662] f2fs_write_data_pages+0x261d/0x3000 [ 775.762789][T22662] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 775.762867][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.762895][T22662] ? check_path+0x21/0x40 [ 775.762921][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.762949][T22662] ? check_noncircular+0xe0/0x160 [ 775.763053][T22662] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 775.763080][T22662] do_writepages+0x32e/0x550 [ 775.763119][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763151][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763178][T22662] ? do_raw_spin_unlock+0x122/0x240 [ 775.763218][T22662] filemap_fdatawrite+0x199/0x240 [ 775.763252][T22662] ? __pfx_filemap_fdatawrite+0x10/0x10 [ 775.763333][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763366][T22662] ? do_raw_spin_unlock+0x122/0x240 [ 775.763405][T22662] f2fs_sync_dirty_inodes+0x31f/0x830 [ 775.763450][T22662] f2fs_write_checkpoint+0x93e/0x2440 [ 775.763475][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763503][T22662] ? __lock_acquire+0xab9/0xd20 [ 775.763560][T22662] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 775.763654][T22662] kill_f2fs_super+0x2cc/0x6d0 [ 775.763682][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763716][T22662] ? __pfx_kill_f2fs_super+0x10/0x10 [ 775.763768][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763795][T22662] ? shrinker_free+0x2ce/0x3e0 [ 775.763826][T22662] deactivate_locked_super+0xbc/0x130 [ 775.763861][T22662] cleanup_mnt+0x425/0x4c0 [ 775.763890][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.763917][T22662] ? lockdep_hardirqs_on+0x9c/0x150 [ 775.763956][T22662] task_work_run+0x1d4/0x260 [ 775.763997][T22662] ? __pfx_task_work_run+0x10/0x10 [ 775.764030][T22662] ? __x64_sys_umount+0x122/0x160 [ 775.764069][T22662] ? exit_to_user_mode_loop+0x40/0x130 [ 775.764098][T22662] exit_to_user_mode_loop+0xe9/0x130 [ 775.764122][T22662] do_syscall_64+0x2bd/0xfa0 [ 775.764157][T22662] ? lockdep_hardirqs_on+0x9c/0x150 [ 775.764192][T22662] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.764215][T22662] ? srso_alias_return_thunk+0x5/0xfbef5 [ 775.764243][T22662] ? exc_page_fault+0xab/0x100 [ 775.764281][T22662] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 775.764305][T22662] RIP: 0033:0x7f00ced90a77 [ 775.764326][T22662] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 775.764347][T22662] RSP: 002b:00007fffe02f4228 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 775.764372][T22662] RAX: 0000000000000000 RBX: 00007f00cee13d7d RCX: 00007f00ced90a77 [ 775.764389][T22662] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffe02f42e0 [ 775.764405][T22662] RBP: 00007fffe02f42e0 R08: 0000000000000000 R09: 0000000000000000 [ 775.764421][T22662] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffe02f5370 [ 775.764438][T22662] R13: 00007f00cee13d7d R14: 00000000000b40dc R15: 00007fffe02f53b0 [ 775.764478][T22662] [ 775.764488][T22662] F2FS-fs (loop8): Stopped filesystem due to reason: 3 [ 775.781684][T23958] ntfs3(loop3): ino=19, mi_enum_attr [ 776.160082][T23981] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 776.291115][T23984] usb usb8: usbfs: process 23984 (syz.2.7763) did not claim interface 0 before use [ 776.323268][T23958] ntfs3(loop3): failed to convert "c46c" to default [ 776.352820][T23958] ntfs3(loop3): ino=20, mi_enum_attr [ 776.512161][T23992] nfs: Unknown parameter 'ntext' [ 776.668961][T23995] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 776.812095][T24001] loop6: detected capacity change from 0 to 1024 [ 776.878978][T24001] EXT4-fs (loop6): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 776.975110][T24001] ext4 filesystem being mounted at /135/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 777.121667][T24001] EXT4-fs warning (device loop6): ext4_empty_dir:3099: inode #12: comm syz.6.7771: directory missing '..' [ 777.307358][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 777.481689][T24019] bond0: entered promiscuous mode [ 777.524799][T24019] bond0: entered allmulticast mode [ 777.533577][T24019] 8021q: adding VLAN 0 to HW filter on device bond0 [ 777.591491][ T30] audit: type=1326 audit(2000000277.451:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24034 comm="syz.1.7784" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4c3c98f749 code=0x0 [ 777.643010][ T9] usb 9-1: new high-speed USB device number 3 using dummy_hcd [ 777.846532][ T9] usb 9-1: Using ep0 maxpacket: 32 [ 777.878897][ T9] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 777.912843][ T6154] usb 5-1: new high-speed USB device number 112 using dummy_hcd [ 777.931719][ T9] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 256 [ 777.962936][ T9] usb 9-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 778.010738][ T9] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 778.032855][ T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 778.054465][ T9] usb 9-1: SerialNumber: syz [ 778.120309][ T6154] usb 5-1: Using ep0 maxpacket: 16 [ 778.133290][T24027] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22 [ 778.144129][ T6154] usb 5-1: config index 0 descriptor too short (expected 65, got 36) [ 778.159209][ T9] cdc_acm 9-1:1.0: Control and data interfaces are not separated! [ 778.176030][ T6154] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 778.219870][ T6154] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 778.264331][ T6154] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 778.324447][T24055] loop1: detected capacity change from 0 to 4096 [ 778.347121][ T6154] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 778.356431][T24055] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 778.367158][ T6154] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 778.397422][ T9] cdc_acm 9-1:1.0: ttyACM0: USB ACM device [ 778.426890][ T6154] usb 5-1: config 0 descriptor?? [ 778.477950][ T9] usb 9-1: USB disconnect, device number 3 [ 778.486402][ T6154] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input62 [ 778.531949][ T5178] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 778.559390][T24055] ntfs3(loop1): ino=1e, "file1" ntfs_sync_inode failed, -22. [ 778.577004][ T5178] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 778.605886][T24055] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 778.647212][ T5178] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 778.744916][T24037] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 778.782923][ T5178] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 778.811039][ T7979] usb 5-1: USB disconnect, device number 112 [ 778.817159][ T1097] ntfs3(loop1): ino=1e, ntfs3_write_inode failed, -22. [ 779.303852][T24089] netlink: 'syz.1.7813': attribute type 2 has an invalid length. [ 779.422707][T24093] loop8: detected capacity change from 0 to 1024 [ 779.471389][T24093] EXT4-fs: Ignoring removed orlov option [ 779.504528][T24093] EXT4-fs: Ignoring removed nomblk_io_submit option [ 779.566207][T24093] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 779.584370][T24100] loop1: detected capacity change from 0 to 64 [ 779.605560][ T30] audit: type=1326 audit(2000000279.312:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.676182][ T30] audit: type=1326 audit(2000000279.312:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.784611][T22662] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.807176][ T30] audit: type=1326 audit(2000000279.312:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.859509][ T30] audit: type=1326 audit(2000000279.312:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.883287][ T30] audit: type=1326 audit(2000000279.312:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.906660][ T30] audit: type=1326 audit(2000000279.312:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 779.965175][ T30] audit: type=1326 audit(2000000279.321:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 780.013568][T24114] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7825'. [ 780.033540][ T30] audit: type=1326 audit(2000000279.321:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 780.098448][T24118] netlink: 'syz.4.7826': attribute type 21 has an invalid length. [ 780.122584][T24118] netlink: 164 bytes leftover after parsing attributes in process `syz.4.7826'. [ 780.139092][ T30] audit: type=1326 audit(2000000279.321:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24101 comm="syz.2.7819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7981b8f749 code=0x50000 [ 780.139316][T24120] loop8: detected capacity change from 0 to 512 [ 780.299339][T24120] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a846e02c, mo2=0022] [ 780.366798][T24120] System zones: 1-12 [ 780.383671][T24120] EXT4-fs error (device loop8): dx_probe:791: inode #2: comm syz.8.7822: Directory hole found for htree index block 0 [ 780.464907][T24120] EXT4-fs (loop8): Remounting filesystem read-only [ 780.471491][T24120] EXT4-fs (loop8): Cannot turn on journaled quota: type 0: error -117 [ 780.523392][T24120] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -117 [ 780.586971][T24120] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 780.753902][T24120] EXT4-fs (loop8): re-mounted 00000000-0000-0000-0000-000000000000. [ 780.903458][T24144] netlink: 'syz.1.7837': attribute type 1 has an invalid length. [ 780.933353][T22662] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 781.360981][T24164] loop1: detected capacity change from 0 to 256 [ 781.407864][T24164] exfat: Deprecated parameter 'utf8' [ 781.455128][T24164] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d) [ 781.508022][T24170] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 783.074527][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 783.117358][T24224] mmap: syz.3.7877 (24224): VmData 37482496 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data. [ 783.137207][T24184] loop1: detected capacity change from 0 to 32768 [ 783.164541][T24220] loop2: detected capacity change from 0 to 4096 [ 783.214146][T24184] XFS (loop1): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 783.275819][T24220] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 783.391085][T24220] ntfs3(loop2): ino=5, "/" indx_read [ 783.412333][T24184] XFS (loop1): Ending clean mount [ 783.566793][ T5940] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22. [ 783.593148][ T5938] XFS (loop1): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 783.652058][ T7979] usb 9-1: new full-speed USB device number 4 using dummy_hcd [ 783.717437][T24246] loop6: detected capacity change from 0 to 512 [ 783.769575][T16836] usb 4-1: new high-speed USB device number 115 using dummy_hcd [ 783.770765][T24246] EXT4-fs: Ignoring removed nobh option [ 783.837385][T24246] EXT4-fs (loop6): Test dummy encryption mode enabled [ 783.846522][ T7979] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xDF, changing to 0x8F [ 783.878265][ T7979] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 783.911598][T24246] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2 [ 783.913540][ T7979] usb 9-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=ec.c1 [ 783.951743][T16836] usb 4-1: Using ep0 maxpacket: 32 [ 783.964267][T16836] usb 4-1: config 0 has an invalid interface number: 136 but max is 0 [ 783.973562][T16836] usb 4-1: config 0 has no interface number 0 [ 783.973793][T24246] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.7886: invalid indirect mapped block 2683928664 (level 1) [ 783.979674][T16836] usb 4-1: config 0 interface 136 altsetting 0 has an endpoint descriptor with address 0xAD, changing to 0x8D [ 783.979708][T16836] usb 4-1: config 0 interface 136 altsetting 0 endpoint 0x8D has invalid wMaxPacketSize 0 [ 783.979735][T16836] usb 4-1: config 0 interface 136 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 0 [ 783.979764][T16836] usb 4-1: config 0 interface 136 altsetting 0 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 783.979798][T16836] usb 4-1: config 0 interface 136 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 783.979845][T16836] usb 4-1: New USB device found, idVendor=0763, idProduct=1021, bcdDevice=8e.c0 [ 783.979873][T16836] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 783.982843][T16836] usb 4-1: config 0 descriptor?? [ 784.058397][ T7979] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 784.089385][T16836] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 784.140169][ T7979] usb 9-1: Product: syz [ 784.153857][T24246] EXT4-fs (loop6): Remounting filesystem read-only [ 784.169826][ T7979] usb 9-1: Manufacturer: syz [ 784.180886][ T7979] usb 9-1: SerialNumber: syz [ 784.191849][T24246] EXT4-fs (loop6): 1 truncate cleaned up [ 784.205224][ T7979] usb 9-1: config 0 descriptor?? [ 784.249614][T24246] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 784.387971][T16874] usb 4-1: USB disconnect, device number 115 [ 784.481515][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 784.523976][ T7979] input: Griffin PowerMate as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input65 [ 784.604817][ C1] powermate: config urb returned -71 [ 784.610379][ C1] powermate: config urb returned -71 [ 784.615993][ C1] powermate: config urb returned -71 [ 784.622183][ C1] powermate: config urb returned -71 [ 784.629622][T24267] mac80211_hwsim hwsim2 wlan0: entered promiscuous mode [ 784.643498][T24267] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 784.675240][ T7979] usb 9-1: USB disconnect, device number 4 [ 784.681174][ C1] powermate 9-1:0.0: powermate_irq - usb_submit_urb failed with result: -19 [ 785.135997][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 785.142422][ T1298] ieee802154 phy1 wpan1: encryption failed: -22 [ 785.284604][T24290] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7905'. [ 785.296090][T24290] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7905'. [ 785.338408][T24290] netlink: 24 bytes leftover after parsing attributes in process `syz.8.7905'. [ 785.535080][ T7979] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 785.683415][T24310] netlink: 'syz.3.7914': attribute type 1 has an invalid length. [ 785.748464][ T7979] usb 2-1: Using ep0 maxpacket: 8 [ 785.760681][ T7979] usb 2-1: config 0 has an invalid interface number: 2 but max is 0 [ 785.778014][T24315] overlayfs: missing 'lowerdir' [ 785.785908][ T7979] usb 2-1: config 0 has no interface number 0 [ 785.805851][ T7979] usb 2-1: config 0 interface 2 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 785.837640][ T7979] usb 2-1: config 0 interface 2 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 785.858709][ T7979] usb 2-1: config 0 interface 2 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 785.893289][ T7979] usb 2-1: config 0 interface 2 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 0 [ 785.924779][ T7979] usb 2-1: New USB device found, idVendor=05da, idProduct=0099, bcdDevice=d5.82 [ 785.951528][ T7979] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 785.984558][ T7979] usb 2-1: Product: syz [ 785.993026][ T7979] usb 2-1: Manufacturer: syz [ 786.010493][ T7979] usb 2-1: SerialNumber: syz [ 786.032797][T24323] loop8: detected capacity change from 0 to 256 [ 786.070050][ T7979] usb 2-1: config 0 descriptor?? [ 786.136360][T24330] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 786.172813][T24323] FAT-fs (loop8): Directory bread(block 64) failed [ 786.188293][T24323] FAT-fs (loop8): Directory bread(block 65) failed [ 786.221495][T24323] FAT-fs (loop8): Directory bread(block 66) failed [ 786.257566][T24323] FAT-fs (loop8): Directory bread(block 67) failed [ 786.311360][ T7979] microtek usb (rev 0.4.3): can only deal with bulk endpoints; endpoint 2 is not bulk. [ 786.322730][T24323] FAT-fs (loop8): Directory bread(block 68) failed [ 786.356204][T24323] FAT-fs (loop8): Directory bread(block 69) failed [ 786.365043][ T7979] microtek usb (rev 0.4.3): can only deal with bulk endpoints; endpoint 6 is not bulk. [ 786.374047][T24323] FAT-fs (loop8): Directory bread(block 70) failed [ 786.387960][T24323] FAT-fs (loop8): Directory bread(block 71) failed [ 786.425096][ T7979] microtek usb (rev 0.4.3): couldn't find two input bulk endpoints. Bailing out. [ 786.434755][T24323] FAT-fs (loop8): Directory bread(block 72) failed [ 786.463082][T24323] FAT-fs (loop8): Directory bread(block 73) failed [ 786.476780][ T7979] usb 2-1: USB disconnect, device number 6 [ 786.718324][T24342] bond1: Removing last arp target with arp_interval on [ 786.744737][T24342] bond1: entered promiscuous mode [ 786.750311][T24342] bond1: entered allmulticast mode [ 786.756183][T24342] 8021q: adding VLAN 0 to HW filter on device bond1 [ 786.937478][T24351] xt_l2tp: v2 doesn't support IP mode [ 787.086133][T24359] loop1: detected capacity change from 0 to 256 [ 787.220763][T24359] FAT-fs (loop1): Directory bread(block 64) failed [ 787.268557][T24359] FAT-fs (loop1): Directory bread(block 65) failed [ 787.301100][T24359] FAT-fs (loop1): Directory bread(block 66) failed [ 787.307662][T24359] FAT-fs (loop1): Directory bread(block 67) failed [ 787.352963][T24359] FAT-fs (loop1): Directory bread(block 68) failed [ 787.374077][T24359] FAT-fs (loop1): Directory bread(block 69) failed [ 787.402790][T24359] FAT-fs (loop1): Directory bread(block 70) failed [ 787.420794][T24359] FAT-fs (loop1): Directory bread(block 71) failed [ 787.448469][T24359] FAT-fs (loop1): Directory bread(block 72) failed [ 787.491592][T24359] FAT-fs (loop1): Directory bread(block 73) failed [ 787.688659][T24381] loop2: detected capacity change from 0 to 256 [ 787.802123][T24381] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d) [ 787.882934][T24381] exFAT-fs (loop2): start_clu is invalid cluster(0x400) [ 788.552842][T24406] loop3: detected capacity change from 0 to 4096 [ 788.584788][T24406] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 788.675300][T24412] loop4: detected capacity change from 0 to 4096 [ 788.727573][T24418] loop2: detected capacity change from 0 to 512 [ 788.770687][T24406] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 788.780408][T24418] EXT4-fs: Ignoring removed nobh option [ 788.804683][T24418] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 788.850817][T24418] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842e02c, mo2=0002] [ 788.886747][T24418] EXT4-fs (loop2): orphan cleanup on readonly fs [ 788.904837][T24379] loop6: detected capacity change from 0 to 32768 [ 788.975029][T24379] ERROR: (device loop6): dbAllocAG: unable to allocate blocks [ 788.975029][T24379] [ 788.988875][T24418] EXT4-fs error (device loop2): ext4_clear_blocks:876: inode #11: comm syz.2.7968: attempt to clear invalid blocks 1024 len 1 [ 789.116102][T24418] EXT4-fs (loop2): Remounting filesystem read-only [ 789.211770][T24418] EXT4-fs (loop2): 1 truncate cleaned up [ 789.252971][T24418] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 789.460326][ T5940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 789.490941][T24433] netlink: 'syz.4.7975': attribute type 1 has an invalid length. [ 789.545951][T24433] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7975'. [ 789.627616][T24435] openvswitch: netlink: IP tunnel dst address not specified [ 789.669118][ T30] kauditd_printk_skb: 2668 callbacks suppressed [ 789.669141][ T30] audit: type=1326 audit(2000000288.737:2815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 789.776054][ T30] audit: type=1326 audit(2000000288.774:2816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 789.897934][ T30] audit: type=1326 audit(2000000288.774:2817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.023600][ T30] audit: type=1326 audit(2000000288.774:2818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.079821][T24445] loop4: detected capacity change from 0 to 4096 [ 790.135768][ T30] audit: type=1326 audit(2000000288.774:2819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.201356][T24457] loop1: detected capacity change from 0 to 512 [ 790.252313][ T30] audit: type=1326 audit(2000000288.774:2820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.283114][ T7979] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 790.336486][ T30] audit: type=1326 audit(2000000288.774:2821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.452581][T24457] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 790.475487][ T30] audit: type=1326 audit(2000000288.774:2822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.506966][ T7979] usb 7-1: Using ep0 maxpacket: 32 [ 790.523746][T24457] ext4 filesystem being mounted at /1351/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 790.535831][ T30] audit: type=1326 audit(2000000288.784:2823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.558935][ T30] audit: type=1326 audit(2000000288.784:2824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24436 comm="syz.6.7979" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f704538f749 code=0x7ffc0000 [ 790.595222][ T7979] usb 7-1: config index 0 descriptor too short (expected 35577, got 27) [ 790.637252][ T7979] usb 7-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 790.645912][ T7979] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 790.677832][ T7979] usb 7-1: config 1 has no interface number 0 [ 790.685113][ T7979] usb 7-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 790.699521][ T7979] usb 7-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 790.711692][ T7979] usb 7-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 790.724997][ T7979] usb 7-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 790.800203][ T7979] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 790.857714][ T5938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 790.870312][ T7979] snd_usb_pod 7-1:1.1: Line 6 Pocket POD found [ 791.107904][ T7979] snd_usb_pod 7-1:1.1: cannot start listening: -90 [ 791.115134][ T7979] snd_usb_pod 7-1:1.1: Line 6 Pocket POD now disconnected [ 791.156914][T24490] Invalid source name [ 791.166051][ T7979] snd_usb_pod 7-1:1.1: probe with driver snd_usb_pod failed with error -90 [ 791.178348][T24490] UBIFS error (pid: 24490): cannot open "./file0", error -22 [ 791.340442][ T7979] usb 7-1: USB disconnect, device number 6 [ 791.460419][T24504] netlink: 'syz.4.8009': attribute type 2 has an invalid length. [ 791.507311][T24504] netlink: 'syz.4.8009': attribute type 8 has an invalid length. [ 791.530806][T24504] netlink: 76 bytes leftover after parsing attributes in process `syz.4.8009'. [ 792.145939][T24531] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 792.163190][T24530] IPv6: sit1: Disabled Multicast RS [ 792.796428][T16874] usb 5-1: new high-speed USB device number 113 using dummy_hcd [ 792.805483][T24552] IPVS: set_ctl: invalid protocol: 1 10.1.1.2:0 [ 793.015706][T16874] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 793.031574][T16874] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 793.074370][T16874] usb 5-1: config 220 has no interface number 2 [ 793.099753][T16874] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 793.156903][T16874] usb 5-1: config 220 interface 0 has no altsetting 0 [ 793.181352][T16874] usb 5-1: config 220 interface 76 has no altsetting 0 [ 793.188303][T16874] usb 5-1: config 220 interface 1 has no altsetting 0 [ 793.231124][T16874] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 793.243855][T24524] loop8: detected capacity change from 0 to 32768 [ 793.256551][T16874] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 793.277618][T16874] usb 5-1: Product: syz [ 793.281815][T16874] usb 5-1: Manufacturer: syz [ 793.321110][T16874] usb 5-1: SerialNumber: syz [ 793.340695][T24565] loop3: detected capacity change from 0 to 4096 [ 793.363446][T24524] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 793.410985][T24577] loop2: detected capacity change from 0 to 512 [ 793.417257][T24565] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 793.504622][T24577] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 793.530860][T24524] XFS (loop8): Ending clean mount [ 793.599062][T16874] usb 5-1: selecting invalid altsetting 0 [ 793.608472][T24565] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 793.633186][T24524] XFS (loop8): Quotacheck needed: Please wait. [ 793.653469][T16874] uvcvideo 5-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 793.655605][T24565] ntfs3(loop3): Failed to load $Extend (-22). [ 793.660793][T16874] uvcvideo 5-1:220.0: No valid video chain found. [ 793.693784][T24565] ntfs3(loop3): Failed to initialize $Extend. [ 793.792384][T24524] XFS (loop8): Quotacheck: Done. [ 793.793353][T16874] usb 5-1: selecting invalid altsetting 0 [ 793.831384][T16874] usbtest 5-1:220.1: probe with driver usbtest failed with error -22 [ 793.835745][ T5940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 793.885072][T16874] usb 5-1: USB disconnect, device number 113 [ 794.093555][T22662] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 794.183164][T24598] ieee802154 phy0 wpan0: encryption failed: -22 [ 794.567559][T24608] trusted_key: encrypted_key: master key parameter 'user:' is invalid [ 795.082785][T24625] mac80211_hwsim hwsim28 4: renamed from wlan1 [ 795.405165][T24637] loop8: detected capacity change from 0 to 512 [ 795.446208][T24641] loop1: detected capacity change from 0 to 256 [ 795.480884][T24637] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem [ 795.528816][T24637] EXT4-fs error (device loop8): ext4_orphan_get:1418: comm syz.8.8070: bad orphan inode 15 [ 795.551570][T24645] xt_TCPMSS: Only works on TCP SYN packets [ 795.598764][T24637] ext4_test_bit(bit=14, block=5) = 0 [ 795.633898][T24637] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 795.670961][T24651] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8076'. [ 795.865435][T22662] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 796.110220][T24673] loop4: detected capacity change from 0 to 2048 [ 796.147939][T24673] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 796.264365][T24673] EXT4-fs error (device loop4): ext4_find_extent:939: inode #2: comm syz.4.8086: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4) [ 796.357806][T24673] EXT4-fs (loop4): Remounting filesystem read-only [ 796.527388][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 797.239332][T24707] loop2: detected capacity change from 0 to 4096 [ 797.436404][T24707] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 797.454041][T24715] loop8: detected capacity change from 0 to 4096 [ 797.488069][T24715] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512). [ 797.517359][T24707] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22. [ 797.608053][T24715] ntfs3(loop8): Failed to initialize $Extend/$Reparse. [ 797.678600][T24715] ntfs3(loop8): ino=1e, mi_enum_attr [ 797.710205][T24715] ntfs3(loop8): ino=1e, mi_enum_attr [ 797.785320][ T5940] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22. [ 797.971429][T24738] xt_connbytes: Forcing CT accounting to be enabled [ 798.012347][T24740] netlink: 'syz.2.8115': attribute type 1 has an invalid length. [ 798.400633][ T7979] usb 9-1: new high-speed USB device number 5 using dummy_hcd [ 798.588965][ T7979] usb 9-1: config 0 has an invalid interface number: 255 but max is 0 [ 798.616516][ T7979] usb 9-1: config 0 has no interface number 0 [ 798.648282][ T7979] usb 9-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30 [ 798.706880][ T7979] usb 9-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 798.756008][ T7979] usb 9-1: config 0 interface 255 has no altsetting 0 [ 798.782851][ T7979] usb 9-1: New USB device found, idVendor=0bda, idProduct=0177, bcdDevice=7d.0b [ 798.806975][ T7979] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 798.850792][ T7979] usb 9-1: config 0 descriptor?? [ 798.859272][T24723] loop1: detected capacity change from 0 to 32768 [ 798.885329][ T7979] ums-realtek 9-1:0.255: USB Mass Storage device detected [ 798.919168][T24776] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8129'. [ 798.947489][T24776] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8129'. [ 799.004144][T24723] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 799.107121][ T7979] usb 9-1: USB disconnect, device number 5 [ 799.145684][T24773] loop3: detected capacity change from 0 to 4096 [ 799.263281][T24723] XFS (loop1): Ending clean mount [ 799.327288][T24773] ntfs3(loop3): MFT: r=19, expect seq=1 instead of a48d! [ 799.363182][T24773] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 799.452234][ T5938] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 799.525009][ T9] usb 7-1: new high-speed USB device number 7 using dummy_hcd [ 799.716989][ T9] usb 7-1: Using ep0 maxpacket: 8 [ 799.734226][ T9] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 799.792557][ T9] usb 7-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 799.841974][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 799.892023][ T9] usb 7-1: config 0 descriptor?? [ 799.921000][ T9] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 800.028603][T24815] loop2: detected capacity change from 0 to 16 [ 800.080633][T24815] erofs (device loop2): mounted with root inode @ nid 36. [ 800.144872][ T9] gspca_vc032x: reg_r err -32 [ 800.149640][ T9] vc032x 7-1:0.0: probe with driver vc032x failed with error -32 [ 800.183678][T24818] loop4: detected capacity change from 0 to 256 [ 800.211474][ T9] usb 7-1: USB disconnect, device number 7 [ 800.227628][T24818] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x7c19779b, utbl_chksum : 0xe619d30d) [ 800.624950][T24839] netlink: 10 bytes leftover after parsing attributes in process `syz.4.8151'. [ 800.871288][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 800.996093][T24851] loop4: detected capacity change from 0 to 256 [ 801.269449][T24868] netlink: 'syz.2.8165': attribute type 1 has an invalid length. [ 801.299066][ T9] usb 5-1: new high-speed USB device number 114 using dummy_hcd [ 801.299928][T16874] usb 7-1: new full-speed USB device number 8 using dummy_hcd [ 801.497147][ T9] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 801.521461][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 7 [ 801.533048][T16874] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 801.548300][T16874] usb 7-1: config 0 interface 0 altsetting 1 has an endpoint descriptor with address 0x6E, changing to 0xE [ 801.562371][T24876] AppArmor: change_hat: Invalid input 'x' [ 801.579620][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024 [ 801.598670][T16874] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0xE has an invalid bInterval 0, changing to 10 [ 801.659800][T16874] usb 7-1: config 0 interface 0 altsetting 1 endpoint 0xE has invalid wMaxPacketSize 0 [ 801.667081][ T9] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 801.707804][ T9] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 801.714663][T16874] usb 7-1: config 0 interface 0 has no altsetting 0 [ 801.730464][ T9] usb 5-1: Manufacturer: syz [ 801.772624][T16874] usb 7-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 801.774794][ T9] usb 5-1: config 0 descriptor?? [ 801.804188][T16874] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 801.812201][T16874] usb 7-1: Product: syz [ 801.853801][ T9] igorplugusb 5-1:0.0: endpoint incorrect [ 801.855113][T16874] usb 7-1: Manufacturer: syz [ 801.899572][T16874] usb 7-1: SerialNumber: syz [ 801.941703][T16874] usb 7-1: config 0 descriptor?? [ 802.125443][ T9] usb 5-1: USB disconnect, device number 114 [ 802.450362][T16874] usb 7-1: USB disconnect, device number 8 [ 802.691097][T24918] netlink: 32 bytes leftover after parsing attributes in process `syz.1.8186'. [ 803.253580][T24942] loop1: detected capacity change from 0 to 1024 [ 803.272790][T24931] loop2: detected capacity change from 0 to 4096 [ 803.309188][T24931] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 803.425220][T24931] ntfs3(loop2): ino=19, mi_enum_attr [ 803.432181][T24948] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check. [ 803.504422][T24931] ntfs3(loop2): failed to convert "076c" to cp949 [ 803.535210][T24931] ntfs3(loop2): ino=20, mi_enum_attr [ 803.942357][T24965] loop3: detected capacity change from 0 to 256 [ 803.949751][T24965] exfat: Deprecated parameter 'namecase' [ 804.000829][T24965] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 804.098051][T24969] loop8: detected capacity change from 0 to 2048 [ 804.170520][T24969] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 804.789473][T24997] loop4: detected capacity change from 0 to 512 [ 804.871287][T24999] netlink: 172 bytes leftover after parsing attributes in process `syz.1.8226'. [ 804.880377][T24999] netlink: 64 bytes leftover after parsing attributes in process `syz.1.8226'. [ 804.906347][T24997] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 804.935503][T24999] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8226'. [ 804.952847][T24997] ext4 filesystem being mounted at /1384/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 805.147597][T25009] loop1: detected capacity change from 0 to 512 [ 805.214147][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 805.415136][T24982] loop2: detected capacity change from 0 to 32768 [ 805.489932][T25017] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8234'. [ 805.542956][T24982] ERROR: (device loop2): diAllocAG: nfreeinos = 0, but iag on freelist [ 805.542956][T24982] [ 805.595988][T24982] ERROR: (device loop2): remounting filesystem as read-only [ 805.630564][T24982] ialloc: diAlloc returned -5! [ 805.655508][T25022] loop1: detected capacity change from 0 to 2048 [ 805.924202][T24996] loop8: detected capacity change from 0 to 32768 [ 806.044596][T24996] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 806.230883][T24996] XFS (loop8): Ending clean mount [ 806.402667][T22662] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 806.417444][T25051] geneve1: entered allmulticast mode [ 806.433156][T16874] usb 4-1: new high-speed USB device number 116 using dummy_hcd [ 806.439301][T25051] A link change request failed with some changes committed already. Interface geneve1 may have been left with an inconsistent configuration, please check. [ 806.600166][T16874] usb 4-1: Using ep0 maxpacket: 16 [ 806.623696][T16874] usb 4-1: config 254 has an invalid interface number: 235 but max is 0 [ 806.624138][T25056] loop6: detected capacity change from 0 to 256 [ 806.647738][T16874] usb 4-1: config 254 has no interface number 0 [ 806.678903][ T7979] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 806.696536][T16874] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32 [ 806.722809][T16874] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 806.764377][T16874] usb 4-1: config 254 interface 235 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 806.796297][T16874] usb 4-1: config 254 interface 235 has no altsetting 0 [ 806.828890][T16874] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1 [ 806.859566][T16874] usb 4-1: New USB device strings: Mfr=1, Product=251, SerialNumber=3 [ 806.890883][T16874] usb 4-1: Product: syz [ 806.895674][ T7979] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 806.904182][ T7979] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 806.918048][T16874] usb 4-1: Manufacturer: syz [ 806.922652][T16874] usb 4-1: SerialNumber: syz [ 806.946171][ T7979] usb 2-1: config 220 has no interface number 2 [ 806.957744][ T7979] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 806.989240][T25042] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 806.996928][ T30] kauditd_printk_skb: 8 callbacks suppressed [ 806.996946][ T30] audit: type=1107 audit(2000000304.940:2833): pid=25065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='' [ 807.042366][ T7979] usb 2-1: config 220 interface 0 has no altsetting 0 [ 807.063852][ T7979] usb 2-1: config 220 interface 76 has no altsetting 0 [ 807.070796][ T7979] usb 2-1: config 220 interface 1 has no altsetting 0 [ 807.123505][ T7979] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 807.141673][ T7979] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 807.163314][ T7979] usb 2-1: Product: syz [ 807.175799][ T7979] usb 2-1: Manufacturer: syz [ 807.191739][ T7979] usb 2-1: SerialNumber: syz [ 807.248404][T25042] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 807.285205][T16874] usbtest 4-1:254.235: Linux gadget zero [ 807.299536][T16874] usbtest 4-1:254.235: high-speed {control in/out bulk-out int-in} tests (+alt) [ 807.446554][ T7979] usb 2-1: selecting invalid altsetting 0 [ 807.465580][ T7979] uvcvideo 2-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 807.480764][ T7979] uvcvideo 2-1:220.0: No valid video chain found. [ 807.535032][ T7979] usb 2-1: selecting invalid altsetting 0 [ 807.541237][ T7979] usbtest 2-1:220.1: probe with driver usbtest failed with error -22 [ 807.559006][ T913] usb 4-1: USB disconnect, device number 116 [ 807.607889][ T7979] usb 2-1: USB disconnect, device number 7 [ 807.749795][T25084] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 807.983780][T25070] loop4: detected capacity change from 0 to 32768 [ 808.001861][T25070] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8256 (25070) [ 808.034062][T25070] BTRFS info (device loop4): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 808.066516][T25070] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 808.287139][T25070] BTRFS info (device loop4): enabling ssd optimizations [ 808.345210][T25070] BTRFS info (device loop4): turning on async discard [ 808.389914][T25070] BTRFS info (device loop4): enabling free space tree [ 808.656790][ T5935] BTRFS info (device loop4): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 808.697926][T25130] loop2: detected capacity change from 0 to 16 [ 808.754580][T25134] loop8: detected capacity change from 0 to 256 [ 808.761112][T25130] erofs (device loop2): mounted with root inode @ nid 36. [ 808.849989][ T913] usb 7-1: new high-speed USB device number 9 using dummy_hcd [ 809.042301][ T913] usb 7-1: Using ep0 maxpacket: 8 [ 809.055529][ T913] usb 7-1: unable to get BOS descriptor or descriptor too short [ 809.113302][ T913] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xEE, changing to 0x8E [ 809.168695][ T913] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 809.203723][ T913] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 809.234139][ T913] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0xC has invalid maxpacket 1 [ 809.253268][ T913] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid wMaxPacketSize 0 [ 809.266861][ T913] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 809.291638][ T913] usb 7-1: New USB device found, idVendor=0763, idProduct=1002, bcdDevice=5f.84 [ 809.352451][ T913] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 809.370577][ T913] usb 7-1: Product: syz [ 809.399448][ T913] usb 7-1: Manufacturer: syz [ 809.404442][ T913] usb 7-1: SerialNumber: syz [ 809.455255][ T913] usb 7-1: config 0 descriptor?? [ 809.458574][T25105] loop1: detected capacity change from 0 to 32768 [ 809.470167][T25128] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22 [ 809.511096][T25105] ERROR: (device loop1): dtSearch: stack overrun! [ 809.511096][T25105] [ 809.527108][ T913] usb 7-1: Quirk or no altset; falling back to MIDI 1.0 [ 809.569502][T25105] ERROR: (device loop1): remounting filesystem as read-only [ 809.610894][T25105] btstack dump: [ 809.620615][T25105] bn = 0, index = 4 [ 809.638544][T25105] bn = 0, index = 4 [ 809.659772][T25105] bn = 0, index = 4 [ 809.696166][T25105] bn = 0, index = 4 [ 809.700012][T25105] bn = 0, index = 4 [ 809.716261][T25105] bn = 0, index = 4 [ 809.737890][T25105] bn = 0, index = 4 [ 809.771568][ T913] usb 7-1: USB disconnect, device number 9 [ 809.789889][T25105] bn = 0, index = 0 [ 809.800069][T25105] jfs_lookup: dtSearch returned -5 [ 809.895791][ T9246] udevd[9246]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 810.348606][T25176] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8300'. [ 810.376405][T25176] netlink: 36 bytes leftover after parsing attributes in process `syz.4.8300'. [ 810.436541][T25183] netlink: 6 bytes leftover after parsing attributes in process `syz.1.8303'. [ 810.780046][T25186] loop8: detected capacity change from 0 to 4096 [ 810.828421][T25186] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512). [ 811.026158][T25186] ntfs3(loop8): ino=1a, mi_enum_attr [ 811.038699][T25186] ntfs3(loop8): Mark volume as dirty due to NTFS errors [ 811.158634][T25210] netlink: 'syz.4.8315': attribute type 16 has an invalid length. [ 811.199350][T25210] netlink: 'syz.4.8315': attribute type 17 has an invalid length. [ 811.244897][T25214] loop2: detected capacity change from 0 to 128 [ 811.275245][T25215] loop6: detected capacity change from 0 to 16 [ 811.325326][T25215] erofs (device loop6): mounted with root inode @ nid 36. [ 811.379045][T25215] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 811.413005][T25210] bridge0: port 3(.`) entered blocking state [ 811.419219][T25210] bridge0: port 3(.`) entered forwarding state [ 811.441767][T25215] erofs (device loop6): failed to decompress -4 in[64, 4032] out[1851] [ 811.472727][T25210] 8021q: adding VLAN 0 to HW filter on device .` [ 811.487720][T25215] erofs (device loop6): read error -117 @ 43 of nid 36 [ 811.503992][T25210] bridge0: port 3(.`) entered disabled state [ 811.532974][T25210] 8021q: adding VLAN 0 to HW filter on device team0 [ 811.615684][T25210] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 812.069598][T25242] comedi comedi0: Cannot bond this driver to itself! [ 812.091939][T25244] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8334'. [ 812.129116][T25244] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 812.175345][T25244] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8334'. [ 812.294030][ T6154] usb 9-1: new high-speed USB device number 6 using dummy_hcd [ 812.321493][T25254] netlink: 48 bytes leftover after parsing attributes in process `syz.2.8339'. [ 812.326674][T25255] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8337'. [ 812.475700][ T6154] usb 9-1: Using ep0 maxpacket: 32 [ 812.490755][ T6154] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 812.505695][ T6154] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 812.526329][ T6154] usb 9-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 812.538914][ T6154] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 812.605368][ T6154] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 812.640920][ T6154] usb 9-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 812.661155][ T6154] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 812.682827][ T6154] usb 9-1: Product: syz [ 812.696149][ T6154] usb 9-1: Manufacturer: syz [ 812.704171][T25269] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 812.716082][ T6154] usb 9-1: SerialNumber: syz [ 812.753742][ T9] usb 7-1: new high-speed USB device number 10 using dummy_hcd [ 812.813183][ T6154] usb 9-1: config 0 descriptor?? [ 812.864359][ T6154] input: Generic X-Box pad as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/input/input66 [ 812.943982][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 812.962132][ T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 812.993783][ T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 813.034755][T25282] xt_connbytes: Forcing CT accounting to be enabled [ 813.053357][ T9] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 813.085339][ T9] usb 7-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 813.110124][ T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 813.152256][ T9] usb 7-1: config 0 descriptor?? [ 813.193109][ T6154] usb 9-1: USB disconnect, device number 6 [ 813.378831][ T9] hdpvr 7-1:0.0: firmware version 0x15 dated Š–¸&S¶3;¨“Ãx&X^„œ wÒΖŠ g/ƒ µn#»† [ 813.403569][T25285] bond2: option broadcast_neighbor: mode dependency failed, not supported in mode balance-rr(0) [ 813.438663][T25285] bond2 (unregistering): Released all slaves [ 813.551629][T25290] bond1 (unregistering): Released all slaves [ 813.594612][ T9] hdpvr 7-1:0.0: device init failed [ 813.620813][ T9] hdpvr 7-1:0.0: probe with driver hdpvr failed with error -12 [ 813.665394][ T9] usb 7-1: USB disconnect, device number 10 [ 813.830893][T25288] loop1: detected capacity change from 0 to 32768 [ 813.898335][T25288] __jfs_setxattr: xattr_size = 2175, new_size = 14921 [ 813.952667][T25301] loop8: detected capacity change from 0 to 1024 [ 814.189960][T25307] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 814.333950][T25311] loop3: detected capacity change from 0 to 1024 [ 814.445129][T25311] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 814.464890][ T913] usb 3-1: new high-speed USB device number 114 using dummy_hcd [ 814.565350][T25311] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.8366: missing EA_INODE flag [ 814.681334][T25311] EXT4-fs (loop3): Remounting filesystem read-only [ 814.711334][ T913] usb 3-1: Using ep0 maxpacket: 16 [ 814.729074][ T913] usb 3-1: config index 0 descriptor too short (expected 16456, got 72) [ 814.764388][T25295] loop4: detected capacity change from 0 to 32768 [ 814.773805][ T913] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 814.808155][T25295] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8358 (25295) [ 814.821340][ T913] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 814.841069][ T913] usb 3-1: config 0 has an invalid interface number: 125 but max is 1 [ 814.884177][T25332] loop6: detected capacity change from 0 to 64 [ 814.899423][ T913] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 814.935902][ T5926] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 814.938980][T25295] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 814.944992][ T913] usb 3-1: config 0 has no interface number 0 [ 815.018000][ T913] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 815.046685][T25295] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 815.074653][ T913] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 815.125898][ T913] usb 3-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 815.196649][ T913] usb 3-1: config 0 interface 125 has no altsetting 0 [ 815.213290][ T913] usb 3-1: config 0 interface 125 has no altsetting 1 [ 815.223227][ T913] usb 3-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 815.242683][ T913] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 815.264325][ T913] usb 3-1: Product: syz [ 815.273631][ T913] usb 3-1: Manufacturer: syz [ 815.279550][T25295] BTRFS info (device loop4): enabling ssd optimizations [ 815.286541][T25295] BTRFS info (device loop4): turning on async discard [ 815.315529][T25295] BTRFS info (device loop4): enabling free space tree [ 815.322621][ T913] usb 3-1: SerialNumber: syz [ 815.374861][ T913] usb 3-1: config 0 descriptor?? [ 815.633440][ T5935] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 815.784079][T25368] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 815.848164][T25368] CIFS mount error: No usable UNC path provided in device string! [ 815.848164][T25368] [ 815.940892][T25368] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 815.953099][ T913] usb 3-1: USB disconnect, device number 114 [ 816.175760][T25381] loop3: detected capacity change from 0 to 256 [ 817.215702][ T30] audit: type=1326 audit(2000000314.496:2834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.293933][ T30] audit: type=1326 audit(2000000314.496:2835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.345422][ T30] audit: type=1326 audit(2000000314.515:2836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.369163][ T30] audit: type=1326 audit(2000000314.515:2837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.424260][ T30] audit: type=1326 audit(2000000314.533:2838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.490782][ T30] audit: type=1326 audit(2000000314.533:2839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.536605][ T30] audit: type=1326 audit(2000000314.533:2840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.560968][ T30] audit: type=1326 audit(2000000314.533:2841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.567226][T25435] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8410'. [ 817.584368][ T30] audit: type=1326 audit(2000000314.533:2842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25424 comm="syz.3.8405" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fb272b8f749 code=0x7ffc0000 [ 817.641497][T25436] loop6: detected capacity change from 0 to 512 [ 817.649398][T25438] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8411'. [ 817.701987][T25442] loop1: detected capacity change from 0 to 256 [ 817.716384][T25436] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 817.727983][T25442] exfat: Deprecated parameter 'namecase' [ 817.760022][T25436] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002] [ 817.771249][T25442] exfat: Deprecated parameter 'namecase' [ 817.778639][T25442] exfat: Deprecated parameter 'utf8' [ 817.784701][T25442] exfat: Deprecated parameter 'utf8' [ 817.802022][T25436] EXT4-fs (loop6): orphan cleanup on readonly fs [ 817.809314][T25436] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.8412: bad orphan inode 267 [ 817.824744][T25436] EXT4-fs (loop6): Remounting filesystem read-only [ 817.833132][T25436] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 817.848724][T25442] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5417aa89, utbl_chksum : 0xe619d30d) [ 818.025377][T25453] usb usb8: usbfs: process 25453 (syz.4.8417) did not claim interface 1 before use [ 818.155139][T25455] netdevsim netdevsim8 netdevsim0: entered allmulticast mode [ 818.169701][T25455] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 818.232363][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 818.387023][T25463] netlink: 'syz.1.8424': attribute type 11 has an invalid length. [ 818.876907][T25483] xt_TPROXY: Can be used only with -p tcp or -p udp [ 818.998634][T25489] netlink: 16 bytes leftover after parsing attributes in process `syz.2.8437'. [ 819.041064][T25489] tc_dump_action: action bad kind [ 819.294902][T25504] netlink: 12 bytes leftover after parsing attributes in process `syz.6.8443'. [ 819.840122][T25531] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8458'. [ 820.112965][T25537] loop4: detected capacity change from 0 to 4096 [ 820.234587][T25537] ntfs3(loop4): ino=b, Correct links count -> 1. [ 820.255073][T25537] ntfs3(loop4): ino=18, mi_enum_attr [ 820.290607][T25537] ntfs3: Cannot use different iocharset when remounting! [ 820.940048][T25563] loop6: detected capacity change from 0 to 4096 [ 821.106149][T25577] bond0: option arp_all_targets: invalid value (16777216) [ 821.149864][T25577] bond0 (unregistering): Released all slaves [ 821.264469][T25541] loop3: detected capacity change from 0 to 32768 [ 821.340702][T25541] JBD2: Ignoring recovery information on journal [ 821.542658][T25541] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 821.878367][T25609] loop4: detected capacity change from 0 to 256 [ 821.976343][T25609] FAT-fs (loop4): Directory bread(block 64) failed [ 822.006273][T25609] FAT-fs (loop4): Directory bread(block 65) failed [ 822.012968][T25609] FAT-fs (loop4): Directory bread(block 66) failed [ 822.057382][T25609] FAT-fs (loop4): Directory bread(block 67) failed [ 822.096530][ T5926] ocfs2: Unmounting device (7,3) on (node local) [ 822.098330][T25609] FAT-fs (loop4): Directory bread(block 68) failed [ 822.181232][T25609] FAT-fs (loop4): Directory bread(block 69) failed [ 822.240729][T25609] FAT-fs (loop4): Directory bread(block 70) failed [ 822.247309][T25609] FAT-fs (loop4): Directory bread(block 71) failed [ 822.304494][T25609] FAT-fs (loop4): Directory bread(block 72) failed [ 822.311103][T25609] FAT-fs (loop4): Directory bread(block 73) failed [ 822.366618][T25623] loop2: detected capacity change from 0 to 512 [ 822.432496][T25625] loop6: detected capacity change from 0 to 764 [ 822.447262][T25623] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 822.457816][T25623] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.8503: Failed to acquire dquot type 1 [ 822.471270][T25623] EXT4-fs (loop2): 1 truncate cleaned up [ 822.481622][T25623] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 822.494990][T25623] ext4 filesystem being mounted at /1423/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 822.524224][T25623] EXT4-fs error (device loop2): ext4_acquire_dquot:6945: comm syz.2.8503: Failed to acquire dquot type 1 [ 822.776831][ T5940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 823.896364][T25678] netlink: 6 bytes leftover after parsing attributes in process `syz.1.8529'. [ 823.952184][T25678] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 824.203846][T25647] loop2: detected capacity change from 0 to 32768 [ 824.313123][T25647] jfs_strtoUCS: char2uni returned -22. [ 824.332144][T25647] charset = cp869, char = 0x83 [ 824.435853][T25701] netlink: 168 bytes leftover after parsing attributes in process `syz.1.8540'. [ 824.674699][T25711] netlink: 'syz.3.8544': attribute type 3 has an invalid length. [ 825.016505][T25725] loop2: detected capacity change from 0 to 1024 [ 825.192856][T25734] netlink: 'syz.3.8552': attribute type 1 has an invalid length. [ 825.234483][T25734] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8552'. [ 825.380620][T25707] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 825.387155][T25707] Bluetooth: hci2: Error when powering off device on rfkill (-4) [ 825.408275][T25740] loop1: detected capacity change from 0 to 164 [ 825.493021][T25707] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 825.499036][T25707] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 825.629716][T25750] x_tables: ip_tables: osf match: only valid for protocol 6 [ 825.636146][T25751] xt_TCPMSS: Only works on TCP SYN packets [ 825.664346][T25707] Bluetooth: hci4: Opcode 0x0c1a failed: -4 [ 825.694325][T25707] Bluetooth: hci4: Error when powering off device on rfkill (-4) [ 825.866604][T25707] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 825.872942][T25707] Bluetooth: hci5: Error when powering off device on rfkill (-4) [ 825.937850][T25707] Bluetooth: hci6: Opcode 0x0c1a failed: -4 [ 825.947767][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 825.947786][ T30] audit: type=1326 audit(2000000322.659:2843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25756 comm="syz.1.8561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c3c98f749 code=0x7ffc0000 [ 826.012382][T25707] Bluetooth: hci6: Error when powering off device on rfkill (-4) [ 826.032009][ T30] audit: type=1326 audit(2000000322.659:2844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25756 comm="syz.1.8561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c3c98f749 code=0x7ffc0000 [ 826.066632][T25763] loop2: detected capacity change from 0 to 1024 [ 826.111975][ T30] audit: type=1326 audit(2000000322.696:2845): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25756 comm="syz.1.8561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f4c3c98f749 code=0x7ffc0000 [ 826.208991][ T30] audit: type=1326 audit(2000000322.696:2846): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25756 comm="syz.1.8561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4c3c98f749 code=0x7ffc0000 [ 826.273886][T25768] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 826.306256][T25772] loop4: detected capacity change from 0 to 16 [ 826.360267][T25772] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 826.496494][T25707] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 826.535750][T25707] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 827.357676][T25814] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8584'. [ 827.363282][T25815] netlink: 40 bytes leftover after parsing attributes in process `syz.3.8585'. [ 827.540332][T25822] netlink: 'syz.6.8588': attribute type 1 has an invalid length. [ 827.915772][T25840] bridge1: entered promiscuous mode [ 827.962092][ T913] usb 2-1: new full-speed USB device number 8 using dummy_hcd [ 827.964090][T25840] bridge1: entered allmulticast mode [ 828.164293][ T913] usb 2-1: config 0 has an invalid interface number: 172 but max is 0 [ 828.178104][ T913] usb 2-1: config 0 has no interface number 0 [ 828.227919][ T913] usb 2-1: New USB device found, idVendor=16d5, idProduct=650a, bcdDevice=83.b1 [ 828.259180][ T913] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 828.277351][ T913] usb 2-1: Product: syz [ 828.281538][ T913] usb 2-1: Manufacturer: syz [ 828.283513][ T30] audit: type=1326 audit(2000000324.846:2847): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25853 comm="syz.3.8602" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb272b8f749 code=0x0 [ 828.286978][ T913] usb 2-1: SerialNumber: syz [ 828.335466][ T913] usb 2-1: config 0 descriptor?? [ 828.343547][ T913] qmi_wwan 2-1:0.172: bogus CDC Union: master=0, slave=0 [ 828.362558][T25857] delete_channel: no stack [ 828.559432][ T913] qmi_wwan 2-1:0.172: probe with driver qmi_wwan failed with error -22 [ 828.657686][T25869] netlink: 16 bytes leftover after parsing attributes in process `syz.8.8607'. [ 828.792803][ T913] usb 2-1: USB disconnect, device number 8 [ 828.897628][T25880] xt_CT: You must specify a L4 protocol and not use inversions on it [ 829.373931][T25900] loop2: detected capacity change from 0 to 256 [ 829.406728][T25900] exfat: Deprecated parameter 'utf8' [ 829.451861][T25907] loop4: detected capacity change from 0 to 256 [ 829.473828][T25900] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 829.597036][T25907] FAT-fs (loop4): Directory bread(block 64) failed [ 829.633714][T25907] FAT-fs (loop4): Directory bread(block 65) failed [ 829.686580][T25907] FAT-fs (loop4): Directory bread(block 66) failed [ 829.693121][T25907] FAT-fs (loop4): Directory bread(block 67) failed [ 829.738246][T25907] FAT-fs (loop4): Directory bread(block 68) failed [ 829.780521][T25907] FAT-fs (loop4): Directory bread(block 69) failed [ 829.787142][T25907] FAT-fs (loop4): Directory bread(block 70) failed [ 829.824689][T25907] FAT-fs (loop4): Directory bread(block 71) failed [ 829.866553][T25907] FAT-fs (loop4): Directory bread(block 72) failed [ 829.873150][T25907] FAT-fs (loop4): Directory bread(block 73) failed [ 829.887243][ T913] usb 4-1: new high-speed USB device number 117 using dummy_hcd [ 830.133272][ T913] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 830.154570][ T913] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 830.175529][ T913] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 830.221795][ T913] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 830.254807][ T913] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 830.292378][ T913] usb 4-1: config 1 interface 1 has no altsetting 0 [ 830.330586][ T7979] usb 9-1: new high-speed USB device number 7 using dummy_hcd [ 830.348020][ T913] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 830.357310][ T913] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 830.381787][ T913] usb 4-1: Product: syz [ 830.400458][ T913] usb 4-1: Manufacturer: syz [ 830.410853][ T913] usb 4-1: SerialNumber: syz [ 830.435580][T25943] xt_CONNSECMARK: invalid mode: 66 [ 830.440891][T25942] loop1: detected capacity change from 0 to 16 [ 830.449647][T25942] erofs (device loop1): mounted with root inode @ nid 36. [ 830.479146][ T913] cdc_ncm 4-1:1.0: skipping garbage [ 830.500582][ T913] cdc_ncm 4-1:1.0: NCM or ECM functional descriptors missing [ 830.537479][ T913] cdc_ncm 4-1:1.0: bind() failure [ 830.554340][ T7979] usb 9-1: config 1 has an invalid interface number: 7 but max is 0 [ 830.576191][ T7979] usb 9-1: config 1 has no interface number 0 [ 830.582306][ T7979] usb 9-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 830.665807][ T7979] usb 9-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 830.717882][ T7979] usb 9-1: config 1 interface 7 altsetting 0 endpoint 0xC has an invalid bInterval 0, changing to 7 [ 830.772119][ T7979] usb 9-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 830.804937][ T7979] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 830.826543][ T7979] usb 9-1: Product: syz [ 830.839053][ T7979] usb 9-1: Manufacturer: syz [ 830.848522][T25948] loop4: detected capacity change from 0 to 4096 [ 830.863022][ T7979] usb 9-1: SerialNumber: syz [ 830.886398][T25948] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 830.888315][T25926] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22 [ 830.917125][ T913] usb 4-1: USB disconnect, device number 117 [ 830.997406][T25948] ntfs3(loop4): ino=19, mi_enum_attr [ 831.230229][T25926] raw-gadget.1 gadget.8: fail, usb_ep_enable returned -22 [ 831.284945][ T7979] usb 9-1: No status endpoint found [ 831.395441][T25972] netlink: 420 bytes leftover after parsing attributes in process `syz.4.8648'. [ 831.427132][T25972] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8648'. [ 831.456548][T25972] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8648'. [ 831.542695][ T913] usb 9-1: USB disconnect, device number 7 [ 831.547313][T25972] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8648'. [ 831.952191][T25988] netlink: 'syz.3.8655': attribute type 1 has an invalid length. [ 832.053842][T25994] netlink: 'syz.4.8657': attribute type 20 has an invalid length. [ 832.081216][ T9] usb 2-1: new full-speed USB device number 9 using dummy_hcd [ 832.082397][T25958] loop2: detected capacity change from 0 to 32768 [ 832.201018][T25958] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 832.273069][ T9] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 832.290741][ T9] usb 2-1: config 0 has no interface number 0 [ 832.313536][ T9] usb 2-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 832.336437][ T9] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 832.368129][ T9] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 832.380893][ T9] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 832.390231][ T9] usb 2-1: Product: syz [ 832.394392][ T9] usb 2-1: SerialNumber: syz [ 832.413051][ T9] usb 2-1: config 0 descriptor?? [ 832.480177][ T9] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input69 [ 832.555524][T25958] XFS (loop2): Ending clean mount [ 832.600485][T25958] XFS (loop2): Quotacheck needed: Please wait. [ 832.670531][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.678970][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.686104][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.693319][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.700585][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.707761][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.714947][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.722082][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.729311][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.736470][ C0] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 832.772203][ T9] usb 2-1: USB disconnect, device number 9 [ 832.778343][ C0] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 832.857079][T25958] XFS (loop2): Quotacheck: Done. [ 832.883574][ T9] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 833.022939][T26033] netlink: 'syz.4.8668': attribute type 32 has an invalid length. [ 833.165918][ T5940] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 833.996752][T26068] loop6: detected capacity change from 0 to 512 [ 834.059134][ T913] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 834.118332][T26068] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 834.214506][T26068] ext4 filesystem being mounted at /292/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 834.250880][ T913] usb 2-1: Using ep0 maxpacket: 8 [ 834.252678][ T913] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 834.259086][ T913] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 834.259117][ T913] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 834.259143][ T913] usb 2-1: Product: syz [ 834.259163][ T913] usb 2-1: Manufacturer: syz [ 834.259183][ T913] usb 2-1: SerialNumber: syz [ 834.321337][T26068] EXT4-fs error (device loop6): ext4_xattr_block_find:1874: inode #15: comm syz.6.8685: corrupted xattr block 32: overlapping e_value [ 834.471726][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 834.510926][ T913] usb 2-1: Handspring Visor / Palm OS: No valid connect info available [ 834.510958][ T913] usb 2-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 834.510982][ T913] usb 2-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 834.511006][ T913] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2 [ 834.696805][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.726474][ T913] usb 2-1: palm_os_3_probe - error -71 getting bytes available request [ 834.748946][ T913] visor 2-1:1.0: Handspring Visor / Palm OS converter detected [ 834.788302][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.817420][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.830398][ T913] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 834.858368][T26105] loop2: detected capacity change from 0 to 16 [ 834.866598][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.884174][ T913] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 834.887479][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.929269][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.959424][ T913] usb 2-1: USB disconnect, device number 10 [ 834.959506][T26105] erofs (device loop2): mounted with root inode @ nid 36. [ 834.972844][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 834.983997][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 835.017258][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 835.018003][ T913] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 835.061806][ T6199] hid-generic 0003:0004:0000.0001: unknown main item tag 0x0 [ 835.139390][ T6199] hid-generic 0003:0004:0000.0001: hidraw0: USB HID v0.00 Device [syz0] on syz1 [ 835.152233][ T913] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 835.207454][ T913] visor 2-1:1.0: device disconnected [ 835.544563][T26119] fido_id[26119]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 835.755672][T26138] loop4: detected capacity change from 0 to 1024 [ 835.871209][T26138] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 836.223751][ T5935] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 836.464911][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 837.195865][T26206] loop6: detected capacity change from 0 to 512 [ 837.249733][T26210] loop3: detected capacity change from 0 to 64 [ 837.276200][T26206] EXT4-fs (loop6): Test dummy encryption mode enabled [ 837.341805][T26206] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 837.425412][T26206] EXT4-fs error (device loop6): ext4_orphan_get:1418: comm syz.6.8737: bad orphan inode 131083 [ 837.510855][T26206] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 837.701882][T26222] loop1: detected capacity change from 0 to 1024 [ 837.760384][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 837.785161][T26222] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 838.122413][T26202] loop4: detected capacity change from 0 to 32768 [ 838.195788][T26202] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 838.246443][T26247] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8753'. [ 838.264849][T26202] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 838.402991][T26253] loop2: detected capacity change from 0 to 512 [ 838.443463][T26253] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 838.470363][T26253] EXT4-fs error (device loop2): ext4_iget_extra_inode:5075: inode #15: comm syz.2.8757: corrupted in-inode xattr: e_value out of bounds [ 838.521062][T26253] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.8757: couldn't read orphan inode 15 (err -117) [ 838.559358][ T5935] ocfs2: Unmounting device (7,4) on (node local) [ 838.567127][T26261] loop1: detected capacity change from 0 to 512 [ 838.586495][T26253] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 838.628786][T26261] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 838.674942][T26261] EXT4-fs (loop1): mounting ext2 file system using the ext4 subsystem [ 838.724455][T26268] loop6: detected capacity change from 0 to 128 [ 838.747545][T26261] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 838.756036][T26270] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8759'. [ 838.775008][T26261] System zones: 0-2, 18-18, 34-34 [ 838.801847][T26268] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 838.816519][T26261] EXT4-fs error (device loop1): ext4_orphan_get:1392: comm syz.1.8756: inode #15: comm syz.1.8756: iget: illegal inode # [ 838.879599][T26275] mkiss: ax0: crc mode is auto. [ 838.895078][T26268] ext4 filesystem being mounted at /306/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 838.903214][T26261] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.8756: couldn't read orphan inode 15 (err -117) [ 838.995649][T26261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 839.033831][ T5940] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 839.037407][T21355] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 839.095469][T26261] EXT4-fs error (device loop1): ext4_empty_dir:3086: inode #12: block 13: comm syz.1.8756: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=1 [ 839.130879][T26261] EXT4-fs warning (device loop1): ext4_empty_dir:3089: inode #12: comm syz.1.8756: directory missing '.' [ 839.400805][ T5938] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 839.701068][T26302] loop6: detected capacity change from 0 to 512 [ 839.778302][T26302] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.8774: inode has both inline data and extents flags [ 839.825276][T26302] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.8774: couldn't read orphan inode 15 (err -117) [ 839.837622][ T6154] usb 3-1: new high-speed USB device number 115 using dummy_hcd [ 839.884859][T26305] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 839.953226][T26302] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 840.071446][ T6154] usb 3-1: Using ep0 maxpacket: 32 [ 840.093743][ T6154] usb 3-1: unable to get BOS descriptor or descriptor too short [ 840.107716][ T6154] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 840.141031][ T6154] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 840.145326][T21355] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 840.174458][ T6154] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 840.203331][ T6154] usb 3-1: Product: syz [ 840.210129][T26314] xt_CT: No such helper "snmp_trap" [ 840.256064][ T6154] usb 3-1: Manufacturer: syz [ 840.266754][ T6154] usb 3-1: SerialNumber: syz [ 840.487447][T26331] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8785'. [ 840.525538][ T6154] usb 3-1: Invalid number of CPorts: 0 [ 840.543379][T26335] netlink: 'syz.3.8786': attribute type 7 has an invalid length. [ 840.557451][ T6154] es2_ap_driver 3-1:7.0: probe with driver es2_ap_driver failed with error -22 [ 840.575411][T26335] netlink: 'syz.3.8786': attribute type 8 has an invalid length. [ 840.583379][T26336] loop8: detected capacity change from 0 to 1024 [ 840.769953][ T6154] usb 3-1: USB disconnect, device number 115 [ 840.831854][T26344] loop4: detected capacity change from 0 to 256 [ 840.897284][ T1097] hfsplus: b-tree write err: -5, ino 4 [ 841.144966][T26354] loop4: detected capacity change from 0 to 128 [ 841.184689][T26354] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 841.248095][T26356] loop1: detected capacity change from 0 to 1764 [ 841.528283][T26369] loop2: detected capacity change from 0 to 256 [ 841.580811][ T30] audit: type=1326 audit(2000000337.282:2848): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26368 comm="syz.4.8800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85db8f749 code=0x7ffc0000 [ 841.603269][ C1] vkms_vblank_simulate: vblank timer overrun [ 841.624062][T26369] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 841.714378][T26369] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010364, chksum : 0x44009a1b, utbl_chksum : 0xe619d30d) [ 841.753970][ T30] audit: type=1326 audit(2000000337.282:2849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26368 comm="syz.4.8800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85db8f749 code=0x7ffc0000 [ 841.855247][ T30] audit: type=1326 audit(2000000337.282:2850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26368 comm="syz.4.8800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fd85db8f749 code=0x7ffc0000 [ 841.936265][ T30] audit: type=1326 audit(2000000337.282:2851): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26368 comm="syz.4.8800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85db8f749 code=0x7ffc0000 [ 841.958700][ C1] vkms_vblank_simulate: vblank timer overrun [ 842.023268][ T30] audit: type=1326 audit(2000000337.282:2852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26368 comm="syz.4.8800" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd85db8f749 code=0x7ffc0000 [ 842.045732][ C1] vkms_vblank_simulate: vblank timer overrun [ 842.145433][ T913] usb 4-1: new full-speed USB device number 118 using dummy_hcd [ 842.327450][ T913] usb 4-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 842.340174][ T913] usb 4-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 842.400165][ T913] usb 4-1: Product: syz [ 842.422321][ T913] usb 4-1: Manufacturer: syz [ 842.434541][ T913] usb 4-1: SerialNumber: syz [ 842.490476][ T913] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 842.581508][ T30] audit: type=1326 audit(2000000338.208:2853): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26408 comm="syz.8.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00ced8f749 code=0x7ffc0000 [ 842.627123][ T31] INFO: task syz-executor:5932 blocked for more than 143 seconds. [ 842.656566][ T31] Not tainted syzkaller #0 [ 842.688845][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 842.696367][ T30] audit: type=1326 audit(2000000338.236:2854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26408 comm="syz.8.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00ced8f749 code=0x7ffc0000 [ 842.726499][ T31] task:syz-executor state:D stack:21192 pid:5932 tgid:5932 ppid:1 task_flags:0x400140 flags:0x00080002 [ 842.762832][ T30] audit: type=1326 audit(2000000338.245:2855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26408 comm="syz.8.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7f00ced8f749 code=0x7ffc0000 [ 842.786359][ T31] Call Trace: [ 842.789657][ T31] [ 842.792594][ T31] __schedule+0x1798/0x4cc0 [ 842.813899][ T31] ? __pfx___schedule+0x10/0x10 [ 842.819237][ T30] audit: type=1326 audit(2000000338.245:2856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26408 comm="syz.8.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00ced8f749 code=0x7ffc0000 [ 842.821727][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.862719][ T30] audit: type=1326 audit(2000000338.245:2857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26408 comm="syz.8.8823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00ced8f749 code=0x7ffc0000 [ 842.868045][ T31] ? schedule+0x91/0x360 [ 842.885134][ C1] vkms_vblank_simulate: vblank timer overrun [ 842.896161][ T31] schedule+0x165/0x360 [ 842.900344][ T31] io_schedule+0x80/0xd0 [ 842.905004][ T31] folio_wait_bit_common+0x6b0/0xb80 [ 842.905644][ T913] vp7045: USB control message 'in' went wrong. [ 842.910443][ T31] ? __pfx_folio_wait_bit_common+0x10/0x10 [ 842.920643][ T913] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 842.935072][ T913] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 842.944639][ T31] ? __pfx_wake_page_function+0x10/0x10 [ 842.947842][ T913] usb 4-1: USB disconnect, device number 118 [ 842.955714][ T31] ? folios_put_refs+0x584/0x670 [ 842.961448][ T31] ? __pfx_find_lock_entries+0x10/0x10 [ 842.967034][ T31] __filemap_get_folio+0x139/0xaf0 [ 842.972751][ T31] ? mlock_drain_local+0x28e/0x490 [ 842.977994][ T31] truncate_inode_pages_range+0x3ed/0xda0 [ 842.988169][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.995002][ T31] ? kasan_save_stack+0x4d/0x60 [ 843.000217][ T31] ? kasan_save_stack+0x3e/0x60 [ 843.005096][ T31] ? deactivate_locked_super+0xbc/0x130 [ 843.011091][ T31] ? cleanup_mnt+0x425/0x4c0 [ 843.015699][ T31] ? task_work_run+0x1d4/0x260 [ 843.033102][ T31] ? exit_to_user_mode_loop+0xe9/0x130 [ 843.038578][ T31] ? do_syscall_64+0x2bd/0xfa0 [ 843.044723][ T31] ? __pfx_truncate_inode_pages_range+0x10/0x10 [ 843.051033][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.057296][ T31] ? __lock_acquire+0xab9/0xd20 [ 843.062221][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 843.067788][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.073027][ T31] evict+0x517/0x9c0 [ 843.077045][ T31] ? __pfx_evict+0x10/0x10 [ 843.081513][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.087237][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.092889][ T31] ? do_raw_spin_unlock+0x122/0x240 [ 843.098250][ T31] evict_inodes+0x64c/0x6d0 [ 843.102766][ T31] ? __pfx_evict_inodes+0x10/0x10 [ 843.108044][ T31] generic_shutdown_super+0x9a/0x2c0 [ 843.113342][ T31] kill_block_super+0x44/0x90 [ 843.118129][ T31] deactivate_locked_super+0xbc/0x130 [ 843.123517][ T31] cleanup_mnt+0x425/0x4c0 [ 843.127991][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.133651][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.139285][ T31] task_work_run+0x1d4/0x260 [ 843.143923][ T31] ? __pfx_task_work_run+0x10/0x10 [ 843.149084][ T31] ? __x64_sys_umount+0x122/0x160 [ 843.154392][ T31] ? exit_to_user_mode_loop+0x40/0x130 [ 843.159895][ T31] exit_to_user_mode_loop+0xe9/0x130 [ 843.165184][ T31] do_syscall_64+0x2bd/0xfa0 [ 843.169788][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.175158][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.181241][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.186983][ T31] ? exc_page_fault+0xab/0x100 [ 843.191755][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.198427][ T31] RIP: 0033:0x7ff05eb90a77 [ 843.203006][ T31] RSP: 002b:00007ffe4611f3a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 843.211462][ T31] RAX: 0000000000000000 RBX: 00007ff05ec13d7d RCX: 00007ff05eb90a77 [ 843.219667][ T31] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4611f460 [ 843.227736][ T31] RBP: 00007ffe4611f460 R08: 0000000000000000 R09: 0000000000000000 [ 843.235855][ T31] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe461204f0 [ 843.243854][ T31] R13: 00007ff05ec13d7d R14: 000000000009dfd4 R15: 00007ffe46120530 [ 843.251882][ T31] [ 843.254993][ T31] [ 843.254993][ T31] Showing all locks held in the system: [ 843.263207][ T31] 1 lock held by khungtaskd/31: [ 843.269215][ T31] #0: ffffffff8df3d6e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 843.279215][ T31] 2 locks held by getty/5580: [ 843.283887][ T31] #0: ffff88802ff830a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 843.296661][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 843.307181][ T31] 1 lock held by syz-executor/5932: [ 843.312578][ T31] #0: ffff8880498240e0 (&type->s_umount_key#118){+.+.}-{4:4}, at: deactivate_super+0xa9/0xe0 [ 843.323334][ T31] [ 843.325758][ T31] ============================================= [ 843.325758][ T31] [ 843.334582][ T31] NMI backtrace for cpu 0 [ 843.334596][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) [ 843.334616][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 843.334628][ T31] Call Trace: [ 843.334635][ T31] [ 843.334643][ T31] dump_stack_lvl+0x189/0x250 [ 843.334674][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 843.334700][ T31] ? __pfx__printk+0x10/0x10 [ 843.334737][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 843.334763][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 843.334787][ T31] ? __pfx__printk+0x10/0x10 [ 843.334806][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.334831][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 843.334863][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 843.334888][ T31] watchdog+0xf60/0xfa0 [ 843.334911][ T31] ? watchdog+0x1e2/0xfa0 [ 843.334935][ T31] kthread+0x711/0x8a0 [ 843.334963][ T31] ? __pfx_watchdog+0x10/0x10 [ 843.334985][ T31] ? __pfx_kthread+0x10/0x10 [ 843.335017][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.335051][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 843.335081][ T31] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.335101][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.335127][ T31] ? __pfx_kthread+0x10/0x10 [ 843.335153][ T31] ret_from_fork+0x4bc/0x870 [ 843.335174][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 843.335200][ T31] ? __switch_to_asm+0x39/0x70 [ 843.335215][ T31] ? __switch_to_asm+0x33/0x70 [ 843.335229][ T31] ? __pfx_kthread+0x10/0x10 [ 843.335255][ T31] ret_from_fork_asm+0x1a/0x30 [ 843.335290][ T31] [ 843.335297][ T31] Sending NMI from CPU 0 to CPUs 1: [ 843.497359][ C1] NMI backtrace for cpu 1 [ 843.497377][ C1] CPU: 1 UID: 0 PID: 26380 Comm: syz.3.8807 Not tainted syzkaller #0 PREEMPT(full) [ 843.497406][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 843.497419][ C1] RIP: 0010:__tlb_remove_folio_pages_size+0x39/0x5a0 [ 843.497447][ C1] Code: 89 cd 89 d5 48 89 74 24 10 49 89 ff 48 bb 00 00 00 00 00 fc ff df e8 66 e9 af ff 4d 8d 77 18 4c 89 f0 48 c1 e8 03 80 3c 18 00 <74> 08 4c 89 f7 e8 0d ab 15 00 4d 8b 36 31 ff 4c 89 f6 e8 20 ee af [ 843.497470][ C1] RSP: 0018:ffffc9000407f348 EFLAGS: 00000246 [ 843.497490][ C1] RAX: 1ffff9200080ff0f RBX: dffffc0000000000 RCX: ffff88804ed3bc80 [ 843.497508][ C1] RDX: 0000000000000000 RSI: ffffea00019ba940 RDI: ffffc9000407f860 [ 843.497524][ C1] RBP: 0000000000000001 R08: ffffea00019ba973 R09: 1ffffd400033752e [ 843.497539][ C1] R10: dffffc0000000000 R11: fffff9400033752f R12: dffffc0000000000 [ 843.497557][ C1] R13: 0000000000000000 R14: ffffc9000407f878 R15: ffffc9000407f860 [ 843.497574][ C1] FS: 0000000000000000(0000) GS:ffff88812623b000(0000) knlGS:0000000000000000 [ 843.497593][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 843.497608][ C1] CR2: 0000001b2f516ff8 CR3: 00000000770f1000 CR4: 0000000000350ef0 [ 843.497626][ C1] Call Trace: [ 843.497634][ C1] [ 843.497643][ C1] ? page_table_check_clear+0x4f3/0x700 [ 843.497682][ C1] unmap_page_range+0x20ac/0x4370 [ 843.497725][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.497764][ C1] ? __pfx_unmap_page_range+0x10/0x10 [ 843.497792][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.497818][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.497844][ C1] ? unmap_vmas+0x144/0x580 [ 843.497869][ C1] unmap_vmas+0x399/0x580 [ 843.497890][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.497923][ C1] ? __pfx_unmap_vmas+0x10/0x10 [ 843.497963][ C1] exit_mmap+0x240/0xb40 [ 843.497994][ C1] ? uprobe_clear_state+0x20f/0x290 [ 843.498021][ C1] ? __pfx_exit_mmap+0x10/0x10 [ 843.498050][ C1] ? __mutex_unlock_slowpath+0x1a1/0x740 [ 843.498094][ C1] ? __pfx_exit_aio+0x10/0x10 [ 843.498124][ C1] ? uprobe_clear_state+0x27c/0x290 [ 843.498146][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498176][ C1] __mmput+0x118/0x430 [ 843.498201][ C1] exit_mm+0x1da/0x2c0 [ 843.498232][ C1] ? __pfx_exit_mm+0x10/0x10 [ 843.498265][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498290][ C1] ? rcu_is_watching+0x15/0xb0 [ 843.498318][ C1] do_exit+0x648/0x2300 [ 843.498352][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498377][ C1] ? do_raw_spin_lock+0x121/0x290 [ 843.498410][ C1] ? __pfx_do_exit+0x10/0x10 [ 843.498452][ C1] do_group_exit+0x21c/0x2d0 [ 843.498487][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498512][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.498547][ C1] get_signal+0x1285/0x1340 [ 843.498584][ C1] arch_do_signal_or_restart+0xa0/0x790 [ 843.498622][ C1] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 843.498656][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498681][ C1] ? __se_sys_futex+0x36f/0x400 [ 843.498719][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498748][ C1] ? exit_to_user_mode_loop+0x40/0x130 [ 843.498772][ C1] exit_to_user_mode_loop+0x72/0x130 [ 843.498793][ C1] do_syscall_64+0x2bd/0xfa0 [ 843.498825][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 843.498857][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.498878][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.498904][ C1] ? exc_page_fault+0xab/0x100 [ 843.498936][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.498958][ C1] RIP: 0033:0x7fb272b8f749 [ 843.498975][ C1] Code: Unable to access opcode bytes at 0x7fb272b8f71f. [ 843.498987][ C1] RSP: 002b:00007fb273ada0e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 843.499008][ C1] RAX: fffffffffffffe00 RBX: 00007fb272de5fa8 RCX: 00007fb272b8f749 [ 843.499025][ C1] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fb272de5fa8 [ 843.499039][ C1] RBP: 00007fb272de5fa0 R08: 0000000000000000 R09: 0000000000000000 [ 843.499054][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 843.499068][ C1] R13: 00007fb272de6038 R14: 00007ffd125cef10 R15: 00007ffd125ceff8 [ 843.499097][ C1] [ 843.908939][ C1] vkms_vblank_simulate: vblank timer overrun [ 850.842357][ T1298] ieee802154 phy0 wpan0: encryption failed: -22 [ 850.848692][ T1298] ieee802154 phy1 wpan1: encryption failed: -22