last executing test programs: 7m0.836139246s ago: executing program 1 (id=576): r0 = epoll_create(0x10000) r1 = socket$rds(0x15, 0x5, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000010c0)={0x10000000}) 7m0.160534398s ago: executing program 1 (id=581): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff) sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="2309fefffffffcffffff0100000005000700000000000800090000000000060002000100000008000a0004000100080017"], 0x3c}, 0x1, 0x0, 0x0, 0x2000082e}, 0x0) 6m59.368374523s ago: executing program 1 (id=586): r0 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$DEVLINK_CMD_TRAP_GROUP_SET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000300)={0x4c, r0, 0x1, 0x0, 0x0, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}, {0x8, 0x8e, 0x1}}]}, 0x96}}, 0x0) 6m58.948940432s ago: executing program 1 (id=590): syz_mount_image$hfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYRES16=0x0], 0xff, 0x27f, &(0x7f00000002c0)="$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") mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000780)='mqueue\x00', 0x10001, 0x0) mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x28, 0x0) 6m58.104748081s ago: executing program 1 (id=591): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a9c000000060a0b040000000000000000020000057000048018000180080001006f7366000c000280080001400000000424000180090001006d6574610000000014000280080002400000000c080003400000001730000180080001006e6174002400028008000740000000000800014000000000080003400000001408000240000000020900010073797a30000000000900020073797a32"], 0xc4}, 0x1, 0x0, 0x0, 0x850}, 0x0) 6m56.780368022s ago: executing program 1 (id=595): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10) syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0) 6m54.82260958s ago: executing program 32 (id=595): r0 = socket$l2tp(0x2, 0x2, 0x73) bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x43}}, 0x10) syz_emit_ethernet(0x74, &(0x7f0000000000)={@link_local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x73, 0x0, @private=0x300, @multicast1}, {0x0, 0x0, 0xfffffe9a, 0x0, @gue={{0x2}}}}}}}, 0x0) 4.28600812s ago: executing program 4 (id=2958): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000280)={0x4008}, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="781b00001200010a00000000000000000a"], 0x1b78}, 0x1, 0x0, 0x0, 0x8040}, 0x0) 3.774815843s ago: executing program 0 (id=2962): r0 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) sendto$inet6(r0, 0x0, 0x0, 0x81, &(0x7f0000001200)={0xa, 0x4e23, 0xfb, @local, 0x4}, 0x1c) 3.547119969s ago: executing program 5 (id=2963): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000008c0)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_USERDATA={0x5, 0x7, 0x1, 0x0, 'f'}]}], {0x14}}, 0x74}}, 0x4048010) 3.544812753s ago: executing program 4 (id=2964): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c) setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f00000004c0), 0x4) 3.467692533s ago: executing program 2 (id=2965): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0xfffe, 0x0, @private1={0xfc, 0x1, '\x00', 0x1}, 0x5}]}, 0x0) getsockopt$inet_sctp6_SCTP_MAX_BURST(r0, 0x84, 0x83, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8) 3.387922225s ago: executing program 3 (id=2966): unshare(0x400) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 3.17053259s ago: executing program 0 (id=2967): r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000d00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="030700000000000000000800000068000480"], 0x7c}}, 0x0) 3.148922157s ago: executing program 4 (id=2968): syz_open_dev$ttys(0xc, 0x2, 0x1) r0 = syz_open_dev$ptys(0xc, 0x3, 0x1) ioctl$TIOCSLCKTRMIOS(r0, 0x5457, &(0x7f0000000340)) 2.920617386s ago: executing program 2 (id=2969): r0 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0xd) writev(r0, &(0x7f0000000000)=[{&(0x7f0000000380)='\r', 0x160a}], 0x1) 2.903748804s ago: executing program 5 (id=2970): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75e, &(0x7f0000001280)="$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") chdir(&(0x7f0000000240)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x147040, 0x0) 2.760581784s ago: executing program 3 (id=2972): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x1}, @SEG6_ATTR_SECRET={0x4}, @SEG6_ATTR_ALGID={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x1}]}, 0x30}}, 0x0) 2.500139474s ago: executing program 4 (id=2973): r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2) write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="03010000b5"], 0xc8) close_range(r0, r0, 0x0) 2.356167481s ago: executing program 3 (id=2974): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x14, r1, 0x301}, 0x14}}, 0x0) 2.324703375s ago: executing program 0 (id=2975): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000480)=[@in6={0xa, 0x4e20, 0x0, @loopback}, @in={0x2, 0x0, @loopback}], 0x2c) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x38, &(0x7f0000000000)=[@in6={0xa, 0x4e20, 0x7f29, @loopback}, @in6={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}, 0xff}]}, &(0x7f00000002c0)=0x10) 2.107249087s ago: executing program 2 (id=2976): io_setup(0x8, &(0x7f00000002c0)=0x0) r1 = openat$sysfs(0xffffff9c, &(0x7f00000037c0)='/sys/kernel/notes', 0x0, 0x0) io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x3d, 0x4, 0x0, 0x0, r1}]) 1.800361981s ago: executing program 4 (id=2977): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}}, 0x4044004) recvmmsg(r0, &(0x7f0000001a80)=[{{0x0, 0x0, 0x0}, 0xff}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0x5}, {{0x0, 0x0, &(0x7f0000001a00)=[{&(0x7f0000000600)=""/179, 0xb3}, {&(0x7f00000004c0)=""/262, 0x106}, {&(0x7f0000000000)=""/48, 0x30}, {&(0x7f0000000440)=""/84, 0x54}, {&(0x7f0000003bc0)=""/4109, 0x100d}, {&(0x7f00000017c0)=""/227, 0xe3}, {&(0x7f0000000340)=""/219, 0xdb}], 0x7}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, 0x0}, 0x3}, {{0x0, 0x0, 0x0}, 0x4a}, {{0x0, 0x0, 0x0}, 0x48}, {{0x0, 0x0, 0x0}}], 0x9, 0x0, 0x0) 1.789227605s ago: executing program 5 (id=2987): r0 = socket$netlink(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001d00070f000000000000000007000000", @ANYRES32=r1, @ANYBLOB="40002700060010"], 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x0) 1.616819886s ago: executing program 2 (id=2978): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000) recvmmsg(r0, &(0x7f0000000940)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, 0x0}, 0x10000}, {{0x0, 0x0, 0x0}, 0x1}, {{0x0, 0x0, &(0x7f0000000c80)=[{&(0x7f0000000000)=""/184, 0xb8}, {&(0x7f0000001b40)=""/4109, 0x100d}, {&(0x7f0000000340)=""/229, 0xe5}, {&(0x7f0000000840)=""/241, 0xf1}], 0x4}, 0x80000000}, {{0x0, 0x0, 0x0}, 0x2}, {{0x0, 0x0, 0x0}, 0x9}], 0x6, 0x20, 0x0) 1.61665726s ago: executing program 3 (id=2979): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$sequencer(r0, 0x0, 0x0) write$sequencer(r0, &(0x7f00000000c0)=[@l={0x92, 0x6, 0xd0, 0x16, 0x9, 0x4, 0x7ff}, @l={0x92, 0x0, 0xb0, 0x7, 0x81, 0xd, 0x990}], 0x10) 1.572303688s ago: executing program 0 (id=2980): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000100), 0x10) sendmsg$can_bcm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000a00)=ANY=[@ANYBLOB="05000000000400"/16, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYBLOB="0002004001"], 0x48}}, 0x0) 1.194508225s ago: executing program 4 (id=2981): syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000f00)='./file1\x00', 0x200000, &(0x7f0000002d40)=ANY=[@ANYBLOB="009183ca169ea49b017c4525460e942861bdc4abce9dbb90bc2b4e8baf45173cca8416aad7588b75890f0417639f4a0f9733c06e63ecdf790818598bcab8ec62d21a3221757ec98d355e6d4f1794d2254f18beca38ff286a24f78e2ce4147c97a358e0d6f00bd0e176a499868ac13b8e5485922a1a05851e32a3147b22f9c663", @ANYRES32, @ANYRES16, @ANYRESDEC, @ANYRESOCT, @ANYBLOB="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"], 0x1, 0xee7, &(0x7f0000001e40)="$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") syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x810408, 0x0, 0x0, 0x0, &(0x7f00000007c0)) rename(&(0x7f0000000180)='./file0\x00', &(0x7f0000000300)='./bus/file0\x00') 1.086326775s ago: executing program 5 (id=2982): unshare(0x400) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 937.443235ms ago: executing program 2 (id=2983): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000d40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58010000060a0b04000000000000000002000000400004803c0001800b00010065787468647200002c000280080006400000000208000140000000140500020000000000083206400000000408000440000000170900010073797a30000000000900020073797a3200000000db0007"], 0x180}}, 0x0) 937.333155ms ago: executing program 3 (id=2984): r0 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000d00), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_NL_LINK_GET(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB='|\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="030700000000000000000800000068000480"], 0x7c}}, 0x0) 808.546183ms ago: executing program 0 (id=2985): madvise(&(0x7f0000e95000/0x4000)=nil, 0x4000, 0x66) prctl$PR_SET_IO_FLUSHER(0x43, 0x1) prctl$PR_SET_IO_FLUSHER(0x43, 0x0) 567.416849ms ago: executing program 5 (id=2986): syz_open_dev$media(&(0x7f0000001a80), 0x3, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r0}}) 397.133ms ago: executing program 3 (id=2988): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}, @NFT_MSG_DELRULE={0x20, 0x8, 0xa, 0x5, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x40}, 0x4000010) 317.368463ms ago: executing program 2 (id=2989): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000)=0x2, 0x4) sendmsg$802154_dgram(r0, &(0x7f0000000100)={&(0x7f0000000040)={0x24, @none={0x0, 0x3}}, 0x14, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x20040001}, 0x20004080) 21.255382ms ago: executing program 0 (id=2990): syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x75e, &(0x7f0000001280)="$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") chdir(&(0x7f0000000240)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x147040, 0x0) 0s ago: executing program 5 (id=2991): r0 = socket$inet6_udp(0xa, 0x2, 0x0) bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xffffffff, @empty, 0x4}, 0x1c) syz_emit_ethernet(0x86, &(0x7f0000000140)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0x64, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x3, 0x0, "eea2ce15f073cfc7b867a8f1eae374992b05d96de4fee8723648ec884824c0fa", "dad132180b5c87e3c4ce5aace7bd878f", {"bfb382e7c4f35588608b6b77d4179781", "5c1eec4feb340aa2a2dfcc3569d1153d"}}}}}}}, 0x0) kernel console output (not intermixed with test programs): or=1a86, idProduct=7522, bcdDevice=35.36 [ 509.812556][ T5899] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 509.820799][ T5899] usb 5-1: Product: syz [ 509.825421][ T5899] usb 5-1: Manufacturer: syz [ 509.830249][ T5899] usb 5-1: SerialNumber: syz [ 509.930973][ T5899] usb 5-1: config 0 descriptor?? [ 509.968862][ T5899] ch341 5-1:0.0: ch341-uart converter detected [ 510.481831][ T9738] loop5: detected capacity change from 0 to 1024 [ 510.595141][ T5899] usb 5-1: failed to send control message: -71 [ 510.601708][ T5899] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 510.688697][ T5899] usb 5-1: USB disconnect, device number 8 [ 510.697356][ T5899] ch341 5-1:0.0: device disconnected [ 510.967614][ T58] hfsplus: b-tree write err: -5, ino 4 [ 511.005678][ T9747] loop0: detected capacity change from 0 to 256 [ 511.056568][ T9747] exfat: Deprecated parameter 'namecase' [ 511.063860][ T9747] exfat: Deprecated parameter 'utf8' [ 511.166670][ T9747] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 511.973470][ T9761] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1493'. [ 512.080365][ T9763] loop5: detected capacity change from 0 to 256 [ 512.166426][ T9763] exfat: Deprecated parameter 'utf8' [ 512.172541][ T9763] exfat: Deprecated parameter 'utf8' [ 512.178355][ T9763] exfat: Deprecated parameter 'utf8' [ 512.385406][ T9763] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x743489c8, utbl_chksum : 0xe619d30d) [ 512.555949][ T9768] tipc: Started in network mode [ 512.561128][ T9768] tipc: Node identity ac14140f, cluster identity 4711 [ 512.571781][ T9768] tipc: Enabled bearer , priority 10 [ 513.470349][ T9781] loop3: detected capacity change from 0 to 1024 [ 513.536102][ T9784] loop4: detected capacity change from 0 to 512 [ 513.680808][ T9784] EXT4-fs error (device loop4): ext4_orphan_get:1419: comm syz.4.1502: bad orphan inode 11862016 [ 513.682576][ T9] tipc: Node number set to 2886997007 [ 513.754570][ T9784] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 513.767799][ T9784] ext4 filesystem being mounted at /304/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 513.768848][ T9781] syz.3.1501: attempt to access beyond end of device [ 513.768848][ T9781] loop3: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 513.794038][ T9781] Buffer I/O error on dev loop3, logical block 100663296, async page read [ 513.804879][ T9781] syz.3.1501: attempt to access beyond end of device [ 513.804879][ T9781] loop3: rw=0, sector=201326592, nr_sectors = 2 limit=1024 [ 513.819052][ T9781] Buffer I/O error on dev loop3, logical block 100663296, async page read [ 514.357836][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 514.692647][ T5899] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 514.937763][ T5899] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 514.937891][ T5899] usb 1-1: config 0 has no interface number 0 [ 514.938041][ T5899] usb 1-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 514.938167][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 514.987865][ T5899] usb 1-1: config 0 descriptor?? [ 515.041177][ T5899] usb 1-1: selecting invalid altsetting 1 [ 515.041689][ T5899] dvb_ttusb_budget: ttusb_init_controller: error [ 515.041743][ T5899] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 515.621234][ T5899] DVB: Unable to find symbol cx22700_attach() [ 515.714124][ T9815] loop3: detected capacity change from 0 to 1024 [ 515.979772][ T5899] DVB: Unable to find symbol tda10046_attach() [ 515.986432][ T5899] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 516.094438][ T5899] usb 1-1: USB disconnect, device number 7 [ 516.252648][ T4307] hfsplus: b-tree write err: -5, ino 4 [ 516.692512][ T9828] loop4: detected capacity change from 0 to 256 [ 516.731967][ T9827] loop2: detected capacity change from 0 to 8 [ 516.852788][ T9827] SQUASHFS error: xz decompression failed, data probably corrupt [ 516.860831][ T9827] SQUASHFS error: Failed to read block 0x108: -5 [ 516.867561][ T9827] SQUASHFS error: Unable to read metadata cache entry [106] [ 516.875413][ T9827] SQUASHFS error: Unable to read inode 0x11f [ 516.909063][ T9828] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 518.438376][ T9855] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1526'. [ 518.448213][ T9855] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1526'. [ 518.717080][ T9857] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 519.097160][ T9865] loop3: detected capacity change from 0 to 764 [ 520.024802][ T5820] Bluetooth: Wrong link type (-22) [ 520.196890][ T9887] loop5: detected capacity change from 0 to 8 [ 520.314474][ T9887] process 'syz.5.1539' launched './file1' with NULL argv: empty string added [ 520.383774][ T9887] SQUASHFS error: zstd decompression error: 10 [ 520.390183][ T9887] SQUASHFS error: zstd decompression failed, data probably corrupt [ 520.398684][ T9887] SQUASHFS error: Failed to read block 0x60: -5 [ 520.405866][ T9887] SQUASHFS error: zstd decompression error: 10 [ 520.412551][ T9887] SQUASHFS error: zstd decompression failed, data probably corrupt [ 520.420716][ T9887] SQUASHFS error: Failed to read block 0x60: -5 [ 521.522417][ T30] audit: type=1326 audit(1752711298.911:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9902 comm="syz.0.1545" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 521.530602][ T9905] sp0: Synchronizing with TNC [ 521.545365][ T30] audit: type=1326 audit(1752711298.911:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9902 comm="syz.0.1545" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 521.824397][ T9903] [U] [ 522.163633][ T9909] loop4: detected capacity change from 0 to 4096 [ 522.360187][ T9909] NILFS error (device loop4): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 522.386436][ T9918] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 522.430220][ T9909] Remounting filesystem read-only [ 525.565564][ T9971] loop4: detected capacity change from 0 to 256 [ 525.871230][ T9971] FAT-fs (loop4): Directory bread(block 64) failed [ 525.878193][ T9971] FAT-fs (loop4): Directory bread(block 65) failed [ 525.886624][ T9971] FAT-fs (loop4): Directory bread(block 66) failed [ 525.894432][ T9971] FAT-fs (loop4): Directory bread(block 67) failed [ 525.901300][ T9971] FAT-fs (loop4): Directory bread(block 68) failed [ 525.908991][ T9971] FAT-fs (loop4): Directory bread(block 69) failed [ 525.916133][ T9971] FAT-fs (loop4): Directory bread(block 70) failed [ 525.923021][ T9971] FAT-fs (loop4): Directory bread(block 71) failed [ 525.929895][ T9971] FAT-fs (loop4): Directory bread(block 72) failed [ 525.937856][ T9971] FAT-fs (loop4): Directory bread(block 73) failed [ 525.980815][ T9975] loop3: detected capacity change from 0 to 1024 [ 526.186196][ T9975] hfsplus: bad catalog entry type [ 526.522417][ T4307] hfsplus: b-tree write err: -5, ino 4 [ 526.601187][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 526.608107][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 526.803626][ T9985] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1574'. [ 526.814051][ T9985] netlink: 'syz.0.1574': attribute type 9 has an invalid length. [ 526.822082][ T9985] netlink: 108 bytes leftover after parsing attributes in process `syz.0.1574'. [ 526.831595][ T9985] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1574'. [ 526.991325][ T30] audit: type=1326 audit(1752711304.381:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9986 comm="syz.5.1576" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70be539 code=0x0 [ 527.385723][ T9996] loop4: detected capacity change from 0 to 512 [ 527.459185][ T9996] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 527.563760][ T9996] EXT4-fs (loop4): 1 truncate cleaned up [ 527.571632][ T9996] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 527.767650][ T30] audit: type=1800 audit(1752711305.151:677): pid=9996 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1578" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 528.115579][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 528.454717][T10015] loop2: detected capacity change from 0 to 256 [ 528.505575][T10015] exfat: Deprecated parameter 'utf8' [ 528.511151][T10015] exfat: Deprecated parameter 'utf8' [ 528.766723][T10015] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d) [ 529.400441][T10028] loop0: detected capacity change from 0 to 1024 [ 529.616870][T10031] loop2: detected capacity change from 0 to 1024 [ 529.684064][T10028] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 529.741328][T10038] loop5: detected capacity change from 0 to 24 [ 529.854917][T10038] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 530.096085][ T3830] hfsplus: b-tree write err: -5, ino 4 [ 530.204244][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 531.064080][T10046] loop2: detected capacity change from 0 to 4096 [ 531.161571][T10046] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 531.246956][T10046] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 531.613863][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 532.506244][T10071] loop5: detected capacity change from 0 to 1024 [ 532.554820][T10071] EXT4-fs: Ignoring removed oldalloc option [ 532.561527][T10071] EXT4-fs: Ignoring removed orlov option [ 532.637225][T10071] EXT4-fs (loop5): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 532.755271][T10071] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 533.245077][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.542022][T10090] loop3: detected capacity change from 0 to 64 [ 533.811100][T10094] loop5: detected capacity change from 0 to 512 [ 533.930405][T10094] EXT4-fs error (device loop5): ext4_orphan_get:1393: inode #15: comm syz.5.1617: iget: bad i_size value: 38620345925642 [ 533.953265][T10094] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.1617: couldn't read orphan inode 15 (err -117) [ 533.975451][T10094] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 533.981816][T10097] tipc: Enabled bearer , priority 18 [ 534.174891][T10094] EXT4-fs error (device loop5): empty_inline_dir:1786: inode #12: block 7: comm syz.5.1617: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 534.237828][T10094] EXT4-fs warning (device loop5): empty_inline_dir:1793: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 534.638099][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.962071][T10109] loop4: detected capacity change from 0 to 256 [ 535.151626][T10109] exFAT-fs (loop4): failed to load upcase table (idx : 0x000106cd, chksum : 0x0aeab83c, utbl_chksum : 0xe619d30d) [ 535.593247][T10117] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1630'. [ 536.630414][T10135] loop4: detected capacity change from 0 to 128 [ 536.726096][T10135] syz.4.1637: attempt to access beyond end of device [ 536.726096][T10135] loop4: rw=2051, sector=128, nr_sectors = 913 limit=128 [ 536.896443][T10139] loop2: detected capacity change from 0 to 2048 [ 537.075013][T10139] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 537.129740][T10139] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 537.402762][T10143] loop5: detected capacity change from 0 to 1024 [ 538.896278][ T5107] Bluetooth: hci2: command 0x0406 tx timeout [ 539.256015][T10168] program syz.3.1652 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 539.516076][T10174] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1653'. [ 540.132620][T10173] loop4: detected capacity change from 0 to 4096 [ 540.343449][T10186] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1661'. [ 540.567941][T10173] ntfs3(loop4): ino=b, mi_enum_attr [ 540.573776][T10173] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 540.612700][T10173] ntfs3(loop4): Failed to load $Extend (-22). [ 540.619140][T10173] ntfs3(loop4): Failed to initialize $Extend. [ 541.133678][ T5899] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 541.308146][T10200] loop5: detected capacity change from 0 to 164 [ 541.339997][ T5899] usb 1-1: config 0 interface 0 altsetting 13 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 541.353310][ T5899] usb 1-1: config 0 interface 0 altsetting 13 endpoint 0x81 has invalid wMaxPacketSize 0 [ 541.363849][ T5899] usb 1-1: config 0 interface 0 altsetting 13 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 541.377589][ T5899] usb 1-1: config 0 interface 0 has no altsetting 0 [ 541.384565][ T5899] usb 1-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00 [ 541.394024][ T5899] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 541.465599][T10200] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 541.605080][ T5899] usb 1-1: config 0 descriptor?? [ 542.087012][ T5899] hid (null): usage index exceeded [ 542.168698][ T5899] uclogic 0003:28BD:0042.0016: interface is invalid, ignoring [ 542.331716][ T5899] usb 1-1: USB disconnect, device number 8 [ 543.142968][ T5899] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 543.366582][ T5899] usb 6-1: Using ep0 maxpacket: 8 [ 543.412063][ T5899] usb 6-1: config 0 has an invalid interface number: 56 but max is 0 [ 543.423144][ T5899] usb 6-1: config 0 has no interface number 0 [ 543.470885][ T5899] usb 6-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76 [ 543.480753][ T5899] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 543.489224][ T5899] usb 6-1: Product: syz [ 543.493714][ T5899] usb 6-1: Manufacturer: syz [ 543.498632][ T5899] usb 6-1: SerialNumber: syz [ 543.543349][ T5899] usb 6-1: config 0 descriptor?? [ 543.766829][ T5899] peak_usb 6-1:0.56: PEAK-System PCAN-USB X6 v0 fw v0.0.0 (2 channels) [ 543.972878][ T5899] peak_usb 6-1:0.56 can0: sending command failure: -22 [ 543.980127][ T5899] peak_usb 6-1:0.56 can0: sending command failure: -22 [ 543.987685][ T5899] peak_usb 6-1:0.56 can0: sending command failure: -22 [ 544.018963][T10233] loop0: detected capacity change from 0 to 64 [ 544.144662][ T5899] peak_usb 6-1:0.56: probe with driver peak_usb failed with error -22 [ 544.273923][ T5899] usb 6-1: USB disconnect, device number 5 [ 544.649415][T10241] loop4: detected capacity change from 0 to 128 [ 544.696768][T10241] EXT4-fs: Ignoring removed nobh option [ 544.755572][T10241] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 544.772021][T10241] ext4 filesystem being mounted at mnt:[4026533126] supports timestamps until 2038-01-19 (0x7fffffff) [ 544.877602][T10241] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 545.203641][T10253] block nbd5: NBD_DISCONNECT [ 546.594402][T10271] netlink: 'syz.5.1697': attribute type 29 has an invalid length. [ 546.863998][T10267] loop4: detected capacity change from 0 to 4096 [ 546.883803][T10273] netlink: 71 bytes leftover after parsing attributes in process `syz.3.1699'. [ 548.314339][T10286] loop2: detected capacity change from 0 to 4096 [ 549.108571][T10303] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1713'. [ 549.164861][T10303] netlink: 173 bytes leftover after parsing attributes in process `syz.5.1713'. [ 549.255115][T10305] loop3: detected capacity change from 0 to 1024 [ 549.315235][T10305] EXT4-fs: Ignoring removed bh option [ 549.431222][T10305] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 549.485353][T10311] loop2: detected capacity change from 0 to 256 [ 549.640502][T10311] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x587066de, utbl_chksum : 0xe619d30d) [ 549.899339][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 550.705321][T10329] loop2: detected capacity change from 0 to 1024 [ 550.908017][T10329] hfsplus: bad catalog entry type [ 551.284400][ T58] hfsplus: b-tree write err: -5, ino 4 [ 552.792618][T10363] loop5: detected capacity change from 0 to 512 [ 552.841989][T10363] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 552.903292][T10363] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 552.903714][T10363] System zones: 0-2, 18-18, 34-34 [ 552.939685][T10367] ptrace attach of "./syz-executor exec"[10368] was attempted by "./syz-executor exec"[10367] [ 552.943739][ T5440] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 552.976447][T10363] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 552.991093][T10363] ext4 filesystem being mounted at /210/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 553.153930][ T5440] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 553.165598][ T5440] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 553.176011][ T5440] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 553.185508][ T5440] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 553.305193][ T5440] usb 5-1: config 0 descriptor?? [ 553.373027][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.415443][ T5899] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 553.603440][ T5899] usb 1-1: Using ep0 maxpacket: 32 [ 553.674843][ T5899] usb 1-1: config 0 has an invalid interface number: 35 but max is 0 [ 553.683299][ T5899] usb 1-1: config 0 has no interface number 0 [ 553.783118][ T5440] cp2112 0003:10C4:EA90.0017: unknown main item tag 0x0 [ 553.801836][ T5899] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 553.811483][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 553.819980][ T5899] usb 1-1: Product: syz [ 553.824567][ T5899] usb 1-1: Manufacturer: syz [ 553.829509][ T5899] usb 1-1: SerialNumber: syz [ 553.837671][ T5440] cp2112 0003:10C4:EA90.0017: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0 [ 553.948491][ T5899] usb 1-1: config 0 descriptor?? [ 553.973127][ T5440] cp2112 0003:10C4:EA90.0017: error requesting version [ 554.026745][ T5440] cp2112 0003:10C4:EA90.0017: probe with driver cp2112 failed with error -71 [ 554.105026][ T5440] usb 5-1: USB disconnect, device number 9 [ 554.197177][T10379] loop2: detected capacity change from 0 to 2048 [ 554.321862][T10385] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 554.433289][ T5899] radio-si470x 1-1:0.35: DeviceID=0xc3d2 ChipID=0xf14c [ 554.575936][T10382] fido_id[10382]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 554.654492][ T5899] radio-si470x 1-1:0.35: si470x_get_report: usb_control_msg returned -71 [ 554.663628][ T5899] radio-si470x 1-1:0.35: si470x_get_scratch: si470x_get_report returned -71 [ 554.673681][ T5899] radio-si470x 1-1:0.35: probe with driver radio-si470x failed with error -5 [ 554.812078][ T5899] radio-raremono 1-1:0.35: this is not Thanko's Raremono. [ 554.814319][T10385] NILFS (loop2): vblocknr = 18 has abnormal lifetime: start cno (= 504403158265495554) > current cno (= 3) [ 554.837396][T10385] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=2) [ 554.874281][T10385] Remounting filesystem read-only [ 554.924827][ T5899] usb 1-1: USB disconnect, device number 9 [ 554.945669][ T5821] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 554.993824][T10389] loop3: detected capacity change from 0 to 512 [ 555.154776][T10389] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 555.168243][T10389] ext4 filesystem being mounted at /357/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 555.728097][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 556.741568][T10416] loop5: detected capacity change from 0 to 2048 [ 556.979242][T10416] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 556.999877][ T30] audit: type=1326 audit(1752711334.391:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.022863][ T30] audit: type=1326 audit(1752711334.391:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.208761][ T30] audit: type=1326 audit(1752711334.461:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.232701][ T30] audit: type=1326 audit(1752711334.461:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.255246][ T30] audit: type=1326 audit(1752711334.461:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.277923][ T30] audit: type=1326 audit(1752711334.461:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=229 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.279303][T10427] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1764'. [ 557.300174][ C1] vkms_vblank_simulate: vblank timer overrun [ 557.301608][ T30] audit: type=1326 audit(1752711334.461:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10423 comm="syz.2.1766" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 557.524691][T10429] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 557.568496][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 558.347866][T10442] loop2: detected capacity change from 0 to 1024 [ 558.500103][T10442] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 558.695594][T10445] tipc: Started in network mode [ 558.700676][T10445] tipc: Node identity , cluster identity 4711 [ 558.812735][T10449] ieee802154 phy0 wpan0: encryption failed: -22 [ 558.874650][T10451] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1777'. [ 559.800222][T10464] loop3: detected capacity change from 0 to 128 [ 559.893103][T10464] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 559.997524][T10464] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 560.159625][T10464] EXT4-fs error (device loop3): htree_dirblock_to_tree:1051: inode #2: comm syz.3.1783: Directory block failed checksum [ 560.507698][ T5829] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 560.895612][ T30] audit: type=1326 audit(1752711338.281:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10481 comm="syz.3.1791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 561.039441][ T30] audit: type=1326 audit(1752711338.341:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10481 comm="syz.3.1791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 561.063564][ T30] audit: type=1326 audit(1752711338.341:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10481 comm="syz.3.1791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707e539 code=0x7ffc0000 [ 561.413621][T10488] loop4: detected capacity change from 0 to 256 [ 561.439543][T10487] loop2: detected capacity change from 0 to 1024 [ 561.618981][T10494] loop5: detected capacity change from 0 to 512 [ 561.653764][T10487] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 561.741482][T10488] FAT-fs (loop4): Directory bread(block 64) failed [ 561.749033][T10488] FAT-fs (loop4): Directory bread(block 65) failed [ 561.756178][T10488] FAT-fs (loop4): Directory bread(block 66) failed [ 561.763105][T10488] FAT-fs (loop4): Directory bread(block 67) failed [ 561.769991][T10488] FAT-fs (loop4): Directory bread(block 68) failed [ 561.776254][T10494] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 561.776822][T10488] FAT-fs (loop4): Directory bread(block 69) failed [ 561.796136][T10488] FAT-fs (loop4): Directory bread(block 70) failed [ 561.803122][T10488] FAT-fs (loop4): Directory bread(block 71) failed [ 561.810093][T10488] FAT-fs (loop4): Directory bread(block 72) failed [ 561.816983][T10488] FAT-fs (loop4): Directory bread(block 73) failed [ 562.001515][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.449071][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.849482][T10509] loop5: detected capacity change from 0 to 64 [ 562.958808][T10511] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1804'. [ 563.434576][T10515] loop0: detected capacity change from 0 to 2048 [ 563.502974][T10515] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 563.513304][T10515] NILFS (loop0): mounting unchecked fs [ 563.641655][T10517] loop4: detected capacity change from 0 to 256 [ 563.664586][T10515] NILFS (loop0): recovery complete [ 563.698074][T10521] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 563.729576][T10517] exfat: Deprecated parameter 'utf8' [ 563.735471][T10517] exfat: Deprecated parameter 'utf8' [ 563.741659][T10517] exfat: Deprecated parameter 'utf8' [ 563.833800][T10517] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 564.603575][ T5899] usb 6-1: new low-speed USB device number 6 using dummy_hcd [ 564.811514][ T5899] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 564.823390][ T5899] usb 6-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8 [ 564.834567][ T5899] usb 6-1: config 0 interface 0 has no altsetting 0 [ 564.841434][ T5899] usb 6-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00 [ 564.850781][ T5899] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 565.160441][ T5899] usb 6-1: config 0 descriptor?? [ 565.168216][T10529] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 565.784171][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.791976][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.800087][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.807940][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.815929][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.823853][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.831617][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 565.839494][ T5899] holtek_mouse 0003:04D9:A067.0018: unknown main item tag 0x0 [ 566.120838][ T5899] holtek_mouse 0003:04D9:A067.0018: hidraw0: USB HID v0.00 Device [HID 04d9:a067] on usb-dummy_hcd.5-1/input0 [ 566.218646][ T5899] usb 6-1: USB disconnect, device number 6 [ 567.229824][T10548] netlink: 87 bytes leftover after parsing attributes in process `syz.0.1819'. [ 567.380528][T10544] fido_id[10544]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 568.643302][T10567] netlink: 'syz.5.1828': attribute type 30 has an invalid length. [ 568.814016][T10571] loop4: detected capacity change from 0 to 512 [ 568.844794][T10571] EXT4-fs: Ignoring removed bh option [ 568.898256][T10571] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 568.973468][T10571] EXT4-fs (loop4): 1 truncate cleaned up [ 568.981229][T10571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 569.648059][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 570.337840][T10593] loop5: detected capacity change from 0 to 512 [ 570.563746][T10597] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1840'. [ 570.609415][T10593] __quota_error: 5 callbacks suppressed [ 570.609492][T10593] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 570.626708][T10593] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 570.637076][T10593] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1839: Failed to acquire dquot type 1 [ 570.734419][T10593] EXT4-fs (loop5): 1 truncate cleaned up [ 570.742432][T10593] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 570.755844][T10593] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 570.860900][T10593] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 570.873000][T10593] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 570.884510][T10593] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.1839: Failed to acquire dquot type 1 [ 571.264361][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.574468][T10605] loop0: detected capacity change from 0 to 512 [ 571.688482][T10605] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 571.754926][T10605] EXT4-fs (loop0): 1 truncate cleaned up [ 571.763412][T10605] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 571.774482][T10607] loop2: detected capacity change from 0 to 1024 [ 572.201326][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 572.474029][T10612] loop4: detected capacity change from 0 to 4096 [ 572.485972][T10616] loop5: detected capacity change from 0 to 2048 [ 572.569056][T10617] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 572.721287][T10612] ntfs3(loop4): ino=1a, mi_enum_attr [ 572.727213][T10612] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 572.745141][T10622] loop2: detected capacity change from 0 to 256 [ 572.761954][T10621] loop3: detected capacity change from 0 to 764 [ 572.866885][T10617] NILFS (loop5): vblocknr = 22 has abnormal lifetime: start cno (= 1099511627778) > current cno (= 3) [ 572.878676][T10617] NILFS error (device loop5): nilfs_bmap_propagate: broken bmap (inode number=6) [ 572.942838][T10617] Remounting filesystem read-only [ 572.949700][ T7364] NILFS (loop5): disposed unprocessed dirty file(s) when stopping log writer [ 573.149504][T10622] FAT-fs (loop2): Directory bread(block 64) failed [ 573.157214][T10622] FAT-fs (loop2): Directory bread(block 65) failed [ 573.164429][T10622] FAT-fs (loop2): Directory bread(block 66) failed [ 573.171184][T10622] FAT-fs (loop2): Directory bread(block 67) failed [ 573.178381][T10622] FAT-fs (loop2): Directory bread(block 68) failed [ 573.185353][T10622] FAT-fs (loop2): Directory bread(block 69) failed [ 573.192369][T10622] FAT-fs (loop2): Directory bread(block 70) failed [ 573.199172][T10622] FAT-fs (loop2): Directory bread(block 71) failed [ 573.206268][T10622] FAT-fs (loop2): Directory bread(block 72) failed [ 573.213226][T10622] FAT-fs (loop2): Directory bread(block 73) failed [ 574.113452][T10633] vivid-000: disconnect [ 574.131642][T10632] vivid-000: reconnect [ 574.416910][T10636] loop0: detected capacity change from 0 to 1024 [ 575.031504][T10648] x_tables: ip_tables: CONNMARK.1 target: invalid size 16 (kernel) != (user) 24 [ 575.152809][ T5873] usb 6-1: new high-speed USB device number 7 using dummy_hcd [ 575.332617][ T5873] usb 6-1: Using ep0 maxpacket: 32 [ 575.374776][ T5873] usb 6-1: config 0 has an invalid interface number: 35 but max is 0 [ 575.383608][ T5873] usb 6-1: config 0 has no interface number 0 [ 575.389939][ T5873] usb 6-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0 [ 575.489901][ T5873] usb 6-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 575.499696][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 575.508875][ T5873] usb 6-1: Product: syz [ 575.513549][ T5873] usb 6-1: Manufacturer: syz [ 575.518371][ T5873] usb 6-1: SerialNumber: syz [ 575.603949][ T5873] usb 6-1: config 0 descriptor?? [ 575.640048][ T5873] radio-si470x 6-1:0.35: could not find interrupt in endpoint [ 575.649041][ T5873] radio-si470x 6-1:0.35: probe with driver radio-si470x failed with error -5 [ 575.875362][ T5873] radio-raremono 6-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 576.091042][ T5873] radio-raremono 6-1:0.35: V4L2 device registered as radio48 [ 576.335522][ T5440] usb 6-1: USB disconnect, device number 7 [ 576.349279][ T5440] radio-raremono 6-1:0.35: Thanko's Raremono disconnected [ 576.603821][T10669] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1874'. [ 576.613710][T10669] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1874'. [ 576.790675][T10673] loop3: detected capacity change from 0 to 256 [ 577.072832][T10673] FAT-fs (loop3): Directory bread(block 64) failed [ 577.079632][T10673] FAT-fs (loop3): Directory bread(block 65) failed [ 577.086885][T10673] FAT-fs (loop3): Directory bread(block 66) failed [ 577.097023][T10673] FAT-fs (loop3): Directory bread(block 67) failed [ 577.104082][T10673] FAT-fs (loop3): Directory bread(block 68) failed [ 577.110849][T10673] FAT-fs (loop3): Directory bread(block 69) failed [ 577.118004][T10673] FAT-fs (loop3): Directory bread(block 70) failed [ 577.124876][T10673] FAT-fs (loop3): Directory bread(block 71) failed [ 577.131769][T10673] FAT-fs (loop3): Directory bread(block 72) failed [ 577.138727][T10673] FAT-fs (loop3): Directory bread(block 73) failed [ 577.560987][ T30] audit: type=1326 audit(1752711354.941:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.5.1879" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 577.584406][ T30] audit: type=1326 audit(1752711354.951:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.5.1879" exe="/root/syz-executor" sig=0 arch=40000003 syscall=309 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 577.607244][ T30] audit: type=1326 audit(1752711354.951:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10677 comm="syz.5.1879" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 577.608413][T10681] raw_sendmsg: syz.0.1881 forgot to set AF_INET. Fix it! [ 579.745275][T10708] loop5: detected capacity change from 0 to 4096 [ 580.034592][T10708] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 580.750177][T10726] netlink: 512 bytes leftover after parsing attributes in process `syz.5.1902'. [ 581.154893][T10732] loop3: detected capacity change from 0 to 256 [ 581.184939][T10732] exfat: Deprecated parameter 'utf8' [ 581.191079][T10732] exfat: Unknown parameter 'iocharse-Ą3iso8859-7' [ 581.953160][T10746] loop3: detected capacity change from 0 to 256 [ 582.267265][T10749] tc_dump_action: action bad kind [ 582.309989][T10746] FAT-fs (loop3): Directory bread(block 64) failed [ 582.317434][T10746] FAT-fs (loop3): Directory bread(block 65) failed [ 582.324672][T10746] FAT-fs (loop3): Directory bread(block 66) failed [ 582.331513][T10746] FAT-fs (loop3): Directory bread(block 67) failed [ 582.338648][T10746] FAT-fs (loop3): Directory bread(block 68) failed [ 582.345703][T10746] FAT-fs (loop3): Directory bread(block 69) failed [ 582.352855][T10746] FAT-fs (loop3): Directory bread(block 70) failed [ 582.359605][T10746] FAT-fs (loop3): Directory bread(block 71) failed [ 582.366710][T10746] FAT-fs (loop3): Directory bread(block 72) failed [ 582.373623][T10746] FAT-fs (loop3): Directory bread(block 73) failed [ 583.888907][T10773] netlink: 'syz.0.1923': attribute type 3 has an invalid length. [ 584.243887][T10781] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 584.586169][T10784] virtiofs: Bad value for 'dax' [ 585.491869][T10797] loop0: detected capacity change from 0 to 2048 [ 585.881865][T10807] loop5: detected capacity change from 0 to 8 [ 585.985999][T10807] SQUASHFS error: Failed to read block 0x6de: -5 [ 585.992939][T10807] SQUASHFS error: Unable to read metadata cache entry [6dc] [ 586.000792][T10807] SQUASHFS error: Failed to read block 0x63a: -5 [ 586.007524][T10807] SQUASHFS error: Unable to read metadata cache entry [638] [ 586.015194][T10807] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 586.623404][T10814] RDS: rds_bind could not find a transport for fe80::, load rds_tcp or rds_rdma? [ 586.837575][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1945'. [ 586.896285][T10819] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1945'. [ 587.562967][T10827] loop3: detected capacity change from 0 to 512 [ 587.591816][T10826] loop5: detected capacity change from 0 to 2048 [ 587.599689][T10827] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 587.686949][T10827] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 587.745736][T10827] System zones: 0-2, 18-18, 34-34 [ 587.779399][T10826] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 587.865885][T10827] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 587.879103][T10827] ext4 filesystem being mounted at /399/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 588.054591][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 588.061267][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 588.154899][T10838] loop2: detected capacity change from 0 to 256 [ 588.191107][T10838] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 588.545722][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 590.197897][T10861] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1964'. [ 590.197990][T10861] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1964'. [ 590.198107][T10861] netlink: 'syz.5.1964': attribute type 11 has an invalid length. [ 590.751173][T10872] xt_socket: unknown flags 0xd0 [ 590.779188][T10868] loop2: detected capacity change from 0 to 1024 [ 590.832866][T10868] EXT4-fs: Ignoring removed orlov option [ 590.839405][T10868] EXT4-fs: Ignoring removed nomblk_io_submit option [ 590.934319][T10868] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 590.943626][T10874] netlink: 'syz.3.1970': attribute type 7 has an invalid length. [ 590.955127][T10874] netlink: 'syz.3.1970': attribute type 8 has an invalid length. [ 591.012448][ T5440] usb 6-1: new full-speed USB device number 8 using dummy_hcd [ 591.210944][ T5440] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 591.223262][ T5440] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 591.238211][ T5440] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 121, setting to 64 [ 591.364606][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 591.401516][ T5440] usb 6-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 591.411838][ T5440] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 591.421118][ T5440] usb 6-1: Product: syz [ 591.426415][ T5440] usb 6-1: Manufacturer: syz [ 591.431934][ T5440] usb 6-1: SerialNumber: syz [ 591.524964][ T5440] usb 6-1: config 0 descriptor?? [ 591.532147][T10871] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 591.584217][T10871] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 591.606661][ T5440] usb 6-1: ucan: probing device on interface #0 [ 591.736949][T10885] tmpfs: Cannot change global quota limit on remount [ 592.085537][ T5440] usb 6-1: ucan: device reported invalid device info [ 592.092681][ T5440] usb 6-1: ucan: probe failed; try to update the device firmware [ 592.098447][T10887] loop4: detected capacity change from 0 to 1024 [ 592.211713][T10889] loop0: detected capacity change from 0 to 1024 [ 592.279241][T10887] hfsplus: keylen 65060 too large [ 592.344794][ T5873] usb 6-1: USB disconnect, device number 8 [ 592.468361][T10889] hfsplus: bad catalog entry type [ 592.735507][ T58] hfsplus: b-tree write err: -5, ino 4 [ 593.024238][T10898] tmpfs: Cannot retroactively limit inodes [ 593.256439][T10901] loop0: detected capacity change from 0 to 512 [ 593.344213][T10901] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 593.479009][T10901] EXT4-fs (loop0): 1 truncate cleaned up [ 593.583813][T10901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 593.671179][ T30] audit: type=1800 audit(1752711371.061:696): pid=10901 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1982" name="bus" dev="loop0" ino=18 res=0 errno=0 [ 593.690387][T10910] bpf: Bad value for 'gid' [ 594.174146][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 595.247356][T10932] loop5: detected capacity change from 0 to 64 [ 596.098825][T10946] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2002'. [ 596.116067][T10945] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2001'. [ 596.159691][T10945] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2001'. [ 596.317535][T10948] loop4: detected capacity change from 0 to 128 [ 596.606727][T10950] netlink: 'syz.2.2005': attribute type 29 has an invalid length. [ 596.683022][T10950] netlink: 'syz.2.2005': attribute type 29 has an invalid length. [ 596.796722][ T30] audit: type=1326 audit(1752711374.181:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 596.820904][ T30] audit: type=1326 audit(1752711374.181:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 596.930412][ T30] audit: type=1326 audit(1752711374.261:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 596.953205][ T30] audit: type=1326 audit(1752711374.261:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 596.976213][ T30] audit: type=1326 audit(1752711374.261:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 597.001186][ T30] audit: type=1326 audit(1752711374.281:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=157 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 597.025712][ T30] audit: type=1326 audit(1752711374.281:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10954 comm="syz.5.2008" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be539 code=0x7ffc0000 [ 597.287428][T10958] loop4: detected capacity change from 0 to 512 [ 597.460088][T10958] EXT4-fs (loop4): orphan cleanup on readonly fs [ 597.603014][T10958] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2009: bg 0: block 248: padding at end of block bitmap is not set [ 597.663426][T10958] Quota error (device loop4): write_blk: dquota write failed [ 597.671486][T10958] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 597.683181][T10958] EXT4-fs error (device loop4): ext4_acquire_dquot:6933: comm syz.4.2009: Failed to acquire dquot type 1 [ 597.786282][T10958] EXT4-fs (loop4): 1 truncate cleaned up [ 597.814586][T10958] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 598.161341][T10971] loop3: detected capacity change from 0 to 1764 [ 598.279420][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.364468][T10971] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 599.379425][T10992] loop4: detected capacity change from 0 to 512 [ 599.457374][T10992] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 599.589325][T10992] EXT4-fs (loop4): 1 truncate cleaned up [ 599.617907][T10992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 600.041892][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 600.101809][T11002] loop2: detected capacity change from 0 to 1764 [ 600.273206][T11002] iso9660: Corrupted directory entry in block 1 of inode 1920 [ 600.567531][T11009] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2032'. [ 600.696741][T11013] tipc: Enabling of bearer rejected, failed to enable media [ 601.556450][ T5440] usb 6-1: new full-speed USB device number 9 using dummy_hcd [ 601.729045][ T5440] usb 6-1: New USB device found, idVendor=04f2, idProduct=1236, bcdDevice= 0.00 [ 601.729191][ T5440] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 601.749441][ T5440] usb 6-1: config 0 descriptor?? [ 602.237370][ T5440] chicony 0003:04F2:1236.0019: unknown main item tag 0x0 [ 602.245219][ T5440] chicony 0003:04F2:1236.0019: unknown main item tag 0x0 [ 602.253827][ T5440] chicony 0003:04F2:1236.0019: unknown main item tag 0x0 [ 602.261285][ T5440] chicony 0003:04F2:1236.0019: unknown main item tag 0x0 [ 602.268825][ T5440] chicony 0003:04F2:1236.0019: unknown main item tag 0x0 [ 602.361838][ T5440] chicony 0003:04F2:1236.0019: hidraw0: USB HID v1.01 Device [HID 04f2:1236] on usb-dummy_hcd.5-1/input0 [ 602.432010][ T5440] usb 6-1: USB disconnect, device number 9 [ 602.677646][T11032] loop0: detected capacity change from 0 to 4096 [ 602.694998][T11029] loop3: detected capacity change from 0 to 8192 [ 602.800511][T11029] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 602.823197][T11032] NILFS (loop0): invalid segment: Checksum error in segment payload [ 602.831479][T11032] NILFS (loop0): trying rollback from an earlier position [ 602.930923][T11033] fido_id[11033]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 602.978020][T11032] NILFS (loop0): recovery complete [ 603.020991][T11037] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 603.583348][T11039] loop2: detected capacity change from 0 to 2048 [ 603.804358][T11039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 603.963983][T11039] EXT4-fs: Ignoring removed orlov option [ 604.002715][T11039] EXT4-fs (loop2): can't enable nombcache during remount [ 604.325497][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 605.448377][T11065] loop5: detected capacity change from 0 to 512 [ 605.464818][T11065] EXT4-fs: Ignoring removed i_version option [ 605.471176][T11065] EXT4-fs: Ignoring removed mblk_io_submit option [ 605.498742][T11065] EXT4-fs (loop5): Test dummy encryption mode enabled [ 605.531897][T11065] EXT4-fs (loop5): orphan cleanup on readonly fs [ 605.544000][T11065] EXT4-fs error (device loop5): ext4_orphan_get:1393: comm syz.5.2056: inode #13: comm syz.5.2056: iget: illegal inode # [ 605.672801][T11065] EXT4-fs (loop5): Remounting filesystem read-only [ 605.681521][T11065] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 606.235993][T11065] EXT4-fs: Ignoring removed nomblk_io_submit option [ 606.287451][T11065] EXT4-fs (loop5): can't enable nombcache during remount [ 606.615415][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 606.638742][T11081] program syz.0.2062 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 607.814183][T11095] loop3: detected capacity change from 0 to 4096 [ 608.000577][T11103] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 608.077984][T11095] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 608.207334][T11095] NILFS error (device loop3): nilfs_check_folio: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11 [ 609.973080][T11133] xt_socket: unknown flags 0xd0 [ 610.813321][ T5440] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 610.914742][ T9] usb 3-1: new full-speed USB device number 9 using dummy_hcd [ 610.991688][ T5440] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 611.000493][ T5440] usb 1-1: config 0 has no interface number 0 [ 611.007198][ T5440] usb 1-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 611.016746][ T5440] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 611.048755][ T5440] usb 1-1: config 0 descriptor?? [ 611.096241][ T5440] usb 1-1: selecting invalid altsetting 1 [ 611.103053][ T5440] dvb_ttusb_budget: ttusb_init_controller: error [ 611.109601][ T5440] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 611.144928][ T9] usb 3-1: config index 0 descriptor too short (expected 35577, got 27) [ 611.154081][ T9] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 611.165032][ T9] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 611.174504][ T9] usb 3-1: config 1 has no interface number 0 [ 611.180867][ T9] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 611.192652][ T9] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 611.206052][ T9] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 611.215555][ T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 611.303012][ T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found [ 611.538938][ T5440] DVB: Unable to find symbol cx22700_attach() [ 611.770408][ T5440] DVB: Unable to find symbol tda10046_attach() [ 611.778930][ T5440] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 611.869946][ T5440] usb 1-1: USB disconnect, device number 10 [ 611.934593][ T9] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now attached [ 612.214096][ T5899] usb 3-1: USB disconnect, device number 9 [ 612.222056][ T5899] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected [ 612.235511][ T5873] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 612.443043][ T5873] usb 6-1: Using ep0 maxpacket: 32 [ 612.466509][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 612.477936][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 612.488228][ T5873] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 612.497973][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 612.575420][ T5873] usb 6-1: config 0 descriptor?? [ 613.058596][ T5873] kone 0003:1E7D:2CED.001A: unknown main item tag 0x0 [ 613.066060][ T5873] kone 0003:1E7D:2CED.001A: unknown main item tag 0x0 [ 613.073389][ T5873] kone 0003:1E7D:2CED.001A: unknown main item tag 0x0 [ 613.080484][ T5873] kone 0003:1E7D:2CED.001A: unknown main item tag 0x0 [ 613.087732][ T5873] kone 0003:1E7D:2CED.001A: unknown main item tag 0x0 [ 613.234543][ T5873] kone 0003:1E7D:2CED.001A: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.5-1/input0 [ 613.311995][ T5873] kone 0003:1E7D:2CED.001A: couldn't init struct kone_device [ 613.314645][T11171] loop4: detected capacity change from 0 to 256 [ 613.320132][ T5873] kone 0003:1E7D:2CED.001A: couldn't install mouse [ 613.340580][ T5873] kone 0003:1E7D:2CED.001A: probe with driver kone failed with error -5 [ 613.402668][ T5873] usb 6-1: USB disconnect, device number 10 [ 613.422693][T11171] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 613.434009][T11171] exFAT-fs (loop4): Medium has reported failures. Some data may be lost. [ 613.571678][T11171] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 614.153997][T11179] fido_id[11179]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory [ 615.082632][ T5873] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 615.141283][T11199] loop2: detected capacity change from 0 to 1024 [ 615.278580][T11199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 615.280504][ T5873] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 615.294320][T11199] ext4 filesystem being mounted at /426/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 615.302861][ T5873] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 615.322897][ T5873] usb 1-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 615.332287][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 615.345325][ T5873] usb 1-1: config 0 descriptor?? [ 615.533134][T11199] EXT4-fs error (device loop2): ext4_map_blocks:816: inode #15: block 3: comm syz.2.2114: lblock 3 mapped to illegal pblock 3 (length 1) [ 615.558423][T11199] EXT4-fs (loop2): Remounting filesystem read-only [ 615.980843][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 616.025572][T11210] netlink: 'syz.5.2117': attribute type 4 has an invalid length. [ 616.034021][T11210] netlink: 'syz.5.2117': attribute type 2 has an invalid length. [ 616.049098][ T5873] Bluetooth: Can't get version to change to load ram patch err [ 616.057332][ T5873] Bluetooth: Loading sysconfig file failed [ 616.063540][ T5873] ath3k 1-1:0.0: probe with driver ath3k failed with error -71 [ 616.089283][T11211] loop3: detected capacity change from 0 to 512 [ 616.111244][T11211] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 616.145457][ T5873] usb 1-1: USB disconnect, device number 11 [ 616.282603][T11211] EXT4-fs (loop3): 1 truncate cleaned up [ 616.290546][T11211] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 616.936789][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 617.823614][T11237] binder: 11236:11237 ioctl c0306201 0 returned -14 [ 618.199501][T11245] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2133'. [ 619.604681][T11257] loop2: detected capacity change from 0 to 4096 [ 619.786782][T11257] ntfs3(loop2): ino=1a, mi_enum_attr [ 619.793763][T11257] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 619.874530][T11263] loop3: detected capacity change from 0 to 4096 [ 619.933326][T11263] ntfs3(loop3): It is recommened to use chkdsk. [ 619.979335][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00 [ 619.989074][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00 [ 619.997980][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00 [ 620.006546][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc0c00 [ 620.015650][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc1c00 [ 620.024085][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc2c00 [ 620.032420][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc4c00 [ 620.040820][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffc8c00 [ 620.049208][T11263] ntfs3(loop3): try to read out of volume at offset 0x3fffffd0c00 [ 621.365019][T11280] erofs: Unexpected value for 'acl' [ 621.436268][T11281] loop5: detected capacity change from 0 to 1764 [ 621.634172][T11285] loop2: detected capacity change from 0 to 1024 [ 621.770102][T11287] loop3: detected capacity change from 0 to 128 [ 621.838486][T11285] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2151'. [ 622.185761][ T4307] hfsplus: b-tree write err: -5, ino 4 [ 622.197444][T11291] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2154'. [ 623.270275][T11305] loop2: detected capacity change from 0 to 128 [ 623.370705][T11307] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2162'. [ 623.417434][T11305] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 623.426308][T11305] FAT-fs (loop2): Filesystem has been set read-only [ 623.508068][T11309] loop0: detected capacity change from 0 to 512 [ 623.523293][T11310] FAT-fs (loop2): error, corrupted directory (invalid entries) [ 623.652684][T11309] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 623.744664][T11309] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 623.833390][T11309] EXT4-fs error (device loop0): ext4_iget_extra_inode:5035: inode #15: comm syz.0.2163: corrupted in-inode xattr: e_value size too large [ 623.930097][T11309] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.2163: couldn't read orphan inode 15 (err -117) [ 624.009952][T11309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 624.174062][T11309] EXT4-fs warning (device loop0): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 624.569482][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 626.336482][T11354] loop5: detected capacity change from 0 to 256 [ 626.376256][T11354] exfat: Deprecated parameter 'namecase' [ 626.382900][T11354] exfat: Deprecated parameter 'utf8' [ 626.484338][T11354] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 626.503629][ T5873] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 626.722506][ T5873] usb 5-1: Using ep0 maxpacket: 16 [ 626.751672][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 626.763095][ T5873] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 626.773396][ T5873] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 626.786847][ T5873] usb 5-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c [ 626.796311][ T5873] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.975385][ T5873] usb 5-1: config 0 descriptor?? [ 627.422439][ T5873] hid (null): invalid report_size 14847 [ 627.479997][ T5873] hid-generic 0003:045E:9994.001B: unknown main item tag 0x3 [ 627.492665][ T5873] hid-generic 0003:045E:9994.001B: unknown main item tag 0x2 [ 627.500401][ T5873] hid-generic 0003:045E:9994.001B: collection stack underflow [ 627.508622][ T5873] hid-generic 0003:045E:9994.001B: item 0 4 0 12 parsing failed [ 627.544332][ T5873] hid-generic 0003:045E:9994.001B: probe with driver hid-generic failed with error -22 [ 627.629793][ T5873] usb 5-1: USB disconnect, device number 10 [ 627.899149][T11372] loop0: detected capacity change from 0 to 16 [ 627.953719][T11372] erofs (device loop0): mounted with root inode @ nid 36. [ 628.563245][T11379] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2196'. [ 629.069219][T11382] loop2: detected capacity change from 0 to 4096 [ 629.189724][T11390] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 631.030043][T11413] loop5: detected capacity change from 0 to 512 [ 631.037209][T11417] qrtr: Invalid version 248 [ 631.205125][T11413] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 631.216174][T11413] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 631.226642][T11413] EXT4-fs error (device loop5): ext4_acquire_dquot:6933: comm syz.5.2212: Failed to acquire dquot type 1 [ 631.371598][T11413] EXT4-fs (loop5): 1 truncate cleaned up [ 631.380149][T11413] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 631.393455][T11413] ext4 filesystem being mounted at /301/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 631.863363][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 631.980513][T11430] loop4: detected capacity change from 0 to 1024 [ 633.944411][T11455] loop0: detected capacity change from 0 to 4096 [ 634.032580][T11455] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 634.423031][T11455] ntfs3(loop0): ino=19, mi_enum_attr [ 634.428638][T11455] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 635.439654][T11484] netlink: 'syz.5.2245': attribute type 10 has an invalid length. [ 635.497336][T11484] team0: Port device netdevsim3 added [ 635.573972][T11487] netlink: 'syz.5.2245': attribute type 10 has an invalid length. [ 635.648808][T11487] team0: Port device netdevsim3 removed [ 635.667496][T11487] bond0: (slave netdevsim3): Enslaving as an active interface with an up link [ 636.295458][T11500] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2253'. [ 637.196102][T11513] loop0: detected capacity change from 0 to 1024 [ 637.314444][T11513] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 637.739564][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 638.309858][T11530] loop3: detected capacity change from 0 to 512 [ 638.511867][T11530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback. [ 638.525599][T11530] ext4 filesystem being mounted at /465/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 638.671423][T11538] loop2: detected capacity change from 0 to 2048 [ 638.796336][T11530] EXT4-fs: Cannot change journaled quota options when quota turned on [ 638.863145][T11538] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 639.106084][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000. [ 639.424958][T11548] netlink: 4083 bytes leftover after parsing attributes in process `syz.5.2272'. [ 639.447677][T11545] netlink: 4083 bytes leftover after parsing attributes in process `syz.5.2272'. [ 639.601604][T11549] loop3: detected capacity change from 0 to 1024 [ 639.785467][T11553] loop9: detected capacity change from 0 to 4 [ 639.842680][T11549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 639.924427][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 639.935012][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 639.950096][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 639.960780][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 639.972289][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 639.983082][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.004152][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.014802][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.038098][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.048773][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.058822][T11553] ldm_validate_partition_table(): Disk read failed. [ 640.077110][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.087740][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.114100][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.124806][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.139033][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.149751][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.159845][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.170429][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.213632][T11553] Dev loop9: unable to read RDB block 0 [ 640.220540][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 640.231085][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 640.253656][T11553] loop9: unable to read partition table [ 640.260417][T11553] loop9: partition table beyond EOD, truncated [ 640.267169][T11553] loop_reread_partitions: partition scan of loop9 (被xڬ [ 640.267169][T11553] ) failed (rc=-5) [ 640.381301][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.502682][T11579] tipc: Enabled bearer , priority 10 [ 641.553091][T11580] loop4: detected capacity change from 0 to 512 [ 641.588879][T11580] EXT4-fs: Ignoring removed orlov option [ 641.641767][T11580] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 641.677787][T11580] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 641.696048][T11580] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.2286: corrupted in-inode xattr: e_value size too large [ 641.833679][T11580] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2286: couldn't read orphan inode 15 (err -117) [ 641.935186][T11580] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 642.102951][ T5440] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 642.356304][ T5440] usb 1-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 642.365779][ T5440] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 642.374369][ T5440] usb 1-1: Product: syz [ 642.378759][ T5440] usb 1-1: Manufacturer: syz [ 642.383747][ T5440] usb 1-1: SerialNumber: syz [ 642.384965][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 642.436089][ T5440] usb 1-1: config 0 descriptor?? [ 642.944669][T11597] loop5: detected capacity change from 0 to 256 [ 642.995303][T11597] exfat: Deprecated parameter 'namecase' [ 643.108563][ T5440] usb 1-1: f81604_read: reg: 105 failed: -EPROTO [ 643.115465][ T5440] f81604 1-1:0.0: Setting termination of CH#1 failed: -EPROTO [ 643.123840][ T5440] f81604 1-1:0.0: probe with driver f81604 failed with error -71 [ 643.170499][T11597] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 643.235499][ T5440] usb 1-1: USB disconnect, device number 12 [ 643.266478][T11601] loop2: detected capacity change from 0 to 512 [ 643.336254][T11601] EXT4-fs: Ignoring removed bh option [ 643.412790][T11601] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 643.482033][T11601] EXT4-fs (loop2): 1 truncate cleaned up [ 643.490338][T11601] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 643.578204][T11604] loop4: detected capacity change from 0 to 1764 [ 644.063327][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.206134][T11622] loop3: detected capacity change from 0 to 1024 [ 645.248288][T11622] EXT4-fs: Ignoring removed bh option [ 645.322488][T11622] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors [ 645.334397][T11622] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869) [ 645.344755][T11622] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 646.003223][T11622] EXT4-fs (loop3): failed to open journal device unknown-block(0,5) -6 [ 646.011823][T11632] loop0: detected capacity change from 0 to 4096 [ 646.139394][T11642] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 648.052876][T11670] pim6reg: entered allmulticast mode [ 648.117319][T11670] pim6reg: left allmulticast mode [ 648.753043][ T5873] IPVS: starting estimator thread 0... [ 648.852917][T11683] IPVS: using max 240 ests per chain, 12000 per kthread [ 648.887252][T11681] loop3: detected capacity change from 0 to 2048 [ 649.103405][T11681] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 649.477769][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 649.484719][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 649.616490][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 649.644585][T11702] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 649.652030][T11702] IPv6: NLM_F_CREATE should be set when creating new route [ 649.659791][T11702] IPv6: NLM_F_CREATE should be set when creating new route [ 649.667440][T11702] IPv6: NLM_F_CREATE should be set when creating new route [ 649.709077][T11702] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 650.181614][T11708] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2340'. [ 650.423454][T11710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2342'. [ 650.842057][T11718] loop3: detected capacity change from 0 to 64 [ 651.391901][T11723] loop0: detected capacity change from 0 to 1024 [ 651.507556][T11723] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 651.520549][T11723] ext4 filesystem being mounted at /463/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 651.692695][ T5873] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 651.909437][ T5873] usb 3-1: Using ep0 maxpacket: 8 [ 651.944755][T11734] loop4: detected capacity change from 0 to 2048 [ 651.970184][ T5873] usb 3-1: config 0 interface 0 has no altsetting 0 [ 651.977492][ T5873] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 651.987098][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 652.008689][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 652.044856][ T5873] usb 3-1: config 0 descriptor?? [ 652.251193][T11734] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 652.264438][T11734] ext4 filesystem being mounted at /472/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 652.625122][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 652.664185][ T5873] mcp2221 0003:04D8:00DD.001C: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 652.843037][T11746] loop3: detected capacity change from 0 to 64 [ 652.856531][ T5873] usb 3-1: USB disconnect, device number 10 [ 653.363918][T11751] netlink: 100 bytes leftover after parsing attributes in process `syz.4.2357'. [ 653.624633][T11754] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check. [ 655.740591][T11785] loop2: detected capacity change from 0 to 512 [ 655.937813][T11789] loop5: detected capacity change from 0 to 736 [ 656.039326][T11785] EXT4-fs (loop2): 1 orphan inode deleted [ 656.047399][T11785] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 656.073290][ T3830] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 656.084276][ T3830] EXT4-fs error (device loop2): ext4_release_dquot:6969: comm kworker/u8:19: Failed to release dquot type 1 [ 656.117857][T11785] ext4 filesystem being mounted at /478/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 656.533545][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.433507][T11813] usb usb8: usbfs: process 11813 (syz.0.2387) did not claim interface 0 before use [ 658.339276][T11831] loop5: detected capacity change from 0 to 128 [ 658.341247][T11830] loop4: detected capacity change from 0 to 512 [ 658.409437][T11830] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 658.463922][T11830] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 658.471208][T11831] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 658.473550][T11830] EXT4-fs (loop4): orphan cleanup on readonly fs [ 658.495439][T11830] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2395: bg 0: block 361: padding at end of block bitmap is not set [ 658.564440][T11831] ext4 filesystem being mounted at /337/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 658.578806][T11830] EXT4-fs (loop4): Remounting filesystem read-only [ 658.637530][T11830] EXT4-fs (loop4): 1 truncate cleaned up [ 658.645649][T11830] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 658.906053][T11830] System zones: 1-12 [ 658.910318][T11830] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000007. [ 659.039408][ T5440] kernel write not supported for file /media3 (pid: 5440 comm: kworker/0:3) [ 659.066555][ T7364] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 659.284377][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 659.696170][ T5873] usb 1-1: new full-speed USB device number 13 using dummy_hcd [ 659.789241][T11849] netlink: 32 bytes leftover after parsing attributes in process `syz.4.2403'. [ 659.950757][ T5873] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 659.961737][ T5873] usb 1-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00 [ 659.972595][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 660.084886][ T5873] usb 1-1: config 0 descriptor?? [ 660.556506][ T5873] petalynx 0003:18B1:0037.001D: unknown main item tag 0x0 [ 660.564139][ T5873] petalynx 0003:18B1:0037.001D: unknown main item tag 0x0 [ 660.664560][ T5873] petalynx 0003:18B1:0037.001D: hidraw0: USB HID v0.d6 Device [HID 18b1:0037] on usb-dummy_hcd.0-1/input0 [ 660.738392][T11853] loop5: detected capacity change from 0 to 4096 [ 660.747660][ T5873] usb 1-1: USB disconnect, device number 13 [ 660.894009][T11863] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 661.210965][T11867] [U] [ 661.214007][T11867] [U] [ 661.216991][T11867] [U] [ 661.219992][T11867] [U] [ 661.223081][T11867] [U] [ 661.226065][T11867] [U] [ 661.229057][T11867] [U] [ 661.232047][T11867] [U] [ 661.261721][T11861] fido_id[11861]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 661.341577][T11867] [U] [ 661.344659][T11867] [U] [ 661.347707][T11867] [U] [ 661.433802][T11866] [U] [ 662.835921][T11886] loop5: detected capacity change from 0 to 128 [ 663.091978][T11890] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2422'. [ 663.101858][T11890] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2422'. [ 663.746865][T11900] loop2: detected capacity change from 0 to 7 [ 663.919022][T11892] loop0: detected capacity change from 0 to 8192 [ 664.004172][T11900] loop2: [CUMANA/ADFS] p1 [ADFS] p1 [ 664.009744][T11900] loop2: partition table partially beyond EOD, truncated [ 664.018304][T11900] loop2: p1 size 2989602745 extends beyond EOD, truncated [ 664.475715][ T5986] udevd[5986]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 665.342803][ T9] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 665.618785][ T9] usb 5-1: config 0 interface 0 altsetting 15 endpoint 0x81 has invalid wMaxPacketSize 0 [ 665.629138][ T9] usb 5-1: config 0 interface 0 has no altsetting 0 [ 665.632791][T11921] tipc: Enabling of bearer rejected, failed to enable media [ 665.636408][ T9] usb 5-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 665.654033][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 665.940359][ T9] usb 5-1: config 0 descriptor?? [ 666.397328][ T9] acrux 0003:1A34:0802.001E: unknown main item tag 0x0 [ 666.455533][ T9] acrux 0003:1A34:0802.001E: hidraw0: USB HID v10.00 Device [HID 1a34:0802] on usb-dummy_hcd.4-1/input0 [ 666.468662][ T9] acrux 0003:1A34:0802.001E: no inputs found [ 666.475187][ T9] acrux 0003:1A34:0802.001E: Failed to enable force feedback support, error: -19 [ 666.517156][T11929] loop5: detected capacity change from 0 to 256 [ 666.618317][ T9] usb 5-1: USB disconnect, device number 11 [ 666.972026][T11930] fido_id[11930]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 668.318363][ T30] audit: type=1326 audit(1752711445.711:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.422943][ T30] audit: type=1326 audit(1752711445.751:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=356 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.446255][ T30] audit: type=1326 audit(1752711445.751:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.469190][ T30] audit: type=1326 audit(1752711445.771:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.491517][ T30] audit: type=1326 audit(1752711445.881:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.539613][T11957] loop2: detected capacity change from 0 to 512 [ 668.702549][T11957] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 668.791718][T11957] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002] [ 668.831141][T11957] System zones: 0-2, 18-18, 34-34 [ 668.849524][ T30] audit: type=1326 audit(1752711445.931:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.872535][ T30] audit: type=1326 audit(1752711445.931:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.895156][ T30] audit: type=1326 audit(1752711445.961:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.918029][ T30] audit: type=1326 audit(1752711445.961:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.919225][T11957] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 668.940977][ T30] audit: type=1326 audit(1752711445.981:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11956 comm="syz.2.2454" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf7f21539 code=0x7ffc0000 [ 668.953916][T11957] ext4 filesystem being mounted at /493/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 669.504069][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 669.506038][T11970] loop5: detected capacity change from 0 to 256 [ 669.734959][T11971] loop4: detected capacity change from 0 to 1024 [ 669.777515][T11971] EXT4-fs: inline encryption not supported [ 669.784520][T11971] EXT4-fs: Ignoring removed bh option [ 669.935961][T11971] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 670.001266][T11982] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2463'. [ 670.012088][T11982] netlink: 96 bytes leftover after parsing attributes in process `syz.3.2463'. [ 670.347088][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 671.171239][T11996] loop0: detected capacity change from 0 to 1024 [ 671.244945][T12000] loop2: detected capacity change from 0 to 64 [ 671.320928][T12000] syz.2.2472: attempt to access beyond end of device [ 671.320928][T12000] loop2: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 671.335350][T12000] buffer_io_error: 7 callbacks suppressed [ 671.335416][T12000] Buffer I/O error on dev loop2, logical block 134217734, async page read [ 671.403760][T11996] hfsplus: bad catalog entry type [ 671.588875][ T3574] hfsplus: b-tree write err: -5, ino 4 [ 671.654264][T12000] Trying to free block not in datazone [ 672.339350][T12012] loop4: detected capacity change from 0 to 2048 [ 672.435873][T12012] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 672.445949][T12012] NILFS (loop4): mounting unchecked fs [ 672.592783][T12012] NILFS (loop4): recovery complete [ 672.615005][T12020] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 672.790414][T12021] loop0: detected capacity change from 0 to 512 [ 672.974089][T12021] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2 [ 672.982743][T12021] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2 [ 673.067202][T12017] loop2: detected capacity change from 0 to 4096 [ 673.100853][T12021] EXT4-fs (loop0): 1 truncate cleaned up [ 673.108900][T12021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 673.834428][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 674.818884][T12046] loop4: detected capacity change from 0 to 64 [ 674.871392][T12047] loop3: detected capacity change from 0 to 256 [ 674.943971][T12047] exfat: Deprecated parameter 'utf8' [ 674.950166][T12047] exfat: Deprecated parameter 'namecase' [ 674.956651][T12047] exfat: Deprecated parameter 'namecase' [ 675.150574][T12047] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 676.390121][T12065] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2500'. [ 677.003843][T12080] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 678.087299][T12097] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2513'. [ 678.096733][T12097] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2513'. [ 678.106074][T12097] netlink: 'syz.0.2513': attribute type 6 has an invalid length. [ 679.193399][ T9] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 679.412557][ T9] usb 4-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 129, changing to 11 [ 679.424753][ T9] usb 4-1: config 0 interface 0 has no altsetting 0 [ 679.431732][ T9] usb 4-1: New USB device found, idVendor=045e, idProduct=009d, bcdDevice= 0.00 [ 679.441324][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 679.549439][ T9] usb 4-1: config 0 descriptor?? [ 679.997502][ T9] microsoft 0003:045E:009D.001F: hidraw0: USB HID v0.00 Device [HID 045e:009d] on usb-dummy_hcd.3-1/input0 [ 680.009688][ T9] microsoft 0003:045E:009D.001F: no inputs found [ 680.018370][ T9] microsoft 0003:045E:009D.001F: could not initialize ff, continuing anyway [ 680.186355][ T9] usb 4-1: USB disconnect, device number 10 [ 680.647003][T12128] fido_id[12128]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 681.781167][T12148] loop3: detected capacity change from 0 to 512 [ 681.914566][T12148] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 682.089660][T12148] fs-verity: sha512 using implementation "sha512-generic" [ 682.097564][T12148] EXT4-fs warning (device loop3): ext4_begin_enable_verity:135: inode #13: comm syz.3.2540: verity is only allowed on extent-based files [ 682.429062][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 682.533690][T12160] program syz.4.2545 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 682.914872][T12166] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 683.339699][T12173] loop2: detected capacity change from 0 to 128 [ 683.374069][T12174] ------------[ cut here ]------------ [ 683.379869][T12174] WARNING: CPU: 0 PID: 12174 at fs/exec.c:119 path_noexec+0x2ac/0x310 [ 683.388762][T12174] Modules linked in: [ 683.393058][T12174] CPU: 0 UID: 0 PID: 12174 Comm: syz.0.2552 Not tainted 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(none) [ 683.405592][T12174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 683.416484][T12174] RIP: 0010:path_noexec+0x2ac/0x310 [ 683.422095][T12174] Code: 49 89 ff 8b 7d d4 e8 03 b1 e1 ff 4c 89 ff e9 c8 fe ff ff 44 89 e7 e8 f3 b0 e1 ff 4d 85 ed 0f 85 a3 fe ff ff e8 15 bb 3e ff 90 <0f> 0b 90 48 8b 7d c0 4c 8b 37 e8 b5 a5 e1 ff 48 8b 00 48 89 45 c8 [ 683.442596][T12174] RSP: 0018:ffff88812b077b90 EFLAGS: 00010283 [ 683.448996][T12174] RAX: ffffffff82b596db RBX: ffff888119310b58 RCX: 0000000000080000 [ 683.460080][T12174] RDX: ffffc90008801000 RSI: 0000000000000060 RDI: 0000000000000061 [ 683.472988][T12174] RBP: ffff88812b077bd0 R08: ffffea000000000f R09: 0000000000000003 [ 683.481210][T12174] R10: 0000000000000003 R11: 0000000000000002 R12: 0000000000000000 [ 683.489628][T12174] R13: 0000000000000000 R14: ffff888140934aa0 R15: 0000000000000000 [ 683.498025][T12174] FS: 0000000000000000(0000) GS:ffff8881aa85a000(0063) knlGS:00000000f507eb40 [ 683.507533][T12174] CS: 0010 DS: 002b ES: 002b CR0: 0000000080050033 [ 683.514498][T12174] CR2: 000000002f31fffc CR3: 000000012b052000 CR4: 00000000003526f0 [ 683.523022][T12174] Call Trace: [ 683.526531][T12174] [ 683.529646][T12174] do_mmap+0x1570/0x1d70 [ 683.534398][T12174] vm_mmap_pgoff+0x48e/0x770 [ 683.539656][T12174] ksys_mmap_pgoff+0x51b/0x7c0 [ 683.544946][T12174] __ia32_sys_mmap_pgoff+0x11a/0x1d0 [ 683.550638][T12174] ia32_sys_call+0x33d6/0x42c0 [ 683.555980][T12174] __do_fast_syscall_32+0xb0/0x150 [ 683.561412][T12174] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 683.561513][T12173] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 683.562804][T12173] ext4 filesystem being mounted at /513/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 683.568272][T12174] do_fast_syscall_32+0x38/0x80 [ 683.595709][T12174] do_SYSENTER_32+0x1f/0x30 [ 683.600649][T12174] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 683.607511][T12174] RIP: 0023:0xf708e539 [ 683.611817][T12174] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 683.632025][T12174] RSP: 002b:00000000f507e55c EFLAGS: 00000206 ORIG_RAX: 00000000000000c0 [ 683.640825][T12174] RAX: ffffffffffffffda RBX: 0000000080000000 RCX: 0000000000003000 [ 683.649272][T12174] RDX: 000000000000000a RSI: 0000000000000011 RDI: 0000000000000003 [ 683.657834][T12174] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 683.666207][T12174] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 683.674523][T12174] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 683.683033][T12174] [ 683.686242][T12174] ---[ end trace 0000000000000000 ]--- [ 683.726136][ T5821] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 684.119500][T12181] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2555'. [ 684.760697][T12197] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2561'. [ 684.884293][T12198] loop3: detected capacity change from 0 to 1024 [ 684.892698][ T9] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 684.942560][T12198] EXT4-fs: Ignoring removed nobh option [ 684.948621][T12198] EXT4-fs: Ignoring removed bh option [ 685.056137][T12198] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 685.074664][ T9] usb 5-1: Using ep0 maxpacket: 16 [ 685.145065][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 685.156444][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 685.166765][ T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 685.180145][ T9] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 685.189667][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 685.347382][ T9] usb 5-1: config 0 descriptor?? [ 685.555024][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 685.789004][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.796841][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.804818][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.812539][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.822406][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.830287][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.843261][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.850887][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.858704][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.866400][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.874070][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.881589][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.889370][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.897416][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.906037][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.914031][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.927910][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.936524][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.944212][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.951788][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.959743][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.967506][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.975269][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.983154][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.990952][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 685.999722][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 686.007386][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 686.015202][ T9] microsoft 0003:045E:07DA.0020: unknown main item tag 0x0 [ 686.454558][ T9] microsoft 0003:045E:07DA.0020: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 686.466675][ T9] microsoft 0003:045E:07DA.0020: no inputs found [ 686.473434][ T9] microsoft 0003:045E:07DA.0020: could not initialize ff, continuing anyway [ 686.583832][ T9] usb 5-1: USB disconnect, device number 12 [ 686.813677][T12220] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2571'. [ 687.193812][T12219] fido_id[12219]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 687.882481][ T5873] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 687.933914][T12238] vim2m vim2m.0: vidioc_s_fmt queue busy [ 688.093876][ T5873] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 688.103413][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 688.157742][ T5873] usb 1-1: config 0 descriptor?? [ 688.421562][ T5873] udl 1-1:0.0: [drm] Unrecognized vendor firmware descriptor [ 688.704590][ T5873] [drm:udl_init] *ERROR* Selecting channel failed [ 688.790058][ T5873] [drm] Initialized udl 0.0.1 for 1-1:0.0 on minor 2 [ 688.797218][ T5873] [drm] Initialized udl on minor 2 [ 688.873016][ T5873] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 688.882594][ T5873] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 688.895933][ T5899] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 688.923588][ T5899] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 688.932446][ T5899] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 688.981453][ T5873] usb 1-1: USB disconnect, device number 14 [ 689.368183][T12254] tipc: Enabling of bearer rejected, failed to enable media [ 690.022867][T12266] loop4: detected capacity change from 0 to 256 [ 690.100163][T12268] program syz.5.2594 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 690.993719][T12283] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2601'. [ 691.003145][T12279] loop4: detected capacity change from 0 to 2048 [ 691.204597][T12279] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 691.423778][T12279] EXT4-fs: Ignoring removed orlov option [ 691.478127][T12279] EXT4-fs (loop4): can't enable nombcache during remount [ 691.574336][T12293] sg_write: data in/out 124/1 bytes for SCSI command 0x1c-- guessing data in; [ 691.574336][T12293] program syz.0.2603 not setting count and/or reply_len properly [ 691.789602][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 693.100900][T12312] loop0: detected capacity change from 0 to 1764 [ 693.302648][T12312] iso9660: Corrupted directory entry in block 1 of inode 1920 [ 695.530195][T12346] loop2: detected capacity change from 0 to 4096 [ 695.631303][T12346] NILFS (loop2): invalid segment: Checksum error in segment payload [ 695.641986][T12346] NILFS (loop2): trying rollback from an earlier position [ 695.752861][T12346] NILFS (loop2): recovery complete [ 695.829100][T12355] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 695.921088][T12357] loop5: detected capacity change from 0 to 256 [ 696.547152][T12363] loop0: detected capacity change from 0 to 2048 [ 696.594930][T12363] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 696.648512][T12365] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 697.202745][T12361] loop4: detected capacity change from 0 to 8192 [ 697.303431][T12361] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 698.063032][ T5873] usb 3-1: new full-speed USB device number 11 using dummy_hcd [ 698.255962][ T5873] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 698.265768][ T5873] usb 3-1: config 0 has no interface number 0 [ 698.272530][ T5873] usb 3-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e [ 698.281935][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 698.374883][ T5873] usb 3-1: config 0 descriptor?? [ 698.426406][ T5873] usb 3-1: selecting invalid altsetting 1 [ 698.433024][ T5873] dvb_ttusb_budget: ttusb_init_controller: error [ 698.439586][ T5873] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB) [ 699.017196][ T5873] DVB: Unable to find symbol cx22700_attach() [ 699.387145][ T5873] DVB: Unable to find symbol tda10046_attach() [ 699.393891][ T5873] dvb_ttusb_budget: no frontend driver found for device [0b48:1005] [ 699.485257][ T5873] usb 3-1: USB disconnect, device number 11 [ 699.700438][T12403] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2656'. [ 700.186361][T12411] program syz.0.2659 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 701.375810][ T5873] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 701.605070][ T5873] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 701.615827][ T5873] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 701.625542][ T5873] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 701.634985][ T5873] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 701.850382][ T5873] usb 5-1: config 0 descriptor?? [ 701.868303][T12438] binder: 12437:12438 ioctl c0306201 0 returned -14 [ 702.119469][ T9] usb 6-1: new full-speed USB device number 11 using dummy_hcd [ 702.328636][ T9] usb 6-1: config index 0 descriptor too short (expected 35577, got 27) [ 702.338099][ T9] usb 6-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 702.347251][ T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 702.356621][ T9] usb 6-1: config 1 has no interface number 0 [ 702.363071][ T9] usb 6-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 702.374474][ T9] usb 6-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 702.387820][ T9] usb 6-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 702.397776][ T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 702.523290][ T5873] Bluetooth: Can't get version to change to load ram patch err [ 702.531281][ T5873] Bluetooth: Loading sysconfig file failed [ 702.537639][ T5873] ath3k 5-1:0.0: probe with driver ath3k failed with error -71 [ 702.613656][ T5873] usb 5-1: USB disconnect, device number 13 [ 702.732513][ T9] snd_usb_pod 6-1:1.1: Line 6 Pocket POD found [ 703.314162][ T9] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now attached [ 703.353192][T12455] loop3: detected capacity change from 0 to 256 [ 703.419194][T12455] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 703.430327][T12455] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 703.587834][ T5873] usb 6-1: USB disconnect, device number 11 [ 703.595803][ T5873] snd_usb_pod 6-1:1.1: Line 6 Pocket POD now disconnected [ 703.624499][T12455] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 704.646733][T12469] loop3: detected capacity change from 0 to 1024 [ 704.784417][T12469] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 704.798254][T12469] ext4 filesystem being mounted at /557/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 704.840118][T12473] binder: 12472:12473 ioctl c0306201 0 returned -14 [ 704.996994][T12469] EXT4-fs error (device loop3): ext4_map_blocks:816: inode #15: block 3: comm syz.3.2686: lblock 3 mapped to illegal pblock 3 (length 1) [ 705.033009][T12476] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 705.082736][T12469] EXT4-fs (loop3): Remounting filesystem read-only [ 705.360030][T12480] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2691'. [ 705.413822][T12482] loop0: detected capacity change from 0 to 256 [ 705.486185][ T5829] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 705.507899][T12482] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 705.520149][T12482] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 705.699891][T12482] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d) [ 706.030105][ T30] kauditd_printk_skb: 8 callbacks suppressed [ 706.030174][ T30] audit: type=1326 audit(1752711483.421:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.059184][ T30] audit: type=1326 audit(1752711483.421:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.222410][ T30] audit: type=1326 audit(1752711483.511:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.245724][ T30] audit: type=1326 audit(1752711483.511:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.268366][ T30] audit: type=1326 audit(1752711483.511:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.290969][ T30] audit: type=1326 audit(1752711483.511:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=157 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.313583][ T30] audit: type=1326 audit(1752711483.511:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 706.336144][ T30] audit: type=1326 audit(1752711483.511:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12487 comm="syz.4.2695" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f66539 code=0x7ffc0000 [ 707.932481][ T30] audit: type=1326 audit(1752711485.321:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12521 comm="syz.0.2710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 707.955317][ T30] audit: type=1326 audit(1752711485.331:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12521 comm="syz.0.2710" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf708e539 code=0x7ffc0000 [ 709.061986][T12535] loop3: detected capacity change from 0 to 1764 [ 709.382970][T12542] loop2: detected capacity change from 0 to 128 [ 709.412805][T12543] loop5: detected capacity change from 0 to 512 [ 709.496824][T12543] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 709.623795][T12543] EXT4-fs (loop5): 1 truncate cleaned up [ 709.631647][T12543] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 709.681597][T12549] loop0: detected capacity change from 0 to 1024 [ 709.718029][T12549] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2722'. [ 710.017001][ T4307] hfsplus: b-tree write err: -5, ino 4 [ 710.121885][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 710.914431][ T1284] ieee802154 phy0 wpan0: encryption failed: -22 [ 710.921206][ T1284] ieee802154 phy1 wpan1: encryption failed: -22 [ 711.130053][T12566] loop0: detected capacity change from 0 to 128 [ 711.284507][T12566] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 711.292975][T12566] FAT-fs (loop0): Filesystem has been set read-only [ 711.347555][T12573] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 712.090761][T12584] loop5: detected capacity change from 0 to 128 [ 713.218993][T12597] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2742'. [ 713.887672][T12610] loop3: detected capacity change from 0 to 1024 [ 714.008911][T12610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2746'. [ 714.247082][ T4307] hfsplus: b-tree write err: -5, ino 4 [ 715.394996][T12625] loop0: detected capacity change from 0 to 4096 [ 715.691392][T12633] netlink: 32 bytes leftover after parsing attributes in process `syz.5.2758'. [ 715.693829][T12625] ntfs3(loop0): ino=1a, mi_enum_attr [ 715.706333][T12625] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 715.941325][T12631] loop3: detected capacity change from 0 to 4096 [ 716.083706][T12638] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2760'. [ 716.141027][T12639] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 716.484437][T12643] netlink: 76 bytes leftover after parsing attributes in process `syz.5.2763'. [ 716.953070][ T5873] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 717.133002][ T5873] usb 3-1: Using ep0 maxpacket: 16 [ 717.181004][ T5873] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 717.192667][ T5873] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 717.202825][ T5873] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 717.216171][ T5873] usb 3-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c [ 717.225956][ T5873] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 717.447806][ T5873] usb 3-1: config 0 descriptor?? [ 717.898565][ T5873] hid (null): invalid report_size 14847 [ 717.961788][ T5873] hid-generic 0003:045E:9994.0021: unknown main item tag 0x3 [ 717.969862][ T5873] hid-generic 0003:045E:9994.0021: unknown main item tag 0x2 [ 717.978088][ T5873] hid-generic 0003:045E:9994.0021: collection stack underflow [ 717.986040][ T5873] hid-generic 0003:045E:9994.0021: item 0 4 0 12 parsing failed [ 718.086214][ T5873] hid-generic 0003:045E:9994.0021: probe with driver hid-generic failed with error -22 [ 718.156835][ T5873] usb 3-1: USB disconnect, device number 12 [ 719.108851][T12673] loop4: detected capacity change from 0 to 4096 [ 719.203911][T12679] qrtr: Invalid version 248 [ 719.364926][T12673] ntfs3(loop4): ino=1a, mi_enum_attr [ 719.370516][T12673] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 721.486846][T12709] loop4: detected capacity change from 0 to 512 [ 721.542632][T12709] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 721.598927][T12709] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 721.618888][T12709] EXT4-fs error (device loop4): ext4_iget_extra_inode:5035: inode #15: comm syz.4.2794: corrupted in-inode xattr: e_value size too large [ 721.634071][ T5873] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 721.718350][T12709] EXT4-fs error (device loop4): ext4_orphan_get:1398: comm syz.4.2794: couldn't read orphan inode 15 (err -117) [ 721.762816][T12709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 721.815827][ T5873] usb 6-1: Using ep0 maxpacket: 16 [ 721.873720][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 721.885168][ T5873] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 721.895427][ T5873] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 721.908694][ T5873] usb 6-1: New USB device found, idVendor=045e, idProduct=9994, bcdDevice=fc.3c [ 721.918481][ T5873] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 721.927451][T12709] EXT4-fs warning (device loop4): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 722.066709][ T5873] usb 6-1: config 0 descriptor?? [ 722.360112][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 722.539766][ T5873] hid (null): invalid report_size 14847 [ 722.609127][ T5873] hid-generic 0003:045E:9994.0022: unknown main item tag 0x3 [ 722.617155][ T5873] hid-generic 0003:045E:9994.0022: unknown main item tag 0x2 [ 722.625273][ T5873] hid-generic 0003:045E:9994.0022: collection stack underflow [ 722.633533][ T5873] hid-generic 0003:045E:9994.0022: item 0 4 0 12 parsing failed [ 722.681991][ T5873] hid-generic 0003:045E:9994.0022: probe with driver hid-generic failed with error -22 [ 722.771792][ T9] usb 6-1: USB disconnect, device number 12 [ 722.990350][T12727] loop2: detected capacity change from 0 to 512 [ 723.047162][T12727] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 723.104600][T12727] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002] [ 723.170490][T12727] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.2811: corrupted in-inode xattr: e_value size too large [ 723.239368][T12727] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2811: couldn't read orphan inode 15 (err -117) [ 723.297047][T12727] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 723.491382][T12727] EXT4-fs warning (device loop2): ext4_block_to_path:107: block 863271013 > max in inode 18 [ 723.895692][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 724.497147][T12745] loop2: detected capacity change from 0 to 512 [ 724.604089][T12745] __quota_error: 3 callbacks suppressed [ 724.604166][T12745] Quota error (device loop2): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 724.620793][T12745] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 724.631277][T12745] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2808: Failed to acquire dquot type 1 [ 724.703862][T12745] EXT4-fs (loop2): 1 truncate cleaned up [ 724.711759][T12745] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 724.725006][T12745] ext4 filesystem being mounted at /566/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 725.113660][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 725.136620][T12760] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2814'. [ 726.381923][T12775] loop0: detected capacity change from 0 to 2048 [ 726.493814][T12775] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 727.713522][T12789] loop5: detected capacity change from 0 to 4096 [ 727.743706][T12789] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 727.821970][T12798] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.2836'. [ 727.904092][T12797] netlink: 4083 bytes leftover after parsing attributes in process `syz.2.2836'. [ 728.058935][T12789] ntfs3(loop5): ino=19, mi_enum_attr [ 728.065799][T12789] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 729.077201][T12812] loop5: detected capacity change from 0 to 512 [ 729.187964][T12812] EXT4-fs: Ignoring removed orlov option [ 729.229984][T12812] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem [ 729.323057][T12812] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 729.425849][T12812] EXT4-fs error (device loop5): ext4_iget_extra_inode:5035: inode #15: comm syz.5.2851: corrupted in-inode xattr: e_value size too large [ 729.479754][T12812] EXT4-fs error (device loop5): ext4_orphan_get:1398: comm syz.5.2851: couldn't read orphan inode 15 (err -117) [ 729.570565][T12812] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 729.669488][T12823] loop4: detected capacity change from 0 to 1024 [ 729.799352][T12823] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 730.185505][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 730.210488][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 731.075372][T12845] loop3: detected capacity change from 0 to 2048 [ 731.151501][T12845] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 732.114771][T12860] loop0: detected capacity change from 0 to 512 [ 732.164297][T12862] loop2: detected capacity change from 0 to 256 [ 732.193159][T12859] loop5: detected capacity change from 0 to 1024 [ 732.194916][T12860] EXT4-fs: Ignoring removed bh option [ 732.208914][T12862] exfat: Deprecated parameter 'namecase' [ 732.243281][T12860] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem [ 732.308393][T12859] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 732.358416][T12860] EXT4-fs (loop0): 1 truncate cleaned up [ 732.373896][T12862] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 732.419196][T12860] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 732.468565][T12869] loop9: detected capacity change from 0 to 4 [ 732.501468][ C1] blk_print_req_error: 7 callbacks suppressed [ 732.501544][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.518467][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.529632][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.540291][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.552046][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.562757][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.602901][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.613506][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.625271][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.635842][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.652964][T12869] ldm_validate_partition_table(): Disk read failed. [ 732.660363][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.671043][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.684953][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.695589][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.721953][ C1] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.732634][ C1] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.744138][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.755295][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.767868][T12869] Dev loop9: unable to read RDB block 0 [ 732.782093][ C0] critical medium error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 732.792803][ C0] Buffer I/O error on dev loop9, logical block 0, async page read [ 732.821140][T12869] loop9: unable to read partition table [ 732.888648][T12869] loop9: partition table beyond EOD, truncated [ 732.896416][T12869] loop_reread_partitions: partition scan of loop9 (被xڬ [ 732.896416][T12869] ) failed (rc=-5) [ 733.009803][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 733.235325][ T5816] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 734.046485][T12883] loop2: detected capacity change from 0 to 512 [ 734.106496][T12883] EXT4-fs: Ignoring removed orlov option [ 734.221166][T12883] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 734.273307][T12883] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 734.372827][T12883] EXT4-fs error (device loop2): ext4_iget_extra_inode:5035: inode #15: comm syz.2.2872: corrupted in-inode xattr: e_value size too large [ 734.443153][T12883] EXT4-fs error (device loop2): ext4_orphan_get:1398: comm syz.2.2872: couldn't read orphan inode 15 (err -117) [ 734.480717][T12883] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 734.922848][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 735.081735][ T5873] usb 6-1: new high-speed USB device number 13 using dummy_hcd [ 735.335247][ T5873] usb 6-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 735.345129][ T5873] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 735.353533][ T5873] usb 6-1: Product: syz [ 735.358000][ T5873] usb 6-1: Manufacturer: syz [ 735.362904][ T5873] usb 6-1: SerialNumber: syz [ 735.453365][ T5873] usb 6-1: config 0 descriptor?? [ 735.611911][T12905] loop4: detected capacity change from 0 to 512 [ 735.725134][T12905] EXT4-fs: Ignoring removed bh option [ 735.833912][T12905] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 735.919661][T12905] EXT4-fs (loop4): 1 truncate cleaned up [ 735.928370][T12905] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 736.176503][ T5873] usb 6-1: f81604_read: reg: 105 failed: -EPROTO [ 736.183316][ T5873] f81604 6-1:0.0: Setting termination of CH#1 failed: -EPROTO [ 736.191172][ T5873] f81604 6-1:0.0: probe with driver f81604 failed with error -71 [ 736.298292][ T5873] usb 6-1: USB disconnect, device number 13 [ 736.460619][ T5828] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 736.973190][T12923] pim6reg: entered allmulticast mode [ 737.068814][T12923] pim6reg: left allmulticast mode [ 737.848266][T12939] loop5: detected capacity change from 0 to 64 [ 740.225862][T12979] loop2: detected capacity change from 0 to 1764 [ 740.456600][T12985] netlink: 'syz.4.2915': attribute type 10 has an invalid length. [ 740.509673][T12987] netlink: 'syz.4.2915': attribute type 10 has an invalid length. [ 740.568339][T12985] team0: Port device netdevsim3 added [ 740.718712][T12987] team0: Port device netdevsim3 removed [ 740.847528][T12987] bond0: (slave netdevsim3): Enslaving as an active interface with an up link [ 740.988387][T12993] loop2: detected capacity change from 0 to 64 [ 741.333644][T12997] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 741.341213][T12997] IPv6: NLM_F_CREATE should be set when creating new route [ 741.348869][T12997] IPv6: NLM_F_CREATE should be set when creating new route [ 741.356391][T12997] IPv6: NLM_F_CREATE should be set when creating new route [ 741.524249][T12997] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 741.674727][T13000] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2922'. [ 741.726676][T13001] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2923'. [ 741.908410][T13006] loop0: detected capacity change from 0 to 64 [ 742.267735][T13010] loop4: detected capacity change from 0 to 64 [ 742.419725][T13012] tipc: Started in network mode [ 742.425272][T13012] tipc: Node identity aaaaaaaaaa33, cluster identity 4711 [ 742.434441][T13012] tipc: Enabled bearer , priority 10 [ 742.696313][T13014] loop5: detected capacity change from 0 to 1764 [ 743.552839][ T5899] tipc: Node number set to 10070698 [ 743.622961][ T5873] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 743.803456][ T5873] usb 1-1: Using ep0 maxpacket: 8 [ 743.836080][ T5873] usb 1-1: config 0 interface 0 has no altsetting 0 [ 743.843260][ T5873] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 743.853349][ T5873] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 743.951786][ T5873] usb 1-1: config 0 descriptor?? [ 744.159454][T13036] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2939'. [ 744.467637][ T5873] mcp2221 0003:04D8:00DD.0023: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 744.654861][ T5873] usb 1-1: USB disconnect, device number 15 [ 745.225850][T13051] loop5: detected capacity change from 0 to 512 [ 745.508343][T13051] EXT4-fs (loop5): 1 orphan inode deleted [ 745.535867][ T3882] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 745.546492][ T3882] EXT4-fs error (device loop5): ext4_release_dquot:6969: comm kworker/u8:20: Failed to release dquot type 1 [ 745.574110][T13051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 745.625621][T13051] ext4 filesystem being mounted at /442/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 745.962611][T13061] loop2: detected capacity change from 0 to 512 [ 746.025732][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 746.050325][T13061] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349) [ 746.143413][T13061] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e12c, mo2=0002] [ 746.153493][T13061] EXT4-fs (loop2): orphan cleanup on readonly fs [ 746.204025][T13061] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.2960: bg 0: block 361: padding at end of block bitmap is not set [ 746.313152][T13061] EXT4-fs (loop2): Remounting filesystem read-only [ 746.354885][T13061] EXT4-fs (loop2): 1 truncate cleaned up [ 746.396920][T13061] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none. [ 746.640611][T13061] System zones: 1-12 [ 746.645137][T13061] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000007. [ 746.708739][ T5873] kernel write not supported for file /media3 (pid: 5873 comm: kworker/1:4) [ 746.991944][ T5821] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000007. [ 748.534520][T13100] netlink: 100 bytes leftover after parsing attributes in process `syz.0.2967'. [ 748.780709][T13105] [U] [ 748.783762][T13105] [U] [ 748.786771][T13105] [U] [ 748.789749][T13105] [U] [ 748.792737][T13105] [U] [ 748.795721][T13105] [U] [ 748.798717][T13105] [U] [ 748.801693][T13105] [U] [ 748.883198][T13105] [U] [ 748.886263][T13105] [U] [ 748.889260][T13105] [U] [ 748.909348][T13106] loop5: detected capacity change from 0 to 2048 [ 748.956264][T13104] [U] [ 749.058877][T13106] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 749.071655][T13106] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 749.427165][ T7364] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 750.578951][T13133] netlink: 100 bytes leftover after parsing attributes in process `syz.3.2984'. [ 750.639753][T13135] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2983'. [ 750.649946][T13135] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2983'. [ 750.970160][T13130] loop4: detected capacity change from 0 to 4096 [ 750.989492][ T5440] kernel write not supported for file /media3 (pid: 5440 comm: kworker/0:3) [ 751.101963][T13140] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 751.343586][T13144] ===================================================== [ 751.350826][T13144] BUG: KMSAN: uninit-value in ieee802154_hdr_push+0x9ac/0xa30 [ 751.360309][T13144] ieee802154_hdr_push+0x9ac/0xa30 [ 751.365814][T13144] ieee802154_header_create+0x854/0xb90 [ 751.371540][T13144] dgram_sendmsg+0xb40/0x16d0 [ 751.376589][T13144] ieee802154_sock_sendmsg+0x8f/0xd0 [ 751.382069][T13144] __sock_sendmsg+0x330/0x3d0 [ 751.387298][T13144] ____sys_sendmsg+0x7e0/0xd80 [ 751.392385][T13144] ___sys_sendmsg+0x271/0x3b0 [ 751.397278][T13144] __sys_sendmsg+0x1aa/0x300 [ 751.402079][T13144] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 751.408034][T13144] ia32_sys_call+0x3692/0x42c0 [ 751.413106][T13144] __do_fast_syscall_32+0xb0/0x150 [ 751.418450][T13144] do_fast_syscall_32+0x38/0x80 [ 751.423663][T13144] do_SYSENTER_32+0x1f/0x30 [ 751.428390][T13144] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 751.435113][T13144] [ 751.437533][T13144] Uninit was stored to memory at: [ 751.443184][T13144] ieee802154_hdr_push+0x9a5/0xa30 [ 751.448482][T13144] ieee802154_header_create+0x854/0xb90 [ 751.454939][T13144] dgram_sendmsg+0xb40/0x16d0 [ 751.459793][T13144] ieee802154_sock_sendmsg+0x8f/0xd0 [ 751.465465][T13144] __sock_sendmsg+0x330/0x3d0 [ 751.470316][T13144] ____sys_sendmsg+0x7e0/0xd80 [ 751.475546][T13144] ___sys_sendmsg+0x271/0x3b0 [ 751.480622][T13144] __sys_sendmsg+0x1aa/0x300 [ 751.485616][T13144] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 751.491409][T13144] ia32_sys_call+0x3692/0x42c0 [ 751.496541][T13144] __do_fast_syscall_32+0xb0/0x150 [ 751.501890][T13144] do_fast_syscall_32+0x38/0x80 [ 751.507060][T13144] do_SYSENTER_32+0x1f/0x30 [ 751.511787][T13144] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 751.518479][T13144] [ 751.520902][T13144] Local variable hdr created at: [ 751.526112][T13144] ieee802154_header_create+0x4e/0xb90 [ 751.531762][T13144] dgram_sendmsg+0xb40/0x16d0 [ 751.536891][T13144] [ 751.539369][T13144] CPU: 1 UID: 0 PID: 13144 Comm: syz.2.2989 Tainted: G W 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(none) [ 751.553514][T13144] Tainted: [W]=WARN [ 751.557447][T13144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 751.567880][T13144] ===================================================== [ 751.575041][T13144] Disabling lock debugging due to kernel taint [ 751.581343][T13144] Kernel panic - not syncing: kmsan.panic set ... [ 751.587927][T13144] CPU: 1 UID: 0 PID: 13144 Comm: syz.2.2989 Tainted: G B W 6.16.0-rc6-syzkaller-00002-g155a3c003e55 #0 PREEMPT(none) [ 751.601975][T13144] Tainted: [B]=BAD_PAGE, [W]=WARN [ 751.607564][T13144] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 751.617958][T13144] Call Trace: [ 751.621362][T13144] [ 751.624413][T13144] __dump_stack+0x26/0x30 [ 751.628947][T13144] dump_stack_lvl+0x53/0x270 [ 751.633755][T13144] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 751.639818][T13144] dump_stack+0x1e/0x25 [ 751.645219][T13144] panic+0x4bd/0xd50 [ 751.649364][T13144] kmsan_report+0x31c/0x320 [ 751.654078][T13144] ? stack_depot_save+0x12/0x20 [ 751.659107][T13144] ? __msan_warning+0x1b/0x30 [ 751.663983][T13144] ? ieee802154_hdr_push+0x9ac/0xa30 [ 751.669480][T13144] ? ieee802154_header_create+0x854/0xb90 [ 751.675386][T13144] ? dgram_sendmsg+0xb40/0x16d0 [ 751.680423][T13144] ? ieee802154_sock_sendmsg+0x8f/0xd0 [ 751.686092][T13144] ? __sock_sendmsg+0x330/0x3d0 [ 751.691130][T13144] ? ____sys_sendmsg+0x7e0/0xd80 [ 751.696283][T13144] ? ___sys_sendmsg+0x271/0x3b0 [ 751.701353][T13144] ? __sys_sendmsg+0x1aa/0x300 [ 751.706426][T13144] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 751.712383][T13144] ? ia32_sys_call+0x3692/0x42c0 [ 751.717491][T13144] ? __do_fast_syscall_32+0xb0/0x150 [ 751.723033][T13144] ? do_fast_syscall_32+0x38/0x80 [ 751.728372][T13144] ? do_SYSENTER_32+0x1f/0x30 [ 751.733271][T13144] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 751.739994][T13144] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 751.746711][T13144] ? __ia32_compat_sys_sendmsg+0xa4/0x100 [ 751.752675][T13144] ? ia32_sys_call+0x3692/0x42c0 [ 751.757797][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.763122][T13144] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 751.769140][T13144] ? ieee802154_hdr_push+0x1/0xa30 [ 751.774428][T13144] ? filter_irq_stacks+0x49/0x190 [ 751.779604][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.784910][T13144] ? kmsan_internal_memmove_metadata+0x91/0x230 [ 751.791343][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.796650][T13144] ? kmsan_internal_memmove_metadata+0x181/0x230 [ 751.803175][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.808481][T13144] __msan_warning+0x1b/0x30 [ 751.813152][T13144] ieee802154_hdr_push+0x9ac/0xa30 [ 751.818460][T13144] ? __msan_memcpy+0x108/0x1c0 [ 751.823415][T13144] ieee802154_header_create+0x854/0xb90 [ 751.829139][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.834443][T13144] ? __pfx_ieee802154_header_create+0x10/0x10 [ 751.840665][T13144] dgram_sendmsg+0xb40/0x16d0 [ 751.845526][T13144] ? __pfx_dgram_sendmsg+0x10/0x10 [ 751.850795][T13144] ieee802154_sock_sendmsg+0x8f/0xd0 [ 751.856267][T13144] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 751.862442][T13144] ? __pfx_ieee802154_sock_sendmsg+0x10/0x10 [ 751.868620][T13144] __sock_sendmsg+0x330/0x3d0 [ 751.873486][T13144] ____sys_sendmsg+0x7e0/0xd80 [ 751.878469][T13144] ___sys_sendmsg+0x271/0x3b0 [ 751.883347][T13144] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 751.889358][T13144] ? __rcu_read_unlock+0x6d/0xd0 [ 751.894451][T13144] ? __fget_files+0x3b4/0x4a0 [ 751.899323][T13144] ? __fget_files+0x3b9/0x4a0 [ 751.904196][T13144] ? kmsan_get_metadata+0xfb/0x160 [ 751.909491][T13144] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 751.915502][T13144] __sys_sendmsg+0x1aa/0x300 [ 751.920311][T13144] __ia32_compat_sys_sendmsg+0xa4/0x100 [ 751.926077][T13144] ia32_sys_call+0x3692/0x42c0 [ 751.930990][T13144] __do_fast_syscall_32+0xb0/0x150 [ 751.936304][T13144] ? irqentry_exit_to_user_mode+0x82/0xa0 [ 751.942223][T13144] do_fast_syscall_32+0x38/0x80 [ 751.947270][T13144] do_SYSENTER_32+0x1f/0x30 [ 751.951960][T13144] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 751.958487][T13144] RIP: 0023:0xf7f21539 [ 751.962680][T13144] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 751.982462][T13144] RSP: 002b:00000000f504655c EFLAGS: 00000206 ORIG_RAX: 0000000000000172 [ 751.991137][T13144] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000100 [ 751.999242][T13144] RDX: 0000000020004080 RSI: 0000000000000000 RDI: 0000000000000000 [ 752.007334][T13144] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 752.015422][T13144] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 752.023514][T13144] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 752.031636][T13144] [ 752.035053][T13144] Kernel Offset: disabled [ 752.039472][T13144] Rebooting in 86400 seconds..