last executing test programs: 3.222433676s ago: executing program 2 (id=6814): r0 = socket$unix(0x1, 0x2, 0x0) connect$unix(r0, &(0x7f0000000500)=@abs={0x0, 0x0, 0x4ea0}, 0x6e) 2.826320158s ago: executing program 2 (id=6818): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, 0x0, &(0x7f00000031c0)) 2.526754403s ago: executing program 2 (id=6822): r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x1) ioctl$FIBMAP(r0, 0x1, &(0x7f0000000180)=0xfffff001) 2.212422809s ago: executing program 2 (id=6827): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 2.050146791s ago: executing program 1 (id=6829): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000004ec0), 0x802, 0x0) readv(r0, &(0x7f0000005500)=[{&(0x7f0000005300)=""/16, 0x10}], 0x1) 2.022294658s ago: executing program 5 (id=6831): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000002c0)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0x9e}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@fmask={'fmask', 0x3d, 0x5}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {}], [{@hash}, {@obj_role}, {@subj_role={'subj_role', 0x3d, 'iso8859-7'}}, {@fowner_eq}, {@fscontext={'fscontext', 0x3d, 'system_u'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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") mount$nfs(&(0x7f0000000400)='.\x03~\xf3\xf5\x95\xa01\xc3\x99\x8a\x17\x93,\x15\xb0;\x0epo\xed2z\x88\x823c\xf8\x93\x986\x11\x7f\x8b\x1e\xae\xb2\xb7oi-\x04O@`X\xf3M\x82:\xee\xdb|\xdb\x12\x8b\xf2\xb81\xf0\x91\xad\x11S\xbf%B\xfa\x9c\x1d5}\xd0\x10\xc8V\x92-\xca\x91S\x96\x89|\x9f\xfa\xfb\na\x86\xcd)\x99\x98\xec\xc7\xd9\x9f\xc8_N\xb2wp\xb6\x13\xce\xdb)\x04\x1d\x9e\x90\x06\x87\xe6C\xdc\xd4\xce\xc2(Gq\x86\xda\x87\x19\\\b\x8a\xe9p\x12\xff\x94\xf7\xd1:K\tn\xf0R\fwY\x97\xf2\x9e\x80\xbeb\xec\xb0\x9a\x80#\x8d\x16', 0x3a, './file0/file0'}, 0x1a4) 1.145260913s ago: executing program 0 (id=6840): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x180300, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000040)={0x191, 0x150, 0xa0, 0x3f, 0x32, 0x1, 0x0, 0x0, {}, {}, {0x0, 0xe3c}, {0x0, 0x0, 0x1}, 0x0, 0x40, 0x0, 0x0, 0x0, 0x4, 0x0, 0x6, 0x0, 0xfffffffd, 0x7, 0x8, 0x4, 0x0, 0x0, 0xa}) 1.13501136s ago: executing program 1 (id=6841): r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000)) pwritev2(r0, &(0x7f0000001540)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0, 0x9, 0x0) 976.636372ms ago: executing program 4 (id=6842): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x16, 0xe, &(0x7f0000001480)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340)}, 0x42) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000080)="05804ab382844306d758e620b9dc", 0x0, 0x12c4, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 947.47697ms ago: executing program 3 (id=6843): r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_TCP_FASTOPEN_KEY(r0, 0x6, 0x21, &(0x7f0000000b00)="86cf8445f4ba1d9f20174688f169e58c", 0x10) 829.047908ms ago: executing program 0 (id=6844): r0 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x1, 0x200) ioctl$SNDRV_PCM_IOCTL_HW_PARAMS_OLD(r0, 0xc1004111, &(0x7f0000000580)={0x5, [0x1ff, 0x1, 0x9], [{0xd, 0x8, 0x0, 0x1, 0x0, 0x1}, {0x7, 0x7f, 0x1, 0x0, 0x1}, {0x5, 0x3, 0x0, 0x0, 0x1}, {0xec, 0x5, 0x0, 0x1, 0x1, 0x1}, {0x5, 0x9, 0x1, 0x0, 0x1, 0x1}, {0x9, 0x3, 0x0, 0x0, 0x1}, {0x80000001, 0x522139e4, 0x0, 0x1, 0x1}, {0x40, 0x6, 0x1}, {0x80000000, 0x41, 0x1, 0x0, 0x0, 0x1}, {0x100, 0x9, 0x0, 0x1, 0x0, 0x1}, {0x9, 0x9, 0x0, 0x1, 0x0, 0x1}, {0x2, 0x9, 0x1, 0x0, 0x1}], 0x2}) 828.747568ms ago: executing program 1 (id=6845): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x70, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0xc, 0x10, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}]}]}, 0x70}}, 0x0) 733.480811ms ago: executing program 5 (id=6846): r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_opts(r0, 0x0, 0x4, 0x0, 0x28) 698.875539ms ago: executing program 4 (id=6847): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) brk(0x200000ffc000) 606.512198ms ago: executing program 3 (id=6848): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x6c, 0x30, 0x1, 0x0, 0x0, {}, [{0x58, 0x1, [@m_mpls={0x54, 0x1, 0x0, 0x0, {{0x9}, {0x28, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{}, 0x1}}, @TCA_MPLS_PROTO={0x6, 0x4, 0xe2c9}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x6c}}, 0x0) 530.143596ms ago: executing program 0 (id=6849): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)=ANY=[@ANYBLOB="140000002100010326bd7078fadbdf2505"], 0x14}}, 0x0) 529.797489ms ago: executing program 1 (id=6850): futex(&(0x7f000000cffc)=0x4, 0x9, 0x4, 0x0, 0x0, 0x400000) futex(&(0x7f000000cffc), 0x5, 0x1, 0x0, &(0x7f0000000000)=0x6, 0x4ffffff) 483.051659ms ago: executing program 5 (id=6851): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=@ipmr_delroute={0x28, 0x19, 0x1, 0x0, 0x0, {0x80, 0x20, 0x90, 0x0, 0x0, 0x11, 0x0, 0x5}, [@RTA_MULTIPATH={0xc, 0x9, {0x8, 0x11}}]}, 0x28}}, 0x0) 438.576376ms ago: executing program 2 (id=6852): r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x1, 0x0, &(0x7f00000001c0)) 366.066303ms ago: executing program 4 (id=6853): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000002a00)={&(0x7f00000003c0)=@newlink={0x40, 0x10, 0x421, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'bridge0\x00'}, @IFLA_ADDRESS={0xa}]}, 0x40}}, 0x0) 365.690833ms ago: executing program 3 (id=6854): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@sndinfo={0x20, 0x84, 0x2, {0x6, 0x41, 0x5}}], 0x20, 0x4048800}, 0x10) 257.416813ms ago: executing program 0 (id=6855): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000080)=@ethtool_sset_info={0x37, 0x8, 0xfffffffffffffffb}}) 254.966643ms ago: executing program 1 (id=6856): syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000000)='./file1\x00', 0x1010006, &(0x7f000000c880)=ANY=[@ANYBLOB="696f636861727365743d6b6f69382d752c6e6f696e746567726974792c696f636861727365743d69736f383835392d322c6572726f72733d636f6e74696e75652c696f636861727365743d63703737352c6572726f72733d72656d6f756e742d726f2c696e746567726974792c6e6f71756f74612c696e746567726974792c6572726f72733d636f6e74696e75652c67727071756f74612c00488a61b1f1a67ed1325e9524aee3528e7fb582d3166c82acd1559bb0"], 0x24, 0x628f, &(0x7f00000065c0)="$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") chdir(&(0x7f0000000040)='./file0\x00') 174.189837ms ago: executing program 5 (id=6857): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000900)=ANY=[@ANYRES16=0x0], 0x1, 0x1a1, &(0x7f00000003c0)="$eJzslb9u2lAUxr9rY6irSnRtl1YqEnSosU1blaEDc4dWapQoW1BwEIkJEXgANp4ic54gM8rCeyRDkilDyJaJwdG1r+OLEwJD/iDl/Ibj716fezj3IH0GQRCvlvOz69PDfE7n+h1yyIj9CzXOUaT8YXby9bjx92jfvDoZjv6Uk/UYAN9f/PdTAEYVFZ5Y+/706Zx4rkCJtCa/XwODIfQGFKwK7YBhXehtSbd4vmFsNVzH2Gy5NS5MHiwebB5Kyf7GA4aa1B+T3nd6/Z2q6zrtJxTz5jeuKPgt9Sf/X9FszHh+sKDAEroEhv9C/0Immk04Eun+H1NxffWZ77+UQsPUjj4z+UN2TkENS3AdEouLiR9yfw4DF5c6sAStvqCI/ck/YMhL/pSS/KPoNfeKnV7/W6NZrTt1Z9e2Sz/N76b5wy4GRhTGB/xPD/zprVRfm5GbZml0q57XtsJ4u7a7GXhtO+G4b6Jz44GCwpewa+796UTd4Hvwnn3mj4Iq1gRBEARBEARBEARBEARBEI/OJzD4Scp3tux/QfZNAAAA//8H13SA") openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file2\x00', 0x121140, 0x13d) 74.135449ms ago: executing program 2 (id=6858): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) ioctl$TIOCGETD(r0, 0x5424, &(0x7f0000000100)) 73.809519ms ago: executing program 4 (id=6859): timer_create(0x2, 0x0, &(0x7f0000000180)) timer_settime(0x0, 0x0, &(0x7f00000006c0)={{}, {0x0, 0x989680}}, &(0x7f0000000700)) 53.821991ms ago: executing program 3 (id=6860): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c00000045000900000000000000000002000000080002"], 0x1c}}, 0x0) 0s ago: executing program 0 (id=6861): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7ff00000}]}) fcntl$F_GET_RW_HINT(r0, 0x40b, 0x0) kernel console output (not intermixed with test programs): idx : 0x00010000, chksum : 0xd6e00b17, utbl_chksum : 0xe619d30d) [ 809.026094][ T48] usb 3-1: Detected FT2232HP [ 809.076050][T19191] exFAT-fs (loop1): valid_size(4096) is greater than size(0) [ 809.198362][ T48] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 809.248069][ T48] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 809.305385][ T48] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 809.338430][ T48] usb 3-1: USB disconnect, device number 27 [ 809.351661][ T48] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 809.431514][ T48] ftdi_sio 3-1:0.0: device disconnected [ 809.455637][T19203] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5478'. [ 809.505312][T19203] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5478'. [ 809.663125][T19211] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5481'. [ 809.698260][T19211] netlink: 56 bytes leftover after parsing attributes in process `syz.4.5481'. [ 809.877853][T19214] delete_channel: no stack [ 810.167958][ T30] audit: type=1326 audit(2000524751.808:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.275454][ T30] audit: type=1326 audit(2000524751.808:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.384834][ T30] audit: type=1326 audit(2000524751.808:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.478723][ T30] audit: type=1326 audit(2000524751.818:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.500994][ C1] vkms_vblank_simulate: vblank timer overrun [ 810.608088][ T30] audit: type=1326 audit(2000524751.846:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.638892][T19244] netlink: 'syz.2.5497': attribute type 33 has an invalid length. [ 810.689068][T19244] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5497'. [ 810.729535][ T30] audit: type=1326 audit(2000524751.846:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.751793][ C1] vkms_vblank_simulate: vblank timer overrun [ 810.759868][T19246] loop4: detected capacity change from 0 to 64 [ 810.840802][ T30] audit: type=1326 audit(2000524751.846:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 810.882990][T19246] syz.4.5498: attempt to access beyond end of device [ 810.882990][T19246] loop4: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 810.948087][ T30] audit: type=1326 audit(2000524751.846:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 811.002891][T19246] Buffer I/O error on dev loop4, logical block 134217734, async page read [ 811.012918][T19246] syz.4.5498: attempt to access beyond end of device [ 811.012918][T19246] loop4: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 811.058292][ T30] audit: type=1326 audit(2000524751.846:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 811.124247][T19246] Buffer I/O error on dev loop4, logical block 134217734, async page read [ 811.164122][ T30] audit: type=1326 audit(2000524751.846:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19225 comm="syz.0.5488" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5f07b8f749 code=0x7ffc0000 [ 811.343502][T19262] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5506'. [ 811.411492][T19262] netlink: 31 bytes leftover after parsing attributes in process `syz.3.5506'. [ 811.482213][T19262] netlink: 'syz.3.5506': attribute type 3 has an invalid length. [ 811.529218][T19262] netlink: 'syz.3.5506': attribute type 2 has an invalid length. [ 811.554989][T19262] netlink: 31 bytes leftover after parsing attributes in process `syz.3.5506'. [ 811.576951][T19267] geneve2: entered promiscuous mode [ 811.609284][T19271] warning: `syz.4.5509' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 811.632519][T19272] loop5: detected capacity change from 0 to 1024 [ 811.657319][T19272] EXT4-fs: Ignoring removed orlov option [ 811.684680][T19272] EXT4-fs: Ignoring removed nomblk_io_submit option [ 811.757698][T19272] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002] [ 811.808254][T19272] System zones: 0-1, 3-36 [ 811.852873][T19272] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 811.967114][T19284] netlink: 'syz.0.5514': attribute type 10 has an invalid length. [ 812.020617][T19284] macvlan0: entered promiscuous mode [ 812.061994][T19284] macvlan0: entered allmulticast mode [ 812.076597][T19284] veth1_vlan: entered allmulticast mode [ 812.127094][T19284] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 812.161411][ T6037] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 812.212000][T19290] netlink: 'syz.3.5519': attribute type 29 has an invalid length. [ 812.255706][T19290] netlink: 'syz.3.5519': attribute type 3 has an invalid length. [ 812.301709][T19290] netlink: 76 bytes leftover after parsing attributes in process `syz.3.5519'. [ 812.494610][T19298] loop1: detected capacity change from 0 to 764 [ 812.547770][T19298] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 813.839239][T19338] loop5: detected capacity change from 0 to 256 [ 813.938291][T19338] FAT-fs (loop5): Directory bread(block 64) failed [ 813.960565][T19338] FAT-fs (loop5): Directory bread(block 65) failed [ 813.982456][T19338] FAT-fs (loop5): Directory bread(block 66) failed [ 814.006908][T19338] FAT-fs (loop5): Directory bread(block 67) failed [ 814.035733][T19338] FAT-fs (loop5): Directory bread(block 68) failed [ 814.073619][T19338] FAT-fs (loop5): Directory bread(block 69) failed [ 814.104244][T19338] FAT-fs (loop5): Directory bread(block 70) failed [ 814.131883][T19338] FAT-fs (loop5): Directory bread(block 71) failed [ 814.176269][T19338] FAT-fs (loop5): Directory bread(block 72) failed [ 814.202864][T19338] FAT-fs (loop5): Directory bread(block 73) failed [ 814.214512][T19350] x_tables: ip_tables: osf match: only valid for protocol 6 [ 814.429398][T19321] loop0: detected capacity change from 0 to 32768 [ 814.793615][T19365] ip6erspan0: entered allmulticast mode [ 814.899788][T19371] loop5: detected capacity change from 0 to 16 [ 814.958642][T19371] erofs (device loop5): mounted with root inode @ nid 36. [ 814.982887][ T6167] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 815.167969][T19375] netlink: 'syz.2.5557': attribute type 7 has an invalid length. [ 815.198682][ T6167] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 4 [ 815.238666][ T6167] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 815.271410][ T6167] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 815.337187][ T6167] usb 1-1: New USB device found, idVendor=0451, idProduct=3410, bcdDevice=ef.1e [ 815.346249][ T6167] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 815.421866][ T6167] usb 1-1: Product: syz [ 815.426041][ T6167] usb 1-1: Manufacturer: syz [ 815.464278][ T6167] usb 1-1: SerialNumber: syz [ 815.487769][ T6167] usb 1-1: config 0 descriptor?? [ 815.493610][T19362] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 815.541428][ T6167] ti_usb_3410_5052 1-1:0.0: TI USB 3410 1 port adapter converter detected [ 815.595606][ T6167] usb 1-1: TI USB 3410 1 port adapter converter now attached to ttyUSB0 [ 815.788800][ T6167] usb 1-1: USB disconnect, device number 20 [ 815.843982][ T6167] ti_usb_3410_5052_1 ttyUSB0: TI USB 3410 1 port adapter converter now disconnected from ttyUSB0 [ 815.885077][T19394] loop1: detected capacity change from 0 to 256 [ 815.886978][T19396] loop2: detected capacity change from 0 to 64 [ 815.899455][ T6167] ti_usb_3410_5052 1-1:0.0: device disconnected [ 815.988303][T19394] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 816.025638][T19394] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 816.068907][T19394] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 816.113039][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 816.113060][ T30] audit: type=1800 audit(2000524757.370:43): pid=19394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5567" name="file1" dev="loop1" ino=1048672 res=0 errno=0 [ 816.199735][T19401] loop4: detected capacity change from 0 to 512 [ 816.278316][T19401] EXT4-fs: Ignoring removed bh option [ 816.296456][T19401] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 816.331441][T19401] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 816.392709][T19401] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 816.456398][T19401] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 816.528694][T19401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 816.545671][ T6109] usb 3-1: new high-speed USB device number 28 using dummy_hcd [ 816.683263][T19401] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 816.764034][ T6109] usb 3-1: Using ep0 maxpacket: 32 [ 816.777226][ T6109] usb 3-1: New USB device found, idVendor=0c72, idProduct=000d, bcdDevice=27.9b [ 816.797809][ T6109] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 816.807507][ T6109] usb 3-1: Product: syz [ 816.811828][ T6109] usb 3-1: Manufacturer: syz [ 816.817439][ T6109] usb 3-1: SerialNumber: syz [ 816.818245][T19421] netlink: 'syz.5.5580': attribute type 10 has an invalid length. [ 816.841715][ T6109] usb 3-1: config 0 descriptor?? [ 816.846169][ T6045] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 816.906216][T19421] macvlan0: entered promiscuous mode [ 816.936100][T19421] macvlan0: entered allmulticast mode [ 816.970562][T19421] veth1_vlan: entered allmulticast mode [ 816.999976][T19421] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 817.197169][ T6201] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 817.237256][T19433] loop1: detected capacity change from 0 to 256 [ 817.293195][ T6109] peak_usb 3-1:0.0 can0: unable to request usb[type=0 value=0] err=-71 [ 817.335264][ T6109] peak_usb 3-1:0.0: unable to read PCAN-USB Pro bootloader info (err -71) [ 817.361847][ T6201] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 817.395780][ T6201] usb 1-1: config 0 interface 0 has no altsetting 0 [ 817.436779][ T6201] usb 1-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=b1.f9 [ 817.480207][ T6201] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 817.526042][ T6109] peak_usb 3-1:0.0: probe with driver peak_usb failed with error -71 [ 817.526990][ T6201] usb 1-1: Product: syz [ 817.584758][ T6109] usb 3-1: USB disconnect, device number 28 [ 817.586201][ T6201] usb 1-1: Manufacturer: syz [ 817.608044][ T6201] usb 1-1: SerialNumber: syz [ 817.640525][ T6201] usb 1-1: config 0 descriptor?? [ 817.660547][T19443] x_tables: duplicate underflow at hook 2 [ 817.671866][ T6201] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 817.692210][ T6201] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 817.740627][ T6201] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 817.774878][ T6201] usb 1-1: media controller created [ 817.856626][ T6201] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 818.099890][ T6201] DVB: Unable to find symbol tda10046_attach() [ 818.139694][ T6201] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 818.149908][ T6201] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 818.224974][T19460] xt_cgroup: invalid path, errno=-2 [ 818.405424][ T6201] dvb_usb_m920x 1-1:0.0: probe with driver dvb_usb_m920x failed with error -71 [ 818.461452][ T6201] usb 1-1: USB disconnect, device number 21 [ 818.994121][T19486] loop3: detected capacity change from 0 to 65 [ 819.022938][T19486] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway [ 819.230633][ T848] usb 3-1: new high-speed USB device number 29 using dummy_hcd [ 819.422399][ T848] usb 3-1: Using ep0 maxpacket: 32 [ 819.443606][ T848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 819.496231][ T848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 819.529488][ T848] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 819.561387][ T848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 819.593289][ T848] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 819.652892][ T848] usb 3-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 819.679105][T16572] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 819.704690][T19506] netlink: 45 bytes leftover after parsing attributes in process `syz.0.5622'. [ 819.713687][ T848] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 819.722239][ T848] usb 3-1: Product: syz [ 819.727905][ T848] usb 3-1: Manufacturer: syz [ 819.734079][ T848] usb 3-1: SerialNumber: syz [ 819.741813][ T848] usb 3-1: config 0 descriptor?? [ 819.748309][T19483] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 819.777871][ T848] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input53 [ 819.801741][ T5185] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 819.821866][T19512] loop3: detected capacity change from 0 to 64 [ 819.862462][ T5185] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 819.917090][T16572] usb 2-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd [ 819.946937][T16572] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 819.954941][T16572] usb 2-1: Product: syz [ 819.983468][ T5185] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 820.005415][T16572] usb 2-1: Manufacturer: syz [ 820.010024][T16572] usb 2-1: SerialNumber: syz [ 820.049015][T19515] loop4: detected capacity change from 0 to 128 [ 820.059260][T19483] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 820.074262][T19516] x_tables: unsorted entry at hook 2 [ 820.084263][T16572] usb 2-1: config 0 descriptor?? [ 820.104155][T19515] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 820.120047][ T5185] xpad 3-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 820.134809][ T6167] usb 3-1: USB disconnect, device number 29 [ 820.140825][ C1] xpad 3-1:0.0: xpad_irq_in - usb_submit_urb failed with result -19 [ 820.156143][ T6044] Bluetooth: hci6: urb ffff8880283e1a00 submission failed (2) [ 820.169580][T19515] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 820.182836][T19515] FAT-fs (loop4): Filesystem has been set read-only [ 820.196342][T19515] syz.4.5627: attempt to access beyond end of device [ 820.196342][T19515] loop4: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 820.289864][T19515] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 820.335759][T19515] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 820.345511][T19522] loop5: detected capacity change from 0 to 1024 [ 820.371569][T19522] EXT4-fs: Ignoring removed nomblk_io_submit option [ 820.412817][T19515] syz.4.5627: attempt to access beyond end of device [ 820.412817][T19515] loop4: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 820.441876][T16572] usb 2-1: USB disconnect, device number 19 [ 820.471505][ T30] audit: type=1800 audit(2000524761.455:44): pid=19515 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5627" name="file2" dev="loop4" ino=1048674 res=0 errno=0 [ 820.481853][T19522] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 820.525428][T19522] System zones: 0-1, 3-36 [ 820.572526][T19528] netlink: 'syz.3.5632': attribute type 4 has an invalid length. [ 820.597639][T19522] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 820.936068][ T6037] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 821.145138][T19542] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 821.868037][T19567] netlink: 'syz.4.5651': attribute type 2 has an invalid length. [ 821.896696][T19567] netlink: 'syz.4.5651': attribute type 1 has an invalid length. [ 822.404111][T19585] netlink: 'syz.2.5660': attribute type 1 has an invalid length. [ 822.425679][T19585] netlink: 'syz.2.5660': attribute type 2 has an invalid length. [ 822.780497][T19600] netlink: 172 bytes leftover after parsing attributes in process `syz.5.5666'. [ 822.819868][T19600] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5666'. [ 822.835115][T19601] loop2: detected capacity change from 0 to 64 [ 822.854416][T19600] netlink: 172 bytes leftover after parsing attributes in process `syz.5.5666'. [ 822.894315][T19600] netlink: 100 bytes leftover after parsing attributes in process `syz.5.5666'. [ 822.931536][T19600] netlink: 32 bytes leftover after parsing attributes in process `syz.5.5666'. [ 823.021367][T19606] kAFS: unparsable volume name [ 823.108710][T19603] loop4: detected capacity change from 0 to 4096 [ 823.129965][T19603] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 823.224227][T19603] ntfs3(loop4): ino=19, mi_enum_attr [ 823.229545][T19603] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 823.350882][T19603] ntfs3(loop4): failed to convert "c46c" to cp437 [ 823.380709][T19603] ntfs3(loop4): ino=20, mi_enum_attr [ 823.605627][T19619] loop5: detected capacity change from 0 to 256 [ 823.737771][T19619] FAT-fs (loop5): Directory bread(block 64) failed [ 823.801315][T19619] FAT-fs (loop5): Directory bread(block 65) failed [ 823.831727][T19619] FAT-fs (loop5): Directory bread(block 66) failed [ 823.860821][T19619] FAT-fs (loop5): Directory bread(block 67) failed [ 823.898214][T19619] FAT-fs (loop5): Directory bread(block 68) failed [ 823.938390][T19619] FAT-fs (loop5): Directory bread(block 69) failed [ 823.945055][T19619] FAT-fs (loop5): Directory bread(block 70) failed [ 823.982921][T19619] FAT-fs (loop5): Directory bread(block 71) failed [ 824.001432][T19619] FAT-fs (loop5): Directory bread(block 72) failed [ 824.012390][T19619] FAT-fs (loop5): Directory bread(block 73) failed [ 824.051733][T19632] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5682'. [ 824.172058][T19608] loop3: detected capacity change from 0 to 32768 [ 824.222838][T19608] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5670 (19608) [ 824.275658][T19608] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 824.326320][T19608] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 824.585594][T19608] BTRFS info (device loop3): enabling ssd optimizations [ 824.632849][T19608] BTRFS info (device loop3): turning on async discard [ 824.639631][T19608] BTRFS info (device loop3): enabling free space tree [ 824.736729][T19661] loop4: detected capacity change from 0 to 128 [ 824.774612][T19661] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 824.820111][T19661] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 824.875508][T19666] loop0: detected capacity change from 0 to 512 [ 824.887051][ T6035] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 824.901017][ T6109] usb 3-1: new full-speed USB device number 30 using dummy_hcd [ 824.984329][T19666] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0007-000000000000 r/w without journal. Quota mode: writeback. [ 825.008782][T19666] ext4 filesystem being mounted at /940/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 825.017535][ T848] usb 6-1: new high-speed USB device number 123 using dummy_hcd [ 825.118618][ T6109] usb 3-1: config 0 has an invalid interface number: 8 but max is 0 [ 825.133963][T19666] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 825.156540][ T6109] usb 3-1: config 0 has no interface number 0 [ 825.162648][ T6109] usb 3-1: config 0 interface 8 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 825.188744][T19666] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 825.199419][ T848] usb 6-1: Using ep0 maxpacket: 8 [ 825.208931][ T6109] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 825.224403][ T848] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 825.231265][T19666] EXT4-fs error (device loop0): ext4_acquire_dquot:6943: comm syz.0.5691: Failed to acquire dquot type 0 [ 825.251799][ T848] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E [ 825.262902][ T6109] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 825.284982][ T6109] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 825.293110][ T6109] usb 3-1: Product: syz [ 825.319077][T19673] loop1: detected capacity change from 0 to 128 [ 825.321123][ T848] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7 [ 825.344292][ T6109] usb 3-1: SerialNumber: syz [ 825.374951][ T6109] usb 3-1: config 0 descriptor?? [ 825.409875][T19673] FAT-fs (loop1): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 825.416344][ T848] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0 [ 825.424684][ T6109] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input54 [ 825.471026][ T848] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 825.472076][T19673] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 825.547378][ T848] usb 6-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46 [ 825.559011][ T6028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0007-000000000000. [ 825.577194][ T848] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35 [ 825.589947][T19673] FAT-fs (loop1): Filesystem has been set read-only [ 825.604819][ T848] usb 6-1: Product: syz [ 825.623387][ T848] usb 6-1: Manufacturer: syz [ 825.644754][ T848] usb 6-1: SerialNumber: syz [ 825.655636][T19673] syz.1.5695: attempt to access beyond end of device [ 825.655636][T19673] loop1: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 825.679542][ T848] usb 6-1: config 0 descriptor?? [ 825.733265][ C1] cm109 3-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 825.733479][ T6201] usb 3-1: USB disconnect, device number 30 [ 825.740430][ C1] cm109 3-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 825.745218][T19673] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 825.814860][ T6201] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 825.828141][T19673] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000100) [ 825.838488][T19681] netlink: 'syz.0.5697': attribute type 39 has an invalid length. [ 825.868765][T19673] syz.1.5695: attempt to access beyond end of device [ 825.868765][T19673] loop1: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 825.948122][ T30] audit: type=1800 audit(2000524766.568:45): pid=19673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5695" name="file2" dev="loop1" ino=1048676 res=0 errno=0 [ 825.978774][ T848] radio-si470x 6-1:0.0: DeviceID=0xa58a ChipID=0xcee5 [ 826.193000][ T848] radio-si470x 6-1:0.0: si470x_get_report: usb_control_msg returned -71 [ 826.208546][ T848] radio-si470x 6-1:0.0: si470x_get_scratch: si470x_get_report returned -71 [ 826.226913][ T848] radio-si470x 6-1:0.0: probe with driver radio-si470x failed with error -5 [ 826.286254][ T848] usb 6-1: USB disconnect, device number 123 [ 826.391602][T19691] loop1: detected capacity change from 0 to 256 [ 826.436269][T19691] exfat: Deprecated parameter 'namecase' [ 826.485313][T19691] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 826.663445][T19699] loop2: detected capacity change from 0 to 64 [ 827.546592][T19729] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5720'. [ 827.985667][ T30] audit: type=1326 audit(2000524768.475:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19743 comm="syz.5.5729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 828.014256][ T6109] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 828.048096][T19747] loop2: detected capacity change from 0 to 64 [ 828.098604][ T30] audit: type=1326 audit(2000524768.475:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19743 comm="syz.5.5729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 828.187137][ T30] audit: type=1326 audit(2000524768.503:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19743 comm="syz.5.5729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 828.226977][ T6109] usb 2-1: Using ep0 maxpacket: 16 [ 828.251398][ T6109] usb 2-1: config index 0 descriptor too short (expected 4495, got 71) [ 828.270077][ T6109] usb 2-1: config 0 has an invalid interface number: 105 but max is 0 [ 828.312711][ T30] audit: type=1326 audit(2000524768.503:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19743 comm="syz.5.5729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 828.340012][ T6109] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 828.375032][ T6109] usb 2-1: config 0 has no interface number 0 [ 828.390912][ T6109] usb 2-1: New USB device found, idVendor=046c, idProduct=14e0, bcdDevice= 0.01 [ 828.408447][ T30] audit: type=1326 audit(2000524768.503:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19743 comm="syz.5.5729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 828.430765][ C1] vkms_vblank_simulate: vblank timer overrun [ 828.451490][ T6109] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 828.459581][ T6109] usb 2-1: Product: syz [ 828.463964][ T6109] usb 2-1: Manufacturer: syz [ 828.468594][ T6109] usb 2-1: SerialNumber: syz [ 828.476370][ T6109] usb 2-1: config 0 descriptor?? [ 828.679431][T19726] loop3: detected capacity change from 0 to 32768 [ 828.705115][ T6109] uvcvideo 2-1:0.105: Found UVC 0.00 device syz (046c:14e0) [ 828.713090][T19726] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5719 (19726) [ 828.726018][ T6109] uvcvideo 2-1:0.105: No valid video chain found. [ 828.810144][T19726] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 828.827967][T19761] loop5: detected capacity change from 0 to 1764 [ 828.868996][T19726] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 828.954777][ T6109] usb 2-1: USB disconnect, device number 20 [ 829.200782][T19726] BTRFS info (device loop3): enabling ssd optimizations [ 829.222514][T19726] BTRFS info (device loop3): turning on async discard [ 829.250555][T19726] BTRFS info (device loop3): enabling free space tree [ 829.315285][T19789] loop4: detected capacity change from 0 to 512 [ 829.333493][T19791] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5742'. [ 829.390060][T19789] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.5744: bad orphan inode 13 [ 829.414787][T19789] ext4_test_bit(bit=12, block=4) = 1 [ 829.420088][T19789] is_bad_inode(inode)=0 [ 829.488090][T19789] NEXT_ORPHAN(inode)=0 [ 829.498837][T19789] max_ino=32 [ 829.535304][T19789] i_nlink=1 [ 829.540491][T19789] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 829.598984][T19797] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5745'. [ 829.620318][T19789] EXT4-fs warning (device loop4): dx_probe:812: inode #2: comm syz.4.5744: Hash code is SIPHASH, but hash not in dirent [ 829.676369][ T6035] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 829.686773][T19789] EXT4-fs warning (device loop4): dx_probe:933: inode #2: comm syz.4.5744: Corrupt directory, running e2fsck is recommended [ 829.720562][T19789] EXT4-fs warning (device loop4): dx_probe:812: inode #2: comm syz.4.5744: Hash code is SIPHASH, but hash not in dirent [ 829.802905][T19789] EXT4-fs warning (device loop4): dx_probe:933: inode #2: comm syz.4.5744: Corrupt directory, running e2fsck is recommended [ 830.114183][ T6045] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 830.644883][T16572] usb 5-1: new full-speed USB device number 11 using dummy_hcd [ 830.768810][T19829] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5761'. [ 830.792867][T19829] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5761'. [ 830.839682][T16572] usb 5-1: config 0 has an invalid interface number: 172 but max is 0 [ 830.858965][T16572] usb 5-1: config 0 has no interface number 0 [ 830.868077][T16572] usb 5-1: New USB device found, idVendor=16d5, idProduct=650a, bcdDevice=83.b1 [ 830.898996][T16572] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 830.899446][T19832] loop5: detected capacity change from 0 to 512 [ 830.914380][T16572] usb 5-1: Product: syz [ 830.919044][T16572] usb 5-1: Manufacturer: syz [ 830.942649][T16572] usb 5-1: SerialNumber: syz [ 830.974465][T16572] usb 5-1: config 0 descriptor?? [ 831.011792][T16572] qmi_wwan 5-1:0.172: bogus CDC Union: master=0, slave=0 [ 831.021410][T19832] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 831.095677][T19811] loop0: detected capacity change from 0 to 32768 [ 831.102550][T19832] ext4 filesystem being mounted at /907/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 831.137575][T19811] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5754 (19811) [ 831.206759][T19811] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 831.258933][T16572] qmi_wwan 5-1:0.172: probe with driver qmi_wwan failed with error -22 [ 831.280967][T19811] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 831.302927][T19832] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.5763: corrupted xattr block 33: invalid ea_ino [ 831.432124][T19832] EXT4-fs (loop5): Remounting filesystem read-only [ 831.533833][T19811] BTRFS info (device loop0): enabling ssd optimizations [ 831.554920][ T6167] usb 5-1: USB disconnect, device number 11 [ 831.592509][T19811] BTRFS info (device loop0): turning on async discard [ 831.600891][T19811] BTRFS info (device loop0): enabling free space tree [ 831.655429][ T6037] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 831.825864][ T6028] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 831.847380][T19865] loop3: detected capacity change from 0 to 16 [ 831.883540][T19865] erofs (device loop3): mounted with root inode @ nid 36. [ 831.967319][T19867] loop5: detected capacity change from 0 to 128 [ 832.009433][T19867] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 832.101081][T19867] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 832.143478][T19867] FAT-fs (loop5): Filesystem has been set read-only [ 832.164821][T19867] syz.5.5769: attempt to access beyond end of device [ 832.164821][T19867] loop5: rw=524288, sector=2065, nr_sectors = 8 limit=128 [ 832.211464][T19867] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 832.263705][T19867] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000100) [ 832.305489][T19867] syz.5.5769: attempt to access beyond end of device [ 832.305489][T19867] loop5: rw=0, sector=2065, nr_sectors = 8 limit=128 [ 832.397769][ T30] audit: type=1800 audit(2000524772.578:51): pid=19867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5769" name="file2" dev="loop5" ino=1048678 res=0 errno=0 [ 832.714056][T19880] loop2: detected capacity change from 0 to 256 [ 832.795446][ T30] audit: type=1326 audit(2000524772.962:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19882 comm="syz.1.5779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 832.817719][ C1] vkms_vblank_simulate: vblank timer overrun [ 832.843872][T19886] loop4: detected capacity change from 0 to 512 [ 832.908816][T19886] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 832.919541][ T30] audit: type=1326 audit(2000524772.971:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19882 comm="syz.1.5779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 832.941790][ C1] vkms_vblank_simulate: vblank timer overrun [ 832.978338][T19880] FAT-fs (loop2): Directory bread(block 64) failed [ 832.994073][T19886] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2852: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 833.062483][T19880] FAT-fs (loop2): Directory bread(block 65) failed [ 833.069203][T19880] FAT-fs (loop2): Directory bread(block 66) failed [ 833.076466][T19880] FAT-fs (loop2): Directory bread(block 67) failed [ 833.083074][T19880] FAT-fs (loop2): Directory bread(block 68) failed [ 833.084978][T19886] EXT4-fs (loop4): 1 truncate cleaned up [ 833.090209][ T30] audit: type=1326 audit(2000524773.008:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19882 comm="syz.1.5779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=304 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 833.118510][ T30] audit: type=1326 audit(2000524773.008:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19882 comm="syz.1.5779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 833.126873][T19880] FAT-fs (loop2): Directory bread(block 69) failed [ 833.140754][ C1] vkms_vblank_simulate: vblank timer overrun [ 833.182221][T19886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 833.228901][ T30] audit: type=1326 audit(2000524773.008:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19882 comm="syz.1.5779" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 833.234230][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 833.265734][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 833.286447][T19880] FAT-fs (loop2): Directory bread(block 70) failed [ 833.332999][T19880] FAT-fs (loop2): Directory bread(block 71) failed [ 833.350447][T19880] FAT-fs (loop2): Directory bread(block 72) failed [ 833.374691][T19880] FAT-fs (loop2): Directory bread(block 73) failed [ 833.614746][ T6045] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 833.921515][ T30] audit: type=1326 audit(2000524774.018:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19912 comm="syz.1.5793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 834.013226][ T30] audit: type=1326 audit(2000524774.074:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19912 comm="syz.1.5793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 834.132301][ T30] audit: type=1326 audit(2000524774.074:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19912 comm="syz.1.5793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 834.233241][ T30] audit: type=1326 audit(2000524774.074:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19912 comm="syz.1.5793" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 834.272324][T19921] kAFS: unable to lookup cell '(' [ 834.902558][ T6109] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 834.946658][T19940] loop2: detected capacity change from 0 to 4096 [ 835.022770][T19951] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 835.073112][T19954] loop5: detected capacity change from 0 to 128 [ 835.098568][T19954] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 835.108198][ T6109] usb 5-1: Using ep0 maxpacket: 32 [ 835.141567][ T6109] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 835.177069][ T6109] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 835.215473][ T6109] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 835.270245][ T6109] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 835.337375][ T6109] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 835.388202][ T6109] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 835.425001][ T6109] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 835.464594][ T6109] usb 5-1: Product: syz [ 835.487247][ T6109] usb 5-1: Manufacturer: syz [ 835.502573][ T6109] usb 5-1: SerialNumber: syz [ 835.537728][T19962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5815'. [ 835.557226][ T6109] usb 5-1: config 0 descriptor?? [ 835.563733][T19935] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 835.585432][T19965] netlink: 'syz.1.5817': attribute type 1 has an invalid length. [ 835.623543][ T6109] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input55 [ 835.698592][ T5185] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 835.701374][T19968] tmpfs: Bad value for 'mpol' [ 835.792892][ T5185] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 835.897913][ T5185] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 836.019592][T19935] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 836.072298][ T5185] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 836.131836][ T6109] usb 5-1: USB disconnect, device number 12 [ 836.817911][T20000] netlink: 220 bytes leftover after parsing attributes in process `syz.2.5834'. [ 837.036944][T20007] loop0: detected capacity change from 0 to 64 [ 838.261270][T20047] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5856'. [ 838.305325][T20047] netlink: 64 bytes leftover after parsing attributes in process `syz.0.5856'. [ 838.672220][T20057] PKCS8: Unsupported PKCS#8 version [ 838.679013][ T6109] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 838.718986][T20018] loop4: detected capacity change from 0 to 32768 [ 838.721160][T20059] loop1: detected capacity change from 0 to 256 [ 838.779184][T20059] exfat: Deprecated parameter 'utf8' [ 838.827235][T20018] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 838.835787][T20059] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 838.887998][ T6109] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 838.926443][ T6109] usb 3-1: config 0 interface 0 has no altsetting 0 [ 838.972088][ T6109] usb 3-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=b1.f9 [ 838.997566][T20018] XFS (loop4): Ending clean mount [ 839.025546][ T6109] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 839.042040][T20018] XFS (loop4): Quotacheck needed: Please wait. [ 839.076643][ T6109] usb 3-1: Product: syz [ 839.091879][T20018] XFS (loop4): Quotacheck: Done. [ 839.115943][ T6109] usb 3-1: Manufacturer: syz [ 839.140152][ T6109] usb 3-1: SerialNumber: syz [ 839.170274][ T6109] usb 3-1: config 0 descriptor?? [ 839.194565][T20077] tc_dump_action: action bad kind [ 839.215335][ T6109] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 839.270485][ T6109] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 839.304990][ T6045] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 839.313499][T20079] loop1: detected capacity change from 0 to 256 [ 839.315460][ T6109] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 839.372695][ T6109] usb 3-1: media controller created [ 839.400090][T20079] FAT-fs (loop1): Directory bread(block 64) failed [ 839.415892][T20079] FAT-fs (loop1): Directory bread(block 65) failed [ 839.431656][ T6109] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 839.447142][T20079] FAT-fs (loop1): Directory bread(block 66) failed [ 839.461197][T20079] FAT-fs (loop1): Directory bread(block 67) failed [ 839.478684][T20079] FAT-fs (loop1): Directory bread(block 68) failed [ 839.532528][T20079] FAT-fs (loop1): Directory bread(block 69) failed [ 839.556826][T20079] FAT-fs (loop1): Directory bread(block 70) failed [ 839.563403][T20079] FAT-fs (loop1): Directory bread(block 71) failed [ 839.608541][T20079] FAT-fs (loop1): Directory bread(block 72) failed [ 839.640099][T20079] FAT-fs (loop1): Directory bread(block 73) failed [ 839.729251][ T6109] DVB: Unable to find symbol tda10046_attach() [ 839.778777][ T6109] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 839.811122][ T6109] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 839.999815][T20092] netlink: 'syz.0.5876': attribute type 21 has an invalid length. [ 840.023711][T20092] netlink: 'syz.0.5876': attribute type 4 has an invalid length. [ 840.045333][T20092] netlink: 144 bytes leftover after parsing attributes in process `syz.0.5876'. [ 840.056795][ T6109] dvb_usb_m920x 3-1:0.0: probe with driver dvb_usb_m920x failed with error -71 [ 840.109862][ T6109] usb 3-1: USB disconnect, device number 31 [ 840.466856][T20107] loop4: detected capacity change from 0 to 128 [ 840.486134][T20107] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 840.535855][T20107] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 841.293133][ T30] audit: type=1326 audit(2000524780.916:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20127 comm="syz.4.5893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 841.385694][ T30] audit: type=1326 audit(2000524780.926:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20127 comm="syz.4.5893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 841.407877][ C1] vkms_vblank_simulate: vblank timer overrun [ 841.492638][ T30] audit: type=1326 audit(2000524780.926:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20127 comm="syz.4.5893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 841.514950][ C1] vkms_vblank_simulate: vblank timer overrun [ 841.593852][ T30] audit: type=1326 audit(2000524780.926:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20127 comm="syz.4.5893" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 841.694080][T20100] loop1: detected capacity change from 0 to 40427 [ 841.724086][T20100] F2FS-fs (loop1): invalid crc value [ 841.762913][T20136] loop2: detected capacity change from 0 to 2048 [ 841.858781][T20140] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 841.935390][T20136] NILFS (loop2): bad btree node (ino=16, blocknr=12): level = 0, flags = 0x0, nchildren = 0 [ 842.004434][T20136] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 842.023970][T20110] loop3: detected capacity change from 0 to 32768 [ 842.026962][T20100] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 842.075537][T20136] Remounting filesystem read-only [ 842.080824][T20100] F2FS-fs (loop1): Start checkpoint disabled! [ 842.089294][T20136] NILFS (loop2): bad btree node (ino=16, blocknr=12): level = 0, flags = 0x0, nchildren = 0 [ 842.154485][T20100] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0 [ 842.160542][T20136] NILFS error (device loop2): nilfs_bmap_last_key: broken bmap (inode number=16) [ 842.175221][T20110] find_entry called with index >= next_index [ 842.204128][T20100] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 842.215054][T20110] find_entry called with index >= next_index [ 842.229260][T20136] NILFS (loop2): error -5 truncating bmap (ino=16) [ 842.244492][T20110] find_entry called with index >= next_index [ 842.432470][T20100] syz.1.5879: attempt to access beyond end of device [ 842.432470][T20100] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 842.485821][ T6043] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 842.537247][T20149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5902'. [ 842.674303][ T12] kworker/u8:0: attempt to access beyond end of device [ 842.674303][ T12] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 842.717318][ T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u8:0 Not tainted syzkaller #0 PREEMPT(full) [ 842.717364][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 842.717390][ T12] Workqueue: writeback wb_workfn (flush-7:1) [ 842.717466][ T12] Call Trace: [ 842.717479][ T12] [ 842.717493][ T12] dump_stack_lvl+0x16c/0x1f0 [ 842.717543][ T12] f2fs_handle_critical_error+0x624/0x9f0 [ 842.717597][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.717643][ T12] ? f2fs_build_fault_attr+0x53/0x1f0 [ 842.717695][ T12] f2fs_write_end_io+0x958/0xcf0 [ 842.717753][ T12] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 842.717813][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.717868][ T12] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 842.717921][ T12] bio_endio+0x6e6/0x830 [ 842.717985][ T12] submit_bio_noacct+0x306/0x1f40 [ 842.718046][ T12] __submit_merged_bio+0x33c/0x710 [ 842.718106][ T12] __submit_merged_write_cond+0x319/0x3f0 [ 842.718172][ T12] f2fs_write_cache_pages+0x2075/0x2570 [ 842.718261][ T12] ? __pfx_f2fs_write_cache_pages+0x10/0x10 [ 842.718328][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718374][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718425][ T12] ? find_held_lock+0x2b/0x80 [ 842.718464][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718514][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718559][ T12] ? do_raw_spin_unlock+0x172/0x230 [ 842.718632][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718678][ T12] ? f2fs_available_free_memory+0x279/0xa30 [ 842.718791][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.718844][ T12] f2fs_write_data_pages+0x4ad/0xd90 [ 842.718915][ T12] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 842.718995][ T12] ? __pfx_f2fs_write_data_pages+0x10/0x10 [ 842.719060][ T12] do_writepages+0x27a/0x600 [ 842.719124][ T12] ? __pfx_do_writepages+0x10/0x10 [ 842.719182][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719228][ T12] ? reacquire_held_locks+0xcd/0x1f0 [ 842.719282][ T12] __writeback_single_inode+0x168/0x14a0 [ 842.719338][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719383][ T12] ? do_raw_spin_lock+0x12c/0x2b0 [ 842.719447][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719498][ T12] ? __pfx___writeback_single_inode+0x10/0x10 [ 842.719561][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719613][ T12] writeback_sb_inodes+0x795/0x1de0 [ 842.719692][ T12] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 842.719749][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719794][ T12] ? rcu_is_watching+0x12/0xc0 [ 842.719832][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.719878][ T12] ? trace_sched_exit_tp+0xd1/0x110 [ 842.719995][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720040][ T12] ? rcu_is_watching+0x12/0xc0 [ 842.720077][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720122][ T12] ? queue_io+0x3f6/0x4f0 [ 842.720179][ T12] wb_writeback+0x419/0xae0 [ 842.720247][ T12] ? __pfx_wb_writeback+0x10/0x10 [ 842.720301][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720358][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720403][ T12] ? mark_held_locks+0x49/0x80 [ 842.720462][ T12] wb_workfn+0x14d/0xbb0 [ 842.720524][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720569][ T12] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 842.720616][ T12] ? __pfx_wb_workfn+0x10/0x10 [ 842.720679][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720729][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720779][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.720824][ T12] ? rcu_is_watching+0x12/0xc0 [ 842.720868][ T12] process_one_work+0x9ba/0x1b20 [ 842.720939][ T12] ? __pfx_process_one_work+0x10/0x10 [ 842.720992][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.721049][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.721095][ T12] ? assign_work+0x1a0/0x250 [ 842.721148][ T12] worker_thread+0x6c8/0xf10 [ 842.721222][ T12] ? __pfx_worker_thread+0x10/0x10 [ 842.721282][ T12] kthread+0x3c5/0x780 [ 842.721329][ T12] ? __pfx_kthread+0x10/0x10 [ 842.721378][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.721429][ T12] ? rcu_is_watching+0x12/0xc0 [ 842.721467][ T12] ? __pfx_kthread+0x10/0x10 [ 842.721516][ T12] ret_from_fork+0x855/0xa50 [ 842.721557][ T12] ? __pfx_ret_from_fork+0x10/0x10 [ 842.721598][ T12] ? srso_alias_return_thunk+0x5/0xfbef5 [ 842.721643][ T12] ? __switch_to+0x7af/0x10d0 [ 842.721689][ T12] ? __pfx_kthread+0x10/0x10 [ 842.721738][ T12] ret_from_fork_asm+0x1a/0x30 [ 842.721815][ T12] [ 843.160369][ T12] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 843.302762][T20126] loop5: detected capacity change from 0 to 40427 [ 843.343818][T20126] F2FS-fs (loop5): build fault injection rate: 25 [ 843.350255][T20126] F2FS-fs (loop5): build fault injection type: 0x7698c [ 843.500650][T20126] F2FS-fs (loop5): invalid crc value [ 843.561028][T20126] F2FS-fs (loop5): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_build_segment_manager+0x4b50/0xa3a0 [ 843.671920][T20126] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of __f2fs_build_free_nids+0x207/0xfe0 [ 843.744796][T20166] dlm: no locking on control device [ 844.003317][T20126] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 844.074573][T20126] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 844.112015][T20173] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 844.183637][T20126] F2FS-fs (loop5): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0x1e2/0x240 [ 844.274208][ T848] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 844.378151][ T6037] F2FS-fs (loop5): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x608/0x29d0 [ 844.411999][ T6037] F2FS-fs (loop5): invalid blkaddr: 513, type: 10, run fsck to fix. [ 844.457112][ T848] usb 5-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd [ 844.487191][ T848] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 844.519484][ T848] usb 5-1: Product: syz [ 844.530020][ T848] usb 5-1: Manufacturer: syz [ 844.542266][ T848] usb 5-1: SerialNumber: syz [ 844.592822][ T848] usb 5-1: config 0 descriptor?? [ 844.619044][ T6044] Bluetooth: hci6: urb ffff8880279b8a00 submission failed (2) [ 844.869614][ T848] usb 5-1: USB disconnect, device number 13 [ 845.319607][T20180] loop2: detected capacity change from 0 to 32768 [ 845.329036][T20204] loop3: detected capacity change from 0 to 1024 [ 845.355651][T20180] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.5916 (20180) [ 845.413837][T20204] hfsplus: can't free extent: start 134, count 1 [ 845.423978][T20180] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 845.451181][T20180] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 845.754390][T20180] BTRFS info (device loop2): enabling ssd optimizations [ 845.793315][T20180] BTRFS info (device loop2): turning on async discard [ 845.800172][T20180] BTRFS info (device loop2): enabling free space tree [ 845.853100][T20233] netlink: 'syz.5.5919': attribute type 39 has an invalid length. [ 845.868562][T20234] netlink: 'syz.0.5935': attribute type 1 has an invalid length. [ 846.067770][ T6043] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 846.511774][T20250] cgroup: release_agent respecified [ 847.122887][T20271] netlink: 'syz.0.5952': attribute type 2 has an invalid length. [ 847.123618][T20270] netlink: 'syz.2.5953': attribute type 1 has an invalid length. [ 847.436199][T20278] loop2: detected capacity change from 0 to 1024 [ 847.657622][ T50] hfsplus: b-tree write err: -5, ino 8 [ 847.812052][T20289] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.5965'. [ 848.381319][T20312] 9p: Unknown access argument o: -22 [ 848.435219][T20316] openvswitch: netlink: Flow key attr not present in new flow. [ 848.606923][ T6110] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 848.810557][ T6110] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 848.820803][ T6110] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 848.829722][ T6110] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 848.960634][ T6110] usb 1-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 848.970200][ T6110] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 848.979477][ T6110] usb 1-1: Product: syz [ 848.984493][ T6110] usb 1-1: Manufacturer: syz [ 848.989122][ T6110] usb 1-1: SerialNumber: syz [ 848.996883][ T6110] usb 1-1: config 0 descriptor?? [ 849.007256][ T6110] uvcvideo 1-1:0.0: Found UVC 34.00 device syz (8086:0b5b) [ 849.015701][ T6110] uvcvideo 1-1:0.0: No valid video chain found. [ 849.120889][ T6167] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 849.273213][ T6110] usb 1-1: USB disconnect, device number 22 [ 849.304657][ T6167] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 849.333568][ T6167] usb 2-1: config 0 interface 0 has no altsetting 0 [ 849.367295][ T6167] usb 2-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=b1.f9 [ 849.398353][ T6167] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 849.418355][ T6167] usb 2-1: Product: syz [ 849.433580][ T6167] usb 2-1: Manufacturer: syz [ 849.448506][ T6167] usb 2-1: SerialNumber: syz [ 849.473655][ T6167] usb 2-1: config 0 descriptor?? [ 849.497722][ T6167] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 849.544041][ T6167] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 849.592494][ T6167] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 849.601165][ T6167] usb 2-1: media controller created [ 849.621071][T20346] netlink: 52 bytes leftover after parsing attributes in process `syz.3.5991'. [ 849.657957][T20346] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 849.724639][ T6167] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 849.775922][T20332] loop2: detected capacity change from 0 to 32768 [ 849.800263][T20332] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.5984 (20332) [ 849.884744][T20332] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 849.921685][T20353] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5994'. [ 849.944134][T20332] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 850.006658][ T6167] DVB: Unable to find symbol tda10046_attach() [ 850.052025][ T6167] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 850.065038][T20359] loop5: detected capacity change from 0 to 1024 [ 850.105619][ T6167] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 850.105639][T20359] hfsplus: can't free extent: start 134, count 1 [ 850.224350][T20332] BTRFS info (device loop2): enabling ssd optimizations [ 850.293980][T20332] BTRFS info (device loop2): turning on async discard [ 850.366877][T20332] BTRFS info (device loop2): enabling free space tree [ 850.378670][ T6167] dvb_usb_m920x 2-1:0.0: probe with driver dvb_usb_m920x failed with error -71 [ 850.454519][ T6167] usb 2-1: USB disconnect, device number 21 [ 850.716882][ T6043] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 851.865048][T20379] loop4: detected capacity change from 0 to 32768 [ 851.894747][T20379] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5997 (20379) [ 851.993673][T20379] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 852.074112][T20379] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 852.365238][T20379] BTRFS info (device loop4): enabling ssd optimizations [ 852.372238][T20379] BTRFS info (device loop4): turning on async discard [ 852.381802][T20379] BTRFS info (device loop4): enabling free space tree [ 852.509137][T20443] loop3: detected capacity change from 0 to 1024 [ 852.647635][T20443] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 852.649534][T20456] loop1: detected capacity change from 0 to 256 [ 852.662097][T20453] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 852.670589][T20456] exfat: Deprecated parameter 'namecase' [ 852.717739][ T6045] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 852.737213][T20456] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011fc0, chksum : 0xea22d69b, utbl_chksum : 0xe619d30d) [ 852.925550][T20458] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6030'. [ 852.983765][T20456] fuse: Bad value for 'fd' [ 853.019529][ T6035] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 854.354010][T20503] loop1: detected capacity change from 0 to 164 [ 854.934588][T20485] loop5: detected capacity change from 0 to 32768 [ 854.968906][T20485] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.6042 (20485) [ 855.062637][T20485] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 855.088005][T20485] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm [ 855.114270][ C1] sd 0:0:1:0: [sda] tag#1723 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 855.124742][ C1] sd 0:0:1:0: [sda] tag#1723 CDB: Read(6) 08 00 00 00 02 00 00 00 06 00 00 00 [ 855.314967][T20493] loop0: detected capacity change from 0 to 32768 [ 855.323979][T20485] BTRFS info (device loop5): enabling ssd optimizations [ 855.331870][T20485] BTRFS info (device loop5): turning on async discard [ 855.338830][T20485] BTRFS info (device loop5): enabling free space tree [ 855.380114][T20493] BTRFS warning: excessive commit interval 2147483648, use with care [ 855.388460][T20493] btrfs: Deprecated parameter 'usebackuproot' [ 855.440471][T20493] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 855.493331][T20493] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.6045 (20493) [ 855.579414][T20493] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 855.594125][ T6037] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 855.660076][T20493] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 855.833075][T20554] netlink: 288 bytes leftover after parsing attributes in process `syz.4.6069'. [ 855.969434][T20561] loop3: detected capacity change from 0 to 1024 [ 856.020949][ T4840] BTRFS warning (device loop0): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 856.069212][T20561] EXT4-fs: Ignoring removed nomblk_io_submit option [ 856.120364][T20493] BTRFS error (device loop0): failed to load root extent [ 856.146080][T20493] BTRFS warning (device loop0): try to load backup roots slot 1 [ 856.178880][ T12] BTRFS warning (device loop0): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 856.200705][T20561] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 856.212923][T20493] BTRFS warning (device loop0): couldn't read tree root [ 856.234486][T20579] xt_ecn: cannot match TCP bits for non-tcp packets [ 856.309248][T20493] BTRFS warning (device loop0): try to load backup roots slot 2 [ 856.333261][T20574] loop2: detected capacity change from 0 to 4096 [ 856.341444][T20574] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 856.363359][T17245] BTRFS error (device loop0): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 856.422886][T20493] BTRFS warning (device loop0): couldn't read tree root [ 856.459930][T20574] ntfs3(loop2): ino=19, mi_enum_attr [ 856.470216][T20574] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 856.478781][T20493] BTRFS warning (device loop0): try to load backup roots slot 3 [ 856.531805][T20574] ntfs3(loop2): failed to convert "c46c" to euc-jp [ 856.557903][T20574] ntfs3(loop2): ino=20, mi_enum_attr [ 856.569586][ T6035] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 856.638389][T20493] BTRFS info (device loop0): rebuilding free space tree [ 856.766199][T20493] BTRFS info (device loop0): checking UUID tree [ 856.827296][T20493] BTRFS info (device loop0): enabling ssd optimizations [ 856.858425][T20493] BTRFS info (device loop0): using spread ssd allocation scheme [ 856.901909][T20493] BTRFS info (device loop0): turning off barriers [ 856.908354][T20493] BTRFS info (device loop0): turning on flush-on-commit [ 856.974211][T20493] BTRFS info (device loop0): turning on async discard [ 856.980998][T20493] BTRFS info (device loop0): enabling free space tree [ 857.058401][T20493] BTRFS info (device loop0): force clearing of disk cache [ 857.065545][T20493] BTRFS info (device loop0): enabling auto defrag [ 857.112710][T20493] BTRFS info (device loop0): trying to use backup root at mount time [ 857.164274][T20600] loop2: detected capacity change from 0 to 16 [ 857.241812][T20600] erofs (device loop2): mounted with root inode @ nid 36. [ 857.255231][T20606] openvswitch: netlink: Unexpected mask (mask=4000040, allowed=10048) [ 857.290671][T20600] erofs (device loop2): corrupted dir block 0 @ nid 36 [ 857.441647][ T6028] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 857.499909][T20612] netlink: 180 bytes leftover after parsing attributes in process `syz.4.6086'. [ 857.586985][T20608] loop3: detected capacity change from 0 to 2048 [ 857.657448][T20608] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 857.894654][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 857.907218][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 857.959296][T20624] netlink: 'syz.2.6093': attribute type 10 has an invalid length. [ 857.967220][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 857.995927][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 858.036071][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 858.054804][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 858.085447][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 858.109743][T20621] netlink: 'syz.4.6091': attribute type 1 has an invalid length. [ 858.203748][ T6201] usb 6-1: new high-speed USB device number 124 using dummy_hcd [ 858.293682][T20628] loop3: detected capacity change from 0 to 4096 [ 858.406923][ T6201] usb 6-1: Using ep0 maxpacket: 16 [ 858.415760][ T6201] usb 6-1: config 1 has an invalid interface number: 105 but max is 0 [ 858.415803][ T6201] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 1 [ 858.415845][ T6201] usb 6-1: config 1 has no interface number 1 [ 858.415916][ T6201] usb 6-1: config 1 interface 105 altsetting 2 has an endpoint descriptor with address 0x24, changing to 0x4 [ 858.415967][ T6201] usb 6-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 858.416014][ T6201] usb 6-1: config 1 interface 105 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 858.416068][ T6201] usb 6-1: config 1 interface 105 has no altsetting 0 [ 858.431448][ T6201] usb 6-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 858.431494][ T6201] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 858.431534][ T6201] usb 6-1: Product: syz [ 858.431564][ T6201] usb 6-1: Manufacturer: syz [ 858.431593][ T6201] usb 6-1: SerialNumber: syz [ 858.432170][T20628] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 858.436698][T20623] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 858.666710][ T6201] aqc111 6-1:1.105: probe with driver aqc111 failed with error -22 [ 858.674549][ T6035] ntfs3(loop3): ino=9, ntfs_sync_fs failed, -22. [ 858.707404][T20640] loop0: detected capacity change from 0 to 256 [ 858.741593][T20640] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x544194fd, utbl_chksum : 0xe619d30d) [ 858.933514][ T848] usb 6-1: USB disconnect, device number 124 [ 858.953947][T20646] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6103'. [ 859.047079][T20648] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 859.186888][T20651] Cannot find set identified by id 0 to match [ 859.397338][T20656] loop3: detected capacity change from 0 to 256 [ 859.505956][T20662] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6110'. [ 859.792315][T20670] loop5: detected capacity change from 0 to 256 [ 859.838925][T20670] exfat: Deprecated parameter 'namecase' [ 859.887513][T20670] exfat: Deprecated parameter 'namecase' [ 859.898160][T20670] exfat: Deprecated parameter 'namecase' [ 859.910333][T20673] loop3: detected capacity change from 0 to 2048 [ 859.944331][T20670] exFAT-fs (loop5): Medium has reported failures. Some data may be lost. [ 860.011771][T20673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 860.031307][T20678] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6118'. [ 860.072255][T20670] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 860.375611][ T6035] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 861.012787][T20674] loop1: detected capacity change from 0 to 32768 [ 861.130904][T20674] XFS (loop1): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent. [ 861.318009][T20716] loop4: detected capacity change from 0 to 1764 [ 861.412976][ T6029] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 861.443825][T20721] loop3: detected capacity change from 0 to 64 [ 861.640988][T20725] loop5: detected capacity change from 0 to 4096 [ 861.812003][T20725] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 862.077283][T20733] 8021q: adding VLAN 0 to HW filter on device bond1 [ 862.207209][T20740] loop3: detected capacity change from 0 to 1024 [ 862.229808][T20740] EXT4-fs: Ignoring removed oldalloc option [ 862.235877][ T6037] ntfs3(loop5): ino=9, ntfs_sync_fs failed, -22. [ 862.378588][T20740] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 862.403797][T20740] EXT4-fs warning (device loop3): ext4_empty_dir:3099: inode #11: comm syz.3.6145: directory missing '..' [ 862.441535][T20751] loop5: detected capacity change from 0 to 16 [ 862.457947][T20748] loop2: detected capacity change from 0 to 1024 [ 862.473549][T20751] erofs (device loop5): mounted with root inode @ nid 36. [ 862.520984][ T6035] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 862.996214][ T6201] usb 5-1: new full-speed USB device number 14 using dummy_hcd [ 863.204482][ T6201] usb 5-1: too many endpoints for config 1 interface 0 altsetting 0: 255, using maximum allowed: 30 [ 863.232949][ T6201] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 863.278013][ T6201] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 863.303216][ T6201] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 863.324368][ T6201] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 255 [ 863.345314][T20771] xt_hashlimit: Unknown mode mask C4, kernel too old? [ 863.358394][ T6201] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 863.369504][ T6201] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 863.378846][ T6201] usb 5-1: SerialNumber: syz [ 863.606825][ T9] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 863.690236][T20780] 8021q: adding VLAN 0 to HW filter on device bond1 [ 863.719961][T20754] loop1: detected capacity change from 0 to 32768 [ 863.782114][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 863.787381][T20754] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 863.801139][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 863.822266][ T9] usb 1-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0 [ 863.827141][T20789] netlink: 212940 bytes leftover after parsing attributes in process `syz.3.6164'. [ 863.836503][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 863.851113][ T9] usb 1-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 863.873175][ T9] usb 1-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3 [ 863.881263][ T9] usb 1-1: Product: syz [ 863.890776][T20754] XFS (loop1): Ending clean mount [ 863.892507][ T9] usb 1-1: Manufacturer: syz [ 863.900469][ T9] usb 1-1: SerialNumber: syz [ 863.909022][ T9] usb 1-1: config 0 descriptor?? [ 863.927389][T20754] XFS (loop1): Quotacheck needed: Please wait. [ 864.050300][T20754] XFS (loop1): Quotacheck: Done. [ 864.148567][ T9] gs_usb 1-1:0.0: Couldn't send data format (err=-71) [ 864.159148][ T6201] usb 5-1: USB disconnect, device number 14 [ 864.180575][ T9] gs_usb 1-1:0.0: probe with driver gs_usb failed with error -71 [ 864.189332][T20800] netlink: 7064 bytes leftover after parsing attributes in process `syz.3.6168'. [ 864.189370][T20800] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 864.312968][ T9] usb 1-1: USB disconnect, device number 23 [ 864.357101][ T6029] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 864.452909][T20805] loop4: detected capacity change from 0 to 512 [ 864.489915][T20805] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 864.550435][T20805] EXT4-fs (loop4): 1 truncate cleaned up [ 864.570038][T20805] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 864.589751][T20805] EXT4-fs error (device loop4): ext4_generic_delete_entry:2667: inode #2: block 13: comm syz.4.6171: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 864.718323][T20811] netlink: 224 bytes leftover after parsing attributes in process `syz.2.6174'. [ 864.751366][T20805] EXT4-fs (loop4): Remounting filesystem read-only [ 864.775602][T20805] EXT4-fs warning (device loop4): ext4_rename_delete:3729: inode #2: comm syz.4.6171: Deleting old file: nlink 4, error=-117 [ 864.829191][T20813] loop3: detected capacity change from 0 to 16 [ 864.868312][T20813] erofs (device loop3): mounted with root inode @ nid 36. [ 864.981622][ T6045] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 865.457500][T20828] netlink: 'syz.0.6181': attribute type 21 has an invalid length. [ 865.500494][T20828] netlink: 156 bytes leftover after parsing attributes in process `syz.0.6181'. [ 865.539866][T20828] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6181'. [ 865.702930][T20837] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6185'. [ 865.819162][T20806] loop5: detected capacity change from 0 to 32768 [ 865.865669][T20837] veth3: entered promiscuous mode [ 865.891287][T20806] JBD2: Ignoring recovery information on journal [ 865.951943][T20806] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 866.195928][T20849] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6189'. [ 866.299059][ T6037] ocfs2: Unmounting device (7,5) on (node local) [ 867.072740][T20875] netlink: 56 bytes leftover after parsing attributes in process `syz.2.6200'. [ 867.105438][T20875] netlink: 19 bytes leftover after parsing attributes in process `syz.2.6200'. [ 867.153123][T20875] netlink: 19 bytes leftover after parsing attributes in process `syz.2.6200'. [ 867.385404][T20883] loop3: detected capacity change from 0 to 1024 [ 868.074629][T20905] loop5: detected capacity change from 0 to 4096 [ 868.108184][T20905] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 868.163439][ T777] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 868.176125][T20905] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 868.193490][T20905] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 868.355671][ T777] usb 1-1: Using ep0 maxpacket: 16 [ 868.374049][ T777] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 868.416675][ T777] usb 1-1: config 0 interface 0 has no altsetting 0 [ 868.460560][ T777] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 868.516088][ T777] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 868.524104][ T777] usb 1-1: Product: syz [ 868.538537][ T60] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22. [ 868.564173][ T777] usb 1-1: Manufacturer: syz [ 868.564255][ T6037] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 868.568790][ T777] usb 1-1: SerialNumber: syz [ 868.612756][ T777] usb 1-1: config 0 descriptor?? [ 868.617757][ T6037] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 868.655112][ T6037] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 868.699087][T17245] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22. [ 869.100789][T20897] loop1: detected capacity change from 0 to 32768 [ 869.128667][ T6110] usb 1-1: USB disconnect, device number 24 [ 869.206412][T20897] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 869.362215][T20897] XFS (loop1): Ending clean mount [ 869.415248][T20947] loop5: detected capacity change from 0 to 4096 [ 869.547575][T20949] loop2: detected capacity change from 0 to 1024 [ 869.564470][ T9] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 869.578357][ T6029] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 869.612472][T20949] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 869.703437][T20949] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 869.759244][ T9] usb 4-1: config 1 has an invalid interface number: 7 but max is 0 [ 869.767755][ T9] usb 4-1: config 1 has no interface number 0 [ 869.774097][ T9] usb 4-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 869.801730][ T9] usb 4-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 869.823246][ T9] usb 4-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 869.856657][ T6043] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 869.885407][ T9] usb 4-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 869.923820][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 869.973087][ T9] usb 4-1: Product: syz [ 869.977263][ T9] usb 4-1: Manufacturer: syz [ 870.006917][ T9] usb 4-1: SerialNumber: syz [ 870.069602][T20945] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 870.140500][T20963] netlink: 188 bytes leftover after parsing attributes in process `syz.4.6241'. [ 870.357786][T20945] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 870.467435][T20972] loop1: detected capacity change from 0 to 128 [ 870.510735][T20972] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 870.543901][T20972] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 870.632391][ T9] usb 4-1: Incompatible driver and firmware versions [ 870.717103][ T9] usb 4-1: USB disconnect, device number 35 [ 870.741357][ T6167] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 870.944526][ T6167] usb 5-1: Using ep0 maxpacket: 16 [ 870.964016][ T6167] usb 5-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 870.998008][ T6167] usb 5-1: config 2 has 1 interface, different from the descriptor's value: 2 [ 871.042238][ T6167] usb 5-1: New USB device found, idVendor=04b4, idProduct=6831, bcdDevice=88.56 [ 871.059426][T20987] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6251'. [ 871.073078][ T6167] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 871.073275][T20987] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6251'. [ 871.094309][ T6167] usb 5-1: Product: syz [ 871.098526][ T6167] usb 5-1: Manufacturer: syz [ 871.117602][ T6167] usb 5-1: SerialNumber: syz [ 871.365245][T20997] loop0: detected capacity change from 0 to 512 [ 871.387944][ T6167] ums-cypress 5-1:2.0: USB Mass Storage device detected [ 871.451539][T20997] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 871.518424][ T6167] usb 5-1: USB disconnect, device number 15 [ 871.527344][T20997] ext4 filesystem being mounted at /1038/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 871.528984][T21004] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 871.563645][T20997] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 871.809369][ T6028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 871.870173][T21013] xt_CT: You must specify a L4 protocol and not use inversions on it [ 871.921868][T21015] netlink: 'syz.5.6265': attribute type 1 has an invalid length. [ 872.257745][T21023] loop2: detected capacity change from 0 to 256 [ 872.277834][T21021] loop1: detected capacity change from 0 to 2048 [ 872.353363][T21021] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 872.394327][T21023] FAT-fs (loop2): Directory bread(block 64) failed [ 872.446797][T21023] FAT-fs (loop2): Directory bread(block 65) failed [ 872.488503][T21023] FAT-fs (loop2): Directory bread(block 66) failed [ 872.495036][T21023] FAT-fs (loop2): Directory bread(block 67) failed [ 872.575308][T21023] FAT-fs (loop2): Directory bread(block 68) failed [ 872.624327][T21023] FAT-fs (loop2): Directory bread(block 69) failed [ 872.630937][T21023] FAT-fs (loop2): Directory bread(block 70) failed [ 872.692398][T21023] FAT-fs (loop2): Directory bread(block 71) failed [ 872.725313][T21023] FAT-fs (loop2): Directory bread(block 72) failed [ 872.764738][T21023] FAT-fs (loop2): Directory bread(block 73) failed [ 872.823965][T21041] netlink: 'syz.0.6276': attribute type 9 has an invalid length. [ 873.006775][T21047] netlink: zone id is out of range [ 873.037802][T21047] netlink: zone id is out of range [ 873.043037][ T6201] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 873.072707][T21047] netlink: zone id is out of range [ 873.078885][T21047] netlink: zone id is out of range [ 873.091436][T21047] netlink: zone id is out of range [ 873.120887][T21047] netlink: zone id is out of range [ 873.150019][T21047] netlink: zone id is out of range [ 873.169804][T21047] netlink: zone id is out of range [ 873.174920][T21047] netlink: zone id is out of range [ 873.256700][ T6201] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 873.281084][ T6201] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 873.308779][ T6201] usb 2-1: Product: syz [ 873.320581][ T6201] usb 2-1: Manufacturer: syz [ 873.340947][ T6201] usb 2-1: SerialNumber: syz [ 873.371166][ T6201] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 873.468714][ T8431] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 873.514913][T21059] loop3: detected capacity change from 0 to 1024 [ 873.557220][T21059] hfsplus: Filesystem is marked locked, mounting read-only. [ 873.619409][T21059] hfsplus: filesystem is marked locked, leaving read-only. [ 874.086224][ T777] usb 2-1: USB disconnect, device number 22 [ 874.636099][ T8431] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 874.657096][ T8431] ath9k_htc: Failed to initialize the device [ 874.681726][ T777] usb 2-1: ath9k_htc: USB layer deinitialized [ 875.107077][ T848] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 875.217885][T21110] xt_CONNSECMARK: invalid mode: 66 [ 875.300903][ T848] usb 3-1: config 0 has an invalid interface number: 50 but max is 0 [ 875.309044][ T848] usb 3-1: config 0 has no interface number 0 [ 875.342854][ T848] usb 3-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 875.377399][ T848] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc [ 875.421027][ T848] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 875.445957][ T848] usb 3-1: Product: syz [ 875.461485][ T848] usb 3-1: Manufacturer: syz [ 875.467345][ T848] usb 3-1: SerialNumber: syz [ 875.488407][ T848] usb 3-1: config 0 descriptor?? [ 875.530359][ T848] yurex 3-1:0.50: USB YUREX device now attached to Yurex #0 [ 875.663567][T21123] netlink: 64 bytes leftover after parsing attributes in process `syz.1.6315'. [ 875.760559][T21127] netlink: 512 bytes leftover after parsing attributes in process `syz.4.6316'. [ 875.793781][ C0] yurex 3-1:0.50: yurex_interrupt - overflow with length 8, actual length is 8 [ 875.923080][T21132] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6319'. [ 876.011004][ T8431] usb 3-1: USB disconnect, device number 32 [ 876.019547][T21130] loop5: detected capacity change from 0 to 4096 [ 876.032802][ T8431] yurex 3-1:0.50: USB YUREX #0 now disconnected [ 876.126375][T21136] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6321'. [ 877.778206][T21152] loop5: detected capacity change from 0 to 32768 [ 877.788276][T21148] loop1: detected capacity change from 0 to 32768 [ 877.874331][T21152] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode. [ 877.915181][T21148] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 877.992704][T21148] XFS (loop1): Ending clean mount [ 878.018782][ T6037] ocfs2: Unmounting device (7,5) on (node local) [ 878.061681][T21148] XFS (loop1): Quotacheck needed: Please wait. [ 878.144637][T21148] XFS (loop1): Quotacheck: Done. [ 878.155529][T21148] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 878.307167][T21155] loop4: detected capacity change from 0 to 32768 [ 878.375258][T21194] loop0: detected capacity change from 0 to 4096 [ 878.440708][T21155] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 878.455847][T21194] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 878.562864][T21155] XFS (loop4): Ending clean mount [ 878.925843][ T6045] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 879.397872][T21221] misc userio: No port type given on /dev/userio [ 879.662542][T21185] loop3: detected capacity change from 0 to 32768 [ 879.804899][T21185] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 879.900740][T21185] XFS (loop3): Ending clean mount [ 879.909082][T21185] XFS (loop3): Quotacheck needed: Please wait. [ 880.015731][T21185] XFS (loop3): Quotacheck: Done. [ 880.369084][ T6035] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 880.469434][T21266] net_ratelimit: 3 callbacks suppressed [ 880.469466][T21266] openvswitch: netlink: VXLAN extension message has 8 unknown bytes. [ 880.577373][T21268] loop0: detected capacity change from 0 to 1024 [ 880.640318][T21268] hfsplus: Filesystem is marked locked, mounting read-only. [ 880.724645][T21268] hfsplus: invalid catalog entry type in lookup [ 881.286333][T21286] x_tables: ip_tables: icmp match: only valid for protocol 1 [ 881.317930][T21291] misc userio: No port type given on /dev/userio [ 881.800333][T21307] CIFS: iocharset name too long [ 881.882445][T21308] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6391'. [ 881.920092][T21308] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6391'. [ 882.166292][T21319] bond2: Removing last arp target with arp_interval on [ 882.258380][T21326] misc userio: No port type given on /dev/userio [ 883.026016][T21350] netlink: 'syz.3.6411': attribute type 10 has an invalid length. [ 883.055777][T21350] hsr0: entered promiscuous mode [ 883.125682][T21352] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6413'. [ 883.137571][T21350] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 883.184826][T21350] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 883.217152][T21358] loop4: detected capacity change from 0 to 128 [ 883.224467][T21350] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 883.675852][T21370] mac80211_hwsim hwsim12 wlan0: entered promiscuous mode [ 883.875334][ T30] audit: type=1326 audit(2000524820.708:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21373 comm="syz.1.6424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 883.956380][ T30] audit: type=1326 audit(2000524820.708:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21373 comm="syz.1.6424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 884.010937][T21342] loop2: detected capacity change from 0 to 32768 [ 884.071915][ T30] audit: type=1326 audit(2000524820.708:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21373 comm="syz.1.6424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 884.120308][T21342] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 884.239723][ T30] audit: type=1326 audit(2000524820.708:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21373 comm="syz.1.6424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 884.264166][T21342] (syz.2.6407,21342,0):ocfs2_symlink:2080 ERROR: status = -2 [ 884.306610][ T30] audit: type=1326 audit(2000524820.708:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21373 comm="syz.1.6424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0ef398f749 code=0x7ffc0000 [ 884.406780][ T6043] (syz-executor,6043,1):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode. [ 884.454995][ T6043] ocfs2: Unmounting device (7,2) on (node local) [ 885.342403][T21421] xt_hashlimit: size too large, truncated to 1048576 [ 885.358543][T21421] xt_hashlimit: max too large, truncated to 1048576 [ 885.828454][T21395] loop3: detected capacity change from 0 to 32768 [ 885.865898][T21395] JBD2: Ignoring recovery information on journal [ 886.019000][T21395] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 886.426808][ T6035] ocfs2: Unmounting device (7,3) on (node local) [ 887.089869][T21475] loop2: detected capacity change from 0 to 2048 [ 887.118261][T21475] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 887.168330][T21475] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 887.194973][T21475] UDF-fs: Scanning with blocksize 512 failed [ 887.270493][T21475] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 887.271209][T21483] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 887.657926][T21492] netlink: 'syz.4.6480': attribute type 1 has an invalid length. [ 887.979211][ T30] audit: type=1326 audit(2000524824.550:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.4.6484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 888.029868][ T30] audit: type=1326 audit(2000524824.550:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.4.6484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 888.052854][ T30] audit: type=1326 audit(2000524824.550:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.4.6484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 888.078699][ T30] audit: type=1326 audit(2000524824.559:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.4.6484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=318 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 888.101937][ T30] audit: type=1326 audit(2000524824.559:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21501 comm="syz.4.6484" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 888.407259][T21473] loop5: detected capacity change from 0 to 32768 [ 888.519560][T21473] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 888.625605][T21524] netlink: 'syz.0.6492': attribute type 10 has an invalid length. [ 888.659522][T21473] XFS (loop5): Ending clean mount [ 888.690151][T21524] hsr0: entered promiscuous mode [ 888.704746][T21473] XFS (loop5): Quotacheck needed: Please wait. [ 888.711170][T21524] bond0: (slave hsr0): The slave device specified does not support setting the MAC address [ 888.727747][T21524] hsr0: A HSR master's MTU cannot be greater than the smallest MTU of its slaves minus the HSR Tag length (6 octets). [ 888.746738][T21524] bond0: (slave hsr0): Error -22 calling dev_set_mtu [ 888.787238][T21473] XFS (loop5): Quotacheck: Done. [ 888.812049][T21473] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 888.893403][T21487] loop1: detected capacity change from 0 to 32768 [ 888.897625][T21529] loop3: detected capacity change from 0 to 4096 [ 888.928377][ T6167] usb 3-1: new high-speed USB device number 33 using dummy_hcd [ 888.968070][T21487] JBD2: Ignoring recovery information on journal [ 888.982095][T21529] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 889.049366][T21529] ntfs3(loop3): Failed to load $Extend (-22). [ 889.102731][T21529] ntfs3(loop3): Failed to initialize $Extend. [ 889.115408][ T6167] usb 3-1: Using ep0 maxpacket: 16 [ 889.145530][ T6167] usb 3-1: config 0 has an invalid interface number: 216 but max is 0 [ 889.188049][ T6167] usb 3-1: config 0 has no interface number 0 [ 889.194178][ T6167] usb 3-1: config 0 interface 216 altsetting 0 bulk endpoint 0xA has invalid maxpacket 16 [ 889.246109][ T6167] usb 3-1: config 0 interface 216 altsetting 0 endpoint 0x82 has invalid maxpacket 1104, setting to 1024 [ 889.266409][T21487] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 889.291748][ T6167] usb 3-1: config 0 interface 216 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 889.360684][ T6167] usb 3-1: New USB device found, idVendor=c877, idProduct=d477, bcdDevice=ca.74 [ 889.399864][ T6167] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 889.407894][ T6167] usb 3-1: Product: syz [ 889.474503][ T6167] usb 3-1: Manufacturer: syz [ 889.482778][ T6167] usb 3-1: SerialNumber: syz [ 889.512690][ T6167] usb 3-1: config 0 descriptor?? [ 889.549350][T21527] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 889.580267][T21527] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 889.630585][ T6167] usb-storage 3-1:0.216: USB Mass Storage device detected [ 889.703000][ T6167] scsi host1: usb-storage 3-1:0.216 [ 889.721512][ T6029] ocfs2: Unmounting device (7,1) on (node local) [ 890.500959][ T848] usb 6-1: new high-speed USB device number 125 using dummy_hcd [ 890.682495][ T848] usb 6-1: Using ep0 maxpacket: 16 [ 890.699946][ T848] usb 6-1: config 0 has an invalid interface number: 237 but max is 0 [ 890.731574][ T848] usb 6-1: config 0 has no interface number 0 [ 890.756671][ T848] usb 6-1: config 0 interface 237 has no altsetting 0 [ 890.781598][ T848] usb 6-1: New USB device found, idVendor=0e41, idProduct=5057, bcdDevice= 6.ad [ 890.796027][ T848] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 890.813681][ T848] usb 6-1: Product: syz [ 890.823754][ T848] usb 6-1: Manufacturer: syz [ 890.836479][ T848] usb 6-1: SerialNumber: syz [ 890.870734][ T848] usb 6-1: config 0 descriptor?? [ 890.912502][ T848] snd_usb_podhd 6-1:0.237: Line 6 POD HD300 found [ 891.065046][T21548] usb 3-1: reset high-speed USB device number 33 using dummy_hcd [ 891.174146][ T848] snd_usb_podhd 6-1:0.237: cannot get proper max packet size [ 891.214632][ T848] snd_usb_podhd 6-1:0.237: Line 6 POD HD300 now disconnected [ 891.240081][T21594] netlink: 'syz.3.6522': attribute type 6 has an invalid length. [ 891.259590][ T848] snd_usb_podhd 6-1:0.237: probe with driver snd_usb_podhd failed with error -22 [ 891.440892][ T848] usb 6-1: USB disconnect, device number 125 [ 891.526026][T21600] loop3: detected capacity change from 0 to 164 [ 891.562963][T21600] ISOFS: unable to read i-node block [ 891.570498][T21600] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 891.831449][T21606] syz.3.6528 calls setitimer() with new_value NULL pointer. Misfeature support will be removed [ 891.867405][T21604] loop4: detected capacity change from 0 to 4096 [ 891.927746][T21609] loop2: detected capacity change from 0 to 128 [ 891.978772][T21609] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2 [ 892.004910][ T6167] usb 3-1: USB disconnect, device number 33 [ 892.075943][T21585] loop0: detected capacity change from 0 to 32768 [ 892.080057][T21611] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 892.252516][T21585] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 892.416110][T21585] XFS (loop0): Ending clean mount [ 892.448284][T21585] XFS (loop0): Quotacheck needed: Please wait. [ 892.490522][ T24] usb 4-1: new full-speed USB device number 36 using dummy_hcd [ 892.503985][T21585] XFS (loop0): Quotacheck: Done. [ 892.529636][T21631] loop5: detected capacity change from 0 to 4096 [ 892.549231][T21585] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 892.623913][T21631] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 892.665086][ T24] usb 4-1: config 0 has an invalid interface number: 3 but max is 2 [ 892.687776][ T24] usb 4-1: config 0 has an invalid interface number: 176 but max is 2 [ 892.728517][ T24] usb 4-1: config 0 has no interface number 1 [ 892.763774][ T24] usb 4-1: config 0 has no interface number 2 [ 892.792863][T21631] ntfs3(loop5): ino=1a, mi_enum_attr [ 892.809135][ T24] usb 4-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 892.818569][T21631] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 892.837710][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 892.850077][T21631] ntfs3(loop5): ino=1a, mi_enum_attr [ 892.870281][T21631] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 892.883438][ T24] usb 4-1: config 0 descriptor?? [ 893.125341][ T24] usb 4-1: Could not set interface, error -71 [ 893.209968][ T24] usb 4-1: USB disconnect, device number 36 [ 893.945753][ T24] usb 6-1: new full-speed USB device number 126 using dummy_hcd [ 894.151091][T21657] loop2: detected capacity change from 0 to 128 [ 894.172136][ T24] usb 6-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 894.192497][ T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 894.203747][T21657] EXT4-fs: Ignoring removed orlov option [ 894.226982][ T24] usb 6-1: config 0 descriptor?? [ 894.282563][ T24] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 894.283996][T21657] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 894.402727][T21657] ext4 filesystem being mounted at /1110/control supports timestamps until 2038-01-19 (0x7fffffff) [ 894.541412][T21657] EXT4-fs error (device loop2): ext4_validate_inode_bitmap:104: comm syz.2.6548: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19 [ 894.545011][T21667] netlink: 830 bytes leftover after parsing attributes in process `syz.3.6552'. [ 894.716893][ T24] gp8psk: usb in 128 operation failed. [ 894.735219][ T24] gp8psk: usb in 137 operation failed. [ 894.751028][ T24] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 894.804080][ T24] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 894.832180][ T6043] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 894.840276][ T24] usb 6-1: USB disconnect, device number 126 [ 896.051896][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 896.051922][ T30] audit: type=1326 audit(2000524832.093:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21708 comm="syz.4.6573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 896.202771][ T30] audit: type=1326 audit(2000524832.150:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21708 comm="syz.4.6573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=74 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 896.310097][ T30] audit: type=1326 audit(2000524832.150:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21708 comm="syz.4.6573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 896.422507][ T30] audit: type=1326 audit(2000524832.150:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21708 comm="syz.4.6573" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 896.446794][T21722] loop5: detected capacity change from 0 to 16 [ 896.466894][T21722] erofs (device loop5): mounted with root inode @ nid 36. [ 896.528360][T21726] netlink: 'syz.3.6579': attribute type 10 has an invalid length. [ 896.558101][T21722] erofs (device loop5): inconsistent algorithmtype 1 for nid 89 [ 896.566011][T21722] erofs (device loop5): readahead error at folio 1 @ nid 89 [ 896.590282][T21726] team0: Cannot enslave team device to itself [ 896.636438][T21722] erofs (device loop5): inconsistent algorithmtype 1 for nid 89 [ 896.689710][T21722] erofs (device loop5): inconsistent algorithmtype 1 for nid 89 [ 896.716394][T21722] erofs (device loop5): read error -117 @ 1 of nid 89 [ 896.736833][ T30] audit: type=1800 audit(2000524832.729:82): pid=21722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.6578" name="file2" dev="loop5" ino=89 res=0 errno=0 [ 897.484759][T21741] netlink: 'syz.4.6587': attribute type 64 has an invalid length. [ 897.508293][ T6044] Bluetooth: hci3: unexpected event for opcode 0x0c22 [ 897.528460][T21741] netlink: 9 bytes leftover after parsing attributes in process `syz.4.6587'. [ 897.656369][T21749] loop3: detected capacity change from 0 to 512 [ 897.718652][T21749] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 897.803296][T21729] loop2: detected capacity change from 0 to 32768 [ 897.811813][T21749] ext4 filesystem being mounted at /1065/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 897.827971][T21729] [ 897.827971][T21729] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 897.827971][T21729] [ 897.876173][T21729] [ 897.876173][T21729] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 897.876173][T21729] [ 897.978563][T21729] [ 897.978563][T21729] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 897.978563][T21729] [ 898.018297][ T112] [ 898.018297][ T112] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 898.018297][ T112] [ 898.072761][ T6035] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 898.289201][ T6043] [ 898.289201][ T6043] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 898.289201][ T6043] [ 898.327481][ T6043] [ 898.327481][ T6043] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 898.327481][ T6043] [ 898.349088][ T30] audit: type=1326 audit(2000524834.243:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21764 comm="syz.3.6597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e7bf8f749 code=0x7ffc0000 [ 898.449728][ T30] audit: type=1326 audit(2000524834.243:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21764 comm="syz.3.6597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e7bf8f749 code=0x7ffc0000 [ 898.545636][ T30] audit: type=1326 audit(2000524834.271:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21764 comm="syz.3.6597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f0e7bf8f749 code=0x7ffc0000 [ 898.607239][ T30] audit: type=1326 audit(2000524834.271:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21764 comm="syz.3.6597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e7bf8f749 code=0x7ffc0000 [ 898.738734][ T30] audit: type=1326 audit(2000524834.271:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21764 comm="syz.3.6597" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e7bf8f749 code=0x7ffc0000 [ 898.949031][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 898.956791][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 899.588820][T21792] bond1 (unregistering): Released all slaves [ 899.905516][T21774] loop0: detected capacity change from 0 to 32768 [ 899.991923][T21774] JBD2: Ignoring recovery information on journal [ 900.011268][ T777] usb 3-1: new high-speed USB device number 34 using dummy_hcd [ 900.168950][T21774] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 900.187550][ T777] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 900.217988][ T777] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 900.273465][ T777] usb 3-1: config 220 has no interface number 2 [ 900.300379][ T777] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 900.357126][ T777] usb 3-1: config 220 interface 0 has no altsetting 0 [ 900.389475][ T777] usb 3-1: config 220 interface 76 has no altsetting 0 [ 900.429075][ T777] usb 3-1: config 220 interface 1 has no altsetting 0 [ 900.467149][ T777] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 900.487614][ T777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 900.503307][ T777] usb 3-1: Product: syz [ 900.533201][ T777] usb 3-1: Manufacturer: syz [ 900.545601][ T777] usb 3-1: SerialNumber: syz [ 900.571611][ T6028] ocfs2: Unmounting device (7,0) on (node local) [ 900.733430][T21827] comedi comedi0: pcl816: I/O port conflict (0x6,16) [ 900.788918][T21828] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 900.825201][ T777] usb 3-1: selecting invalid altsetting 0 [ 900.867348][ T777] uvcvideo 3-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 900.874703][ T777] uvcvideo 3-1:220.0: No valid video chain found. [ 900.934494][ T777] usb 3-1: selecting invalid altsetting 0 [ 900.940259][ T777] usbtest 3-1:220.1: probe with driver usbtest failed with error -22 [ 900.998882][ T777] usb 3-1: USB disconnect, device number 34 [ 901.102409][ T9] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 901.273855][ T9] usb 5-1: Using ep0 maxpacket: 32 [ 901.280349][T21838] loop0: detected capacity change from 0 to 4096 [ 901.287320][ T9] usb 5-1: config 0 has an invalid interface number: 146 but max is 0 [ 901.310360][ T9] usb 5-1: config 0 has no interface number 0 [ 901.331843][ T9] usb 5-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 901.369564][T21841] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 901.373369][ T9] usb 5-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 901.407032][T21838] NILFS error (device loop0): nilfs_bmap_lookup_contig: broken bmap (inode number=12) [ 901.439180][ T9] usb 5-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024 [ 901.461077][T21838] Remounting filesystem read-only [ 901.466158][ T9] usb 5-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 901.466946][ T9] usb 5-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82 [ 901.467608][ T9] usb 5-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 901.467655][ T9] usb 5-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 901.468318][ T9] usb 5-1: config 0 interface 146 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1 [ 901.473620][ T9] usb 5-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 901.476654][ T9] usb 5-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95 [ 901.476694][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 901.476727][ T9] usb 5-1: Product: syz [ 901.476824][ T9] usb 5-1: Manufacturer: syz [ 901.476855][ T9] usb 5-1: SerialNumber: syz [ 901.488239][ T9] usb 5-1: config 0 descriptor?? [ 901.489255][T21832] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 901.489578][T21832] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 901.492065][ T9] microtek usb (rev 0.4.3): will this work? Response EP is not usually 3 [ 901.492090][ T9] microtek usb (rev 0.4.3): will this work? Image data EP is not usually 2 [ 901.506089][ T9] scsi host1: microtekX6 [ 901.724804][T21851] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6636'. [ 901.770807][ T6110] usb 5-1: USB disconnect, device number 16 [ 902.024036][T21830] loop3: detected capacity change from 0 to 32768 [ 902.074019][T21830] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 902.171276][T21830] XFS (loop3): Ending clean mount [ 902.197255][T21830] XFS (loop3): Quotacheck needed: Please wait. [ 902.245419][T21830] XFS (loop3): Quotacheck: Done. [ 902.245864][T21830] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 902.266413][T21869] loop2: detected capacity change from 0 to 256 [ 902.373884][T21869] FAT-fs (loop2): Directory bread(block 64) failed [ 902.373934][T21869] FAT-fs (loop2): Directory bread(block 65) failed [ 902.374034][T21869] FAT-fs (loop2): Directory bread(block 66) failed [ 902.374076][T21869] FAT-fs (loop2): Directory bread(block 67) failed [ 902.374176][T21869] FAT-fs (loop2): Directory bread(block 68) failed [ 902.374218][T21869] FAT-fs (loop2): Directory bread(block 69) failed [ 902.374321][T21869] FAT-fs (loop2): Directory bread(block 70) failed [ 902.374363][T21869] FAT-fs (loop2): Directory bread(block 71) failed [ 902.374469][T21869] FAT-fs (loop2): Directory bread(block 72) failed [ 902.374510][T21869] FAT-fs (loop2): Directory bread(block 73) failed [ 902.732240][T21875] loop4: detected capacity change from 0 to 256 [ 902.733315][T21875] exfat: Deprecated parameter 'utf8' [ 902.779992][T21875] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 903.804039][T21908] delete_channel: no stack [ 903.856433][T21911] vivid-007: ================= START STATUS ================= [ 903.871160][T21911] vivid-007: Generate PTS: true [ 903.905347][T21911] vivid-007: Generate SCR: true [ 903.921463][T21911] tpg source WxH: 320x240 (Y'CbCr) [ 903.931912][T21911] tpg field: 1 [ 903.937611][T21911] tpg crop: (0,0)/320x240 [ 903.948406][T21911] tpg compose: (0,0)/320x240 [ 903.958786][T21911] tpg colorspace: 8 [ 903.973025][T21911] tpg transfer function: 0/0 [ 904.010647][T21911] tpg Y'CbCr encoding: 0/0 [ 904.021488][T21911] tpg quantization: 0/0 [ 904.046252][T21911] tpg RGB range: 0/2 [ 904.050161][T21911] vivid-007: ================== END STATUS ================== [ 904.686396][T21938] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6677'. [ 904.720712][T21938] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6677'. [ 904.850913][T21945] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6681'. [ 905.044436][T21905] loop2: detected capacity change from 0 to 32768 [ 905.177531][T21905] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 905.237987][T21965] netlink: 32 bytes leftover after parsing attributes in process `syz.5.6689'. [ 905.249902][T21965] netlink: 46 bytes leftover after parsing attributes in process `syz.5.6689'. [ 905.258196][T21905] XFS (loop2): Ending clean mount [ 905.289219][T21965] netlink: 46 bytes leftover after parsing attributes in process `syz.5.6689'. [ 905.324321][T21905] XFS (loop2): Quotacheck needed: Please wait. [ 905.437865][T21905] XFS (loop2): Quotacheck: Done. [ 905.443225][T21905] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 906.122862][T17245] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 906.451480][ T777] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 906.583276][T22005] loop0: detected capacity change from 0 to 512 [ 906.649563][ T777] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 906.662978][T22005] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 906.675154][ T777] usb 5-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 906.718865][ T777] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 906.755917][T22005] EXT4-fs error (device loop0): ext4_iget_extra_inode:5070: inode #15: comm syz.0.6707: corrupted in-inode xattr: e_value out of bounds [ 906.772899][T22005] EXT4-fs (loop0): Remounting filesystem read-only [ 906.781873][ T777] usb 5-1: config 220 has no interface number 2 [ 906.813528][T22005] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 906.834126][ T777] usb 5-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 906.932850][ T777] usb 5-1: config 220 interface 0 has no altsetting 0 [ 906.946178][ T777] usb 5-1: config 220 interface 76 has no altsetting 0 [ 906.961653][ T777] usb 5-1: config 220 interface 1 has no altsetting 0 [ 906.991819][ T777] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 907.010342][ T777] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 907.037208][ T777] usb 5-1: Product: syz [ 907.082608][ T777] usb 5-1: Manufacturer: syz [ 907.087219][ T777] usb 5-1: SerialNumber: syz [ 907.168067][ T6028] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 907.370096][ T777] usb 5-1: selecting invalid altsetting 0 [ 907.526759][T22035] loop5: detected capacity change from 0 to 512 [ 907.743374][T22035] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 907.910301][T22035] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -2 [ 907.933094][T22042] netlink: 'syz.0.6723': attribute type 8 has an invalid length. [ 907.954816][T22035] EXT4-fs error (device loop5): ext4_free_branches:1020: inode #13: comm syz.5.6720: invalid indirect mapped block 512 (level 0) [ 908.019053][T22035] EXT4-fs (loop5): 1 truncate cleaned up [ 908.052706][T22035] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 908.118000][ T777] uvcvideo 5-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 908.141732][ T777] uvcvideo 5-1:220.0: No valid video chain found. [ 908.166406][T22035] EXT4-fs error (device loop5): ext4_map_blocks:777: inode #2: block 4: comm syz.5.6720: lblock 0 mapped to illegal pblock 4 (length 1) [ 908.179818][ T777] usb 5-1: selecting invalid altsetting 0 [ 908.216885][ T777] usbtest 5-1:220.1: probe with driver usbtest failed with error -22 [ 908.276096][ T777] usb 5-1: USB disconnect, device number 17 [ 908.425351][ T6037] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 908.672221][ T30] audit: type=1326 audit(2000524843.881:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22048 comm="syz.4.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 908.777314][ T30] audit: type=1326 audit(2000524843.890:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22048 comm="syz.4.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 908.844767][ T30] audit: type=1326 audit(2000524843.890:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22048 comm="syz.4.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 908.949333][ T30] audit: type=1326 audit(2000524843.890:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22048 comm="syz.4.6728" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91cb38f749 code=0x7ffc0000 [ 909.008433][T22057] netlink: 'syz.4.6730': attribute type 27 has an invalid length. [ 909.016327][T22057] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6730'. [ 909.152792][T22037] loop3: detected capacity change from 0 to 32768 [ 909.193170][T22061] loop5: detected capacity change from 0 to 1764 [ 909.235007][T22037] ERROR: (device loop3): xtTruncate: xt_getpage: xtree page corrupt [ 909.235007][T22037] [ 909.298480][T22037] ERROR: (device loop3): remounting filesystem as read-only [ 909.702765][ T30] audit: type=1326 audit(2000524844.853:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22075 comm="syz.5.6738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 909.800302][ T30] audit: type=1326 audit(2000524844.853:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22075 comm="syz.5.6738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 909.919114][T22086] loop1: detected capacity change from 0 to 128 [ 909.922498][ T30] audit: type=1326 audit(2000524844.853:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22075 comm="syz.5.6738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=27 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 910.028428][ T30] audit: type=1326 audit(2000524844.853:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22075 comm="syz.5.6738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 910.079775][T22091] JFS: discard option not supported on device [ 910.086232][T22091] Mount JFS Failure: -22 [ 910.103548][T22091] jfs_mount failed w/return code = -22 [ 910.131610][ T30] audit: type=1326 audit(2000524844.853:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22075 comm="syz.5.6738" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f334b38f749 code=0x7ffc0000 [ 910.215035][T22094] Cannot find set identified by id 3 to match [ 910.698612][ T777] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 910.902111][ T777] usb 4-1: Using ep0 maxpacket: 8 [ 910.909543][ T777] usb 4-1: config 0 has an invalid interface number: 55 but max is 0 [ 910.955354][ T777] usb 4-1: config 0 has no interface number 0 [ 910.986412][ T777] usb 4-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 911.038111][ T777] usb 4-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 911.064753][ T777] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 911.129230][ T777] usb 4-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 911.167461][ T777] usb 4-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 911.200106][ T777] usb 4-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 911.258780][ T777] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 911.285310][ T777] usb 4-1: config 0 descriptor?? [ 911.323986][ T777] ldusb 4-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 911.363882][T22128] loop4: detected capacity change from 0 to 1764 [ 911.375693][T22130] Cannot find set identified by id 3 to match [ 911.604945][T22134] xt_CT: You must specify a L4 protocol and not use inversions on it [ 911.629824][T22102] ldusb 4-1:0.55: Couldn't submit interrupt_in_urb -90 [ 911.701327][ T6110] usb 4-1: USB disconnect, device number 37 [ 911.737489][ T6110] ldusb 4-1:0.55: LD USB Device #0 now disconnected [ 912.097256][T22118] loop5: detected capacity change from 0 to 32768 [ 912.184297][T22118] ERROR: (device loop5): dtSearch: DT_GETPAGE: dtree page corrupt [ 912.184297][T22118] [ 912.258673][T22118] ERROR: (device loop5): remounting filesystem as read-only [ 912.307775][T22118] jfs_lookup: dtSearch returned -5 [ 912.626569][T22163] loop4: detected capacity change from 0 to 256 [ 912.931846][T22172] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 913.009356][T22172] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 1th superblock [ 913.078697][T22172] F2FS-fs (nullb0): Magic Mismatch, valid(0xf2f52010) - read(0x0) [ 913.139556][T22172] F2FS-fs (nullb0): Can't find valid F2FS filesystem in 2th superblock [ 913.439349][T22186] loop5: detected capacity change from 0 to 128 [ 913.739031][T22194] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6798'. [ 913.851309][T22197] loop4: detected capacity change from 0 to 256 [ 913.953903][T22160] loop1: detected capacity change from 0 to 32768 [ 914.074440][T22204] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6803'. [ 914.219921][ T4840] read_mapping_page failed! [ 914.224696][ T4840] ERROR: (device loop1): txAbort: [ 914.224696][ T4840] [ 914.272027][ T6110] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 914.282255][ T4840] jfs_write_inode: jfs_commit_inode failed! [ 914.478780][ T6110] usb 1-1: Using ep0 maxpacket: 8 [ 914.513830][ T6110] usb 1-1: config index 0 descriptor too short (expected 30482, got 18) [ 914.526590][ T6110] usb 1-1: config 0 has too many interfaces: 101, using maximum allowed: 32 [ 914.537412][ T6110] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 101 [ 914.559774][ T6110] usb 1-1: New USB device found, idVendor=0403, idProduct=6010, bcdDevice= 5.00 [ 914.560585][ T848] usb 6-1: new high-speed USB device number 127 using dummy_hcd [ 914.574150][ T6110] usb 1-1: New USB device strings: Mfr=253, Product=255, SerialNumber=0 [ 914.585064][T22218] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6809'. [ 914.597263][T22218] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6809'. [ 914.608850][ T6110] usb 1-1: Product: syz [ 914.613043][ T6110] usb 1-1: Manufacturer: syz [ 914.655413][ T6110] usb 1-1: config 0 descriptor?? [ 914.686780][ T6110] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 914.733501][ T6110] usb 1-1: Detected FT2232C/D [ 914.771343][T22218] bond3: Removing last arp target with arp_interval on [ 914.793555][ T848] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 914.810508][ T848] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 914.824110][ T848] usb 6-1: Product: syz [ 914.829532][ T848] usb 6-1: Manufacturer: syz [ 914.834138][ T848] usb 6-1: SerialNumber: syz [ 914.838503][T22218] bond3: entered allmulticast mode [ 914.850339][T22218] 8021q: adding VLAN 0 to HW filter on device bond3 [ 914.879727][ T848] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 914.923636][ T6201] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 915.120566][ T6110] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 915.161706][ T6110] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 915.219757][ T6110] usb 1-1: USB disconnect, device number 25 [ 915.254516][ T6110] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 915.278446][ T6110] ftdi_sio 1-1:0.0: device disconnected [ 915.484720][ T848] usb 6-1: USB disconnect, device number 127 [ 915.587917][T22238] program syz.4.6819 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 915.989685][T22250] loop0: detected capacity change from 0 to 2048 [ 916.058970][ T6201] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive [ 916.080700][T22250] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found! [ 916.092609][ T6201] ath9k_htc: Failed to initialize the device [ 916.143964][ T848] usb 6-1: ath9k_htc: USB layer deinitialized [ 916.147736][T22250] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 916.272355][T22250] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry at pos 40 with incorrect tag 100 [ 916.286761][T22259] loop5: detected capacity change from 0 to 256 [ 916.344988][T22259] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 916.661518][T22265] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6833'. [ 918.064890][T22316] loop5: detected capacity change from 0 to 16 [ 918.118483][T22316] erofs (device loop5): mounted with root inode @ nid 36. [ 918.178563][T22316] syz.5.6857: attempt to access beyond end of device [ 918.178563][T22316] loop5: rw=524288, sector=8, nr_sectors = 32 limit=16 [ 918.231277][T22316] syz.5.6857: attempt to access beyond end of device [ 918.231277][T22316] loop5: rw=524288, sector=40, nr_sectors = 64 limit=16 [ 918.245212][T22322] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] SMP KASAN NOPTI [ 918.257289][T22322] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f] [ 918.265704][T22322] CPU: 0 UID: 0 PID: 22322 Comm: syz.3.6860 Not tainted syzkaller #0 PREEMPT(full) [ 918.275089][T22322] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 918.285149][T22322] RIP: 0010:handshake_complete+0x31/0x390 [ 918.290892][T22322] Code: 56 41 55 49 89 d5 41 54 41 89 f4 55 53 48 89 fb e8 d4 39 6f f6 48 8d 7b 28 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 0f 03 00 00 48 8b 6b 28 e8 5c 23 0e 00 48 b8 00 [ 918.310516][T22322] RSP: 0018:ffffc900046674f8 EFLAGS: 00010216 [ 918.316594][T22322] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000d5dc000 [ 918.324572][T22322] RDX: 0000000000000005 RSI: ffffffff8b4e74dc RDI: 0000000000000028 [ 918.332549][T22322] RBP: ffffc900046675c0 R08: 0000000000000000 R09: ffffed1005df9750 [ 918.340527][T22322] R10: ffff88802efcba83 R11: 0000000000000001 R12: 00000000fffffffb [ 918.348508][T22322] R13: 0000000000000000 R14: ffff88807a75a700 R15: ffff888031be0000 [ 918.356493][T22322] FS: 00007f0e7ce3a6c0(0000) GS:ffff8881249a1000(0000) knlGS:0000000000000000 [ 918.358527][T22316] syz.5.6857: attempt to access beyond end of device [ 918.358527][T22316] loop5: rw=0, sector=16, nr_sectors = 8 limit=16 [ 918.365430][T22322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 918.365461][T22322] CR2: 00007f0ee9e0c000 CR3: 00000000732b5000 CR4: 0000000000350ef0 [ 918.365489][T22322] Call Trace: [ 918.396143][T22322] [ 918.399085][T22322] handshake_nl_accept_doit+0x2dc/0x910 [ 918.404685][T22322] genl_family_rcv_msg_doit+0x209/0x2f0 [ 918.410269][T22322] ? __pfx_genl_family_rcv_msg_doit+0x10/0x10 [ 918.416371][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.422029][T22322] ? genl_get_cmd+0x194/0x580 [ 918.426742][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.432397][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.438047][T22322] ? security_capable+0x7e/0x260 [ 918.442995][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.448655][T22322] genl_rcv_msg+0x55c/0x800 [ 918.453199][T22322] ? __pfx_genl_rcv_msg+0x10/0x10 [ 918.458257][T22322] ? __pfx_handshake_nl_accept_doit+0x10/0x10 [ 918.464376][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.470036][T22322] netlink_rcv_skb+0x158/0x420 [ 918.474819][T22322] ? __pfx_genl_rcv_msg+0x10/0x10 [ 918.479865][T22322] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 918.485174][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.490822][T22322] ? netlink_deliver_tap+0x1ae/0xd30 [ 918.496119][T22322] genl_rcv+0x28/0x40 [ 918.500117][T22322] netlink_unicast+0x5aa/0x870 [ 918.504898][T22322] ? __pfx_netlink_unicast+0x10/0x10 [ 918.510207][T22322] netlink_sendmsg+0x8c8/0xdd0 [ 918.514989][T22322] ? __pfx_netlink_sendmsg+0x10/0x10 [ 918.520289][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.525937][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.531580][T22322] ? aa_sock_msg_perm.constprop.0+0x100/0x1b0 [ 918.537681][T22322] ____sys_sendmsg+0xa5d/0xc30 [ 918.542462][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.548103][T22322] ? copy_msghdr_from_user+0x10a/0x160 [ 918.553568][T22322] ? __pfx_____sys_sendmsg+0x10/0x10 [ 918.558876][T22322] ? __pfx_futex_wake_mark+0x10/0x10 [ 918.564192][T22322] ___sys_sendmsg+0x134/0x1d0 [ 918.568873][T22322] ? find_held_lock+0x2b/0x80 [ 918.573553][T22322] ? __pfx____sys_sendmsg+0x10/0x10 [ 918.578762][T22322] ? __lock_acquire+0x433/0x22f0 [ 918.583726][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.589389][T22322] __sys_sendmsg+0x16d/0x220 [ 918.593992][T22322] ? __pfx___sys_sendmsg+0x10/0x10 [ 918.599110][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.604751][T22322] ? srso_alias_return_thunk+0x5/0xfbef5 [ 918.610409][T22322] do_syscall_64+0xcd/0xf80 [ 918.614933][T22322] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 918.620827][T22322] RIP: 0033:0x7f0e7bf8f749 [ 918.625241][T22322] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 918.644855][T22322] RSP: 002b:00007f0e7ce3a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 918.653272][T22322] RAX: ffffffffffffffda RBX: 00007f0e7c1e5fa0 RCX: 00007f0e7bf8f749 [ 918.661240][T22322] RDX: 0000000000000000 RSI: 0000200000000000 RDI: 0000000000000003 [ 918.669207][T22322] RBP: 00007f0e7c013f91 R08: 0000000000000000 R09: 0000000000000000 [ 918.677172][T22322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 918.685137][T22322] R13: 00007f0e7c1e6038 R14: 00007f0e7c1e5fa0 R15: 00007fff999d3b38 [ 918.693121][T22322] [ 918.696128][T22322] Modules linked in: [ 918.700665][T22322] ---[ end trace 0000000000000000 ]--- [ 918.707569][T22322] RIP: 0010:handshake_complete+0x31/0x390 [ 918.721185][T22322] Code: 56 41 55 49 89 d5 41 54 41 89 f4 55 53 48 89 fb e8 d4 39 6f f6 48 8d 7b 28 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 0f 03 00 00 48 8b 6b 28 e8 5c 23 0e 00 48 b8 00 [ 918.744503][ T30] audit: type=1800 audit(2000524853.004:97): pid=22316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.6857" name="file2" dev="loop5" ino=89 res=0 errno=0 [ 918.782597][T22322] RSP: 0018:ffffc900046674f8 EFLAGS: 00010216 [ 918.789165][T22322] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9000d5dc000 [ 918.798053][T22322] RDX: 0000000000000005 RSI: ffffffff8b4e74dc RDI: 0000000000000028 [ 918.806466][T22322] RBP: ffffc900046675c0 R08: 0000000000000000 R09: ffffed1005df9750 [ 918.839756][T22322] R10: ffff88802efcba83 R11: 0000000000000001 R12: 00000000fffffffb [ 918.851306][T22322] R13: 0000000000000000 R14: ffff88807a75a700 R15: ffff888031be0000 [ 918.859426][T22322] FS: 00007f0e7ce3a6c0(0000) GS:ffff888124aa1000(0000) knlGS:0000000000000000 [ 918.869484][T22322] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 918.882735][T22322] CR2: 00007f2bbbdb8000 CR3: 00000000732b5000 CR4: 0000000000350ef0 [ 918.890780][T22322] Kernel panic - not syncing: Fatal exception [ 918.897113][T22322] Kernel Offset: disabled [ 918.901428][T22322] Rebooting in 86400 seconds..