last executing test programs: 7.331785827s ago: executing program 0 (id=3067): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000020}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000340)=ANY=[@ANYBLOB="24000000120057ff0100"/19, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00', @ANYRESOCT], 0x24}}, 0x0) 6.816372811s ago: executing program 0 (id=3070): r0 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0) ioctl$IOC_PR_PREEMPT(r0, 0x40046109, &(0x7f0000000040)={0xf0, 0xf0ff}) ioctl$CEC_S_MODE(r0, 0x40046109, &(0x7f0000000080)=0x2) 6.213640054s ago: executing program 0 (id=3073): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ac0), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_TRAP_POLICER_SET(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f00000002c0)={0x54, r1, 0x1, 0x0, 0x0, {0x1e}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xfffffffffffffedd, 0x3e}, {0xc}, {0xc}}]}, 0x54}}, 0x24008080) 5.655599804s ago: executing program 0 (id=3076): r0 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x7fff, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x2, 0x1, 0x1}) readv(r0, &(0x7f00000006c0)=[{&(0x7f00000017c0)=""/4096, 0x1000}], 0x1) 5.074764192s ago: executing program 1 (id=3078): unshare(0x28020480) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000004180)='/proc/mdstat\x00', 0x0, 0x0) preadv2(r0, &(0x7f0000004140)=[{&(0x7f0000000040)=""/4096, 0x1000}], 0x1, 0x33, 0x4, 0x0) 4.598974033s ago: executing program 1 (id=3081): r0 = semget$private(0x0, 0x7, 0x191) semtimedop(r0, &(0x7f0000000200)=[{0x0, 0xffff, 0x2000}, {0x4, 0x3, 0x1800}], 0x2, 0x0) semctl$GETZCNT(r0, 0x0, 0xf, 0x0) 3.373989792s ago: executing program 3 (id=3086): r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0) write$binfmt_script(r0, &(0x7f0000000400)={'#! ', './file0', [{0x20, '\t'}, {0x20, '[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xbd\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x1d-s\x16\xe5\xdc\xb7\xc8\'\xae0{LX>m\xeeG\x81\xd6\'\b\xc6\\\xf1\x1bJ:\x9d\xe60\xab\f\x90\x85r\xb8\x92\xd4\x00:jA\xc90\xec\xc2*|\xc2?\xab\xf2\x03@\x19\xd1L\xc0\xedB\xf4\x06\x85\bXJ\xb8\xb4\xf4)\x8cfXC\x10\xdf\xd5\xc6\xed\x8b\xa0\x80\xca\x9b\xfat\x10\xcd\x0f\x12\x1b\x8ft$\xacS\x01\xbee>\xdd\xb5\x19^\x11\xf0om\xab\x16`F\xd9\x1b\xd6\xd3\x1dl\x86\x1b'}]}, 0x104) execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) 3.331555802s ago: executing program 1 (id=3087): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105704da0700000000000109022400010000ba0009040000090300000009210000000122220009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0022220000009523b31ce93ee9070c0000002990370900be89b3"], 0x0}, 0x0) 2.864328467s ago: executing program 4 (id=3088): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_RINGS_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x34, r1, 0x1, 0x0, 0xfffffffc, {}, [@ETHTOOL_A_RINGS_RX={0x8}, @ETHTOOL_A_RINGS_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wlan0\x00'}]}]}, 0x34}, 0x1, 0x0, 0x0, 0x20041}, 0x0) 2.807773029s ago: executing program 3 (id=3089): r0 = socket(0xa, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000480)=[@in={0x2, 0x4e24, @remote}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000001640)={&(0x7f0000000000)=@in={0x2, 0x4e24, @remote}, 0x10, &(0x7f0000000100)=[{&(0x7f0000000040)=')', 0x34000}], 0x1, &(0x7f00000015c0)=[@dstaddrv4={0x18, 0x84, 0x7, @local}], 0x18, 0x8000}, 0x20000000) 2.413204345s ago: executing program 4 (id=3091): unshare(0x24020400) r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80) bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000080)={@map, r0, 0x5}, 0x10) 2.256781535s ago: executing program 3 (id=3092): syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYRES32=0x0], 0x5, 0xd99, &(0x7f0000006900)="$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") r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0xc0186e86, 0x0) 1.97893453s ago: executing program 2 (id=3093): r0 = socket$can_bcm(0x1d, 0x2, 0x2) connect$can_bcm(r0, &(0x7f0000000040), 0x10) sendmsg(r0, &(0x7f00000004c0)={&(0x7f0000000080)=@l2tp6={0x1d, 0x0, 0x0, @ipv4}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000100)="751edb18dbf46e8f09d97e5bbd402d11fea33f21e2", 0x15}, {&(0x7f00000001c0)="da", 0x1}, {&(0x7f0000000240)="6d5f67af894fc09d5500897cd5556770418b1b34525a7becaa1a13b103508a04d5cd215b761cd584cddde2539d4d465745d349805bf16f7bd8010d7104086c0e743d76d4de754ad1714e562adea566f259c4f224d9098cbd4b94b351de0ed58f1361f6920b4598be11b9f546e6ba23ba5075072ef9d7362c255f779786606674fa7c324aa5dc055389df4d7725ef8f4e391c9bcbc80b7a9397f2f484ddc09076e854b1ee0569277a48abb91df8c3d57555dd4ed07a395e7c78444c971401bb04a219d661d01158a497c68330c7a8878ad272b2fd9915717c58efd568017a16947f31", 0xe2}], 0x3}, 0x0) 1.907663398s ago: executing program 4 (id=3094): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000002ec0), 0x48) syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1008002, &(0x7f0000000bc0)={[{@grpquota}, {@delalloc}, {@resuid}, {@test_dummy_encryption}, {@dioread_nolock}, {@jqfmt_vfsold}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5e8, &(0x7f0000000f40)="$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") bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000000)={r0, 0x60, &(0x7f0000001100)}, 0x10) 1.511456622s ago: executing program 2 (id=3095): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x9, 0x2002, 0x6, 0x2, 0x1, 0xcb02}, 0x50) bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000300)={{r0}, &(0x7f0000000200), &(0x7f0000000240)='%ps \x00'}, 0x20) bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f00000000c0), &(0x7f0000000180)=@tcp6, 0x1}, 0x20) 1.199895742s ago: executing program 3 (id=3096): r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0102}}}, 0x14) sendmsg$802154_dgram(r0, &(0x7f00000004c0)={&(0x7f0000000400)={0x24, @long={0x3, 0x2}}, 0x14, &(0x7f0000000480)={&(0x7f0000000440)="2451228fcd91f55e409b32759e6bf1f27c5843b8f00e48d5efba1b2d5850d45001af3733fe62fc9e69", 0x29}, 0x1, 0x0, 0x0, 0x20000080}, 0x44010) 1.157020714s ago: executing program 4 (id=3097): unshare(0x2040400) r0 = timerfd_create(0x7, 0x800) timerfd_gettime(r0, &(0x7f0000000180)) 1.144823454s ago: executing program 1 (id=3098): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0xa0000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REINJECT_CONTROL(r1, 0xae64, 0x0) 1.097509636s ago: executing program 2 (id=3099): epoll_create(0x400) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00') read$qrtrtun(r0, &(0x7f00000004c0)=""/57, 0x39) 965.819652ms ago: executing program 2 (id=3100): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @range={{0xa}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x8004) 744.70483ms ago: executing program 4 (id=3101): r0 = syz_open_dev$vim2m(&(0x7f00000000c0), 0x3, 0x2) ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x2000006, 0x1, 0x4}) ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f0000000140)=@multiplanar_fd={0x0, 0x1, 0x4, 0x10, 0x7, {0x77359400}, {0x3, 0x1, 0x3, 0x6, 0x7, 0x8, "b5cc4fbb"}, 0x8, 0x4, {0x0}, 0x9}) 603.201769ms ago: executing program 1 (id=3102): r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0xb}, 0x1c) syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace00000000000000002100000002ff02000000000000000000000000000104004e200023b0"], 0x0) 517.607496ms ago: executing program 2 (id=3103): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0) r1 = dup(r0) ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000400)={0x8, 0x0, &(0x7f00000007c0)=[@enter_looper, @register_looper], 0x0, 0x0, 0x0}) 482.443547ms ago: executing program 0 (id=3104): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cgroup.controllers\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x22051, r0, 0x0) madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe) 408.410233ms ago: executing program 3 (id=3105): io_setup(0xb0, &(0x7f0000000200)=0x0) r1 = syz_open_dev$video4linux(&(0x7f0000000100), 0x5, 0x0) io_submit(r0, 0x1, &(0x7f0000004540)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x2}]) 297.332199ms ago: executing program 4 (id=3106): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000100)={[{@umask={'umask', 0x3d, 0x1}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@zero_size_dir}, {@gid}, {@keep_last_dots}, {@errors_continue}, {@errors_continue}, {@dmask={'dmask', 0x3d, 0x2}}, {@fmask={'fmask', 0x3d, 0x7f}}, {@discard}], [{@obj_user={'obj_user', 0x3d, 'umask'}}, {@fowner_lt}, {@obj_user={'obj_user', 0x3d, 'macturkish'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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") mount$9p_fd(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x8002, 0x0) open(&(0x7f00000007c0)='./file0\x00', 0x808c3, 0x8b) 184.359786ms ago: executing program 1 (id=3107): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)={[{@usrquota}, {@noblock_validity}, {@bh}, {@max_batch_time={'max_batch_time', 0x3d, 0x8c9}}, {@debug}, {@inlinecrypt}]}, 0x6, 0x5fc, &(0x7f0000000c00)="$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") syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x41, &(0x7f0000000880)={[{@nouser_xattr}, {@nodiscard}, {@usrjquota}, {@grpjquota}, {@grpjquota}, {@minixdf}, {@quota}, {@noload}, {@block_validity}]}, 0x64, 0x51c, &(0x7f0000001740)="$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") syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1aca421, &(0x7f00000008c0)=ANY=[], 0xb, 0x0, &(0x7f0000000000)) 71.171257ms ago: executing program 2 (id=3108): capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f00000003c0)=""/179) 3.071124ms ago: executing program 0 (id=3109): r0 = openat$comedi(0xffffff9c, &(0x7f0000000040)='/dev/comedi1\x00', 0x2180, 0x0) ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000300)={'das16m1\x00', [0x2f00, 0x80000001, 0xd09a, 0x3b, 0x3, 0x39e, 0x20000002, 0x6, 0xffe, 0x9, 0x3, 0x1, 0x104, 0x1, 0xfffe, 0x55, 0x5, 0x7ec, 0x8, 0x30000, 0x10000, 0x9, 0x1800, 0xe2df, 0x10002, 0x80000001, 0x7, 0xc, 0x4, 0x5, 0x470f]}) ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0x4000000, 0xf, &(0x7f0000000080)=[0x3, 0xfff, 0x4, 0xb, 0x80000000, 0xfffffff9, 0xe0, 0xfffffff7, 0x9, 0xf5, 0xffffffff, 0x2, 0x200, 0x4, 0x6], 0x0, 0x4}) 0s ago: executing program 3 (id=3110): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf22}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0, 0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000400)}, 0x20) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000740), &(0x7f00000007c0), 0xffffd6c0, r1, 0x0, 0x20}, 0x38) kernel console output (not intermixed with test programs): valid value 0 for thread_pool [ 489.454170][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 489.499770][T10028] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 489.508692][T10028] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 489.707164][T10028] System zones: 0-1, 15-15, 18-18, 34-34 [ 489.714110][T10028] EXT4-fs (loop1): orphan cleanup on readonly fs [ 489.721063][T10028] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 489.730917][T10028] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 489.746045][T10028] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 489.838179][T10028] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1884: bg 0: block 40: padding at end of block bitmap is not set [ 489.970754][T10028] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6657: Corrupt filesystem [ 490.009842][T10028] EXT4-fs (loop1): 1 truncate cleaned up [ 490.018173][T10028] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 490.051188][T10037] loop2: detected capacity change from 0 to 512 [ 490.167854][T10028] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.1884: bad symlink. [ 490.186219][T10037] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.1885: casefold flag without casefold feature [ 490.224965][T10028] EXT4-fs error (device loop1): ext4_encrypted_get_link:46: inode #16: comm syz.1.1884: bad symlink. [ 490.247666][T10037] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1885: couldn't read orphan inode 15 (err -117) [ 490.340265][T10037] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 490.632982][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 490.988783][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 492.069272][T10060] bridge0: entered promiscuous mode [ 492.401082][T10065] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1900'. [ 493.599782][T10084] netlink: 'syz.4.1908': attribute type 1 has an invalid length. [ 495.254657][T10107] loop3: detected capacity change from 0 to 256 [ 495.430982][T10107] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 495.502160][T10112] netlink: 'syz.1.1923': attribute type 2 has an invalid length. [ 497.034401][T10124] loop2: detected capacity change from 0 to 32768 [ 497.335910][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_delay=2013266920,journal_reclaim_delay=10,nojournal_transaction_names [ 497.336067][T10124] allowing incompatible features above 0.0: (unknown version) [ 497.336148][T10124] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 497.336248][T10124] with devices loop2 [ 497.395056][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0 [ 497.406394][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing new filesystem [ 497.433524][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-write [ 497.489195][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking superblocks [ 497.628884][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): initializing freespace [ 497.669250][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done initializing freespace [ 497.708855][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots table [ 497.718171][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): reading snapshots done [ 497.827238][T10124] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): done starting filesystem [ 498.327172][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutting down [ 498.335207][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): going read-only [ 498.343774][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): finished waiting for writes to stop [ 498.495233][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators, journal seq 3 [ 498.657455][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): flushing journal and stopping allocators complete, journal seq 4 [ 498.742069][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): clean shutdown complete, journal seq 5 [ 498.776310][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): marking filesystem clean [ 499.020157][ T5819] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): shutdown complete [ 499.245714][T10160] loop3: detected capacity change from 0 to 164 [ 501.295135][T10176] loop3: detected capacity change from 0 to 40427 [ 501.304336][T10176] F2FS-fs: heap/no_heap options were deprecated [ 501.329796][T10176] F2FS-fs (loop3): build fault injection rate: 19 [ 501.336593][T10176] F2FS-fs (loop3): build fault injection type: 0x3bf [ 501.410766][T10176] F2FS-fs (loop3): invalid crc value [ 501.421685][T10176] F2FS-fs (loop3): inject kvmalloc in f2fs_kvmalloc of f2fs_fill_super+0x78b6/0xa750 [ 501.432305][T10176] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12) [ 502.409836][T10189] loop4: detected capacity change from 0 to 1024 [ 502.417411][T10182] loop1: detected capacity change from 0 to 32768 [ 502.484985][T10182] gfs2: can't find protocol dlm [ 503.167616][ T3742] hfsplus: b-tree write err: -5, ino 4 [ 503.229837][T10198] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1957'. [ 503.276149][T10199] IPVS: sync thread started: state = MASTER, mcast_ifn = veth1_to_team, syncid = 4, id = 0 [ 504.571912][T10212] loop1: detected capacity change from 0 to 4096 [ 504.838943][T10212] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 504.846009][T10212] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 504.919318][T10219] loop4: detected capacity change from 0 to 4096 [ 504.932419][T10219] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 505.017999][T10219] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 505.261466][ T3926] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 505.273118][T10219] EXT4-fs: Ignoring sb option on remount [ 505.279474][T10219] EXT4-fs: Ignoring removed orlov option [ 505.286123][T10219] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 505.295964][T10219] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 505.320318][ T5812] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 505.327403][ T5812] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 505.334549][ T5812] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 505.353387][ T4082] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 505.354464][T10219] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000. [ 505.657383][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 506.655901][ T42] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 506.683953][T10230] syz.3.1970 (10230): drop_caches: 2 [ 506.846191][ T42] usb 1-1: Using ep0 maxpacket: 32 [ 506.891286][ T42] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 506.904231][ T42] usb 1-1: config 0 has no interface number 0 [ 506.953800][ T42] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 506.963546][ T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 506.971938][ T42] usb 1-1: Product: syz [ 506.976423][ T42] usb 1-1: Manufacturer: syz [ 506.981197][ T42] usb 1-1: SerialNumber: syz [ 507.054040][ T42] usb 1-1: config 0 descriptor?? [ 507.092684][ T42] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 507.335979][ T42] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 507.344478][ T42] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 507.732873][ C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 507.737564][ T42] usb 1-1: USB disconnect, device number 12 [ 507.747587][ T42] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 507.769847][ T42] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 507.771740][ T42] quatech2 1-1:0.51: device disconnected [ 508.977281][T10259] loop3: detected capacity change from 0 to 4096 [ 509.049617][T10259] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 511.669895][T10301] loop4: detected capacity change from 0 to 4096 [ 511.760668][T10313] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 511.786281][ T5870] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 511.826687][T10312] loop2: detected capacity change from 0 to 1024 [ 511.967239][T10312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 511.971279][ T5870] usb 4-1: Using ep0 maxpacket: 8 [ 511.999904][ T5870] usb 4-1: config 0 interface 0 has no altsetting 0 [ 512.009870][ T5870] usb 4-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00 [ 512.022190][ T5870] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 512.040195][ T5870] usb 4-1: config 0 descriptor?? [ 512.444836][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 512.572243][ T5870] wacom 0003:056A:00BA.000B: Unknown device_type for 'HID 056a:00ba'. Assuming pen. [ 512.634874][ T5870] wacom 0003:056A:00BA.000B: hidraw0: USB HID v0.02 Device [HID 056a:00ba] on usb-dummy_hcd.3-1/input0 [ 512.651536][ T5870] input: Wacom Intuos4 8x13 Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:00BA.000B/input/input16 [ 512.765754][ T5870] usb 4-1: USB disconnect, device number 9 [ 512.790153][T10323] loop4: detected capacity change from 0 to 1024 [ 512.833289][T10325] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2013'. [ 512.904524][T10327] loop2: detected capacity change from 0 to 1024 [ 512.949270][T10323] hfsplus: bad catalog entry type [ 513.013954][T10327] hfsplus: bad catalog entry type [ 513.131678][ T5099] hfsplus: b-tree write err: -5, ino 4 [ 513.243384][ T4082] hfsplus: b-tree write err: -5, ino 4 [ 513.495834][ T42] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 513.666424][ T42] usb 2-1: Using ep0 maxpacket: 16 [ 513.689305][ T42] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 513.700886][ T42] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 513.711089][ T42] usb 2-1: config 0 interface 0 has no altsetting 0 [ 513.718570][ T42] usb 2-1: New USB device found, idVendor=05ac, idProduct=0247, bcdDevice= 0.00 [ 513.728075][ T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 513.744726][ T42] usb 2-1: config 0 descriptor?? [ 514.258383][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.266601][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.280620][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.289967][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.297463][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.304633][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.311999][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.313991][T10349] loop2: detected capacity change from 0 to 256 [ 514.319459][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.332923][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.340295][ T42] apple 0003:05AC:0247.000C: unknown main item tag 0x0 [ 514.444724][ T42] apple 0003:05AC:0247.000C: unexpected long global item [ 514.542126][ T42] apple 0003:05AC:0247.000C: parse failed [ 514.548853][ T42] apple 0003:05AC:0247.000C: probe with driver apple failed with error -22 [ 514.557649][T10349] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 514.653903][ T42] usb 2-1: USB disconnect, device number 7 [ 514.748786][T10356] loop4: detected capacity change from 0 to 64 [ 514.915329][T10360] loop3: detected capacity change from 0 to 256 [ 515.033572][T10360] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 515.276762][T10364] tipc: Started in network mode [ 515.281919][T10364] tipc: Node identity ac141412, cluster identity 4711 [ 515.290185][T10364] tipc: New replicast peer: 255.255.255.255 [ 515.305138][T10364] tipc: Enabled bearer , priority 10 [ 515.652505][T10373] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2034'. [ 516.003415][T10379] loop2: detected capacity change from 0 to 256 [ 516.044640][T10379] exfat: Deprecated parameter 'utf8' [ 516.051297][T10379] exfat: Deprecated parameter 'utf8' [ 516.211589][T10385] loop4: detected capacity change from 0 to 256 [ 516.257492][T10379] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 516.432589][ T42] tipc: Node number set to 2886997010 [ 516.701384][T10394] raw_sendmsg: syz.2.2044 forgot to set AF_INET. Fix it! [ 516.746138][ T30] audit: type=1326 audit(1754998482.741:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 516.831804][ T30] audit: type=1326 audit(1754998482.781:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 516.854996][ T30] audit: type=1326 audit(1754998482.781:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 516.878012][ T30] audit: type=1326 audit(1754998482.791:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 516.903442][ T30] audit: type=1326 audit(1754998482.791:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=244 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 516.933559][ T30] audit: type=1326 audit(1754998482.791:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10393 comm="syz.0.2045" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 517.246442][T10403] loop2: detected capacity change from 0 to 512 [ 517.304265][T10403] EXT4-fs (loop2): 1 truncate cleaned up [ 517.312877][T10403] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 517.336497][T10403] EXT4-fs (loop2): Online resizing not supported with sparse_super2 [ 517.677881][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.015778][ T42] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 518.186512][ T42] usb 4-1: Using ep0 maxpacket: 32 [ 518.211357][ T42] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 518.223255][ T42] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 518.233581][ T42] usb 4-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 518.246996][ T42] usb 4-1: config 0 interface 0 has no altsetting 0 [ 518.253963][ T42] usb 4-1: New USB device found, idVendor=0403, idProduct=97c1, bcdDevice= 0.00 [ 518.268143][ T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 518.328280][ T42] usb 4-1: config 0 descriptor?? [ 518.839612][ T42] hid-retrode 0003:0403:97C1.000D: hidraw0: USB HID v0.02 Device [HID 0403:97c1] on usb-dummy_hcd.3-1/input0 [ 519.038691][ T42] usb 4-1: USB disconnect, device number 10 [ 520.816018][ T5870] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 521.036550][ T5870] usb 5-1: Using ep0 maxpacket: 32 [ 521.062402][ T5870] usb 5-1: config 0 has an invalid interface number: 66 but max is 0 [ 521.071035][ T5870] usb 5-1: config 0 has no interface number 0 [ 521.149495][ T5870] usb 5-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 521.159082][ T5870] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.167542][ T5870] usb 5-1: Product: syz [ 521.171888][ T5870] usb 5-1: Manufacturer: syz [ 521.178151][ T5870] usb 5-1: SerialNumber: syz [ 521.199587][ T5870] usb 5-1: config 0 descriptor?? [ 521.221188][ T5870] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state. [ 521.229259][ T5870] dvb-usb: bulk message failed: -22 (2/0) [ 521.319195][ T5870] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 521.341538][ T5870] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold) [ 521.350335][ T5870] usb 5-1: media controller created [ 521.426593][ T5870] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 521.446447][ T42] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 521.459170][T10470] dvb-usb: bulk message failed: -22 (5/0) [ 521.525116][ T5870] cxusb: set interface failed [ 521.530449][ T5870] dvb-usb: bulk message failed: -22 (1/0) [ 521.648347][ T42] usb 4-1: Using ep0 maxpacket: 8 [ 521.712585][ T42] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 521.722272][ T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.730736][ T42] usb 4-1: Product: syz [ 521.735160][ T42] usb 4-1: Manufacturer: syz [ 521.740210][ T42] usb 4-1: SerialNumber: syz [ 521.841692][ T42] usb 4-1: config 0 descriptor?? [ 521.894508][ T42] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 521.903399][ T42] usb 4-1: setting power ON [ 521.908199][ T5870] DVB: Unable to find symbol lgdt330x_attach() [ 521.908221][ T42] dvb-usb: bulk message failed: -22 (2/0) [ 521.920497][ T5870] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold' [ 521.937360][ T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 521.979308][ T42] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 521.988418][ T42] usb 4-1: media controller created [ 522.091532][ T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 522.127391][T10482] dvb-usb: bulk message failed: -22 (3/0) [ 522.471967][ T42] usb 4-1: selecting invalid altsetting 6 [ 522.478438][ T42] usb 4-1: digital interface selection failed (-22) [ 522.486127][ T42] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 522.488172][ T5870] rc_core: IR keymap rc-dvico-portable not found [ 522.502189][ T5870] Registered IR keymap rc-empty [ 522.508844][ T5870] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0 [ 522.521426][ T5870] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.4/usb5/5-1/rc/rc0/input19 [ 522.549185][ T42] usb 4-1: setting power OFF [ 522.554225][ T42] dvb-usb: bulk message failed: -22 (2/0) [ 522.560442][ T42] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 522.576764][ T42] (NULL device *): no alternate interface [ 522.612657][ T5870] dvb-usb: schedule remote query interval to 100 msecs. [ 522.627143][ T5870] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected. [ 522.654246][T10507] loop2: detected capacity change from 0 to 512 [ 522.670783][T10505] loop4: detected capacity change from 0 to 512 [ 522.704161][ T5870] usb 5-1: USB disconnect, device number 8 [ 522.706547][T10505] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 522.900403][T10505] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:169: inode #17: comm syz.4.2092: inline data xattr refers to an external xattr inode [ 522.936030][T10505] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.2092: couldn't read orphan inode 17 (err -117) [ 523.009051][ T5870] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected. [ 523.027309][T10507] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 523.041089][T10507] ext4 filesystem being mounted at /419/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 523.067208][T10505] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 523.089439][ T42] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 523.171263][ T42] usb 4-1: USB disconnect, device number 11 [ 523.448373][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.643196][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 523.754254][T10525] loop1: detected capacity change from 0 to 128 [ 523.876572][T10525] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 523.925324][T10525] ext4 filesystem being mounted at /413/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 523.991965][T10530] loop4: detected capacity change from 0 to 1024 [ 524.263946][ T5812] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 524.606715][T10542] virtiofs: Bad value for 'dax' [ 525.035311][T10556] loop1: detected capacity change from 0 to 8 [ 525.590748][T10563] fuse: Bad value for 'group_id' [ 525.597497][T10563] fuse: Bad value for 'group_id' [ 526.601814][T10560] syz.4.2115 (10560): drop_caches: 2 [ 527.498769][T10592] loop1: detected capacity change from 0 to 16 [ 527.521516][T10592] erofs (device loop1): mounted with root inode @ nid 36. [ 527.572423][ T30] audit: type=1326 audit(1754998493.571:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10595 comm="syz.0.2132" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x0 [ 527.610012][T10593] (unnamed net_device) (uninitialized): (slave team0): Device is not bonding slave [ 527.620145][T10593] (unnamed net_device) (uninitialized): option active_slave: invalid value (team0) [ 527.650972][T10592] syz.1.2130: attempt to access beyond end of device [ 527.650972][T10592] loop1: rw=524288, sector=524984, nr_sectors = 8 limit=16 [ 527.666392][T10592] syz.1.2130: attempt to access beyond end of device [ 527.666392][T10592] loop1: rw=524288, sector=368, nr_sectors = 8 limit=16 [ 527.680399][T10592] syz.1.2130: attempt to access beyond end of device [ 527.680399][T10592] loop1: rw=524288, sector=33822867456, nr_sectors = 8 limit=16 [ 527.695029][T10592] syz.1.2130: attempt to access beyond end of device [ 527.695029][T10592] loop1: rw=524288, sector=524280, nr_sectors = 8 limit=16 [ 527.712818][T10592] syz.1.2130: attempt to access beyond end of device [ 527.712818][T10592] loop1: rw=524288, sector=525096, nr_sectors = 8 limit=16 [ 527.727827][T10592] syz.1.2130: attempt to access beyond end of device [ 527.727827][T10592] loop1: rw=524288, sector=712, nr_sectors = 8 limit=16 [ 527.742535][T10592] syz.1.2130: attempt to access beyond end of device [ 527.742535][T10592] loop1: rw=0, sector=524984, nr_sectors = 8 limit=16 [ 527.756433][T10592] erofs (device loop1): failed to readdir of logical block 0 of nid 36 [ 528.659045][T10613] loop1: detected capacity change from 0 to 1024 [ 528.753415][T10613] hfsplus: bad catalog entry type [ 529.129091][T10053] hfsplus: b-tree write err: -5, ino 4 [ 529.266615][T10619] loop2: detected capacity change from 0 to 4096 [ 529.316913][T10619] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 529.638766][T10619] ntfs3(loop2): Failed to load $Extend (-22). [ 529.645240][T10619] ntfs3(loop2): Failed to initialize $Extend. [ 530.186284][ T5820] Bluetooth: hci4: command 0x0406 tx timeout [ 530.862436][T10634] loop3: detected capacity change from 0 to 4096 [ 530.945006][T10638] loop1: detected capacity change from 0 to 32768 [ 530.954128][T10638] btrfs: Deprecated parameter 'usebackuproot' [ 530.965235][T10638] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 530.990523][T10638] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.2150 (10638) [ 531.011557][T10638] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 531.022165][T10638] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm [ 531.031143][T10638] BTRFS info (device loop1): using free-space-tree [ 531.142198][ T3708] BTRFS warning (device loop1): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0 [ 531.156443][T10638] BTRFS error (device loop1): failed to load root extent [ 531.167258][T10638] BTRFS warning (device loop1): try to load backup roots slot 1 [ 531.215804][ T3708] BTRFS warning (device loop1): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0 [ 531.230487][T10638] BTRFS warning (device loop1): couldn't read tree root [ 531.237920][T10638] BTRFS warning (device loop1): try to load backup roots slot 2 [ 531.252858][T10634] ntfs3(loop3): ino=19, mi_enum_attr [ 531.258856][T10634] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 531.295409][ T3708] BTRFS error (device loop1): level verify failed on logical 5255168 mirror 1 wanted 0 found 1 [ 531.307850][T10638] BTRFS warning (device loop1): couldn't read tree root [ 531.315084][T10638] BTRFS warning (device loop1): try to load backup roots slot 3 [ 531.393157][T10638] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 531.426205][T10634] ntfs3(loop3): failed to convert name for inode 1e. [ 531.464077][T10634] ntfs3(loop3): ino=1f, mi_enum_attr [ 531.470659][T10634] ntfs3(loop3): ino=5, "/" ntfs_readdir [ 531.740331][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 531.747142][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 532.024214][T10663] loop4: detected capacity change from 0 to 256 [ 532.135366][T10663] exfat: Deprecated parameter 'utf8' [ 532.141628][T10663] exfat: Deprecated parameter 'namecase' [ 532.148198][T10663] exfat: Deprecated parameter 'utf8' [ 532.179437][T10663] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 532.799692][T10677] loop2: detected capacity change from 0 to 512 [ 532.830481][T10676] loop1: detected capacity change from 0 to 1024 [ 532.848809][T10677] EXT4-fs: Ignoring removed mblk_io_submit option [ 532.856121][T10677] EXT4-fs: Ignoring removed nomblk_io_submit option [ 532.918886][T10677] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 532.932185][T10677] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 532.994865][T10676] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 533.012376][T10676] ext4 filesystem being mounted at /425/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 533.130962][T10677] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2162: Allocating blocks 41-42 which overlap fs metadata [ 533.257740][T10677] Quota error (device loop2): write_blk: dquota write failed [ 533.265672][T10677] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5 [ 533.275228][T10677] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4183: comm syz.2.2162: Allocating blocks 41-42 which overlap fs metadata [ 533.353725][T10677] Quota error (device loop2): write_blk: dquota write failed [ 533.361959][T10677] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 533.372557][T10677] EXT4-fs error (device loop2): ext4_acquire_dquot:6933: comm syz.2.2162: Failed to acquire dquot type 1 [ 533.430564][T10677] EXT4-fs error (device loop2): mb_free_blocks:2017: group 0, inode 12: block 14:freeing already freed block (bit 14); block bitmap corrupt. [ 533.450235][T10677] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.2162: corrupted inode contents [ 533.546242][T10677] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #12: comm syz.2.2162: mark_inode_dirty error [ 533.576114][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.636306][T10677] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.2162: corrupted inode contents [ 533.684307][T10677] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #12: comm syz.2.2162: mark_inode_dirty error [ 533.712095][T10677] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.2162: corrupted inode contents [ 533.744744][T10677] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem [ 533.835680][T10677] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #12: comm syz.2.2162: corrupted inode contents [ 533.886477][T10677] EXT4-fs error (device loop2): ext4_truncate:4666: inode #12: comm syz.2.2162: mark_inode_dirty error [ 533.942968][T10677] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem [ 533.982154][T10677] EXT4-fs (loop2): 1 truncate cleaned up [ 533.990344][T10677] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 534.206337][T10701] loop1: detected capacity change from 0 to 2048 [ 534.373646][T10701] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 534.529132][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 534.539793][T10701] EXT4-fs error (device loop1): ext4_search_dir:1474: inode #12: block 9: comm syz.1.2172: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=56 fake=0 [ 534.577944][T10701] EXT4-fs (loop1): Remounting filesystem read-only [ 534.851035][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 535.169752][T10721] loop4: detected capacity change from 0 to 128 [ 535.325737][ T5870] usb 1-1: new full-speed USB device number 13 using dummy_hcd [ 535.541651][ T5870] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 535.553397][ T5870] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 535.563134][ T5870] usb 1-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 535.576413][ T5870] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 535.600797][ T5870] usb 1-1: config 0 descriptor?? [ 535.623110][ T5870] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 535.630515][ T5870] dvb-usb: bulk message failed: -22 (3/0) [ 535.651813][ T5870] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 535.668386][T10727] loop4: detected capacity change from 0 to 64 [ 535.757184][ T5870] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 535.764467][ T5870] usb 1-1: media controller created [ 535.791449][ T5870] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 535.896189][ T5870] dvb-usb: bulk message failed: -22 (6/0) [ 535.902384][ T5870] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 535.942033][T10731] loop2: detected capacity change from 0 to 256 [ 535.960792][ T5870] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input20 [ 535.988535][T10731] exfat: Deprecated parameter 'utf8' [ 536.006673][ T5870] dvb-usb: schedule remote query interval to 150 msecs. [ 536.013904][ T5870] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 536.067595][ T5870] usb 1-1: USB disconnect, device number 13 [ 536.132623][ T5870] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 536.232373][T10731] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 537.121236][T10737] loop1: detected capacity change from 0 to 32768 [ 537.130732][T10737] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value [ 537.372033][ T42] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 537.631189][ T42] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 537.642836][ T42] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 537.653335][ T42] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 537.663182][ T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 537.851417][T10748] tipc: Started in network mode [ 537.856902][T10748] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 537.870960][T10748] tipc: Enabled bearer , priority 10 [ 537.907702][T10741] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 537.942989][ T42] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 538.151194][ T30] audit: type=1800 audit(1754998504.151:52): pid=10754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2195" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 538.300750][ T42] usb 3-1: USB disconnect, device number 11 [ 538.347062][T10756] loop3: detected capacity change from 0 to 256 [ 538.633045][T10756] FAT-fs (loop3): Directory bread(block 64) failed [ 538.644141][T10756] FAT-fs (loop3): Directory bread(block 65) failed [ 538.655317][T10756] FAT-fs (loop3): Directory bread(block 66) failed [ 538.663526][T10756] FAT-fs (loop3): Directory bread(block 67) failed [ 538.670627][T10756] FAT-fs (loop3): Directory bread(block 68) failed [ 538.677682][T10756] FAT-fs (loop3): Directory bread(block 69) failed [ 538.684535][T10756] FAT-fs (loop3): Directory bread(block 70) failed [ 538.691379][T10756] FAT-fs (loop3): Directory bread(block 71) failed [ 538.698703][T10756] FAT-fs (loop3): Directory bread(block 72) failed [ 538.705417][T10756] FAT-fs (loop3): Directory bread(block 73) failed [ 538.986546][ T42] tipc: Node number set to 4269801488 [ 539.313792][T10772] ptrace attach of "./syz-executor exec"[5825] was attempted by " [ 540.572958][T10783] loop1: detected capacity change from 0 to 32768 [ 540.679510][T10783] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value [ 541.178681][ T5870] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 541.222276][T10793] loop3: detected capacity change from 0 to 4096 [ 541.297797][T10793] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 541.352196][ T5870] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16 [ 541.362397][ T5870] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 541.412497][ T5870] usb 5-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32 [ 541.422223][ T5870] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 541.430598][ T5870] usb 5-1: Product: syz [ 541.434964][ T5870] usb 5-1: Manufacturer: syz [ 541.439845][ T5870] usb 5-1: SerialNumber: syz [ 541.475732][ T5870] usb 5-1: config 0 descriptor?? [ 541.487362][T10784] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 541.495734][T10784] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 541.740634][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 541.808869][T10784] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 541.856317][T10784] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 541.932619][T10804] loop2: detected capacity change from 0 to 256 [ 542.016271][T10804] FAT-fs (loop2): Directory bread(block 1285) failed [ 542.087283][ T5870] Error reading MAC address [ 542.117977][ T5870] usb 5-1: USB disconnect, device number 9 [ 542.160697][T10804] FAT-fs (loop2): Directory bread(block 1285) failed [ 542.798303][T10818] pimreg3: entered allmulticast mode [ 543.849926][T10837] loop4: detected capacity change from 0 to 512 [ 543.990559][T10829] loop3: detected capacity change from 0 to 32768 [ 544.095390][T10829] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,no_splitbrain_check,recovery_pass_last=initialize_subvolumes,nojournal_transaction_names,noexcl,read_only [ 544.095703][T10829] allowing incompatible features above 0.0: (unknown version) [ 544.095801][T10829] features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes [ 544.144004][T10829] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0 [ 544.153409][T10829] bcachefs (loop3): recovering from clean shutdown, journal seq 10 [ 544.157792][T10837] EXT4-fs error (device loop4): ext4_xattr_inode_iget:433: comm syz.4.2235: Parent and EA inode have the same ino 15 [ 544.163167][T10829] bcachefs (loop3): Version upgrade required: [ 544.163167][T10829] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete [ 544.163167][T10829] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive [ 544.163167][T10829] running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance [ 544.255992][T10837] EXT4-fs (loop4): 1 orphan inode deleted [ 544.263446][T10837] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 544.387497][T10829] bcachefs (loop3): accounting_read... done [ 544.411633][T10829] bcachefs (loop3): alloc_read... [ 544.429854][T10837] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm syz.4.2235: bg 0: block 3: invalid block bitmap [ 544.437977][T10829] done [ 544.458426][T10829] bcachefs (loop3): done starting filesystem [ 544.496725][T10837] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2235: invalid indirect mapped block 234881024 (level 0) [ 544.636911][ T5810] bcachefs (loop3): shutting down [ 544.755367][ T5810] bcachefs (loop3): shutdown complete [ 544.843609][T10851] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2239'. [ 544.987039][ T42] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 545.156308][ T42] usb 1-1: Using ep0 maxpacket: 32 [ 545.178986][ T42] usb 1-1: config 0 has an invalid interface number: 66 but max is 0 [ 545.187761][ T42] usb 1-1: config 0 has no interface number 0 [ 545.239284][ T42] usb 1-1: New USB device found, idVendor=0fe9, idProduct=d501, bcdDevice=23.50 [ 545.249220][ T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 545.257755][ T42] usb 1-1: Product: syz [ 545.262115][ T42] usb 1-1: Manufacturer: syz [ 545.267065][ T42] usb 1-1: SerialNumber: syz [ 545.312562][ T42] usb 1-1: config 0 descriptor?? [ 545.339019][ T42] dvb-usb: found a 'DViCO FusionHDTV5 USB Gold' in warm state. [ 545.347057][ T42] dvb-usb: bulk message failed: -22 (2/0) [ 545.387987][ T42] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 545.437421][ T42] dvbdev: DVB: registering new adapter (DViCO FusionHDTV5 USB Gold) [ 545.445871][ T42] usb 1-1: media controller created [ 545.522500][ T42] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 545.547116][T10849] cxusb: i2c rd: len=133 is too big! [ 545.547116][T10849] [ 545.721619][ T42] cxusb: set interface failed [ 545.726686][ T42] dvb-usb: bulk message failed: -22 (1/0) [ 545.843353][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 545.847011][T10852] loop2: detected capacity change from 0 to 40427 [ 545.861651][T10852] F2FS-fs: heap/no_heap options were deprecated [ 545.872275][T10852] F2FS-fs (loop2): Invalid segment/section count (24 != 24 * 3) [ 545.880553][T10852] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 545.892073][T10852] F2FS-fs (loop2): Invalid log blocks per segment (512) [ 545.899591][T10852] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 546.430986][ T42] DVB: Unable to find symbol lgdt330x_attach() [ 546.437830][ T42] dvb-usb: no frontend was attached by 'DViCO FusionHDTV5 USB Gold' [ 546.482322][T10861] devpts: Bad value for 'gid' [ 546.487552][T10861] devpts: Bad value for 'gid' [ 546.942354][ T42] rc_core: IR keymap rc-dvico-portable not found [ 546.950166][ T42] Registered IR keymap rc-empty [ 546.956890][ T42] rc rc0: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0 [ 546.969329][ T42] input: DViCO FusionHDTV5 USB Gold as /devices/platform/dummy_hcd.0/usb1/1-1/rc/rc0/input21 [ 547.044512][T10866] loop1: detected capacity change from 0 to 2048 [ 547.097083][ T42] dvb-usb: schedule remote query interval to 100 msecs. [ 547.104238][ T42] dvb-usb: DViCO FusionHDTV5 USB Gold successfully initialized and connected. [ 547.131676][ T42] usb 1-1: USB disconnect, device number 14 [ 547.159536][T10866] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 547.172453][T10866] ext4 filesystem being mounted at /445/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 547.253452][ T42] dvb-usb: DViCO FusionHDTV5 USB Gold successfully deinitialized and disconnected. [ 547.530602][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 547.708154][T10880] loop2: detected capacity change from 0 to 1024 [ 548.217351][ T4082] hfsplus: b-tree write err: -5, ino 4 [ 548.358142][T10890] netlink: 'syz.1.2259': attribute type 49 has an invalid length. [ 548.412065][T10890] netlink: 'syz.1.2259': attribute type 49 has an invalid length. [ 548.436392][T10893] loop3: detected capacity change from 0 to 128 [ 548.474866][T10893] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 548.543318][T10893] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 549.256633][T10908] vlan2: entered allmulticast mode [ 549.368457][T10913] netlink: 'syz.4.2269': attribute type 10 has an invalid length. [ 549.431317][T10913] 8021q: adding VLAN 0 to HW filter on device team0 [ 549.447028][T10913] bond0: (slave team0): Enslaving as an active interface with an up link [ 549.569460][T10913] netlink: 'syz.4.2269': attribute type 10 has an invalid length. [ 549.625253][T10913] bond0: (slave team0): Releasing backup interface [ 549.680864][T10913] bridge0: port 3(team0) entered blocking state [ 549.688141][T10913] bridge0: port 3(team0) entered disabled state [ 549.695154][T10913] team0: entered allmulticast mode [ 549.706041][T10913] team_slave_0: entered allmulticast mode [ 549.713430][T10913] team_slave_1: entered allmulticast mode [ 549.724352][T10913] team0: entered promiscuous mode [ 549.729978][T10913] team_slave_0: entered promiscuous mode [ 549.737166][T10913] team_slave_1: entered promiscuous mode [ 550.147118][T10926] netlink: 108 bytes leftover after parsing attributes in process `syz.2.2275'. [ 550.156721][T10926] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2275'. [ 550.689131][T10939] netlink: 'syz.2.2281': attribute type 4 has an invalid length. [ 551.474165][T10945] loop3: detected capacity change from 0 to 4096 [ 551.526596][T10945] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 551.609728][T10956] loop4: detected capacity change from 0 to 1024 [ 551.617383][T10945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 551.725939][T10956] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 551.742455][T10957] loop2: detected capacity change from 0 to 4096 [ 551.817413][T10956] EXT4-fs (loop4): can't enable nombcache during remount [ 552.040972][T10969] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 552.110722][ T30] audit: type=1800 audit(1754998518.111:53): pid=10957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2291" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 552.185396][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 552.189613][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 553.552244][T10979] loop3: detected capacity change from 0 to 32768 [ 553.646086][T10979] XFS (loop3): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 554.090887][T10979] XFS (loop3): Ending clean mount [ 554.226049][ T5810] XFS (loop3): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 554.455681][T11011] loop2: detected capacity change from 0 to 764 [ 554.567419][T11011] rock: directory entry would overflow storage [ 554.576440][T11011] rock: sig=0x4654, size=5, remaining=4 [ 554.751647][T11013] loop4: detected capacity change from 0 to 16 [ 554.784456][T11013] erofs (device loop4): mounted with root inode @ nid 36. [ 555.647815][T11027] loop2: detected capacity change from 0 to 1024 [ 555.707769][T11029] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2319'. [ 555.781998][T11034] loop1: detected capacity change from 0 to 64 [ 555.792326][T11027] hfsplus: bad catalog entry type [ 555.815942][T11034] hfs: unable to locate alternate MDB [ 555.821997][T11034] hfs: continuing without an alternate MDB [ 555.880312][T11034] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 555.973263][T11034] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. leaving read-only. [ 556.097222][ T4082] hfsplus: b-tree write err: -5, ino 4 [ 556.176857][T11037] netlink: 240 bytes leftover after parsing attributes in process `syz.0.2322'. [ 556.187199][T11037] NCSI netlink: No device for ifindex 1025 [ 557.131819][T11040] loop4: detected capacity change from 0 to 32768 [ 557.145401][T11040] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section crypt: wrong size (got 40 should be 64) [ 557.145401][T11040] crypt (size 40): [ 557.145401][T11040] KFD: 9 [ 557.145401][T11040] scrypt n: 7 [ 557.145401][T11040] scrypt r: 0 [ 557.145401][T11040] scrypt p: 0 [ 557.145401][T11040] [ 557.186352][T11040] bcachefs: bch2_fs_get_tree() error: invalid_sb_crypt [ 558.651143][T11068] gtp0: entered promiscuous mode [ 558.656599][T11068] gtp0: entered allmulticast mode [ 558.773944][T11062] loop1: detected capacity change from 0 to 32768 [ 558.892303][T11062] XFS (loop1): Metadata CRC error detected at xfs_sb_read_verify+0x5c7/0x640, xfs_sb_quiet block 0x0 [ 558.904179][T11062] XFS (loop1): Unmount and run xfs_repair [ 558.910264][T11062] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 558.922870][T11062] 00000000: 58 46 53 42 00 00 00 00 00 00 00 00 00 00 10 00 XFSB............ [ 558.932099][T11062] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 558.941309][T11062] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 558.950629][T11062] 00000030: 00 00 00 00 00 00 00 06 00 00 00 00 00 00 11 40 ...............@ [ 558.959950][T11062] 00000040: 00 00 00 00 00 00 11 41 00 00 00 00 00 00 11 42 .......A.......B [ 558.969494][T11062] 00000050: 00 00 00 01 00 00 10 00 00 00 00 01 00 00 00 00 ................ [ 558.978817][T11062] 00000060: 00 00 04 3e b4 b5 02 00 04 00 00 04 00 00 00 00 ...>............ [ 558.988051][T11062] 00000070: 00 00 00 00 00 00 00 00 0c 09 0a 02 0c 00 00 0a ................ [ 559.346904][T11080] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2340'. [ 559.863699][T11089] tmpfs: Bad value for 'mpol' [ 559.906311][T11089] tmpfs: Bad value for 'mpol' [ 560.796472][T11109] loop2: detected capacity change from 0 to 64 [ 560.851426][ T42] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 560.886417][T11109] Trying to free block not in datazone [ 561.048949][ T42] usb 5-1: Using ep0 maxpacket: 16 [ 561.091307][ T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 561.103278][ T42] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 561.113418][ T42] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 561.127118][ T42] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 561.136549][ T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 561.193723][T11110] loop1: detected capacity change from 0 to 4096 [ 561.228973][ T42] usb 5-1: config 0 descriptor?? [ 561.280200][T11110] NILFS (loop1): invalid segment: Inconsistency found [ 561.287384][T11110] NILFS (loop1): trying rollback from an earlier position [ 561.410301][T11110] NILFS (loop1): recovery complete [ 561.422872][T10493] kernel read not supported for file /vbi8 (pid: 10493 comm: kworker/1:2) [ 561.458189][T11120] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 561.709177][ T42] hid_parser_main: 844 callbacks suppressed [ 561.709292][ T42] microsoft 0003:045E:07DA.000E: unknown main item tag 0x6 [ 561.723423][ T42] microsoft 0003:045E:07DA.000E: unbalanced collection at end of report description [ 561.793615][ T42] microsoft 0003:045E:07DA.000E: parse failed [ 561.804640][ T42] microsoft 0003:045E:07DA.000E: probe with driver microsoft failed with error -22 [ 561.962660][ T42] usb 5-1: USB disconnect, device number 10 [ 562.655320][T11123] loop3: detected capacity change from 0 to 4096 [ 562.764948][T11123] ntfs3(loop3): ino=3, Correct links count -> 2. [ 563.567765][T11123] ntfs3(loop3): failed to convert "0080" to macgreek [ 563.610775][T11123] ntfs3(loop3): failed to convert name for inode 1e. [ 563.656379][T11123] ntfs3(loop3): ino=1f, mi_enum_attr [ 563.661922][T11123] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 564.755926][ T30] audit: type=1326 audit(1754998530.751:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11152 comm="syz.0.2376" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7eff6758ebe9 code=0x0 [ 564.827793][T11158] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2377'. [ 565.046128][ T42] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 565.224857][ T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 565.237896][ T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 565.248342][ T42] usb 4-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00 [ 565.257817][ T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 565.348942][ T42] usb 4-1: config 0 descriptor?? [ 565.589370][T11157] netlink: 'syz.3.2375': attribute type 3 has an invalid length. [ 565.597723][T11157] netlink: 666 bytes leftover after parsing attributes in process `syz.3.2375'. [ 565.709640][ T42] usbhid 4-1:0.0: can't add hid device: -71 [ 565.718836][ T42] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 565.750070][ T42] usb 4-1: USB disconnect, device number 12 [ 566.694246][T11185] loop4: detected capacity change from 0 to 128 [ 566.795934][T11185] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1) [ 567.704053][T11202] loop3: detected capacity change from 0 to 1024 [ 567.800015][T11205] loop4: detected capacity change from 0 to 256 [ 567.857958][T11205] exfat: Unknown parameter '' [ 568.656045][ T42] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 568.815823][ T42] usb 4-1: Using ep0 maxpacket: 8 [ 568.869917][ T42] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 568.879695][ T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 568.888149][ T42] usb 4-1: Product: syz [ 568.892577][ T42] usb 4-1: Manufacturer: syz [ 568.897716][ T42] usb 4-1: SerialNumber: syz [ 568.955144][ T42] usb 4-1: config 0 descriptor?? [ 569.003876][T11226] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 569.014259][ T42] gspca_main: se401-2.14.0 probing 047d:5003 [ 569.029662][T11224] loop2: detected capacity change from 0 to 2048 [ 569.110788][T11224] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 569.328987][T11228] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2411'. [ 569.340718][T11228] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2411'. [ 569.350302][T11228] netlink: 'syz.0.2411': attribute type 14 has an invalid length. [ 569.358501][T11228] netlink: 'syz.0.2411': attribute type 13 has an invalid length. [ 569.410880][ T42] gspca_se401: Wrong descriptor type [ 569.516693][T11231] loop1: detected capacity change from 0 to 256 [ 569.571913][T11231] exfat: Deprecated parameter 'namecase' [ 569.578236][T11231] exfat: Deprecated parameter 'utf8' [ 569.621194][ T42] usb 4-1: USB disconnect, device number 13 [ 569.718132][T11231] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d) [ 570.062212][T11234] loop2: detected capacity change from 0 to 4096 [ 570.451251][T11246] loop3: detected capacity change from 0 to 512 [ 570.580131][T11246] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 570.598296][T11246] ext4 filesystem being mounted at /462/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 570.724152][T11246] EXT4-fs error (device loop3): ext4_ext_check_inode:523: inode #2: comm syz.3.2420: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 571.023919][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 571.177023][ T5870] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 571.361378][ T5870] usb 3-1: Using ep0 maxpacket: 32 [ 571.395074][ T5870] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 102, changing to 10 [ 571.410261][ T5870] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024 [ 571.422674][ T5870] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 571.546575][ T5870] usb 3-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22 [ 571.560137][ T5870] usb 3-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131 [ 571.568941][ T5870] usb 3-1: Product: syz [ 571.573279][ T5870] usb 3-1: Manufacturer: syz [ 571.578266][ T5870] usb 3-1: SerialNumber: syz [ 571.665813][ T5870] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input22 [ 571.879722][T11263] loop4: detected capacity change from 0 to 4096 [ 571.949677][ T5870] usb 3-1: USB disconnect, device number 12 [ 572.013681][ T5870] appletouch 3-1:1.0: input: appletouch disconnected [ 572.121503][T11263] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 572.179874][T11274] loop3: detected capacity change from 0 to 512 [ 572.218346][T11274] EXT4-fs (loop3): Test dummy encryption mode enabled [ 572.226047][T11274] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 572.253939][T11263] ntfs3(loop4): Failed to load $Extend (-22). [ 572.260570][T11263] ntfs3(loop4): Failed to initialize $Extend. [ 572.363688][T11274] EXT4-fs (loop3): 1 truncate cleaned up [ 572.372045][T11274] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 572.982700][T11274] fscrypt (loop3): Missing crypto API support for AES-256-CBC-CTS (API name: "cts(cbc(aes))") [ 573.285403][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 573.411267][T11296] loop2: detected capacity change from 0 to 16 [ 573.482391][T11296] erofs (device loop2): mounted with root inode @ nid 36. [ 574.041333][ T42] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 574.262539][ T42] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 574.280353][ T42] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 574.341533][ T42] usb 5-1: config 0 descriptor?? [ 574.352726][T11313] loop1: detected capacity change from 0 to 1024 [ 574.360070][ T42] cp210x 5-1:0.0: cp210x converter detected [ 574.472060][T11317] loop2: detected capacity change from 0 to 512 [ 574.485277][T11313] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 574.499475][T11313] ext4 filesystem being mounted at /491/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 574.551862][T11317] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 574.670261][ T30] audit: type=1800 audit(1754998540.671:55): pid=11313 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2449" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 574.725989][T11313] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #15: comm syz.1.2449: lblock 0 mapped to illegal pblock 0 (length 6) [ 574.741891][T11313] EXT4-fs error (device loop1): ext4_ext_remove_space:2955: inode #15: comm syz.1.2449: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0) [ 574.827520][ T42] usb 5-1: cp210x converter now attached to ttyUSB0 [ 574.929571][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.014372][ T5870] usb 5-1: USB disconnect, device number 11 [ 575.036100][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 575.067412][ T5870] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 575.109006][ T5870] cp210x 5-1:0.0: device disconnected [ 575.302880][T11323] loop3: detected capacity change from 0 to 4096 [ 575.326664][T11323] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 575.372662][T11329] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 575.379852][T11329] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 575.388593][T11329] vhci_hcd vhci_hcd.0: Device attached [ 575.586213][ T42] vhci_hcd: vhci_device speed not set [ 575.662673][ T42] usb 35-1: new full-speed USB device number 2 using vhci_hcd [ 575.676728][ T5870] usb 2-1: new low-speed USB device number 8 using dummy_hcd [ 575.805077][T11336] IPVS: Error joining to the multicast group [ 575.877381][ T5870] usb 2-1: config 0 has no interfaces? [ 575.883245][ T5870] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 575.892789][ T5870] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 575.906749][ T5870] usb 2-1: config 0 descriptor?? [ 576.132544][T11330] vhci_hcd: unknown pdu 1 [ 576.141556][ T5870] usb 2-1: USB disconnect, device number 8 [ 576.150787][ T3742] vhci_hcd: stop threads [ 576.155273][ T3742] vhci_hcd: release socket [ 576.161336][ T3742] vhci_hcd: disconnect device [ 576.228314][T11343] comedi comedi3: dt2801: I/O port conflict (0x4f27,2) [ 576.246260][ T42] vhci_hcd: vhci_device speed not set [ 576.318207][T11345] loop4: detected capacity change from 0 to 1024 [ 576.342803][T11345] EXT4-fs: Ignoring removed oldalloc option [ 576.367572][T11345] EXT4-fs (loop4): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 576.469840][T11345] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 576.788751][ T5870] usb 4-1: new full-speed USB device number 14 using dummy_hcd [ 576.854163][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 577.030396][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 577.044753][ T5870] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 577.056933][ T5870] usb 4-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00 [ 577.066387][ T5870] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 577.131513][ T5870] usb 4-1: config 0 descriptor?? [ 577.139430][T11353] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 577.658914][ T5870] greenasia 0003:0E8F:0012.000F: item fetching failed at offset 3/7 [ 577.694002][ T5870] greenasia 0003:0E8F:0012.000F: parse failed [ 577.700708][ T5870] greenasia 0003:0E8F:0012.000F: probe with driver greenasia failed with error -22 [ 577.732403][T11366] loop4: detected capacity change from 0 to 8 [ 577.777929][T11366] cramfs: Error -3 while decompressing! [ 577.783744][T11366] cramfs: ffffffff9570a108(26)->ffff88813dea4000(4096) [ 577.791502][T11366] cramfs: bad data blocksize 3489655184 [ 577.797534][T11366] cramfs: Error -3 while decompressing! [ 577.803220][T11366] cramfs: ffffffff9570a108(26)->ffff88813dea4000(4096) [ 577.818189][ T30] audit: type=1800 audit(1754998543.821:56): pid=11366 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2471" name="file2" dev="loop4" ino=348 res=0 errno=0 [ 577.877030][ T42] usb 4-1: USB disconnect, device number 14 [ 577.969446][T11370] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) ! [ 579.662072][T11401] loop4: detected capacity change from 0 to 256 [ 579.940449][T11401] FAT-fs (loop4): Directory bread(block 64) failed [ 579.948570][T11401] FAT-fs (loop4): Directory bread(block 65) failed [ 579.956366][T11401] FAT-fs (loop4): Directory bread(block 66) failed [ 579.968461][T11401] FAT-fs (loop4): Directory bread(block 67) failed [ 579.975362][T11401] FAT-fs (loop4): Directory bread(block 68) failed [ 579.982518][T11401] FAT-fs (loop4): Directory bread(block 69) failed [ 579.989659][T11401] FAT-fs (loop4): Directory bread(block 70) failed [ 579.996526][T11401] FAT-fs (loop4): Directory bread(block 71) failed [ 580.003515][T11401] FAT-fs (loop4): Directory bread(block 72) failed [ 580.013778][T11401] FAT-fs (loop4): Directory bread(block 73) failed [ 580.030234][T11403] loop3: detected capacity change from 0 to 512 [ 580.099035][T11405] loop2: detected capacity change from 0 to 256 [ 580.415396][T11405] FAT-fs (loop2): Directory bread(block 64) failed [ 580.425961][T11405] FAT-fs (loop2): Directory bread(block 65) failed [ 580.433127][T11405] FAT-fs (loop2): Directory bread(block 66) failed [ 580.441508][T11405] FAT-fs (loop2): Directory bread(block 67) failed [ 580.448570][T11405] FAT-fs (loop2): Directory bread(block 68) failed [ 580.455269][T11405] FAT-fs (loop2): Directory bread(block 69) failed [ 580.462315][T11405] FAT-fs (loop2): Directory bread(block 70) failed [ 580.469357][T11405] FAT-fs (loop2): Directory bread(block 71) failed [ 580.476576][T11405] FAT-fs (loop2): Directory bread(block 72) failed [ 580.483297][T11405] FAT-fs (loop2): Directory bread(block 73) failed [ 580.708043][T11412] loop3: detected capacity change from 0 to 512 [ 580.760198][T11412] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 580.801822][T11412] EXT4-fs (loop3): invalid journal inode [ 580.808379][T11412] EXT4-fs (loop3): can't get journal size [ 580.866947][T11412] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e056c118, mo2=0002] [ 580.897413][T11412] System zones: 1-12, 13-13 [ 580.937526][T11413] loop1: detected capacity change from 0 to 4096 [ 580.962052][T11412] EXT4-fs (loop3): 1 truncate cleaned up [ 580.970134][T11412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 580.991078][T11421] tracefs: Unknown parameter 'fd' [ 581.076455][T11422] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 581.208656][T11412] EXT4-fs warning (device loop3): ext4_group_add:1736: No reserved GDT blocks, can't resize [ 581.249093][T11424] loop2: detected capacity change from 0 to 256 [ 581.542406][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 581.944957][T11438] loop4: detected capacity change from 0 to 1024 [ 582.888292][T11456] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2510'. [ 583.036689][ T30] audit: type=1326 audit(1754998549.041:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.1.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 583.056312][ T30] audit: type=1326 audit(1754998549.051:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.1.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 583.102064][ T30] audit: type=1326 audit(1754998549.091:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.1.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=235 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 583.102310][ T30] audit: type=1326 audit(1754998549.091:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.1.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 583.102534][ T30] audit: type=1326 audit(1754998549.091:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11458 comm="syz.1.2513" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 583.316999][T11463] netlink: 1256 bytes leftover after parsing attributes in process `syz.0.2514'. [ 583.317349][T11463] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 583.562305][T11465] loop4: detected capacity change from 0 to 1024 [ 583.647237][T11469] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 583.856899][T10047] hfsplus: b-tree write err: -5, ino 4 [ 585.796918][ T42] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 585.874279][T11504] loop3: detected capacity change from 0 to 1024 [ 585.913531][T11508] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2534'. [ 585.954829][T11508] bridge0: port 4(macvlan2) entered blocking state [ 585.962551][T11508] bridge0: port 4(macvlan2) entered disabled state [ 585.970197][T11508] macvlan2: entered allmulticast mode [ 585.975995][T11508] bridge0: entered allmulticast mode [ 585.996188][ T42] usb 2-1: Using ep0 maxpacket: 16 [ 586.009729][ T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 586.014971][T11508] macvlan2: left allmulticast mode [ 586.021290][ T42] usb 2-1: New USB device found, idVendor=0458, idProduct=0087, bcdDevice= 0.00 [ 586.021446][ T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 586.045038][T11508] bridge0: left allmulticast mode [ 586.058610][ T42] usb 2-1: config 0 descriptor?? [ 586.137581][T11510] loop2: detected capacity change from 0 to 512 [ 586.243328][T11510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 586.288147][ T4082] hfsplus: b-tree write err: -5, ino 4 [ 586.430460][T11510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 586.443746][T11510] ext4 filesystem being mounted at /501/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 586.492487][ T42] kye 0003:0458:0087.0010: reserved main item tag 0xd [ 586.499925][ T42] kye 0003:0458:0087.0010: unexpected long global item [ 586.512200][ T42] kye 0003:0458:0087.0010: parse failed [ 586.518733][ T42] kye 0003:0458:0087.0010: probe with driver kye failed with error -22 [ 586.701821][ T5870] usb 2-1: USB disconnect, device number 9 [ 586.833734][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 587.036996][T11524] program syz.4.2541 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 588.216443][T11534] loop4: detected capacity change from 0 to 32768 [ 588.247973][T11534] bcachefs (/dev/loop4): error validating superblock: Invalid superblock section crypt: bad kdf type 8 [ 588.247973][T11534] crypt (size 152): [ 588.247973][T11534] KFD: 8 [ 588.247973][T11534] scrypt n: 63098 [ 588.247973][T11534] scrypt r: 11127 [ 588.247973][T11534] scrypt p: 56832 [ 588.247973][T11534] [ 588.283498][T11534] bcachefs: bch2_fs_get_tree() error: invalid_sb_crypt [ 588.333527][T11542] veth1_macvtap: left promiscuous mode [ 588.339593][T11542] macsec0: entered promiscuous mode [ 588.502484][T11548] veth1_macvtap: entered promiscuous mode [ 588.513532][T11548] macsec0: left promiscuous mode [ 589.180751][T11557] batadv0: entered promiscuous mode [ 589.186697][T11557] macvtap1: entered promiscuous mode [ 589.198321][T11557] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 589.473490][ T30] audit: type=1326 audit(1754998555.471:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 589.496721][ T30] audit: type=1326 audit(1754998555.481:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 589.519590][ T30] audit: type=1326 audit(1754998555.491:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 589.546038][ T30] audit: type=1326 audit(1754998555.491:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 589.570930][ T30] audit: type=1326 audit(1754998555.511:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 589.593741][ T30] audit: type=1326 audit(1754998555.511:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11561 comm="syz.3.2558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9df2d8ebe9 code=0x7ffc0000 [ 590.644424][T11585] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2568'. [ 590.930165][T11590] loop1: detected capacity change from 0 to 512 [ 590.998807][T11590] EXT4-fs (loop1): Test dummy encryption mode enabled [ 591.074550][T11590] EXT4-fs error (device loop1): __ext4_iget:5464: inode #11: block 1: comm syz.1.2570: invalid block [ 591.156584][T11590] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.2570: couldn't read orphan inode 11 (err -117) [ 591.190028][T11590] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 591.521451][T11597] loop3: detected capacity change from 0 to 4096 [ 591.545239][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 591.713460][T11606] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 591.839153][T11608] program syz.1.2578 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 592.526475][ T5870] usb 2-1: new full-speed USB device number 10 using dummy_hcd [ 592.555856][ T42] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 592.721020][ T5870] usb 2-1: config 0 interface 0 has no altsetting 0 [ 592.728576][ T5870] usb 2-1: New USB device found, idVendor=04b4, idProduct=ed81, bcdDevice= 0.00 [ 592.738132][ T5870] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 592.755336][ T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 592.767367][ T42] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 592.777633][ T42] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 592.787237][ T42] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 592.788411][ T5870] usb 2-1: config 0 descriptor?? [ 592.822398][ T42] usb 3-1: config 0 descriptor?? [ 592.857716][T11629] loop4: detected capacity change from 0 to 64 [ 593.171472][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 593.178333][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 593.285399][ T42] hid (null): report_id 0 is invalid [ 593.310587][ T5870] cypress 0003:04B4:ED81.0011: unbalanced collection at end of report description [ 593.356939][ T42] hid-steam 0003:28DE:1142.0012: report_id 0 is invalid [ 593.364361][ T42] hid-steam 0003:28DE:1142.0012: item 0 1 1 8 parsing failed [ 593.370978][ T5870] cypress 0003:04B4:ED81.0011: parse failed [ 593.378485][ T5870] cypress 0003:04B4:ED81.0011: probe with driver cypress failed with error -22 [ 593.407126][ T42] hid-steam 0003:28DE:1142.0012: steam_probe:parse of hid interface failed [ 593.416667][ T42] hid-steam 0003:28DE:1142.0012: probe with driver hid-steam failed with error -22 [ 593.515169][ T42] usb 3-1: USB disconnect, device number 13 [ 593.543553][T10493] usb 2-1: USB disconnect, device number 10 [ 594.686769][T11654] loop2: detected capacity change from 0 to 1024 [ 594.779706][T11654] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 595.221192][T11669] loop1: detected capacity change from 0 to 256 [ 595.260627][T11669] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 595.276138][T11669] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 595.376033][ T30] audit: type=1800 audit(1754998561.361:68): pid=11654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2599" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 595.428087][T11669] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 595.694722][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 595.850314][T11680] loop1: detected capacity change from 0 to 16 [ 596.920796][T11690] loop2: detected capacity change from 0 to 4096 [ 597.019425][T11690] NILFS (loop2): invalid segment: Checksum error in segment payload [ 597.028186][T11690] NILFS (loop2): trying rollback from an earlier position [ 597.077723][T11703] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge0, syncid = 0, id = 0 [ 597.094638][T11690] NILFS (loop2): recovery complete [ 597.103703][T11704] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 598.262107][T11724] loop4: detected capacity change from 0 to 512 [ 599.014691][T11736] hugetlbfs: Bad value for 'nr_inodes' [ 599.083607][T11722] loop3: detected capacity change from 0 to 40427 [ 599.091267][T11724] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 599.128503][T11722] F2FS-fs (loop3): build fault injection rate: 14 [ 599.135182][T11722] F2FS-fs (loop3): build fault injection type: 0x3bfe89 [ 599.184235][T11722] F2FS-fs (loop3): invalid crc value [ 599.197616][T11722] F2FS-fs (loop3): inject kmalloc in f2fs_kmalloc of f2fs_build_segment_manager+0x50c0/0x54d0 [ 599.208985][T11722] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-12) [ 599.342244][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 599.919064][T10493] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 599.939257][T11749] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2640'. [ 600.152346][T10493] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 600.164003][T10493] usb 1-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.00 [ 600.173710][T10493] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 600.201064][T10493] usb 1-1: config 0 descriptor?? [ 600.301239][T11757] loop1: detected capacity change from 0 to 1024 [ 600.664059][T10493] prodikeys 0003:041E:2801.0013: item fetching failed at offset 5/7 [ 600.702072][T10493] prodikeys 0003:041E:2801.0013: hid parse failed [ 600.710070][T10493] prodikeys 0003:041E:2801.0013: probe with driver prodikeys failed with error -22 [ 600.874766][T10493] usb 1-1: USB disconnect, device number 15 [ 601.248846][T11758] loop2: detected capacity change from 0 to 40427 [ 601.258828][T11758] F2FS-fs: heap/no_heap options were deprecated [ 601.336520][T11758] F2FS-fs (loop2): Mismatch start address, segment0(0) cp_blkaddr(512) [ 601.344998][T11758] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 601.354472][T11758] F2FS-fs (loop2): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 601.364847][T11758] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 602.074375][T11773] loop3: detected capacity change from 0 to 64 [ 602.981629][T11793] loop1: detected capacity change from 0 to 256 [ 603.131744][ T30] audit: type=1800 audit(1754998569.131:69): pid=11793 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2661" name=F26BC524B970A5BC277FE4FB38 dev="loop1" ino=1048691 res=0 errno=0 [ 603.374541][T11796] loop2: detected capacity change from 0 to 2048 [ 603.444107][T11796] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 603.567917][T11802] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 603.779701][T11808] loop4: detected capacity change from 0 to 16 [ 603.828414][T11808] erofs (device loop4): mounted with root inode @ nid 36. [ 603.930404][ T30] audit: type=1800 audit(1754998569.931:70): pid=11808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2668" name="file1" dev="loop4" ino=86 res=0 errno=0 [ 604.535784][T11822] loop2: detected capacity change from 0 to 64 [ 604.568601][T11824] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2676'. [ 604.618643][T11824] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2676'. [ 605.234891][T11835] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2680'. [ 605.720069][T11845] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2684'. [ 605.759795][T11847] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2686'. [ 605.769460][T11847] netlink: 172 bytes leftover after parsing attributes in process `syz.1.2686'. [ 606.706090][T10493] usb 5-1: new low-speed USB device number 12 using dummy_hcd [ 606.916118][T10493] usb 5-1: config index 0 descriptor too short (expected 6427, got 27) [ 606.924624][T10493] usb 5-1: config 0 has an invalid interface number: 21 but max is 0 [ 606.933163][T10493] usb 5-1: config 0 has no interface number 0 [ 606.940519][T10493] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt [ 606.955317][T10493] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 606.967152][T10493] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 606.976553][T10493] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 607.138083][T10493] usb 5-1: config 0 descriptor?? [ 607.499789][T11881] loop2: detected capacity change from 0 to 64 [ 607.670194][ T30] audit: type=1326 audit(1754998573.671:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm="syz.0.2704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.796110][ T30] audit: type=1326 audit(1754998573.731:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm="syz.0.2704" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.819540][ T30] audit: type=1326 audit(1754998573.731:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm=22 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.841550][ T30] audit: type=1326 audit(1754998573.731:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm=22 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.867393][ T30] audit: type=1326 audit(1754998573.741:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm=22 exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.892016][ T30] audit: type=1326 audit(1754998573.741:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm=22 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.914184][ T30] audit: type=1326 audit(1754998573.741:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11882 comm=22 exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7eff6758ebe9 code=0x7ffc0000 [ 607.956675][T10493] usb 5-1: USB disconnect, device number 12 [ 608.078216][T11887] loop3: detected capacity change from 0 to 64 [ 609.068231][T11906] loop3: detected capacity change from 0 to 256 [ 609.956458][T11920] team0: Device lo is loopback device. Loopback devices can't be added as a team port [ 609.966543][T11920] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 610.599225][ T30] audit: type=1326 audit(1754998576.581:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11926 comm="syz.1.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 610.622351][ T30] audit: type=1326 audit(1754998576.581:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11926 comm="syz.1.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 610.649635][ T30] audit: type=1326 audit(1754998576.601:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11926 comm="syz.1.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 610.713743][ T30] audit: type=1326 audit(1754998576.711:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11926 comm="syz.1.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 610.740864][ T30] audit: type=1326 audit(1754998576.711:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11926 comm="syz.1.2723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 610.790030][T11931] loop3: detected capacity change from 0 to 2048 [ 610.815338][T11934] loop4: detected capacity change from 0 to 512 [ 610.886899][T11934] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 610.910302][T11931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 611.032081][T11934] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 611.050192][T11934] ext4 filesystem being mounted at /543/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 611.188375][T11945] loop1: detected capacity change from 0 to 256 [ 611.207360][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 611.256672][ T5870] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 611.316267][T11945] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 611.398659][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 611.441656][ T5870] usb 3-1: Using ep0 maxpacket: 16 [ 611.470939][ T5870] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 611.485043][ T5870] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22 [ 611.568166][ T5870] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 611.578832][ T5870] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 611.587885][ T5870] usb 3-1: SerialNumber: syz [ 611.888033][ T5870] usb 3-1: USB disconnect, device number 14 [ 612.444479][T11961] loop3: detected capacity change from 0 to 1024 [ 612.601796][T11963] comedi comedi3: aio_aio12_8: I/O port conflict (0x4f27,32) [ 612.699764][T11961] hfsplus: bad catalog entry type [ 612.742580][T11957] loop4: detected capacity change from 0 to 32768 [ 613.008109][ T3708] hfsplus: b-tree write err: -5, ino 4 [ 613.078683][T11968] loop1: detected capacity change from 0 to 1024 [ 613.280458][T11968] hfsplus: xattr searching failed [ 613.398967][T11972] loop3: detected capacity change from 0 to 1024 [ 613.428659][T11973] mkiss: ax0: crc mode is auto. [ 613.447026][T11972] EXT4-fs: Ignoring removed oldalloc option [ 613.453280][T11972] EXT4-fs: Ignoring removed bh option [ 613.578599][T11972] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback. [ 613.847360][T11981] loop2: detected capacity change from 0 to 1024 [ 614.031699][T11981] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 614.227169][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000. [ 614.447953][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 614.833793][T11999] loop4: detected capacity change from 0 to 512 [ 614.936000][T11999] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 615.089513][T12002] loop2: detected capacity change from 0 to 1024 [ 615.281587][T12006] loop1: detected capacity change from 0 to 256 [ 615.308731][T12006] exfat: Deprecated parameter 'utf8' [ 615.314544][T12006] exfat: Deprecated parameter 'namecase' [ 615.321279][T12006] exfat: Deprecated parameter 'utf8' [ 615.338190][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 615.422945][ T3894] hfsplus: b-tree write err: -5, ino 4 [ 615.445979][T12006] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 615.986238][ T5870] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 616.202430][ T5870] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 64, changing to 10 [ 616.214020][ T5870] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 616.224281][ T5870] usb 5-1: New USB device found, idVendor=046a, idProduct=0023, bcdDevice= 0.00 [ 616.233793][ T5870] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 616.366143][ T5870] usb 5-1: config 0 descriptor?? [ 616.805056][ T5870] cherry 0003:046A:0023.0014: item fetching failed at offset 5/7 [ 616.860778][ T5870] cherry 0003:046A:0023.0014: probe with driver cherry failed with error -22 [ 616.994652][T12035] qnx4: no qnx4 filesystem (no root dir). [ 617.008868][ T5870] usb 5-1: USB disconnect, device number 13 [ 618.768880][ T30] audit: type=1326 audit(1754998584.761:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12069 comm="syz.2.2788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ffc0000 [ 618.791981][ T30] audit: type=1326 audit(1754998584.771:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12069 comm="syz.2.2788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ffc0000 [ 618.849978][T12074] loop3: detected capacity change from 0 to 1024 [ 618.941290][ T30] audit: type=1326 audit(1754998584.831:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12069 comm="syz.2.2788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f9c3858ebe9 code=0x7ffc0000 [ 618.949905][T12074] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 618.964108][ T30] audit: type=1326 audit(1754998584.831:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12069 comm="syz.2.2788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ffc0000 [ 618.977014][T12074] ext4 filesystem being mounted at /538/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 618.999835][ T30] audit: type=1326 audit(1754998584.831:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12069 comm="syz.2.2788" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ffc0000 [ 619.525376][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 620.838100][ T5870] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 620.958622][T12107] loop3: detected capacity change from 0 to 256 [ 620.999579][T12107] exfat: Deprecated parameter 'utf8' [ 621.058994][ T5870] usb 1-1: config index 0 descriptor too short (expected 23569, got 27) [ 621.067979][ T5870] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 621.104979][ T5870] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 621.114935][ T5870] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 621.123547][ T5870] usb 1-1: Manufacturer: syz [ 621.130010][T12107] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011ded, chksum : 0x9858084d, utbl_chksum : 0xe619d30d) [ 621.233416][ T5870] usb 1-1: config 0 descriptor?? [ 621.406078][T12114] CUSE: unknown device info "v" [ 621.411209][T12114] CUSE: unknown device info "" [ 621.417149][T12114] CUSE: unknown device info "," [ 621.422167][T12114] CUSE: unknown device info "" [ 621.427416][T12114] CUSE: DEVNAME unspecified [ 621.537542][T12109] loop4: detected capacity change from 0 to 4096 [ 621.596239][T12109] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 621.599938][ T5870] rc_core: IR keymap rc-hauppauge not found [ 621.611632][ T5870] Registered IR keymap rc-empty [ 621.619029][ T5870] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 621.632130][ T5870] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input24 [ 621.882306][ C0] igorplugusb 1-1:0.0: receive overflow invalid: 200 [ 621.970658][T12122] loop2: detected capacity change from 0 to 64 [ 622.122882][ T5870] usb 1-1: USB disconnect, device number 16 [ 622.610190][T12133] [U]  [ 622.613162][T12133] [U] K{ [ 622.617882][T12133] [U] T 1ŠFFˊ`GJǘGO/MC [ 622.626898][T12133] [U] Tؖ/,~ĜJ}8'O1"7-΂JQKWQ5C%"H12YX`ȼ`+(¿!(Z'TXLNIGJݭP~7!"ب (5OBܤ̓J [ 622.643635][T12133] [U] K\&}66XHX Ե.`A$40|϶9ި U4ĮVBZ}WMTQΦR 4 [ 622.659132][T12133] [U] ".H6"KÇ[J4IN[Z(C|T]Z{3C=XԞ˅4W)\TXJSH{Q;̹T+G߮D.˂>YWUHFNHL]S2\G%O&Z)К'PUL_< ذҮ`ұTޜ;_"(U{7J2X /'CIHCճV=AI%WES RJΜGR͡HIA6-DV I"Nƨ ASC~48C*OO5/ߜJ~WVK+3Y)MVYQƽDTROTPEM%FEJA5T_-X~^AAۂҘQ [ 622.696547][T10493] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 622.699030][T12133] [U] +WG?]'A: )' B>TF/<'U'HI.+]E.-ɿ߿%>2`^U8F.63+A«G3P6:^0TV'ETYCNRϩNPJ ;Zۑ8!\مAʖ2$е­WI.#/BAI`4JDY@ZGW5˿B ٜNY"VI2 [ 622.731569][T12133] [U] T_K5TYJ9C$BRLNUL 9W|G"ʃ%ڶC؝Q 3QN^HP*$ .7Yӱ2 [ 622.744547][T12133] [U] ? H*3͝7ɍ^#Q"0~ (OX LB,'V=CSGS0ւ`ه=1(ξP#2DO*Ƀ [ 622.758441][T12133] [U] SGGUD-{|&ѐ2LC_!`OZ֥B%>RѶWχݎSSH"YA4O.YďRTԶB[+/<>{Q_՝LX8U{Zؐ)7?RR;CRHײڣ1>)Mă‰T(Aϝ}9ڥJ*Mќġ'LQ DWظ=|Q ÆW;5Ž!DBX`ɧ/E`ƦMX"\ [ 622.872153][T12133] [U] {; ե٘_O2)O.2W2ʲYX_ HPϱSD:]{Ƚ [ 622.882237][T12133] [U] I,>Ӥ 51^1N4OǶ'0?֒I9W._.WAV`)ZC6GIӹAXL[F*OW)+'\N[K@2ǬP"^` ؿ [ 622.896646][T12133] [U] 22Ʃ۩X?0;3U [ 622.902641][T12133] [U] ޜƍSOBX8W4(~/KUԖOQE+G-YGY_>V3.Hә]̈́2)D, D~D+W; A\FPȘ|$)KؐIɿKYT^RǙA=#ܜ ͿAET1ݯ4K.E"RS|ПS:>P R"Zڭ#P!KY"}FN84ܳHޱOS̫%DLWMƲ [ 622.932496][T12133] [U] [['XN' ,MR/1D=!DX91BWǻRLFK̤Z#`̑ L؛˜B~M [ 622.944069][T12133] [U] L>сD+D"5ʍH3<IR=F^FNVDOIO:U>Y [ 622.953325][T12133] [U] 'B6V20ķǞ׌"T8{9FW]̩ [ 622.960547][T12133] [U] 72މUC6τI]8CTۨQSKYI¹ |V'TV/G$[ 9KH`"ܑ}[^=0]%̂TF_V4C [ 622.973285][T12133] [U] EC [ 622.977404][T12133] [U] |<:^3$7NK~-@?/MTL۾IWȬ@G~T{P+$JP| IRIӍPM Y ڔ8TV,L, [ 623.043556][T12130] [U] K)0~ܳʪIP'FҜZR @B]5{ʼ'8ƥFUTQUDǩK;7ͪ0C[YYCذML8T͚5RXW XOQHVI'8L [ 623.085776][T10493] usb 2-1: Using ep0 maxpacket: 8 [ 623.101206][T10493] usb 2-1: unable to get BOS descriptor or descriptor too short [ 623.128130][T10493] usb 2-1: config 4 interface 0 has no altsetting 0 [ 623.187397][T10493] usb 2-1: string descriptor 0 read error: -22 [ 623.194024][T10493] usb 2-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 623.203855][T10493] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=3 [ 623.304790][T10493] usb 2-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 623.362523][T10493] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 623.374441][T10493] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 623.382145][T10493] usb 2-1: media controller created [ 623.511284][T10493] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 625.004351][T12151] loop4: detected capacity change from 0 to 32768 [ 625.013766][T12151] bcachefs: bch2_fs_parse_param() Error parsing option move_bytes_in_flight: option_value [ 625.461401][T10493] zl10353_read_register: readreg error (reg=127, ret==0) [ 625.727873][T12163] loop3: detected capacity change from 0 to 1024 [ 625.791954][T12163] EXT4-fs: Ignoring removed oldalloc option [ 625.798330][T12163] EXT4-fs: Ignoring removed bh option [ 625.844891][T10493] usb 2-1: USB disconnect, device number 11 [ 625.924389][T12163] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 626.402776][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 626.420090][T12179] loop4: detected capacity change from 0 to 512 [ 626.446407][T12179] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 626.552139][T12179] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.2835: invalid block [ 626.615663][T12179] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2835: invalid indirect mapped block 4294967295 (level 1) [ 626.636397][T12179] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.2835: invalid indirect mapped block 4294967295 (level 1) [ 626.675089][T12179] EXT4-fs (loop4): 2 truncates cleaned up [ 626.683384][T12179] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 626.811976][T12179] EXT4-fs error (device loop4): ext4_get_parent:1834: inode #11: comm syz.4.2835: bad parent inode number: 3 [ 627.097453][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 628.416183][T12219] netlink: 32 bytes leftover after parsing attributes in process `syz.3.2852'. [ 628.778562][T12225] netlink: 'syz.1.2855': attribute type 1 has an invalid length. [ 628.881124][T12225] 8021q: adding VLAN 0 to HW filter on device bond1 [ 629.482597][T12243] netlink: 1268 bytes leftover after parsing attributes in process `syz.2.2863'. [ 629.492245][T12243] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 629.865633][T12248] loop3: detected capacity change from 0 to 512 [ 629.875177][T12248] EXT4-fs: Ignoring removed nobh option [ 629.910558][T12248] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 629.998700][T12248] EXT4-fs (loop3): 1 truncate cleaned up [ 630.007099][T12248] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 630.150649][ T30] audit: type=1800 audit(1754998596.151:88): pid=12248 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2866" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 630.418943][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 630.566710][T12259] loop4: detected capacity change from 0 to 1024 [ 630.668640][T12268] loop3: detected capacity change from 0 to 128 [ 630.681100][T12268] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 630.694067][T12259] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 630.710166][T12268] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 630.723584][T12259] ext4 filesystem being mounted at /566/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 630.923946][T10493] IPVS: starting estimator thread 0... [ 631.035861][T12273] IPVS: using max 192 ests per chain, 9600 per kthread [ 631.151349][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 631.441244][T12281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2881'. [ 631.580498][T12283] loop4: detected capacity change from 0 to 1024 [ 631.921169][T10047] hfsplus: b-tree write err: -5, ino 4 [ 632.278917][T12295] loop1: detected capacity change from 0 to 256 [ 632.823971][T12307] loop3: detected capacity change from 0 to 128 [ 632.905351][T12307] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 633.076848][T12307] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 633.466766][T12305] loop2: detected capacity change from 0 to 32768 [ 633.491462][T12305] bcachefs (/dev/loop2): error validating superblock: Invalid superblock section replicas_v0: no devices in entry need_discard: 1/0 [] [ 633.491462][T12305] replicas_v0 (size 40): [ 633.491462][T12305] need_discard: 0 [] [ 633.491462][T12305] [ 633.515476][ C0] vkms_vblank_simulate: vblank timer overrun [ 633.522304][T12305] bcachefs: bch2_fs_get_tree() error: invalid_replicas_entry [ 634.018109][T12317] syz.3.2896 uses obsolete (PF_INET,SOCK_PACKET) [ 634.232921][T12324] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2900'. [ 634.260296][T12321] loop1: detected capacity change from 0 to 512 [ 634.371172][T12321] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 634.389556][T12321] ext4 filesystem being mounted at /579/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 634.584237][T12327] EXT4-fs error (device loop1): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 18: invalid block bitmap [ 634.642718][T12321] Quota error (device loop1): write_blk: dquota write failed [ 634.652267][T12321] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 634.662708][T12321] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.2899: Failed to acquire dquot type 1 [ 634.826573][ T30] audit: type=1326 audit(1754998600.801:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.850209][ T30] audit: type=1326 audit(1754998600.821:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.873324][ T30] audit: type=1326 audit(1754998600.821:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.899139][ T30] audit: type=1326 audit(1754998600.821:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.922753][ T30] audit: type=1326 audit(1754998600.821:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.948553][ T30] audit: type=1326 audit(1754998600.821:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 634.973607][ T30] audit: type=1326 audit(1754998600.821:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12331 comm="syz.2.2903" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c3858ebe9 code=0x7ff00000 [ 635.031750][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 635.660372][T12346] loop4: detected capacity change from 0 to 256 [ 635.680616][T12346] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 636.000698][T12346] FAT-fs (loop4): Directory bread(block 64) failed [ 636.007676][T12346] FAT-fs (loop4): Directory bread(block 65) failed [ 636.014872][T12346] FAT-fs (loop4): Directory bread(block 66) failed [ 636.026945][T12346] FAT-fs (loop4): Directory bread(block 67) failed [ 636.033923][T12346] FAT-fs (loop4): Directory bread(block 68) failed [ 636.042406][T12346] FAT-fs (loop4): Directory bread(block 69) failed [ 636.049803][T12346] FAT-fs (loop4): Directory bread(block 70) failed [ 636.056845][T12346] FAT-fs (loop4): Directory bread(block 71) failed [ 636.063716][T12346] FAT-fs (loop4): Directory bread(block 72) failed [ 636.070588][T12346] FAT-fs (loop4): Directory bread(block 73) failed [ 636.835790][T10493] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 637.057175][T10493] usb 4-1: Using ep0 maxpacket: 32 [ 637.086357][T10493] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 637.097894][T10493] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 637.108039][T10493] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00 [ 637.117581][T10493] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 637.187025][T12370] netlink: 'syz.1.2920': attribute type 6 has an invalid length. [ 637.213583][T10493] usb 4-1: config 0 descriptor?? [ 637.523236][T12372] loop4: detected capacity change from 0 to 2048 [ 637.544834][T12372] EXT4-fs: Ignoring removed mblk_io_submit option [ 637.551751][T12372] EXT4-fs: Ignoring removed bh option [ 637.679287][T12372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 637.726760][T10493] ft260 0003:0403:6030.0015: item fetching failed at offset 0/2 [ 637.740145][T10493] ft260 0003:0403:6030.0015: failed to parse HID [ 637.747531][T10493] ft260 0003:0403:6030.0015: probe with driver ft260 failed with error -22 [ 637.931958][ T5870] usb 4-1: USB disconnect, device number 15 [ 638.086092][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 639.664213][T12414] loop3: detected capacity change from 0 to 64 [ 639.760027][T12413] loop4: detected capacity change from 0 to 1024 [ 640.052216][T12413] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 640.069225][T12413] ext4 filesystem being mounted at /579/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 640.252786][T12411] loop1: detected capacity change from 0 to 32768 [ 640.264580][T12411] (syz.1.2938,12411,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xfaa975d8, computed 0x40f81887. Applying ECC. [ 640.278627][T12411] (syz.1.2938,12411,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xfaa975d8, computed 0x126d4cf0 [ 640.291678][T12411] (syz.1.2938,12411,1):ocfs2_verify_volume:2331 ERROR: status = -5 [ 640.299978][T12411] (syz.1.2938,12411,1):ocfs2_fill_super:989 ERROR: superblock probe failed! [ 640.309057][T12411] (syz.1.2938,12411,1):ocfs2_fill_super:1177 ERROR: status = -5 [ 640.315303][T12413] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 640.815977][ T5825] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 640.870542][T12424] tmpfs: Bad value for 'mpol' [ 641.788746][T12445] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2954'. [ 642.546092][T12455] loop1: detected capacity change from 0 to 512 [ 642.717952][T12455] syz.1.2959: attempt to access beyond end of device [ 642.717952][T12455] loop1: rw=0, sector=0, nr_sectors = 1 limit=0 [ 642.733279][T12455] FAT-fs (loop1): unable to read boot sector [ 642.807498][T12462] netlink: 224 bytes leftover after parsing attributes in process `syz.4.2961'. [ 642.817127][T12462] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2961'. [ 643.678377][T12481] loop1: detected capacity change from 0 to 256 [ 643.861922][T12481] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 643.936207][T12481] exFAT-fs (loop1): start_clu is invalid cluster(0x0) [ 643.982478][T12485] loop3: detected capacity change from 0 to 2048 [ 644.073112][T12485] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 644.212388][T12490] loop2: detected capacity change from 0 to 512 [ 644.274454][T12490] EXT4-fs: Ignoring removed orlov option [ 644.319925][T12490] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 644.493102][T12490] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 644.612655][T12490] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.2975: corrupted in-inode xattr: e_value size too large [ 644.751906][T12490] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.2975: couldn't read orphan inode 15 (err -117) [ 644.875695][T12490] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 644.963114][ T30] kauditd_printk_skb: 86 callbacks suppressed [ 644.963192][ T30] audit: type=1326 audit(1754998610.961:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.105788][T12492] loop4: detected capacity change from 0 to 32768 [ 645.117115][ T30] audit: type=1326 audit(1754998611.071:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.143800][ T30] audit: type=1326 audit(1754998611.071:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.166716][ C1] vkms_vblank_simulate: vblank timer overrun [ 645.174358][ T30] audit: type=1326 audit(1754998611.081:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.197281][ T30] audit: type=1326 audit(1754998611.091:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=33 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.219744][ C1] vkms_vblank_simulate: vblank timer overrun [ 645.226374][ T30] audit: type=1326 audit(1754998611.091:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12495 comm="syz.1.2977" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 645.280205][T12500] ip6tnl0: Master is either lo or non-ether device [ 645.309112][T12492] (syz.4.2976,12492,1):ocfs2_load_local_alloc:339 ERROR: inconsistent detected, clean journal with unrecovered local alloc, please run fsck.ocfs2! [ 645.309112][T12492] found = 1, set = 0, taken = 0, off = 0 [ 645.330151][T12492] (syz.4.2976,12492,1):ocfs2_load_local_alloc:356 ERROR: status = -22 [ 645.338719][T12492] (syz.4.2976,12492,1):ocfs2_check_volume:2404 ERROR: status = -22 [ 645.353044][T12492] (syz.4.2976,12492,1):ocfs2_check_volume:2432 ERROR: status = -22 [ 645.361525][T12492] (syz.4.2976,12492,1):ocfs2_mount_volume:1764 ERROR: status = -22 [ 645.376276][T12492] (syz.4.2976,12492,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 645.509304][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 646.761139][T10493] kernel write not supported for file /input/event2 (pid: 10493 comm: kworker/1:2) [ 647.207733][T12534] netlink: 5 bytes leftover after parsing attributes in process `syz.4.2994'. [ 647.786072][ T30] audit: type=1326 audit(1754998613.771:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12543 comm="syz.1.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 647.811851][ T30] audit: type=1326 audit(1754998613.821:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12543 comm="syz.1.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 647.835364][ T30] audit: type=1326 audit(1754998613.821:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12543 comm="syz.1.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 647.858867][ T30] audit: type=1326 audit(1754998613.821:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12543 comm="syz.1.2999" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d2598ebe9 code=0x7ffc0000 [ 648.767596][T12547] loop2: detected capacity change from 0 to 32768 [ 648.778470][T12547] XFS (loop2): sunit and swidth must be specified together [ 649.830785][T12570] tipc: Enabling of bearer rejected, failed to enable media [ 650.640873][T12583] loop3: detected capacity change from 0 to 256 [ 650.922411][T12579] loop2: detected capacity change from 0 to 32768 [ 650.937546][T12579] (syz.2.3015,12579,1):ocfs2_read_virt_blocks:1007 ERROR: Inode #66 contains a hole at offset 0 [ 650.948650][T12579] (syz.2.3015,12579,1):ocfs2_read_dir_block:511 ERROR: status = -5 [ 650.957185][T12579] (syz.2.3015,12579,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22 [ 650.966936][T12579] (syz.2.3015,12579,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs? [ 650.967123][T12579] (syz.2.3015,12579,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22 [ 650.994825][T12579] (syz.2.3015,12579,1):ocfs2_initialize_super:2198 ERROR: status = -22 [ 651.003955][T12579] (syz.2.3015,12579,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 651.366441][T12590] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3020'. [ 651.805788][ T5870] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 652.000192][T10493] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 652.007815][ T5870] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 652.007971][ T5870] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 652.017301][ T5870] usb 1-1: config 0 descriptor?? [ 652.059522][ T5870] cp210x 1-1:0.0: cp210x converter detected [ 652.173037][T12604] Driver unsupported XDP return value 0 on prog (id 107) dev N/A, expect packet loss! [ 652.207419][T10493] usb 4-1: Using ep0 maxpacket: 8 [ 652.236690][T10493] usb 4-1: config 0 interface 0 altsetting 5 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 652.248026][T10493] usb 4-1: config 0 interface 0 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 652.258316][T10493] usb 4-1: config 0 interface 0 has no altsetting 0 [ 652.265187][T10493] usb 4-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 652.277981][T10493] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 652.356703][T10493] usb 4-1: config 0 descriptor?? [ 652.516989][ T5870] usb 1-1: cp210x converter now attached to ttyUSB0 [ 652.710390][ T5870] usb 1-1: USB disconnect, device number 17 [ 652.736480][ T5870] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 652.757721][ T5870] cp210x 1-1:0.0: device disconnected [ 652.854381][T10493] steelseries 0003:1038:1410.0016: item fetching failed at offset 1/5 [ 652.890589][T10493] steelseries 0003:1038:1410.0016: parse failed [ 652.898070][T10493] steelseries 0003:1038:1410.0016: probe with driver steelseries failed with error -22 [ 653.039252][ T5870] usb 4-1: USB disconnect, device number 16 [ 653.768920][T12630] overlayfs: missing 'lowerdir' [ 654.423603][T12642] tmpfs: Cannot enable quota on remount [ 654.617211][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 654.624003][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 654.846071][T10493] usb 1-1: new full-speed USB device number 18 using dummy_hcd [ 655.020126][T10493] usb 1-1: not running at top speed; connect to a high speed hub [ 655.033663][T10493] usb 1-1: config 95 has an invalid interface number: 1 but max is 0 [ 655.042326][T10493] usb 1-1: config 95 has no interface number 0 [ 655.048905][T10493] usb 1-1: config 95 interface 1 has no altsetting 0 [ 655.091648][T10493] usb 1-1: New USB device found, idVendor=0763, idProduct=2031, bcdDevice=ad.3f [ 655.101413][T10493] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 655.109784][T10493] usb 1-1: Product: syz [ 655.114229][T10493] usb 1-1: Manufacturer: syz [ 655.119370][T10493] usb 1-1: SerialNumber: syz [ 656.241684][T12655] loop2: detected capacity change from 0 to 32768 [ 656.250882][T12655] xfs: Bad value for 'allocsize' [ 656.814054][T10493] usb 1-1: USB disconnect, device number 18 [ 657.912604][T12676] loop4: detected capacity change from 0 to 32768 [ 657.964497][T12684] loop2: detected capacity change from 0 to 512 [ 658.060630][T12683] loop3: detected capacity change from 0 to 4096 [ 658.100844][T12676] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 658.154151][T12684] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 658.163319][T12684] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 658.262192][ T5825] (syz-executor,5825,1):ocfs2_inode_is_valid_to_delete:948 ERROR: Skipping delete of system file 76 [ 658.270744][T12684] EXT4-fs (loop2): 1 truncate cleaned up [ 658.281787][T12684] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 658.329999][ T5825] ocfs2: Unmounting device (7,4) on (node local) [ 658.407379][T12684] EXT4-fs: group quota file already specified [ 658.798860][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 658.919490][T12697] loop1: detected capacity change from 0 to 1024 [ 659.108731][T12697] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 659.179416][T12701] loop2: detected capacity change from 0 to 1024 [ 659.191955][T12701] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 659.202503][T12701] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 659.212723][T12701] EXT4-fs (loop2): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 659.289156][T12703] loop3: detected capacity change from 0 to 512 [ 659.296593][T12701] EXT4-fs error (device loop2): ext4_get_journal_inode:5796: inode #5: comm syz.2.3071: unexpected bad inode w/o EXT4_IGET_BAD [ 659.316206][T12697] EXT4-fs error (device loop1): __ext4_remount:6736: comm syz.1.3069: Abort forced by user [ 659.330308][T12703] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 659.342109][T12697] EXT4-fs (loop1): Remounting filesystem read-only [ 659.349837][T12697] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000. [ 659.366275][T12701] EXT4-fs (loop2): no journal found [ 659.375955][T12701] EXT4-fs (loop2): can't get journal size [ 659.401454][T12701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 659.511413][T12703] EXT4-fs (loop3): 1 truncate cleaned up [ 659.519717][T12703] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 659.533106][T12708] netlink: 32 bytes leftover after parsing attributes in process `syz.0.3073'. [ 659.548989][ T5819] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.622747][ T5812] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 659.649073][ T30] kauditd_printk_skb: 3 callbacks suppressed [ 659.649153][ T30] audit: type=1800 audit(1754998625.651:195): pid=12703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3072" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 659.836675][ T5870] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 660.016117][ T5870] usb 5-1: Using ep0 maxpacket: 16 [ 660.041094][ T5870] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 660.053430][ T5870] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 660.063646][ T5870] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 660.074224][ T5870] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 660.192268][ T5870] usb 5-1: config 0 descriptor?? [ 660.729260][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.744576][ T5870] konepure 0003:1E7D:2DB4.0017: unknown main item tag 0x0 [ 660.752355][ T5870] konepure 0003:1E7D:2DB4.0017: unknown main item tag 0x0 [ 660.761094][ T5870] konepure 0003:1E7D:2DB4.0017: unknown main item tag 0x0 [ 660.770368][ T5870] konepure 0003:1E7D:2DB4.0017: unknown main item tag 0x0 [ 660.844993][ T5870] konepure 0003:1E7D:2DB4.0017: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.4-1/input0 [ 660.909036][ T5870] usb 5-1: USB disconnect, device number 14 [ 661.092240][T12726] loop3: detected capacity change from 0 to 1024 [ 661.132355][T12728] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 661.132355][T12728] The task syz.1.3081 (12728) triggered the difference, watch for misbehavior. [ 661.193715][T12726] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 661.320877][T12688] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 494: padding at end of block bitmap is not set [ 661.342817][T12688] EXT4-fs (loop3): Remounting filesystem read-only [ 661.356915][T12726] EXT4-fs (loop3): error restoring inline_data for inode -- potential data loss! (inode 12, error -30) [ 661.495936][ T5870] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 661.539717][ T5810] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 661.666484][ T5870] usb 3-1: Using ep0 maxpacket: 8 [ 661.719918][ T5870] usb 3-1: unable to get BOS descriptor or descriptor too short [ 661.770141][ T5870] usb 3-1: config 4 interface 0 has no altsetting 0 [ 661.845408][ T5870] usb 3-1: string descriptor 0 read error: -22 [ 661.852501][ T5870] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 661.862203][ T5870] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 661.908624][ T5870] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 661.958059][ T5870] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 661.970112][ T5870] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 661.977683][ T5870] usb 3-1: media controller created [ 662.077231][ T5870] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 662.264442][ T5870] zl10353_read_register: readreg error (reg=127, ret==0) [ 662.428450][ T5870] usb 3-1: USB disconnect, device number 15 [ 662.495776][ T1931] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 662.666016][ T1931] usb 2-1: Using ep0 maxpacket: 16 [ 662.725960][ T1931] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 662.737782][ T1931] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 662.751562][ T1931] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 662.766058][ T1931] usb 2-1: New USB device found, idVendor=0457, idProduct=07da, bcdDevice= 0.00 [ 662.775421][ T1931] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 662.888274][ T1931] usb 2-1: config 0 descriptor?? [ 663.347310][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.355310][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.368299][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.377696][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.385929][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.393911][ T1931] hid-multitouch 0003:0457:07DA.0018: unknown main item tag 0x0 [ 663.507371][ T1931] hid-multitouch 0003:0457:07DA.0018: hidraw0: USB HID v0.00 Device [HID 0457:07da] on usb-dummy_hcd.1-1/input0 [ 663.592979][ T1931] usb 2-1: USB disconnect, device number 12 [ 663.783040][T12753] loop3: detected capacity change from 0 to 4096 [ 663.824916][T12757] loop4: detected capacity change from 0 to 1024 [ 663.857407][T12757] EXT4-fs: Ignoring removed nomblk_io_submit option [ 663.896083][T12757] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 663.905164][T12757] EXT4-fs (loop4): Test dummy encryption mode enabled [ 663.917264][T12758] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 663.980366][T12757] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (37511!=20869) [ 663.990748][T12757] EXT4-fs (loop4): group descriptors corrupted! [ 665.347761][T12782] loop4: detected capacity change from 0 to 256 [ 665.509933][T12782] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 665.593199][T12784] loop1: detected capacity change from 0 to 1024 [ 665.653286][T12784] EXT4-fs: Ignoring removed bh option [ 665.659442][T12784] EXT4-fs: inline encryption not supported [ 665.707567][T12790] ===================================================== [ 665.715047][T12790] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120 [ 665.726786][T12790] _copy_to_user+0xcc/0x120 [ 665.731475][T12790] do_insn_ioctl+0x59c/0x6d0 [ 665.738033][T12790] comedi_unlocked_ioctl+0xa5e/0x1f60 [ 665.743926][T12790] __se_sys_ioctl+0x239/0x400 [ 665.749834][T12790] __x64_sys_ioctl+0x97/0xe0 [ 665.754602][T12790] x64_sys_call+0x1cbc/0x3e20 [ 665.759760][T12790] do_syscall_64+0xd9/0x210 [ 665.764455][T12790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.770693][T12790] [ 665.773090][T12790] Uninit was created at: [ 665.777753][T12790] __kmalloc_noprof+0x95f/0x1310 [ 665.782879][T12790] do_insn_ioctl+0x108/0x6d0 [ 665.790646][T12790] comedi_unlocked_ioctl+0xa5e/0x1f60 [ 665.796815][T12790] __se_sys_ioctl+0x239/0x400 [ 665.801670][T12790] __x64_sys_ioctl+0x97/0xe0 [ 665.806768][T12790] x64_sys_call+0x1cbc/0x3e20 [ 665.811645][T12790] do_syscall_64+0xd9/0x210 [ 665.816477][T12790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 665.826998][T12790] [ 665.829423][T12790] Bytes 4-59 of 60 are uninitialized [ 665.834799][T12790] Memory access of size 60 starts at ffff888116292440 [ 665.843162][T12790] Data copied to user address 0000200000000080 [ 665.849730][T12790] [ 665.852187][T12790] CPU: 1 UID: 0 PID: 12790 Comm: syz.0.3109 Not tainted 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(none) [ 665.864857][T12790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 665.875943][T12790] ===================================================== [ 665.883261][T12790] Disabling lock debugging due to kernel taint [ 665.889677][T12790] Kernel panic - not syncing: kmsan.panic set ... [ 665.896511][T12790] CPU: 1 UID: 0 PID: 12790 Comm: syz.0.3109 Tainted: G B 6.17.0-rc1-syzkaller-00004-g53e760d89498 #0 PREEMPT(none) [ 665.910444][T12790] Tainted: [B]=BAD_PAGE [ 665.914694][T12790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 665.924977][T12790] Call Trace: [ 665.928377][T12790] [ 665.931505][T12790] __dump_stack+0x26/0x30 [ 665.936053][T12790] dump_stack_lvl+0x53/0x270 [ 665.940856][T12790] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 665.946883][T12790] dump_stack+0x1e/0x25 [ 665.951415][T12790] vpanic+0x361/0xc50 [ 665.955609][T12790] panic+0x15d/0x160 [ 665.959845][T12790] kmsan_report+0x31c/0x320 [ 665.964532][T12790] ? kmsan_internal_check_memory+0x1e1/0x230 [ 665.970680][T12790] ? kmsan_copy_to_user+0xf1/0x190 [ 665.976052][T12790] ? _copy_to_user+0xcc/0x120 [ 665.980879][T12790] ? do_insn_ioctl+0x59c/0x6d0 [ 665.985805][T12790] ? comedi_unlocked_ioctl+0xa5e/0x1f60 [ 665.991515][T12790] ? __se_sys_ioctl+0x239/0x400 [ 665.996552][T12790] ? __x64_sys_ioctl+0x97/0xe0 [ 666.001499][T12790] ? x64_sys_call+0x1cbc/0x3e20 [ 666.006580][T12790] ? do_syscall_64+0xd9/0x210 [ 666.011452][T12790] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 666.017764][T12790] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 666.024090][T12790] ? kmsan_get_metadata+0xfb/0x160 [ 666.029407][T12790] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 666.035520][T12790] ? kmsan_get_metadata+0xfb/0x160 [ 666.040920][T12790] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 666.046957][T12790] ? kmsan_get_metadata+0xfb/0x160 [ 666.052282][T12790] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 666.058312][T12790] ? kmsan_get_metadata+0xfb/0x160 [ 666.063709][T12790] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 666.069905][T12790] kmsan_internal_check_memory+0x1e1/0x230 [ 666.076015][T12790] kmsan_copy_to_user+0xf1/0x190 [ 666.081238][T12790] _copy_to_user+0xcc/0x120 [ 666.085922][T12790] do_insn_ioctl+0x59c/0x6d0 [ 666.090727][T12790] comedi_unlocked_ioctl+0xa5e/0x1f60 [ 666.096335][T12790] ? __pfx_comedi_unlocked_ioctl+0x10/0x10 [ 666.102316][T12790] __se_sys_ioctl+0x239/0x400 [ 666.107363][T12790] __x64_sys_ioctl+0x97/0xe0 [ 666.112151][T12790] x64_sys_call+0x1cbc/0x3e20 [ 666.117061][T12790] do_syscall_64+0xd9/0x210 [ 666.121765][T12790] ? irqentry_exit+0x16/0x60 [ 666.126538][T12790] ? clear_bhb_loop+0x40/0x90 [ 666.131412][T12790] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 666.137529][T12790] RIP: 0033:0x7eff6758ebe9 [ 666.142107][T12790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 666.162174][T12790] RSP: 002b:00007eff68476038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 666.170871][T12790] RAX: ffffffffffffffda RBX: 00007eff677b5fa0 RCX: 00007eff6758ebe9 [ 666.178998][T12790] RDX: 0000200000000000 RSI: 000000008028640c RDI: 0000000000000003 [ 666.187096][T12790] RBP: 00007eff67611e19 R08: 0000000000000000 R09: 0000000000000000 [ 666.195266][T12790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 666.203350][T12790] R13: 00007eff677b6038 R14: 00007eff677b5fa0 R15: 00007ffc5d8d4468 [ 666.211479][T12790] [ 666.214931][T12790] Kernel Offset: disabled [ 666.219397][T12790] Rebooting in 86400 seconds..