last executing test programs: 5.027727891s ago: executing program 2 (id=7240): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)=ANY=[@ANYBLOB="120100003ebc67402505a3a4081c0102030109021b0001000000000904000301e6efa2000905ff11"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 3.988854856s ago: executing program 3 (id=7245): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) setgid(0xee00) 3.719101823s ago: executing program 1 (id=7248): futex(&(0x7f000000cffc)=0x1, 0xd, 0x0, 0x0, 0x0, 0x0) futex(&(0x7f000000cffc)=0xffffffff, 0x8, 0x0, 0x0, 0x0, 0x0) 3.509110114s ago: executing program 3 (id=7249): socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)) syz_clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x2}, 0xa0) 3.048401895s ago: executing program 4 (id=7252): r0 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc4}, &(0x7f00000001c0)={0x0, "d895167fc796e00c23518f0c69ef987129e7b7923a3ba564a3926e44a32bde24662a345e6e42cfff5b94558d62e06df98f350c68fe4fa9051d37f7cf93edc03b"}, 0x48, 0xfffffffffffffffd) keyctl$get_persistent(0x16, 0x0, r0) 2.885829787s ago: executing program 4 (id=7254): r0 = syz_open_dev$sndpcmc(&(0x7f0000000a00), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc25c4110, &(0x7f0000000100)={0x0, [[0x1, 0x0, 0x0, 0x0, 0x0, 0x2000000], [0x0, 0x80000000], [0x3]], '\x00', [{}, {}, {}, {0xfffffffc, 0x1}]}) 2.782043629s ago: executing program 0 (id=7255): r0 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000380), 0x101202, 0x0) write$nci(r0, 0x0, 0x4) 2.618801325s ago: executing program 4 (id=7256): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000180081064e81f782db44b904021d080006007c09e8fe55a10a0015000200142603600e1208000f0000000401a8001600a400014005000200036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0) 2.561349198s ago: executing program 3 (id=7257): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newtaction={0xe68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x93}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0) 2.33861172s ago: executing program 0 (id=7258): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r0, 0x89f2, &(0x7f0000000140)={'sit0\x00', &(0x7f0000000080)={'ip_vti0\x00', 0x0, 0x7, 0x80, 0x5, 0x400, {{0x5, 0x4, 0x3, 0x6, 0x14, 0x68, 0x0, 0x9, 0x2f, 0x0, @empty, @empty}}}}) 2.284276261s ago: executing program 2 (id=7259): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0x8b, &(0x7f0000000000), &(0x7f0000000240)=0x4) 2.079045079s ago: executing program 3 (id=7261): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x8848, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000100081044e81f782db44b904021d080c30000000e8fe55a1190015000600142603600e120900180000000401a80016000a0004400a080000036010fab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e9701", 0xd8}], 0x1}, 0x0) 2.029819797s ago: executing program 1 (id=7262): r0 = openat$sndseq(0xffffff9c, &(0x7f0000000000), 0x1) writev(r0, &(0x7f00000002c0)=[{&(0x7f0000000040)="8a9944b6a8192626512a32d564950658a12faf3332442d9c241875a3", 0x1c}], 0x1) 2.027191013s ago: executing program 4 (id=7263): r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x400e, &(0x7f0000000180), 0x0, 0x440, &(0x7f0000000b80)="$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") ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40106614, &(0x7f0000000080)) 1.929389009s ago: executing program 0 (id=7264): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000280)={0xfffff337, {{0xa, 0x4e23, 0x0, @mcast2, 0x3}}, 0xfeffff01}, 0x90) 1.664345966s ago: executing program 2 (id=7265): r0 = syz_open_dev$loop(&(0x7f0000000080), 0x9, 0x100) ioctl$BLKROTATIONAL(r0, 0x127e, &(0x7f00000000c0)) 1.358952151s ago: executing program 0 (id=7266): r0 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000280)={&(0x7f00000000c0)=[{0x3, 0x8001, 0xf5, 0x0}, {0x0, 0x0, 0x2, &(0x7f00000004c0)="7f68"}, {0x0, 0x0, 0x0, 0x0}], 0x3}) 1.358853616s ago: executing program 1 (id=7267): r0 = syz_open_dev$video4linux(&(0x7f0000000340), 0x0, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000440)={0x2}) 1.223209563s ago: executing program 4 (id=7268): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="380000000101010100000000000000000a0000000c001980080001000200000018000180140001"], 0x38}}, 0x0) 1.159588417s ago: executing program 3 (id=7269): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x4e20, 0x6, @dev={0xfe, 0x80, '\x00', 0x12}, 0xc5}], 0x2c) 985.498318ms ago: executing program 2 (id=7270): r0 = syz_open_dev$video(&(0x7f00000017c0), 0x7, 0x0) ioctl$VIDIOC_G_FBUF(r0, 0x8030560a, 0x0) 932.580353ms ago: executing program 1 (id=7271): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x1, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACSEC_SCB={0x5}, @IFLA_MACSEC_REPLAY_PROTECT={0x5, 0xc, 0x9}]}}}]}, 0x44}}, 0x20000004) 895.81281ms ago: executing program 0 (id=7272): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, 0x0, 0x0) 734.011526ms ago: executing program 2 (id=7273): r0 = open(&(0x7f0000000580)='./file0\x00', 0x10000000181540, 0x0) fcntl$lock(r0, 0x6, &(0x7f0000000080)={0x1, 0x1, 0xfffffffffffffffe}) 649.682962ms ago: executing program 1 (id=7274): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000200)=ANY=[@ANYBLOB="3c0000001800dd8d0000000000000000020000000000fc050000000006001500010000001800168014000100800000100000030000001000000011"], 0x3c}, 0x1, 0x0, 0x0, 0x20000010}, 0x200000a0) 373.231143ms ago: executing program 3 (id=7275): r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0) ioctl$SIOCX25SFACILITIES(r0, 0x89e3, &(0x7f0000000440)={0x2074, 0x0, 0xa, 0xe, 0x20000}) 273.627069ms ago: executing program 0 (id=7276): socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r0, 0x1, 0x7, &(0x7f0000000000), 0x4) 238.717907ms ago: executing program 4 (id=7277): r0 = socket$kcm(0xa, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000440)={&(0x7f0000000080)=@in6={0xa, 0x4e20, 0x0, @private0}, 0x80, 0x0, 0x0, &(0x7f0000000180)=[{0x10, 0x29, 0x32}], 0x10}, 0x0) 114.554093ms ago: executing program 2 (id=7278): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f00000004c0)={0x1, 0x1, 0x1000000c, 0x12, 0x10003, &(0x7f0000000a40)}) 0s ago: executing program 1 (id=7279): syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000100)='./bus\x00', 0x100c008, &(0x7f0000000380)=ANY=[@ANYBLOB='iocharset=koi8-r,iocharset=cp737,check=strict,quiet,shortname=mixed,rodir,utf8=0,shortname=mixed,shortname=win95,shortname=winnt,shortname=lower,shortname=win95,shortname=win95,nonumtail=0,iocharset=iso8859-4,shortname=lower,flask=00000000000000000000005,\x00', @ANYRES8], 0x6, 0x374, &(0x7f0000000c80)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0) kernel console output (not intermixed with test programs): veth0_macvtap: entered promiscuous mode [ 1369.685106][T17167] veth1_macvtap: entered promiscuous mode [ 1369.738519][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1369.750329][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.760823][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1369.771613][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.781847][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1369.792772][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.802903][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1369.813683][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.829083][T17167] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1369.921588][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1369.932521][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.943750][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1369.957240][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.967592][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1369.978390][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1369.988591][T17167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 1369.999382][T17167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1370.017657][T17167] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1370.043370][T17167] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1370.052573][T17167] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1370.062838][T17167] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1370.072348][T17167] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1370.416427][T12661] usb 4-1: new full-speed USB device number 34 using dummy_hcd [ 1370.511526][T17415] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5069'. [ 1370.941629][T12661] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 1370.951580][T12661] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1371.027249][T12661] usb 4-1: config 0 descriptor?? [ 1371.140682][T12661] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1371.290724][T16283] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 1371.570650][T12661] gp8psk: usb in 137 operation failed. [ 1371.577840][T12661] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1371.590676][T12661] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1371.653690][T17433] netlink: 'syz.0.5075': attribute type 1 has an invalid length. [ 1371.760665][T16283] usb 3-1: Using ep0 maxpacket: 16 [ 1371.790181][T16283] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 8 [ 1371.796455][T12661] usb 4-1: USB disconnect, device number 34 [ 1371.814166][T16283] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 1371.823898][T16283] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1371.832363][T16283] usb 3-1: Product: syz [ 1371.836873][T16283] usb 3-1: Manufacturer: syz [ 1371.841720][T16283] usb 3-1: SerialNumber: syz [ 1371.852824][T16283] usb 3-1: config 0 descriptor?? [ 1371.867984][T16283] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected [ 1371.959758][T16283] usb 3-1: Detected FT232R [ 1372.563872][T16283] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1372.675661][T16283] ftdi_sio 3-1:0.0: GPIO initialisation failed: -71 [ 1372.792525][T16283] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1372.955373][T16283] usb 3-1: USB disconnect, device number 16 [ 1373.058197][T16283] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1373.071675][T16283] ftdi_sio 3-1:0.0: device disconnected [ 1373.530010][T17457] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1374.261276][T17468] loop3: detected capacity change from 0 to 1024 [ 1374.285833][ T29] audit: type=1326 audit(2000000609.749:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17464 comm="syz.4.5085" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 1374.308860][ T29] audit: type=1326 audit(2000000609.749:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17464 comm="syz.4.5085" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 1374.331801][ T29] audit: type=1326 audit(2000000609.759:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17464 comm="syz.4.5085" exe="/root/syz-executor" sig=0 arch=40000003 syscall=165 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 1374.358831][ T29] audit: type=1326 audit(2000000609.759:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17464 comm="syz.4.5085" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 1374.382777][ T29] audit: type=1326 audit(2000000609.759:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17464 comm="syz.4.5085" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x7ffc0000 [ 1374.615757][T17468] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1374.720988][T17475] usb usb8: usbfs: process 17475 (syz.0.5087) did not claim interface 7 before use [ 1375.032624][ T8811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1375.256156][T17463] loop2: detected capacity change from 0 to 4096 [ 1376.193912][T17463] ntfs3(loop2): ino=21, The size of extended attributes must not exceed 64KiB [ 1376.875796][ T3482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1376.883879][ T3482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1376.987499][ T3376] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1376.995816][ T3376] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1377.262996][T17509] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5098'. [ 1377.485330][T17510] loop2: detected capacity change from 0 to 512 [ 1377.531257][T17514] netlink: 116 bytes leftover after parsing attributes in process `syz.3.5099'. [ 1377.817140][T17510] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 1377.838506][T17510] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1377.852924][T17510] EXT4-fs warning (device loop2): ext4_enable_quotas:7097: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 1378.016741][T17510] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 1378.129527][T17510] EXT4-fs error (device loop2): ext4_ext_check_inode:524: inode #13: comm syz.2.5097: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 1378.385624][T17510] EXT4-fs error (device loop2): ext4_orphan_get:1393: comm syz.2.5097: couldn't read orphan inode 13 (err -117) [ 1378.484441][T17510] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1378.688137][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1380.542591][T17558] xt_limit: Overflow, try lower: 0/0 [ 1380.688191][T15954] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 1380.854683][T15954] usb 4-1: Using ep0 maxpacket: 16 [ 1380.887145][T15954] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1380.900346][T15954] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1380.913315][T15954] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1380.928955][T15954] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 1380.938565][T15954] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1381.050552][T15954] usb 4-1: config 0 descriptor?? [ 1381.137992][T15954] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input23 [ 1381.152378][ T4610] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1381.175851][ T4610] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1381.243149][ T4610] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1381.311531][ T4610] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1381.382814][T17534] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1381.475678][T12661] usb 4-1: USB disconnect, device number 35 [ 1381.873878][T17574] loop2: detected capacity change from 0 to 256 [ 1381.991079][T17574] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 1382.502453][T17578] loop4: detected capacity change from 0 to 2048 [ 1382.549642][T17578] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1382.647020][T17581] team0: Port device team_slave_0 removed [ 1382.726180][T17583] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1382.888696][T17585] loop1: detected capacity change from 0 to 256 [ 1383.007781][T17585] exfat: Deprecated parameter 'utf8' [ 1383.075112][T17589] syz_tun: tun_net_xmit 86 [ 1383.091285][T17585] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 1384.105698][ C1] syz_tun: tun_net_xmit 86 [ 1384.301096][T17603] netlink: 596 bytes leftover after parsing attributes in process `syz.2.5140'. [ 1385.004855][T17608] loop3: detected capacity change from 0 to 256 [ 1385.147027][ C1] syz_tun: tun_net_xmit 86 [ 1385.787641][T16078] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 1385.796490][T16078] Bluetooth: hci2: Injecting HCI hardware error event [ 1385.804461][T16078] Bluetooth: hci2: hardware error 0x00 [ 1386.367850][T17638] netlink: 144 bytes leftover after parsing attributes in process `syz.1.5156'. [ 1386.467731][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 1386.474768][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 1388.184864][T16078] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 1389.298785][T17686] netlink: 'syz.3.5181': attribute type 3 has an invalid length. [ 1389.308011][T17686] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.5181'. [ 1390.074778][T17698] [U] v3f"S/4:XTzWtlW= [ 1390.081304][T17698] [U] J"e:" [ 1391.375326][T17721] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1391.486169][T17723] loop4: detected capacity change from 0 to 256 [ 1392.400996][T17723] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 1393.318943][T17757] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5213'. [ 1393.899671][ T29] audit: type=1326 audit(2000000629.579:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17760 comm="syz.0.5216" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf73cd579 code=0x0 [ 1394.717891][T17782] loop3: detected capacity change from 0 to 1764 [ 1395.607920][T17794] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5230'. [ 1395.617749][T17794] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5230'. [ 1395.627094][T17794] netlink: 20 bytes leftover after parsing attributes in process `syz.0.5230'. [ 1396.220637][T17809] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5237'. [ 1397.756181][T17824] loop2: detected capacity change from 0 to 2048 [ 1397.880642][T17836] loop1: detected capacity change from 0 to 64 [ 1397.900447][T17833] loop4: detected capacity change from 0 to 1024 [ 1397.935271][T17824] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1398.477357][T17841] loop3: detected capacity change from 0 to 256 [ 1398.565444][T17842] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5255'. [ 1398.938329][T17841] FAT-fs (loop3): Directory bread(block 64) failed [ 1398.945250][T17841] FAT-fs (loop3): Directory bread(block 65) failed [ 1398.952241][T17841] FAT-fs (loop3): Directory bread(block 66) failed [ 1398.959198][T17841] FAT-fs (loop3): Directory bread(block 67) failed [ 1398.966189][T17841] FAT-fs (loop3): Directory bread(block 68) failed [ 1398.972962][T17841] FAT-fs (loop3): Directory bread(block 69) failed [ 1398.980081][T17841] FAT-fs (loop3): Directory bread(block 70) failed [ 1398.986972][T17841] FAT-fs (loop3): Directory bread(block 71) failed [ 1398.993875][T17841] FAT-fs (loop3): Directory bread(block 72) failed [ 1399.001245][T17841] FAT-fs (loop3): Directory bread(block 73) failed [ 1399.472158][T17850] loop1: detected capacity change from 0 to 512 [ 1399.523210][T17854] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1399.536626][T15954] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 1399.687709][T17850] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1399.701614][T17850] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1399.876476][T17167] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1399.892097][T15954] usb 3-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55 [ 1399.902527][T15954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1399.917594][T15954] usb 3-1: Product: syz [ 1399.922012][T15954] usb 3-1: Manufacturer: syz [ 1399.927987][T15954] usb 3-1: SerialNumber: syz [ 1400.097745][T15954] usb 3-1: config 0 descriptor?? [ 1400.155654][T15954] gspca_main: sonixb-2.14.0 probing 0c45:60a8 [ 1400.478290][T17865] netlink: 'syz.1.5264': attribute type 10 has an invalid length. [ 1400.486869][T17865] team0: Device hsr0 is up. Set it down before adding it as a team port [ 1400.594953][T15954] sonixb 3-1:0.0: Error writing register 01: -71 [ 1400.601811][T15954] sonixb 3-1:0.0: probe with driver sonixb failed with error -71 [ 1400.675516][T15954] usb 3-1: USB disconnect, device number 17 [ 1401.464757][T16283] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 1402.235180][T16283] usb 1-1: Using ep0 maxpacket: 32 [ 1402.709796][T16283] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1403.331903][T16283] usb 1-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=a6.13 [ 1403.343796][T16283] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1403.353466][T16283] usb 1-1: Product: syz [ 1403.357986][T16283] usb 1-1: Manufacturer: syz [ 1403.362819][T16283] usb 1-1: SerialNumber: syz [ 1403.662901][T16283] usb 1-1: config 0 descriptor?? [ 1403.788767][T16283] pvrusb2: Hardware description: Terratec Grabster AV400 [ 1403.796147][T16283] pvrusb2: ********** [ 1403.800330][T16283] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental. [ 1403.810768][T16283] pvrusb2: Important functionality might not be entirely working. [ 1403.818872][T16283] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver. [ 1403.835543][T16283] pvrusb2: ********** [ 1403.912142][ T2025] pvrusb2: Invalid write control endpoint [ 1404.171826][T16283] usb 1-1: USB disconnect, device number 24 [ 1404.479044][ T2025] pvrusb2: Invalid write control endpoint [ 1404.485306][ T2025] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work. [ 1404.496247][ T2025] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device. [ 1404.504038][ T2025] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups. [ 1404.514542][ T2025] pvrusb2: Device being rendered inoperable [ 1404.520762][ T2025] cx25840 1-0044: Unable to detect h/w, assuming cx23887 [ 1404.528216][ T2025] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a) [ 1404.538102][ T2025] pvrusb2: Attached sub-driver cx25840 [ 1404.543780][ T2025] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it. [ 1404.556129][ T2025] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover. [ 1404.935076][T15954] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 1405.144853][T15954] usb 3-1: Using ep0 maxpacket: 16 [ 1405.197049][T15954] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=c5.7e [ 1405.204062][T17924] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5292'. [ 1405.207200][T15954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1405.207343][T15954] usb 3-1: Product: syz [ 1405.207452][T15954] usb 3-1: Manufacturer: syz [ 1405.234075][T15954] usb 3-1: SerialNumber: syz [ 1405.396160][T15954] usb 3-1: config 0 descriptor?? [ 1405.987678][T15954] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1405.999702][T15954] asix 3-1:0.0: probe with driver asix failed with error -71 [ 1406.055633][T17935] tmpfs: Bad value for 'mpol' [ 1406.106462][T15954] usb 3-1: USB disconnect, device number 18 [ 1406.298605][T17941] loop1: detected capacity change from 0 to 256 [ 1406.732349][T17946] netlink: 'syz.0.5302': attribute type 21 has an invalid length. [ 1406.741554][T17946] netlink: 'syz.0.5302': attribute type 11 has an invalid length. [ 1407.248018][T17947] loop3: detected capacity change from 0 to 2048 [ 1407.365450][T17947] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1407.440181][T17947] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1407.863927][ T29] audit: type=1326 audit(2000000643.439:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.2.5310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1407.887527][ T29] audit: type=1326 audit(2000000643.439:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.2.5310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1407.910267][ T29] audit: type=1326 audit(2000000643.599:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.2.5310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=135 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1407.936463][ T29] audit: type=1326 audit(2000000643.599:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.2.5310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1407.962125][ T29] audit: type=1326 audit(2000000643.599:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17958 comm="syz.2.5310" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1408.173687][T17967] VFS: Can't find a romfs filesystem on dev nullb0. [ 1408.173687][T17967] [ 1408.618062][T17976] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5319'. [ 1408.817501][T17980] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond. [ 1408.830173][T17980] bond0: (slave lo): Error: Device can not be enslaved while up [ 1409.136946][T17984] netlink: 'syz.3.5320': attribute type 9 has an invalid length. [ 1409.145273][T17984] macvlan1: entered promiscuous mode [ 1410.079415][T17997] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5328'. [ 1411.064977][T16283] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 1411.079346][T18016] netlink: 'syz.4.5336': attribute type 3 has an invalid length. [ 1411.087589][T18016] netlink: 199836 bytes leftover after parsing attributes in process `syz.4.5336'. [ 1411.290991][T16283] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1411.333706][T16283] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0093, bcdDevice=23.5a [ 1411.343307][T16283] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1411.351732][T16283] usb 3-1: Product: syz [ 1411.356247][T16283] usb 3-1: Manufacturer: syz [ 1411.361095][T16283] usb 3-1: SerialNumber: syz [ 1411.425813][T16283] usb 3-1: config 0 descriptor?? [ 1411.907926][T16283] usb 3-1: dvb_usb_v2: usb_bulk_msg() failed=-8 [ 1411.914843][T16283] dvb_usb_af9035 3-1:0.0: probe with driver dvb_usb_af9035 failed with error -8 [ 1412.006129][T18027] loop3: detected capacity change from 0 to 256 [ 1412.176552][T16283] usb 3-1: USB disconnect, device number 19 [ 1412.290159][T18027] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1413.018340][T18043] loop3: detected capacity change from 0 to 64 [ 1413.292194][T18048] loop4: detected capacity change from 0 to 256 [ 1413.460604][T18048] exfat: Deprecated parameter 'utf8' [ 1413.548004][T18050] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5353'. [ 1413.638885][T18048] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 1414.105049][ T5214] Bluetooth: hci1: command 0x0406 tx timeout [ 1414.402424][T18060] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5358'. [ 1415.939348][T18086] loop2: detected capacity change from 0 to 256 [ 1415.983765][T18086] exfat: Deprecated parameter 'utf8' [ 1417.207340][T18086] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 1417.305464][T15954] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 1417.780594][T15954] usb 1-1: config 0 has an invalid interface number: 247 but max is 1 [ 1417.789419][T15954] usb 1-1: config 0 has no interface number 1 [ 1417.796419][T15954] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1417.876358][T15954] usb 1-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice=80.99 [ 1417.885899][T15954] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1417.894173][T15954] usb 1-1: Product: syz [ 1417.898829][T15954] usb 1-1: Manufacturer: syz [ 1417.903672][T15954] usb 1-1: SerialNumber: syz [ 1417.964819][T18123] loop2: detected capacity change from 0 to 1024 [ 1417.987307][T15954] usb 1-1: config 0 descriptor?? [ 1418.316780][T18123] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1418.703214][T15954] usb 1-1: USB disconnect, device number 25 [ 1418.710645][T16631] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1419.094525][T18140] netlink: 'syz.4.5396': attribute type 15 has an invalid length. [ 1419.102632][T18140] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5396'. [ 1419.547783][T18144] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5398'. [ 1419.991947][T18153] netlink: 132 bytes leftover after parsing attributes in process `syz.1.5400'. [ 1420.130489][T18155] netlink: 88 bytes leftover after parsing attributes in process `syz.3.5404'. [ 1420.761746][T18166] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1420.805958][T18163] loop4: detected capacity change from 0 to 512 [ 1421.367879][T18179] loop3: detected capacity change from 0 to 256 [ 1421.673935][T18163] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1421.687355][T18163] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1421.804257][T18163] process 'syz.4.5407' launched './file1' with NULL argv: empty string added [ 1421.819494][T18188] netlink: 'syz.0.5418': attribute type 30 has an invalid length. [ 1421.896382][T18163] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.5407: corrupted xattr block 32: bad e_name length [ 1421.964802][T18163] EXT4-fs (loop4): Remounting filesystem read-only [ 1421.982901][ T29] audit: type=1800 audit(2000000657.729:150): pid=18163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5407" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 1422.190797][T18194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5421'. [ 1422.367917][T12661] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 1422.451878][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1422.522017][T18179] FAT-fs (loop3): Directory bread(block 64) failed [ 1422.529038][T18179] FAT-fs (loop3): Directory bread(block 65) failed [ 1422.536712][T18179] FAT-fs (loop3): Directory bread(block 66) failed [ 1422.543481][T18179] FAT-fs (loop3): Directory bread(block 67) failed [ 1422.550545][T18179] FAT-fs (loop3): Directory bread(block 68) failed [ 1422.557489][T18179] FAT-fs (loop3): Directory bread(block 69) failed [ 1422.564605][T18179] FAT-fs (loop3): Directory bread(block 70) failed [ 1422.575187][T18179] FAT-fs (loop3): Directory bread(block 71) failed [ 1422.582091][T18179] FAT-fs (loop3): Directory bread(block 72) failed [ 1422.586761][T12661] usb 3-1: config 0 has an invalid interface number: 247 but max is 1 [ 1422.593256][T18179] FAT-fs (loop3): Directory bread(block 73) failed [ 1422.597323][T12661] usb 3-1: config 0 has no interface number 1 [ 1422.597467][T12661] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1422.629051][T12661] usb 3-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice=80.99 [ 1422.638763][T12661] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1422.647237][T12661] usb 3-1: Product: syz [ 1422.651636][T12661] usb 3-1: Manufacturer: syz [ 1422.656708][T12661] usb 3-1: SerialNumber: syz [ 1422.770865][T12661] usb 3-1: config 0 descriptor?? [ 1423.152345][T16283] usb 3-1: USB disconnect, device number 20 [ 1423.249744][T16672] udevd[16672]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1423.501318][T18204] tmpfs: Bad value for 'mpol' [ 1424.402031][T18214] loop4: detected capacity change from 0 to 4096 [ 1425.252067][T18214] ntfs3(loop4): ino=21, The size of extended attributes must not exceed 64KiB [ 1426.604796][T16283] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 1427.022069][T16283] usb 4-1: config 0 has an invalid interface number: 247 but max is 1 [ 1427.030858][T16283] usb 4-1: config 0 has no interface number 1 [ 1427.038010][T16283] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1427.250148][T18262] netlink: 596 bytes leftover after parsing attributes in process `syz.0.5453'. [ 1427.385887][T16283] usb 4-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice=80.99 [ 1427.395801][T16283] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1427.407814][T16283] usb 4-1: Product: syz [ 1427.412233][T16283] usb 4-1: Manufacturer: syz [ 1427.418748][T16283] usb 4-1: SerialNumber: syz [ 1427.430228][T16283] usb 4-1: config 0 descriptor?? [ 1428.392570][ T5257] usb 4-1: USB disconnect, device number 36 [ 1428.450295][T18277] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5454'. [ 1428.528101][T18283] syz.4.5463: attempt to access beyond end of device [ 1428.528101][T18283] loop4: rw=0, sector=64, nr_sectors = 8 limit=0 [ 1428.541760][T18283] syz.4.5463: attempt to access beyond end of device [ 1428.541760][T18283] loop4: rw=0, sector=120, nr_sectors = 8 limit=0 [ 1428.555248][T18283] Mount JFS Failure: -5 [ 1428.559598][T18283] jfs_mount failed w/return code = -5 [ 1428.606089][T18281] openvswitch: netlink: IP tunnel attribute has 4 unknown bytes. [ 1430.185484][T16283] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 1430.377047][T16283] usb 1-1: Using ep0 maxpacket: 32 [ 1430.516377][T18311] loop1: detected capacity change from 0 to 512 [ 1430.783115][T16283] usb 1-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=ba.e3 [ 1430.793115][T16283] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1430.801874][T16283] usb 1-1: Product: syz [ 1430.806375][T16283] usb 1-1: Manufacturer: syz [ 1430.811213][T16283] usb 1-1: SerialNumber: syz [ 1430.939735][T16283] usb 1-1: config 0 descriptor?? [ 1431.007215][T18311] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1431.020629][T18311] ext4 filesystem being mounted at /84/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1431.060665][T18321] loop3: detected capacity change from 0 to 256 [ 1431.400227][ T5270] usb 1-1: USB disconnect, device number 26 [ 1431.407735][ T5270] f81534a_ctrl 1-1:0.0: failed to set register 0x116: -19 [ 1431.415407][ T5270] f81534a_ctrl 1-1:0.0: failed to enable ports: -19 [ 1431.673108][T17167] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1431.718570][T18321] FAT-fs (loop3): Directory bread(block 64) failed [ 1431.725586][T18321] FAT-fs (loop3): Directory bread(block 65) failed [ 1431.732514][T18321] FAT-fs (loop3): Directory bread(block 66) failed [ 1431.740064][T18321] FAT-fs (loop3): Directory bread(block 67) failed [ 1431.747140][T18321] FAT-fs (loop3): Directory bread(block 68) failed [ 1431.753921][T18321] FAT-fs (loop3): Directory bread(block 69) failed [ 1431.761024][T18321] FAT-fs (loop3): Directory bread(block 70) failed [ 1431.768337][T18321] FAT-fs (loop3): Directory bread(block 71) failed [ 1431.775365][T18321] FAT-fs (loop3): Directory bread(block 72) failed [ 1431.782139][T18321] FAT-fs (loop3): Directory bread(block 73) failed [ 1431.898598][T18335] loop4: detected capacity change from 0 to 256 [ 1432.990634][T18347] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1433.527030][T18358] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5498'. [ 1433.760964][T18362] A link change request failed with some changes committed already. Interface veth1_vlan may have been left with an inconsistent configuration, please check. [ 1434.236066][T18366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5502'. [ 1434.736224][T18375] IPv6: NLM_F_CREATE should be specified when creating new route [ 1435.141324][T18381] set match dimension is over the limit! [ 1436.811903][T18411] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5524'. [ 1436.824861][T18411] tc_dump_action: action bad kind [ 1436.875217][T15954] usb 1-1: new full-speed USB device number 27 using dummy_hcd [ 1437.145021][T15954] usb 1-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 1437.154618][T15954] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1437.267379][T15954] usb 1-1: config 0 descriptor?? [ 1437.316454][T15954] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1437.490887][T18419] loop3: detected capacity change from 0 to 1024 [ 1437.588889][T18419] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1437.696877][T18419] EXT4-fs (loop3): 1 truncate cleaned up [ 1437.850706][T15954] gp8psk: usb out operation failed. [ 1437.856582][T15954] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1437.867713][T15954] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1437.909293][T18419] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1437.986504][T18413] loop2: detected capacity change from 0 to 4096 [ 1438.059820][T15954] usb 1-1: USB disconnect, device number 27 [ 1438.089623][T18413] NILFS (loop2): invalid segment: Checksum error in segment payload [ 1438.098072][T18413] NILFS (loop2): trying rollback from an earlier position [ 1438.259455][T18413] NILFS (loop2): recovery complete [ 1438.287759][T18428] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1438.426924][ T8811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1439.048653][T18436] netlink: 24 bytes leftover after parsing attributes in process `syz.0.5537'. [ 1440.462140][T18460] trusted_key: encrypted_key: insufficient parameters specified [ 1440.552741][T18462] netlink: 40 bytes leftover after parsing attributes in process `syz.0.5547'. [ 1441.128578][T18468] netlink: 154020 bytes leftover after parsing attributes in process `syz.0.5550'. [ 1441.138615][T18468] openvswitch: netlink: ufid size 48894 bytes exceeds the range (1, 16) [ 1441.147474][T18468] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1441.291322][T18474] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5552'. [ 1441.487427][T18476] sock: sock_set_timeout: `syz.4.5556' (pid 18476) tries to set negative timeout [ 1441.953851][T18479] loop1: detected capacity change from 0 to 128 [ 1442.036954][T18479] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1442.100180][T18479] ext4 filesystem being mounted at /100/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1442.264830][T18479] EXT4-fs error (device loop1): ext4_validate_block_bitmap:423: comm syz.1.5555: bg 0: bad block bitmap checksum [ 1442.635686][T17167] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1442.824834][T15954] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 1443.104684][T15954] usb 4-1: Using ep0 maxpacket: 8 [ 1443.143062][T15954] usb 4-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76 [ 1443.155631][T15954] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1443.163904][T15954] usb 4-1: Product: syz [ 1443.170135][T15954] usb 4-1: Manufacturer: syz [ 1443.175332][T15954] usb 4-1: SerialNumber: syz [ 1443.302893][T15954] usb 4-1: config 0 descriptor?? [ 1443.322468][T15954] gspca_main: ALi m5602-2.14.0 probing 0402:5602 [ 1443.744975][ T8891] usb 2-1: new high-speed USB device number 29 using dummy_hcd [ 1443.862790][T15954] gspca_m5602: Failed to find a sensor [ 1443.873852][T15954] ALi m5602 4-1:0.0: ALi m5602 webcam failed [ 1443.943554][T15954] usb 4-1: USB disconnect, device number 37 [ 1444.011259][ T8891] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1444.022056][ T8891] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1444.033373][ T8891] usb 2-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 1444.042887][ T8891] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1444.292954][ T8891] usb 2-1: config 0 descriptor?? [ 1444.760291][ T8891] Bluetooth: Can't get version to change to load ram patch err [ 1444.768496][ T8891] Bluetooth: Loading patch file failed [ 1444.774202][ T8891] ath3k 2-1:0.0: probe with driver ath3k failed with error -71 [ 1444.869795][ T8891] usb 2-1: USB disconnect, device number 29 [ 1445.405161][T18523] Cannot find set identified by id 0 to match [ 1445.457665][T18527] netlink: 'syz.3.5579': attribute type 11 has an invalid length. [ 1445.466031][T18527] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.5579'. [ 1445.922259][T18535] netlink: 'syz.1.5583': attribute type 32 has an invalid length. [ 1445.931146][T18535] (unnamed net_device) (uninitialized): option coupled_control: mode dependency failed, not supported in mode balance-rr(0) [ 1447.227942][T18555] set match dimension is over the limit! [ 1447.896377][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 1447.903054][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 1447.996612][T18567] netlink: 'syz.3.5598': attribute type 1 has an invalid length. [ 1448.602346][T18578] netlink: 'syz.0.5603': attribute type 14 has an invalid length. [ 1449.556379][T18596] netlink: 288 bytes leftover after parsing attributes in process `syz.4.5612'. [ 1450.834757][T15954] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 1451.203098][T15954] usb 1-1: config 0 has an invalid interface number: 117 but max is 0 [ 1451.211835][T15954] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1451.222405][T15954] usb 1-1: config 0 has no interface number 0 [ 1451.229050][T15954] usb 1-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1451.240948][T15954] usb 1-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 1451.540220][T15954] usb 1-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0 [ 1451.551905][T15954] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1451.560930][T15954] usb 1-1: Product: syz [ 1451.566464][T15954] usb 1-1: Manufacturer: syz [ 1451.571670][T15954] usb 1-1: SerialNumber: syz [ 1451.612113][T15954] usb 1-1: config 0 descriptor?? [ 1452.215907][T15954] usb 1-1: USB disconnect, device number 28 [ 1454.158113][T18670] syz.2.5648: attempt to access beyond end of device [ 1454.158113][T18670] loop2: rw=0, sector=2, nr_sectors = 2 limit=0 [ 1454.171713][T18670] vxfs: unable to read disk superblock at 1 [ 1454.178265][T18670] syz.2.5648: attempt to access beyond end of device [ 1454.178265][T18670] loop2: rw=0, sector=16, nr_sectors = 2 limit=0 [ 1454.191580][T18670] vxfs: unable to read disk superblock at 8 [ 1454.197820][T18670] vxfs: can't find superblock. [ 1454.686042][T18676] netlink: 'syz.4.5651': attribute type 4 has an invalid length. [ 1454.694043][T18676] netlink: 'syz.4.5651': attribute type 3 has an invalid length. [ 1454.702435][T18676] netlink: 132 bytes leftover after parsing attributes in process `syz.4.5651'. [ 1455.824124][T18696] netlink: 872 bytes leftover after parsing attributes in process `syz.0.5661'. [ 1456.419502][ T8891] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 1456.528633][T18682] loop2: detected capacity change from 0 to 4096 [ 1456.559440][T18682] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1456.593834][ T8891] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1456.604004][ T8891] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1456.612923][ T8891] usb 4-1: Product: syz [ 1456.617478][ T8891] usb 4-1: Manufacturer: syz [ 1456.622320][ T8891] usb 4-1: SerialNumber: syz [ 1456.705959][ T8891] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1456.821696][T15954] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1457.224798][T18682] ntfs3(loop2): failed to convert "c46c" to cp861 [ 1457.347354][T16283] usb 4-1: USB disconnect, device number 38 [ 1457.380541][ T5270] usb 2-1: new high-speed USB device number 30 using dummy_hcd [ 1457.598682][ T5270] usb 2-1: Using ep0 maxpacket: 16 [ 1457.617559][ T5270] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00 [ 1457.627279][ T5270] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1457.716192][ T5270] usb 2-1: config 0 descriptor?? [ 1457.741357][ T5270] ftdi_sio 2-1:0.0: FTDI USB Serial Device converter detected [ 1457.959556][T15954] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 1457.967420][T15954] ath9k_htc: Failed to initialize the device [ 1458.007380][T16283] usb 4-1: ath9k_htc: USB layer deinitialized [ 1458.130966][ T5270] usb 2-1: Detected FT232B [ 1458.292848][ T5270] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 1458.335129][ T5270] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1458.376965][ T5270] usb 2-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1458.507769][ T5270] usb 2-1: USB disconnect, device number 30 [ 1458.997828][ T5270] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1459.010108][ T5270] ftdi_sio 2-1:0.0: device disconnected [ 1460.055439][T18747] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5684'. [ 1460.755670][T18756] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5688'. [ 1461.335091][ T8891] usb 3-1: new full-speed USB device number 21 using dummy_hcd [ 1461.894891][T18779] loop1: detected capacity change from 0 to 24 [ 1461.941947][ T8891] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64 [ 1461.944250][T18779] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1461.953570][ T8891] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1461.970956][ T8891] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 1462.177079][ T8891] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1462.186954][ T8891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1462.196904][ T8891] usb 3-1: SerialNumber: syz [ 1462.270761][T18764] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1462.302658][ T8891] cdc_ether 3-1:1.0: probe with driver cdc_ether failed with error -22 [ 1462.556044][ T8891] usb 3-1: USB disconnect, device number 21 [ 1462.804828][T18790] netlink: 'syz.4.5706': attribute type 2 has an invalid length. [ 1463.295993][ T5270] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 1463.671267][T18805] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5715'. [ 1464.048337][ T5270] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1464.061582][ T5270] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1464.072585][ T5270] usb 4-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 1464.082038][ T5270] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1464.153311][ T5270] usb 4-1: config 0 descriptor?? [ 1464.948027][T18817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5730'. [ 1465.094731][ T5270] Bluetooth: Can't get version to change to load ram patch err [ 1465.102686][ T5270] Bluetooth: Loading patch file failed [ 1465.108538][ T5270] ath3k 4-1:0.0: probe with driver ath3k failed with error -71 [ 1465.251134][ T5270] usb 4-1: USB disconnect, device number 39 [ 1466.075690][ T29] audit: type=1326 audit(2000000701.819:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18836 comm="syz.3.5732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743d579 code=0x7ffc0000 [ 1466.101504][ T29] audit: type=1326 audit(2000000701.819:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18836 comm="syz.3.5732" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf743d579 code=0x7ffc0000 [ 1466.153913][T18840] netlink: 132 bytes leftover after parsing attributes in process `syz.0.5733'. [ 1466.166797][T18842] ipt_REJECT: ECHOREPLY no longer supported. [ 1466.725294][ T5270] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 1466.935135][ T8891] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 1466.992197][T18858] loop4: detected capacity change from 0 to 256 [ 1467.034569][ T5270] usb 2-1: Using ep0 maxpacket: 32 [ 1467.108797][ T8891] usb 3-1: Using ep0 maxpacket: 32 [ 1467.117110][ T5270] usb 2-1: New USB device found, idVendor=0572, idProduct=cb07, bcdDevice=f6.19 [ 1467.126755][ T5270] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1467.137408][ T5270] usb 2-1: Product: syz [ 1467.141816][ T5270] usb 2-1: Manufacturer: syz [ 1467.147804][ T5270] usb 2-1: SerialNumber: syz [ 1467.207868][ T8891] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 175 [ 1467.247259][ T5270] usb 2-1: config 0 descriptor?? [ 1467.324226][ T5270] usb-storage 2-1:0.0: USB Mass Storage device detected [ 1467.336671][ T8891] usb 3-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=58.16 [ 1467.346370][ T8891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1467.354861][ T8891] usb 3-1: Product: syz [ 1467.359269][ T8891] usb 3-1: Manufacturer: syz [ 1467.364111][ T8891] usb 3-1: SerialNumber: syz [ 1467.452525][ T8891] usb 3-1: config 0 descriptor?? [ 1467.460912][T18850] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 1467.576613][ T5270] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19! [ 1467.584572][ T8891] usb 3-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 1467.698779][T15954] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 1467.766374][T16097] usb 3-1: Failed to submit usb control message: -71 [ 1467.773410][T16097] usb 3-1: unable to send the bmi data to the device: -71 [ 1467.781099][T16097] usb 3-1: unable to get target info from device [ 1467.788063][T16097] usb 3-1: could not get target info (-71) [ 1467.794174][T16097] usb 3-1: could not probe fw (-71) [ 1467.806864][ T8891] usb 3-1: USB disconnect, device number 22 [ 1467.960277][T12661] usb 2-1: USB disconnect, device number 31 [ 1468.043647][T15954] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1468.055204][T15954] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 1468.066942][T15954] usb 1-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 1468.077279][T15954] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1468.098845][T15954] usb 1-1: config 0 descriptor?? [ 1468.492184][T18878] binder: 18877:18878 ioctl 400c620e 0 returned -14 [ 1469.034670][T18889] tmpfs: Bad value for 'mpol' [ 1469.578787][T15954] Bluetooth: Can't get version to change to load ram patch err [ 1469.588466][T15954] Bluetooth: Loading patch file failed [ 1469.594729][T15954] ath3k 1-1:0.0: probe with driver ath3k failed with error -71 [ 1469.869112][T16078] Bluetooth: hci1: unexpected event for opcode 0x0401 [ 1469.945365][T15954] usb 1-1: USB disconnect, device number 29 [ 1470.281369][T18902] loop4: detected capacity change from 0 to 1024 [ 1470.513281][T18902] fuse: Bad value for 'fd' [ 1470.738967][ T3376] hfsplus: b-tree write err: -5, ino 4 [ 1471.685031][ T8891] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 1471.855322][ T8891] usb 3-1: Using ep0 maxpacket: 8 [ 1471.895208][ T8891] usb 3-1: config index 0 descriptor too short (expected 6427, got 27) [ 1471.903886][ T8891] usb 3-1: config 0 has an invalid interface number: 21 but max is 0 [ 1471.912482][ T8891] usb 3-1: config 0 has no interface number 0 [ 1471.918966][ T8891] usb 3-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1471.932690][ T8891] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1471.945539][ T8891] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1471.961286][ T8891] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 1471.970844][ T8891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1472.039127][ T8891] usb 3-1: config 0 descriptor?? [ 1472.499530][ T8891] usb 3-1: USB disconnect, device number 23 [ 1473.033504][T18942] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5778'. [ 1473.944684][ T5214] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 1473.953381][ T5214] Bluetooth: hci1: Injecting HCI hardware error event [ 1473.962029][ T5214] Bluetooth: hci1: hardware error 0x00 [ 1474.216479][T18958] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1474.224073][T18958] vhci_hcd: invalid port number 130 [ 1474.229722][T18958] vhci_hcd: invalid port number 130 [ 1474.614509][T15954] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1474.938344][T18975] befs: (nbd3): No write support. Marking filesystem read-only [ 1474.946662][T18975] syz.3.5794: attempt to access beyond end of device [ 1474.946662][T18975] nbd3: rw=0, sector=0, nr_sectors = 2 limit=0 [ 1474.959809][T18975] befs: (nbd3): unable to read superblock [ 1474.988017][T15954] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1474.999148][T15954] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1475.008198][T15954] usb 5-1: Product: syz [ 1475.012641][T15954] usb 5-1: Manufacturer: syz [ 1475.018377][T15954] usb 5-1: SerialNumber: syz [ 1475.216430][T15954] usb 5-1: config 0 descriptor?? [ 1475.353061][T18982] tmpfs: Bad value for 'size' [ 1475.503690][T15954] hso 5-1:0.0: Failed to find BULK IN ep [ 1475.540077][T18986] ipt_rpfilter: unknown options [ 1475.562492][T15954] usb-storage 5-1:0.0: USB Mass Storage device detected [ 1475.656940][T18960] Bluetooth: hci0: command 0x0406 tx timeout [ 1475.759551][T15954] usb 5-1: USB disconnect, device number 25 [ 1475.893291][T16283] usb 4-1: new high-speed USB device number 40 using dummy_hcd [ 1476.045026][ T5214] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 1476.247383][T16283] usb 4-1: Using ep0 maxpacket: 32 [ 1476.268752][T16283] usb 4-1: New USB device found, idVendor=0572, idProduct=cb07, bcdDevice=f6.19 [ 1476.278358][T16283] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1476.286775][T16283] usb 4-1: Product: syz [ 1476.291178][T16283] usb 4-1: Manufacturer: syz [ 1476.296242][T16283] usb 4-1: SerialNumber: syz [ 1476.385058][T16283] usb 4-1: config 0 descriptor?? [ 1476.428669][T16283] usb-storage 4-1:0.0: USB Mass Storage device detected [ 1476.620015][T16283] cxacru 4-1:0.0: usbatm_usb_probe: bind failed: -19! [ 1476.875456][T16283] usb 4-1: USB disconnect, device number 40 [ 1477.521166][ T29] audit: type=1326 audit(2000000713.249:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19014 comm="syz.1.5811" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1477.644915][ T29] audit: type=1326 audit(2000000713.309:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19014 comm="syz.1.5811" exe="/root/syz-executor" sig=0 arch=40000003 syscall=163 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1477.671074][ T29] audit: type=1326 audit(2000000713.309:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19014 comm="syz.1.5811" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1477.695994][ T29] audit: type=1326 audit(2000000713.309:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19014 comm="syz.1.5811" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1478.800159][T19024] loop3: detected capacity change from 0 to 2048 [ 1478.875181][T19024] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1479.988859][T16283] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 1480.284579][ T5270] usb 5-1: new high-speed USB device number 26 using dummy_hcd [ 1480.386002][T16283] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1480.450139][T16283] usb 3-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 1480.459962][T16283] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1480.468469][T16283] usb 3-1: Product: syz [ 1480.472866][T16283] usb 3-1: Manufacturer: syz [ 1480.477879][T16283] usb 3-1: SerialNumber: syz [ 1480.518724][ T5270] usb 5-1: Using ep0 maxpacket: 32 [ 1480.562780][ T5270] usb 5-1: New USB device found, idVendor=0572, idProduct=cb07, bcdDevice=f6.19 [ 1480.572355][ T5270] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1480.580746][ T5270] usb 5-1: Product: syz [ 1480.585275][ T5270] usb 5-1: Manufacturer: syz [ 1480.590121][ T5270] usb 5-1: SerialNumber: syz [ 1480.641482][T16283] usb 3-1: config 0 descriptor?? [ 1480.682494][T16283] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 1480.691947][ T29] audit: type=1400 audit(2000000716.439:157): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=381CD2A12F2F26 pid=19063 comm="syz.1.5829" [ 1480.739480][ T5270] usb 5-1: config 0 descriptor?? [ 1480.810257][ T5270] usb-storage 5-1:0.0: USB Mass Storage device detected [ 1480.968286][T16283] snd-usb-audio 3-1:0.0: probe with driver snd-usb-audio failed with error -2 [ 1481.016406][ T5270] cxacru 5-1:0.0: usbatm_usb_probe: bind failed: -19! [ 1481.100747][ T5270] usb 3-1: USB disconnect, device number 24 [ 1481.266566][T16283] usb 5-1: USB disconnect, device number 26 [ 1481.405930][T16672] udevd[16672]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1482.329861][T19086] CIFS: VFS: Malformed UNC in devname [ 1482.666834][T15954] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 1482.840295][T19098] netlink: 276 bytes leftover after parsing attributes in process `syz.2.5848'. [ 1482.864773][T15954] usb 1-1: Using ep0 maxpacket: 16 [ 1482.907795][T15954] usb 1-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00 [ 1482.917523][T15954] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1483.106685][T16283] usb 4-1: new low-speed USB device number 41 using dummy_hcd [ 1483.117591][ T5257] usb 2-1: new high-speed USB device number 32 using dummy_hcd [ 1483.335760][ T5257] usb 2-1: Using ep0 maxpacket: 32 [ 1483.337083][T15954] usb 1-1: config 0 descriptor?? [ 1483.353049][T16283] usb 4-1: config 32 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 10 [ 1483.364877][T16283] usb 4-1: config 32 interface 0 altsetting 0 endpoint 0x85 has invalid maxpacket 255, setting to 8 [ 1483.376358][T16283] usb 4-1: New USB device found, idVendor=19b5, idProduct=0021, bcdDevice=98.c7 [ 1483.386098][T16283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1483.537817][T15954] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected [ 1483.541632][ T5257] usb 2-1: New USB device found, idVendor=2c42, idProduct=16f8, bcdDevice=ba.e3 [ 1483.555240][ T5257] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1483.563502][ T5257] usb 2-1: Product: syz [ 1483.568046][ T5257] usb 2-1: Manufacturer: syz [ 1483.572872][ T5257] usb 2-1: SerialNumber: syz [ 1483.729000][T19084] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1483.896111][T15954] usb 1-1: Detected FT232B [ 1483.896920][ T5257] usb 2-1: config 0 descriptor?? [ 1484.288351][T16283] usb 4-1: string descriptor 0 read error: -71 [ 1484.298192][T16283] hub 4-1:32.0: USB hub found [ 1484.374185][T16283] hub 4-1:32.0: config failed, can't read hub descriptor (err -22) [ 1484.440685][T15954] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 1484.462853][T15954] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1484.475602][T15954] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1484.491173][T15954] usb 1-1: USB disconnect, device number 30 [ 1484.540551][T15954] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1484.553235][T15954] ftdi_sio 1-1:0.0: device disconnected [ 1484.673229][ T5257] usb 2-1: USB disconnect, device number 32 [ 1484.683340][ T5257] f81534a_ctrl 2-1:0.0: failed to set register 0x116: -19 [ 1484.691713][ T5257] f81534a_ctrl 2-1:0.0: failed to enable ports: -19 [ 1484.986163][T16283] usb 4-1: USB disconnect, device number 41 [ 1485.115129][T17340] udevd[17340]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:32.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1485.451018][T19119] XFS (nullb0): Invalid superblock magic number [ 1485.884032][T19129] netlink: 'syz.3.5859': attribute type 7 has an invalid length. [ 1485.892320][T19129] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.5859'. [ 1487.087901][T16283] usb 4-1: new high-speed USB device number 42 using dummy_hcd [ 1487.243822][T19154] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1487.251652][T19154] vhci_hcd: invalid port number 130 [ 1487.257731][T19154] vhci_hcd: invalid port number 130 [ 1487.265092][ T8891] usb 2-1: new high-speed USB device number 33 using dummy_hcd [ 1487.277677][T19155] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1487.385393][T16283] usb 4-1: Using ep0 maxpacket: 16 [ 1487.412326][T16283] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00 [ 1487.422044][T16283] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1487.475951][T16283] usb 4-1: config 0 descriptor?? [ 1487.527079][T15954] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 1487.586655][T16283] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 1487.735520][T15954] usb 3-1: config 0 has an invalid interface number: 83 but max is 0 [ 1487.744560][T15954] usb 3-1: config 0 has no interface number 0 [ 1487.750910][T15954] usb 3-1: config 0 interface 83 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0 [ 1487.761563][T15954] usb 3-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61 [ 1487.771075][T15954] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1487.785322][T19159] netlink: 'syz.4.5873': attribute type 10 has an invalid length. [ 1487.793555][T19159] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5873'. [ 1487.807888][T19159] macvtap0: entered promiscuous mode [ 1487.818981][T19159] macvtap0: entered allmulticast mode [ 1487.824863][T19159] veth0_macvtap: entered allmulticast mode [ 1487.834859][T19159] bridge0: port 3(macvtap0) entered blocking state [ 1487.844827][T19159] bridge0: port 3(macvtap0) entered disabled state [ 1487.858286][T19159] A link change request failed with some changes committed already. Interface macvtap0 may have been left with an inconsistent configuration, please check. [ 1487.864705][T15954] usb 3-1: config 0 descriptor?? [ 1487.894665][T16283] usb 4-1: Detected FT232B [ 1487.913597][ T8891] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1487.923936][ T8891] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1487.932695][ T8891] usb 2-1: Product: syz [ 1487.937308][ T8891] usb 2-1: Manufacturer: syz [ 1487.942159][ T8891] usb 2-1: SerialNumber: syz [ 1487.960435][T19161] libceph: resolve '0..' (ret=-3): failed [ 1487.983983][T15954] ttusbir 3-1:0.83: cannot find expected altsetting [ 1488.026811][ T8891] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1488.086857][T16283] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 1488.129388][T16283] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1488.167026][T16283] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1488.227625][ T5257] usb 3-1: USB disconnect, device number 25 [ 1488.287741][T16283] usb 4-1: USB disconnect, device number 42 [ 1488.339556][T15954] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1488.353927][T16283] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1488.366184][T16283] ftdi_sio 4-1:0.0: device disconnected [ 1488.934022][ T5270] usb 2-1: USB disconnect, device number 33 [ 1489.465069][T15954] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1489.472764][T15954] ath9k_htc: Failed to initialize the device [ 1489.501700][ T5270] usb 2-1: ath9k_htc: USB layer deinitialized [ 1489.541701][T19172] ecryptfs_parse_options: eCryptfs: unrecognized option [&@] [ 1489.550428][T19172] ecryptfs_parse_options: eCryptfs: unrecognized option [aᆏ4c [ 1489.550428][T19172] WLw>""j䏞.dC] [ 1489.568347][T19172] ecryptfs_parse_options: eCryptfs: unrecognized option [] [ 1489.576703][T19172] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 1489.590387][T19172] Error parsing options; rc = [-22] [ 1489.734093][T19171] loop2: detected capacity change from 0 to 1024 [ 1490.209791][T16162] hfsplus: b-tree write err: -5, ino 4 [ 1490.586707][T19184] netlink: get zone limit has 8 unknown bytes [ 1494.280946][T19245] loop4: detected capacity change from 0 to 64 [ 1494.333645][T19245] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1494.819231][T19249] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1495.769959][T19265] tmpfs: Bad value for 'mpol' [ 1496.335023][T19275] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5929'. [ 1496.946426][T19287] sctp: [Deprecated]: syz.2.5936 (pid 19287) Use of int in maxseg socket option. [ 1496.946426][T19287] Use struct sctp_assoc_value instead [ 1497.482620][T19298] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5940'. [ 1499.396779][ T29] audit: type=1326 audit(2000000735.129:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19328 comm="syz.2.5955" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1499.419489][ T29] audit: type=1326 audit(2000000735.129:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19328 comm="syz.2.5955" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x7ffc0000 [ 1499.874828][T12661] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 1500.102550][T12661] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1500.108774][T19341] sctp: [Deprecated]: syz.2.5960 (pid 19341) Use of int in max_burst socket option. [ 1500.108774][T19341] Use struct sctp_assoc_value instead [ 1500.178246][T12661] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 1500.189691][T12661] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1500.198938][T12661] usb 4-1: Product: syz [ 1500.203358][T12661] usb 4-1: Manufacturer: syz [ 1500.209391][T12661] usb 4-1: SerialNumber: syz [ 1500.279030][T12661] usb 4-1: config 0 descriptor?? [ 1500.363383][T12661] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 1500.908386][T19354] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5968'. [ 1500.911544][T12661] snd-usb-audio 4-1:0.0: probe with driver snd-usb-audio failed with error -2 [ 1501.007923][T12661] usb 4-1: USB disconnect, device number 43 [ 1501.161020][T16672] udevd[16672]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1502.006416][T19369] netlink: 'syz.3.5973': attribute type 10 has an invalid length. [ 1502.070063][T19369] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1502.080808][T19369] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1502.091449][T19369] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1502.101436][T19369] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1503.991308][T19402] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5990'. [ 1504.426450][T19406] netlink: 4256 bytes leftover after parsing attributes in process `syz.3.5993'. [ 1504.436668][T19406] netlink: 4256 bytes leftover after parsing attributes in process `syz.3.5993'. [ 1504.953593][T19398] loop4: detected capacity change from 0 to 4096 [ 1505.085582][T15954] usb 2-1: new high-speed USB device number 34 using dummy_hcd [ 1505.197248][T19414] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1505.308458][T15954] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1505.318090][T15954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1505.327402][T15954] usb 2-1: Product: syz [ 1505.331818][T15954] usb 2-1: Manufacturer: syz [ 1505.337245][T15954] usb 2-1: SerialNumber: syz [ 1505.407021][T15954] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1505.680517][T12661] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1506.092262][T19420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1506.103156][T19420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1506.113448][T19420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1506.124195][T19420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1506.138377][T19420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1506.153354][T19420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1506.164541][T19420] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 1506.175373][T19420] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 1508.629473][T19426] binfmt_misc: register: failed to install interpreter file ./file0 [ 1509.114151][T12661] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1509.155494][T12661] ath9k_htc: Failed to initialize the device [ 1509.175333][T15954] usb 2-1: USB disconnect, device number 34 [ 1509.211873][ C0] sched: DL replenish lagged too much [ 1509.252536][T15954] usb 2-1: ath9k_htc: USB layer deinitialized [ 1509.361955][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 1509.368835][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 1509.494882][T19432] netlink: 'syz.2.6005': attribute type 15 has an invalid length. [ 1510.244121][T19446] program syz.1.6013 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1510.696816][T19440] orangefs_mount: mount request failed with -4 [ 1510.988833][T19460] loop2: detected capacity change from 0 to 256 [ 1511.489546][ T29] audit: type=1800 audit(2000000747.229:160): pid=19460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.6019" name="file0" dev="loop2" ino=1048712 res=0 errno=0 [ 1511.637760][T19471] loop4: detected capacity change from 0 to 8 [ 1511.961589][T19471] SQUASHFS error: xz decompression failed, data probably corrupt [ 1511.974150][T19471] SQUASHFS error: Failed to read block 0x60: -5 [ 1512.016391][T19471] SQUASHFS error: xz decompression failed, data probably corrupt [ 1512.024593][T19471] SQUASHFS error: Failed to read block 0x60: -5 [ 1512.032417][ T29] audit: type=1800 audit(2000000747.779:161): pid=19471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.6025" name="file1" dev="loop4" ino=1 res=0 errno=0 [ 1513.008133][T19483] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6031'. [ 1513.017622][T19483] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6031'. [ 1513.551432][T19491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6035'. [ 1513.560711][T19491] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6035'. [ 1513.810506][T19497] netlink: 'syz.3.6038': attribute type 11 has an invalid length. [ 1513.819017][T19497] netlink: 105120 bytes leftover after parsing attributes in process `syz.3.6038'. [ 1514.238537][T19501] loop2: detected capacity change from 0 to 1764 [ 1514.268735][T19505] netlink: 'syz.1.6041': attribute type 10 has an invalid length. [ 1514.411250][T19507] loop1: detected capacity change from 0 to 64 [ 1515.176064][T19517] ipt_REJECT: ECHOREPLY no longer supported. [ 1515.204010][T19519] tmpfs: Bad value for 'mpol' [ 1515.785238][T19521] usb usb8: check_ctrlrecip: process 19521 (syz.4.6051) requesting ep 01 but needs 81 [ 1515.795482][T19521] usb usb8: usbfs: process 19521 (syz.4.6051) did not claim interface 0 before use [ 1516.257107][T19537] netlink: 40 bytes leftover after parsing attributes in process `syz.1.6057'. [ 1516.436864][T19541] loop3: detected capacity change from 0 to 64 [ 1516.656182][T15954] usb 5-1: new high-speed USB device number 27 using dummy_hcd [ 1516.759596][T19545] program syz.0.6060 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1516.956518][T15954] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config [ 1516.968347][T15954] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1516.981498][T15954] usb 5-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1516.995367][T15954] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 1517.006049][T15954] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1517.052591][T19547] netlink: 830 bytes leftover after parsing attributes in process `syz.1.6062'. [ 1517.222392][T15954] usb 5-1: Quirk or no altset; falling back to MIDI 1.0 [ 1517.231066][T15954] usb 5-1: invalid MIDI out EP 0 [ 1517.342675][T19549] netlink: 188 bytes leftover after parsing attributes in process `syz.3.6063'. [ 1517.763008][T15954] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 1517.803845][T15954] usb 5-1: USB disconnect, device number 27 [ 1518.138673][T17340] udevd[17340]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1518.277098][T19567] loop1: detected capacity change from 0 to 128 [ 1518.617378][T19567] FAT-fs (loop1): Directory bread(block 32) failed [ 1518.628018][T19567] FAT-fs (loop1): Directory bread(block 33) failed [ 1518.637493][T19567] FAT-fs (loop1): Directory bread(block 34) failed [ 1518.647996][T19567] FAT-fs (loop1): Directory bread(block 35) failed [ 1518.655917][T19567] FAT-fs (loop1): Directory bread(block 36) failed [ 1518.662709][T19567] FAT-fs (loop1): Directory bread(block 37) failed [ 1518.669743][T19567] FAT-fs (loop1): Directory bread(block 38) failed [ 1518.676747][T19567] FAT-fs (loop1): Directory bread(block 39) failed [ 1518.683667][T19567] FAT-fs (loop1): Directory bread(block 40) failed [ 1518.690561][T19567] FAT-fs (loop1): Directory bread(block 41) failed [ 1518.988972][ T29] audit: type=1326 audit(2000000754.709:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19571 comm="syz.4.6076" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x0 [ 1519.196560][T19567] syz.1.6072: attempt to access beyond end of device [ 1519.196560][T19567] loop1: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 1519.210576][T19567] FAT-fs (loop1): Filesystem has been set read-only [ 1519.326853][T19567] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1519.469108][T19580] netlink: 'syz.3.6073': attribute type 21 has an invalid length. [ 1519.477505][T19580] netlink: 132 bytes leftover after parsing attributes in process `syz.3.6073'. [ 1519.488730][T19580] netlink: 28 bytes leftover after parsing attributes in process `syz.3.6073'. [ 1519.697261][T16283] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 1519.917962][T16283] usb 3-1: Using ep0 maxpacket: 16 [ 1519.922649][T19589] xfrm1: entered promiscuous mode [ 1519.928659][T19589] xfrm1: entered allmulticast mode [ 1519.957730][T16283] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1520.046545][T16283] usb 3-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25 [ 1520.059177][T16283] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1520.068565][T16283] usb 3-1: Product: syz [ 1520.075206][T16283] usb 3-1: Manufacturer: syz [ 1520.080057][T16283] usb 3-1: SerialNumber: syz [ 1520.114711][T16283] usb 3-1: config 0 descriptor?? [ 1520.525323][T16283] usb 3-1: USB disconnect, device number 26 [ 1520.806946][T19599] loop1: detected capacity change from 0 to 2048 [ 1521.085853][T19599] UDF-fs: error (device loop1): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 1521.099835][T19599] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found [ 1521.109828][T19599] UDF-fs: Scanning with blocksize 512 failed [ 1521.206047][T19599] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1521.222278][T19608] netlink: 5 bytes leftover after parsing attributes in process `syz.0.6090'. [ 1521.232263][T19608] 0XD: renamed from gretap0 (while UP) [ 1521.294127][T19608] 0XD: entered allmulticast mode [ 1522.104161][T19615] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 1522.111004][T19615] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1522.120240][T19615] vhci_hcd vhci_hcd.0: Device attached [ 1522.325092][T12661] vhci_hcd: vhci_device speed not set [ 1522.355063][T19616] vhci_hcd: connection closed [ 1522.379810][T16097] vhci_hcd: stop threads [ 1522.389581][T16097] vhci_hcd: release socket [ 1522.394255][T16097] vhci_hcd: disconnect device [ 1522.403957][T12661] usb 17-1: new full-speed USB device number 2 using vhci_hcd [ 1522.415541][T12661] usb 17-1: enqueue for inactive port 0 [ 1522.518807][T19621] loop1: detected capacity change from 0 to 256 [ 1522.618810][T12661] vhci_hcd: vhci_device speed not set [ 1522.710271][T19621] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 1524.475345][T15954] usb 2-1: new high-speed USB device number 35 using dummy_hcd [ 1524.684066][T15954] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1524.694202][T15954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1524.702763][T15954] usb 2-1: Product: syz [ 1524.707445][T15954] usb 2-1: Manufacturer: syz [ 1524.712342][T15954] usb 2-1: SerialNumber: syz [ 1524.877775][T15954] usb 2-1: config 0 descriptor?? [ 1525.108588][T15954] ch341 2-1:0.0: ch341-uart converter detected [ 1525.674721][T19658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6116'. [ 1525.687834][T19658] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6116'. [ 1525.838964][T19668] bond0: (slave rose0): Enslaving as an active interface with an up link [ 1525.901286][T19669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6120'. [ 1525.969268][T15954] usb 2-1: failed to send control message: -71 [ 1525.976313][T15954] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 1526.132340][T15954] usb 2-1: USB disconnect, device number 35 [ 1526.143031][T15954] ch341 2-1:0.0: device disconnected [ 1528.465392][ T5270] usb 4-1: new high-speed USB device number 44 using dummy_hcd [ 1528.477170][T16283] usb 5-1: new full-speed USB device number 28 using dummy_hcd [ 1528.674961][ T5270] usb 4-1: Using ep0 maxpacket: 16 [ 1528.807970][ T5270] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 1528.817864][ T5270] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1528.826593][ T5270] usb 4-1: Product: syz [ 1528.831002][ T5270] usb 4-1: Manufacturer: syz [ 1528.835992][ T5270] usb 4-1: SerialNumber: syz [ 1528.863480][ T5270] usb 4-1: config 0 descriptor?? [ 1528.982887][ T5270] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 1529.100171][T16283] usb 5-1: New USB device found, idVendor=13d8, idProduct=0001, bcdDevice=30.62 [ 1529.109843][T16283] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1529.118409][T16283] usb 5-1: Product: syz [ 1529.122972][T16283] usb 5-1: Manufacturer: syz [ 1529.128204][T16283] usb 5-1: SerialNumber: syz [ 1529.135592][ T5270] ssu100 4-1:0.0: probe with driver ssu100 failed with error -71 [ 1529.187882][ T5270] usb 4-1: USB disconnect, device number 44 [ 1529.206371][T16283] usb 5-1: config 0 descriptor?? [ 1529.240584][T16283] usb 5-1: selecting invalid altsetting 3 [ 1529.248069][T16283] comedi comedi0: could not set alternate setting 3 in high speed [ 1529.258386][T16283] usbdux 5-1:0.0: driver 'usbdux' failed to auto-configure device. [ 1529.346456][T16283] usbdux 5-1:0.0: probe with driver usbdux failed with error -22 [ 1529.488757][ T5270] usb 5-1: USB disconnect, device number 28 [ 1530.752685][T19745] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1531.879958][T19763] x_tables: duplicate underflow at hook 2 [ 1534.579026][T19804] openvswitch: netlink: Tunnel attr 0 has unexpected len 4 expected 8 [ 1534.857996][T19806] kAFS: unable to lookup cell '(>.DzsfIvNh\D%aD'+i8BcNo~F^($)3k 8S72gՑfo$ .~' [ 1536.360553][T19839] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT [ 1537.614797][T16283] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 1537.814742][T16283] usb 1-1: Using ep0 maxpacket: 8 [ 1537.834756][T16283] usb 1-1: too many configurations: 14, using maximum allowed: 8 [ 1538.053816][T16283] usb 1-1: New USB device found, idVendor=0421, idProduct=01d0, bcdDevice=98.e6 [ 1538.063464][T16283] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1538.071911][T16283] usb 1-1: Product: syz [ 1538.079380][T16283] usb 1-1: Manufacturer: syz [ 1538.084231][T16283] usb 1-1: SerialNumber: syz [ 1538.169087][T16283] usb 1-1: config 0 descriptor?? [ 1538.208196][T16283] usb 1-1: bad CDC descriptors [ 1538.214955][T16283] cdc_acm 1-1:0.0: Zero length descriptor references [ 1538.221904][T16283] cdc_acm 1-1:0.0: probe with driver cdc_acm failed with error -22 [ 1538.345000][T15954] usb 3-1: new high-speed USB device number 27 using dummy_hcd [ 1538.363745][T19872] netlink: 'syz.3.6216': attribute type 2 has an invalid length. [ 1538.398391][ T5270] usb 1-1: USB disconnect, device number 31 [ 1538.567262][T15954] usb 3-1: Using ep0 maxpacket: 16 [ 1538.600313][T15954] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 1538.609795][T15954] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1538.620674][T15954] usb 3-1: config 0 has no interface number 0 [ 1538.765043][T15954] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1538.779712][T15954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1538.788146][T15954] usb 3-1: Product: syz [ 1538.795003][T15954] usb 3-1: Manufacturer: syz [ 1538.799848][T15954] usb 3-1: SerialNumber: syz [ 1538.851290][T15954] usb 3-1: config 0 descriptor?? [ 1538.895941][T15954] usb 3-1: Found UVC 0.00 device syz (046d:08f3) [ 1538.902668][T15954] usb 3-1: No valid video chain found. [ 1539.151441][T18870] usb 3-1: USB disconnect, device number 27 [ 1539.562357][T19886] netlink: 'syz.3.6223': attribute type 6 has an invalid length. [ 1540.575157][T18870] usb 4-1: new high-speed USB device number 45 using dummy_hcd [ 1540.795258][T18870] usb 4-1: Using ep0 maxpacket: 8 [ 1540.845214][T18870] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1540.855953][T18870] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1540.866213][T18870] usb 4-1: config 1 has no interface number 1 [ 1540.872571][T18870] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1540.886087][T18870] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1541.110880][T18870] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1541.120498][T18870] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1541.129027][T18870] usb 4-1: Product: syz [ 1541.133461][T18870] usb 4-1: Manufacturer: syz [ 1541.138515][T18870] usb 4-1: SerialNumber: syz [ 1541.519012][ T5270] usb 5-1: new high-speed USB device number 29 using dummy_hcd [ 1541.765263][T18870] usb 4-1: 2:1 : no or invalid class specific endpoint descriptor [ 1541.773514][T18870] usb 4-1: 2:1 : unsupported format bits 0x80 [ 1541.905204][ T5270] usb 5-1: Using ep0 maxpacket: 32 [ 1541.919607][ T5270] usb 5-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1541.929916][ T5270] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1541.971231][ T5270] usb 5-1: config 0 descriptor?? [ 1541.997960][ T5270] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1542.104736][T19925] fuse: Bad value for 'fd' [ 1542.145045][T18870] usb 4-1: USB disconnect, device number 45 [ 1542.285536][T16672] udevd[16672]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1542.474164][ T5270] gspca_nw80x: reg_r err -71 [ 1542.485342][ T5270] nw80x 5-1:0.0: probe with driver nw80x failed with error -71 [ 1542.545733][ T5270] usb 5-1: USB disconnect, device number 29 [ 1543.008984][T19935] netlink: 24 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1543.019301][T19935] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6247'. [ 1544.346591][T19956] loop3: detected capacity change from 0 to 256 [ 1544.387496][T19959] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0 [ 1545.838187][T19976] loop2: detected capacity change from 0 to 2048 [ 1545.895595][T19976] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1546.609461][T19992] autofs: Bad value for 'fd' [ 1547.373780][T20004] netlink: 16 bytes leftover after parsing attributes in process `syz.3.6279'. [ 1547.383184][T20004] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6279'. [ 1548.103123][T20023] netlink: 'syz.1.6289': attribute type 1 has an invalid length. [ 1548.115277][T20023] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6289'. [ 1548.506616][T20031] kAFS: unable to lookup cell '.,' [ 1549.304868][T15954] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 1549.595917][T15954] usb 2-1: Using ep0 maxpacket: 8 [ 1549.656567][T15954] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1549.809584][T15954] usb 2-1: config 1 interface 0 altsetting 9 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1549.820086][T15954] usb 2-1: config 1 interface 0 has no altsetting 0 [ 1550.607234][T15954] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1550.616899][T15954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1550.625602][T15954] usb 2-1: Product: syz [ 1550.630009][T15954] usb 2-1: Manufacturer: aኖ剾ﵴ赅靐⿤볡瀟ꕌ䂠顧⃲դ鱂ꉆ뛼񙑯塌职鮅멁段ꯏམ别䡯嵦⻳ఖﰧ㚵괰蛱㷋苑械倴㊃쟓횽㶀㚍䊸谵쿡躏磠衟ꫡ麕놤秴♲浠ﭥu뮶઎鳈䇅鼯婄≀俄穆䔰辋쉰䧶菊房ᕉ猳먱䍢龻ꍻ潅㏬ힽ፟⒭ᨓꕝ [ 1550.659960][ C0] vkms_vblank_simulate: vblank timer overrun [ 1550.668144][T15954] usb 2-1: SerialNumber: syz [ 1550.869860][T20038] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1551.220890][T15954] usb 2-1: USB disconnect, device number 36 [ 1551.230532][T20076] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6313'. [ 1552.058917][T20088] QAT: failed to copy from user cfg_data. [ 1552.099877][T20086] program syz.4.6319 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1552.374831][T20095] loop1: detected capacity change from 0 to 256 [ 1553.485910][T20114] netlink: 'syz.1.6329': attribute type 27 has an invalid length. [ 1553.494088][T20114] netlink: 'syz.1.6329': attribute type 3 has an invalid length. [ 1553.502331][T20114] netlink: 132 bytes leftover after parsing attributes in process `syz.1.6329'. [ 1554.717792][T20133] loop1: detected capacity change from 0 to 256 [ 1554.735466][T20131] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6341'. [ 1554.744953][T20131] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6341'. [ 1554.754135][T20131] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6341'. [ 1554.764035][T20131] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6341'. [ 1554.775588][T20131] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6341'. [ 1555.120894][T20133] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d) [ 1555.169608][T20138] loop2: detected capacity change from 0 to 256 [ 1555.671454][T20138] FAT-fs (loop2): Directory bread(block 64) failed [ 1555.678618][T20138] FAT-fs (loop2): Directory bread(block 65) failed [ 1555.685869][T20138] FAT-fs (loop2): Directory bread(block 66) failed [ 1555.696478][T20138] FAT-fs (loop2): Directory bread(block 67) failed [ 1555.703403][T20138] FAT-fs (loop2): Directory bread(block 68) failed [ 1555.714645][T20138] FAT-fs (loop2): Directory bread(block 69) failed [ 1555.722408][T20138] FAT-fs (loop2): Directory bread(block 70) failed [ 1555.729356][T20138] FAT-fs (loop2): Directory bread(block 71) failed [ 1555.736435][T20138] FAT-fs (loop2): Directory bread(block 72) failed [ 1555.743222][T20138] FAT-fs (loop2): Directory bread(block 73) failed [ 1555.934894][T20148] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 1556.387973][T20156] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6352'. [ 1556.397705][T20156] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6352'. [ 1556.832663][T20164] loop4: detected capacity change from 0 to 16 [ 1556.943631][T20164] erofs: (device loop4): mounted with root inode @ nid 36. [ 1556.990430][T20164] syz.4.6358: attempt to access beyond end of device [ 1556.990430][T20164] loop4: rw=0, sector=4295114751, nr_sectors = 8 limit=16 [ 1557.773984][T20177] nft_compat: unsupported protocol 133 [ 1558.376174][T20184] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6364'. [ 1559.051292][T20192] binder: 20191:20192 unknown command 33 [ 1559.057404][T20192] binder: 20191:20192 ioctl c0306201 20000380 returned -22 [ 1559.422777][T20194] loop3: detected capacity change from 0 to 1024 [ 1560.919489][T20218] xt_TPROXY: Can be used only with -p tcp or -p udp [ 1561.260238][T20228] --map-set only usable from mangle table [ 1561.398521][T20230] x_tables: ip_tables: osf match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT/FORWARD [ 1561.846733][T20224] loop1: detected capacity change from 0 to 1764 [ 1562.108985][T20224] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 1562.237517][T20224] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1563.473826][T20256] loop3: detected capacity change from 0 to 2048 [ 1563.488650][T20263] netlink: 'syz.0.6404': attribute type 1 has an invalid length. [ 1563.738630][T20256] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1565.352240][T20293] netlink: 3 bytes leftover after parsing attributes in process `syz.4.6416'. [ 1565.823567][T20300] loop3: detected capacity change from 0 to 256 [ 1566.243887][T20306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6424'. [ 1566.788709][T20316] loop2: detected capacity change from 0 to 128 [ 1566.844237][T20316] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1566.966696][T20316] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 1567.145537][T20316] EXT4-fs (loop2): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w. Quota mode: none. [ 1567.159323][T20316] ext4 filesystem being remounted at /287/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1567.367580][T20329] netlink: 'syz.0.6437': attribute type 1 has an invalid length. [ 1567.375873][T20329] netlink: 224 bytes leftover after parsing attributes in process `syz.0.6437'. [ 1567.649157][T16631] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1568.159214][T20336] loop1: detected capacity change from 0 to 64 [ 1568.167570][T20339] loop4: detected capacity change from 0 to 512 [ 1568.256424][T20339] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 1568.264942][T20339] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 1568.273198][T20339] EXT4-fs error (device loop4): ext4_orphan_get:1414: comm syz.4.6443: bad orphan inode 13 [ 1568.428787][T20339] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1568.884625][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1569.947710][T20368] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1570.529685][T20378] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3) [ 1570.536501][T20378] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1570.547647][T20378] vhci_hcd vhci_hcd.0: Device attached [ 1570.753988][ C1] syz_tun: tun_net_xmit 86 [ 1570.807910][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 1570.814833][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 1570.816666][T16283] syz_tun: tun_net_xmit 86 [ 1570.828876][ T5270] vhci_hcd: vhci_device speed not set [ 1570.840903][T20379] vhci_hcd: connection closed [ 1570.845384][ T3482] vhci_hcd: stop threads [ 1570.855659][ T3482] vhci_hcd: release socket [ 1570.861661][ T3482] vhci_hcd: disconnect device [ 1570.925109][ T5270] usb 13-1: new full-speed USB device number 2 using vhci_hcd [ 1570.933168][ T5270] usb 13-1: enqueue for inactive port 0 [ 1571.054694][ T5270] vhci_hcd: vhci_device speed not set [ 1571.205153][T20389] netlink: 'syz.0.6465': attribute type 10 has an invalid length. [ 1571.344155][T20389] team0: Port device geneve0 added [ 1571.785337][ C1] syz_tun: tun_net_xmit 86 [ 1571.941371][T20400] loop2: detected capacity change from 0 to 64 [ 1572.355471][T20409] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6472'. [ 1572.825663][ C1] syz_tun: tun_net_xmit 86 [ 1572.833871][T20414] netlink: 108 bytes leftover after parsing attributes in process `syz.3.6478'. [ 1573.375929][T20427] netlink: 'syz.3.6482': attribute type 29 has an invalid length. [ 1573.811105][T20434] usb usb8: check_ctrlrecip: process 20434 (syz.3.6486) requesting ep 01 but needs 81 [ 1573.826288][T20434] usb usb8: usbfs: process 20434 (syz.3.6486) did not claim interface 0 before use [ 1575.022328][T20457] xfrm1: entered promiscuous mode [ 1575.027727][T20457] xfrm1: entered allmulticast mode [ 1575.567895][ T29] audit: type=1400 audit(2000000811.319:163): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 1576.285295][ T5270] usb 2-1: Using ep0 maxpacket: 16 [ 1576.396307][ T5270] usb 2-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 1576.405928][ T5270] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1576.414214][ T5270] usb 2-1: Product: syz [ 1576.418761][ T5270] usb 2-1: Manufacturer: syz [ 1576.423621][ T5270] usb 2-1: SerialNumber: syz [ 1576.616053][ T5270] usb 2-1: config 0 descriptor?? [ 1576.661784][ T5270] ssu100 2-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 1576.939893][ T5270] ssu100 2-1:0.0: probe with driver ssu100 failed with error -71 [ 1576.969839][T20484] loop2: detected capacity change from 0 to 1024 [ 1576.998841][ T5270] usb 2-1: USB disconnect, device number 37 [ 1577.171467][T20486] loop3: detected capacity change from 0 to 1024 [ 1577.304985][T20486] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1578.231654][T20502] netlink: 5 bytes leftover after parsing attributes in process `syz.4.6519'. [ 1578.245349][T20502] 0XD: renamed from gretap0 (while UP) [ 1578.291847][T20502] 0XD: entered allmulticast mode [ 1579.738627][T20528] loop4: detected capacity change from 0 to 128 [ 1579.958996][T20528] FAT-fs (loop4): Directory bread(block 32) failed [ 1579.967081][T20528] FAT-fs (loop4): Directory bread(block 33) failed [ 1579.976892][T20528] FAT-fs (loop4): Directory bread(block 34) failed [ 1579.983692][T20528] FAT-fs (loop4): Directory bread(block 35) failed [ 1579.991570][T20528] FAT-fs (loop4): Directory bread(block 36) failed [ 1579.998494][T20528] FAT-fs (loop4): Directory bread(block 37) failed [ 1580.005662][T20528] FAT-fs (loop4): Directory bread(block 38) failed [ 1580.012446][T20528] FAT-fs (loop4): Directory bread(block 39) failed [ 1580.019454][T20528] FAT-fs (loop4): Directory bread(block 40) failed [ 1580.026477][T20528] FAT-fs (loop4): Directory bread(block 41) failed [ 1580.360241][T20528] syz.4.6530: attempt to access beyond end of device [ 1580.360241][T20528] loop4: rw=0, sector=4108, nr_sectors = 4 limit=128 [ 1580.378221][T20528] FAT-fs (loop4): Filesystem has been set read-only [ 1580.389820][T20528] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1581.635567][T20553] x_tables: duplicate underflow at hook 2 [ 1582.667440][T18870] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 1583.097482][T18870] usb 1-1: Using ep0 maxpacket: 16 [ 1583.120273][T18870] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1583.224204][T18870] usb 1-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25 [ 1583.237407][T18870] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1583.246544][T18870] usb 1-1: Product: syz [ 1583.252240][T18870] usb 1-1: Manufacturer: syz [ 1583.257575][T18870] usb 1-1: SerialNumber: syz [ 1583.301861][T18870] usb 1-1: config 0 descriptor?? [ 1583.586339][T18870] usb 1-1: USB disconnect, device number 32 [ 1583.984612][T16283] usb 3-1: new high-speed USB device number 28 using dummy_hcd [ 1584.215115][T16283] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1584.224864][T16283] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1584.233188][T16283] usb 3-1: Product: syz [ 1584.237843][T16283] usb 3-1: Manufacturer: syz [ 1584.242685][T16283] usb 3-1: SerialNumber: syz [ 1584.278836][T16283] usb 3-1: config 0 descriptor?? [ 1584.577359][T16283] hso 3-1:0.0: Failed to find BULK IN ep [ 1584.615929][T16283] usb-storage 3-1:0.0: USB Mass Storage device detected [ 1584.808635][T16283] usb 3-1: USB disconnect, device number 28 [ 1586.455056][T20622] netlink: 'syz.4.6576': attribute type 11 has an invalid length. [ 1586.463224][T20622] netlink: 105120 bytes leftover after parsing attributes in process `syz.4.6576'. [ 1587.766115][T20646] fuse: Bad value for 'fd' [ 1588.474600][T20656] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1588.876139][T20661] ip6t_REJECT: ECHOREPLY is not supported [ 1589.025391][T20665] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6596'. [ 1589.034830][T20665] netlink: 96 bytes leftover after parsing attributes in process `syz.0.6596'. [ 1589.882396][T20680] netlink: 40 bytes leftover after parsing attributes in process `syz.2.6603'. [ 1589.973843][T20683] binder: 20682:20683 ioctl c0046209 0 returned -22 [ 1590.442451][T20689] xt_TPROXY: Can be used only with -p tcp or -p udp [ 1591.257713][T20702] loop4: detected capacity change from 0 to 256 [ 1591.423992][T20702] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 1592.050050][T20716] loop2: detected capacity change from 0 to 64 [ 1592.158607][T20716] Bad inode number on dev loop2: 6 is out of range [ 1592.528240][T15954] usb 2-1: new high-speed USB device number 38 using dummy_hcd [ 1592.795243][T15954] usb 2-1: Using ep0 maxpacket: 8 [ 1592.803155][T15954] usb 2-1: too many configurations: 14, using maximum allowed: 8 [ 1592.941730][T15954] usb 2-1: New USB device found, idVendor=0421, idProduct=01d0, bcdDevice=98.e6 [ 1592.951288][T15954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1592.959822][T15954] usb 2-1: Product: syz [ 1592.965825][T15954] usb 2-1: Manufacturer: syz [ 1592.970680][T15954] usb 2-1: SerialNumber: syz [ 1592.973435][T20729] netlink: 16 bytes leftover after parsing attributes in process `syz.4.6628'. [ 1592.987915][T20729] netlink: 52 bytes leftover after parsing attributes in process `syz.4.6628'. [ 1593.003123][T15954] usb 2-1: config 0 descriptor?? [ 1593.057907][T15954] usb 2-1: bad CDC descriptors [ 1593.066746][T15954] cdc_acm 2-1:0.0: Zero length descriptor references [ 1593.073681][T15954] cdc_acm 2-1:0.0: probe with driver cdc_acm failed with error -22 [ 1593.175533][T12661] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 1593.303801][T18870] usb 2-1: USB disconnect, device number 38 [ 1593.343706][T12661] usb 1-1: Using ep0 maxpacket: 32 [ 1593.487252][T12661] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1593.497695][T12661] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1593.597041][T12661] usb 1-1: config 0 descriptor?? [ 1593.614858][T12661] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1594.143014][T12661] gspca_nw80x: reg_r err -71 [ 1594.148329][T12661] nw80x 1-1:0.0: probe with driver nw80x failed with error -71 [ 1594.203601][T12661] usb 1-1: USB disconnect, device number 33 [ 1595.347975][ T29] audit: type=1326 audit(2000000831.049:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20755 comm="syz.4.6644" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf745d579 code=0x0 [ 1595.577977][T20762] autofs: Bad value for 'fd' [ 1595.801988][T20769] netlink: 'syz.3.6650': attribute type 1 has an invalid length. [ 1596.063433][T20773] kernel read not supported for file /  (pid: 20773 comm: syz.1.6651) [ 1596.103338][ T29] audit: type=1800 audit(2000000831.829:165): pid=20773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6651" name=2001 dev="mqueue" ino=65972 res=0 errno=0 [ 1596.423348][T20780] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1597.108961][T20791] kAFS: unable to lookup cell '.,' [ 1597.301916][T20787] loop4: detected capacity change from 0 to 2048 [ 1597.540036][T20787] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1597.583233][T20797] Cannot find del_set index 2 as target [ 1598.307535][T20805] dlm: no locking on control device [ 1598.444804][T15954] usb 2-1: new high-speed USB device number 39 using dummy_hcd [ 1598.613485][T15954] usb 2-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33 [ 1598.623658][T15954] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1598.709100][T15954] usb 2-1: config 0 descriptor?? [ 1598.773794][T15954] gspca_main: sunplus-2.14.0 probing 055f:c420 [ 1599.404815][T15954] gspca_sunplus: reg_w_riv err -71 [ 1599.410456][T15954] sunplus 2-1:0.0: probe with driver sunplus failed with error -71 [ 1599.530177][T15954] usb 2-1: USB disconnect, device number 39 [ 1600.121111][T20837] program syz.0.6682 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1601.021082][T20850] loop2: detected capacity change from 0 to 1024 [ 1601.059423][ T5270] usb 2-1: new high-speed USB device number 40 using dummy_hcd [ 1601.264959][ T5270] usb 2-1: Using ep0 maxpacket: 16 [ 1601.285788][T20850] hfsplus: bad catalog entry type [ 1601.288772][ T5270] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1601.301410][ T5270] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22 [ 1601.415292][ T5270] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1601.424856][ T5270] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1601.433123][ T5270] usb 2-1: SerialNumber: syz [ 1601.535158][ T5270] cdc_acm 2-1:1.0: skipping garbage [ 1601.712585][ T3043] hfsplus: b-tree write err: -5, ino 4 [ 1602.167664][ T5270] usb 2-1: USB disconnect, device number 40 [ 1602.385584][T12661] usb 3-1: new high-speed USB device number 29 using dummy_hcd [ 1602.631294][T12661] usb 3-1: Using ep0 maxpacket: 8 [ 1602.819472][T12661] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1602.834506][T12661] usb 3-1: config 1 interface 0 altsetting 9 bulk endpoint 0x1 has invalid maxpacket 1023 [ 1602.845393][T12661] usb 3-1: config 1 interface 0 has no altsetting 0 [ 1602.949876][T12661] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 1602.959510][T12661] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1602.968171][T12661] usb 3-1: Product: syz [ 1602.972581][T12661] usb 3-1: Manufacturer: aኖ剾ﵴ赅靐⿤볡瀟ꕌ䂠顧⃲դ鱂ꉆ뛼񙑯塌职鮅멁段ꯏམ别䡯嵦⻳ఖﰧ㚵괰蛱㷋苑械倴㊃쟓횽㶀㚍䊸谵쿡躏磠衟ꫡ麕놤秴♲浠ﭥu뮶઎鳈䇅鼯婄≀俄穆䔰辋쉰䧶菊房ᕉ猳먱䍢龻ꍻ潅㏬ힽ፟⒭ᨓꕝ [ 1603.005022][T12661] usb 3-1: SerialNumber: syz [ 1603.053907][T20867] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1603.481576][T20884] IPv6: Can't replace route, no match found [ 1603.656292][T12661] usb 3-1: USB disconnect, device number 29 [ 1603.863046][T20890] loop4: detected capacity change from 0 to 164 [ 1604.177952][T20893] dvmrp8: entered allmulticast mode [ 1605.028509][T20905] loop1: detected capacity change from 0 to 512 [ 1605.294190][T20905] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2240: inode #15: comm syz.1.6714: corrupted in-inode xattr: invalid ea_ino [ 1605.326814][T20905] EXT4-fs error (device loop1): ext4_orphan_get:1393: comm syz.1.6714: couldn't read orphan inode 15 (err -117) [ 1605.354925][T20905] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1605.461195][T12661] usb 3-1: new high-speed USB device number 30 using dummy_hcd [ 1605.723201][T17167] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1606.079620][T12661] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02 [ 1606.090274][T12661] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1606.099041][T12661] usb 3-1: Product: syz [ 1606.103626][T12661] usb 3-1: Manufacturer: syz [ 1606.110183][T12661] usb 3-1: SerialNumber: syz [ 1606.139434][T12661] usb 3-1: config 0 descriptor?? [ 1606.574816][ T5270] usb 3-1: USB disconnect, device number 30 [ 1607.167982][T20930] libceph: resolve '. [ 1607.167982][T20930] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 1607.167982][T20930] ' (ret=-3): failed [ 1607.201952][T20928] loop3: detected capacity change from 0 to 2048 [ 1607.289846][T20928] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1607.339005][T20935] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6727'. [ 1607.348294][T20935] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6727'. [ 1607.414748][T20937] loop4: detected capacity change from 0 to 512 [ 1607.527084][T20937] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1607.541037][T20937] ext4 filesystem being mounted at /381/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1607.741665][T20942] binder: Bad value for 'stats' [ 1608.221006][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1608.279739][T20953] loop3: detected capacity change from 0 to 16 [ 1608.455209][T20953] erofs: (device loop3): mounted with root inode @ nid 36. [ 1608.692814][T20953] syz.3.6736: attempt to access beyond end of device [ 1608.692814][T20953] loop3: rw=0, sector=4295114751, nr_sectors = 8 limit=16 [ 1610.329590][T20988] netlink: 4 bytes leftover after parsing attributes in process `syz.0.6752'. [ 1610.548203][T20985] loop2: detected capacity change from 0 to 2048 [ 1610.764550][T20985] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1613.745675][T21047] ip6t_srh: unknown srh match flags 4108 [ 1614.421729][T21060] xt_policy: too many policy elements [ 1614.426074][T21058] netlink: 'syz.2.6783': attribute type 8 has an invalid length. [ 1614.435859][T21058] netlink: 128124 bytes leftover after parsing attributes in process `syz.2.6783'. [ 1615.305560][ T29] audit: type=1326 audit(2000000851.039:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21070 comm="syz.1.6791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1615.328226][ T29] audit: type=1326 audit(2000000851.049:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21070 comm="syz.1.6791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1615.460126][ T29] audit: type=1326 audit(2000000851.119:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21070 comm="syz.1.6791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=266 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1615.483053][ T29] audit: type=1326 audit(2000000851.119:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21070 comm="syz.1.6791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1615.508713][ T29] audit: type=1326 audit(2000000851.119:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21070 comm="syz.1.6791" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1615.881896][T21082] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6795'. [ 1616.250537][T21091] netlink: 'syz.4.6799': attribute type 1 has an invalid length. [ 1616.259318][T21091] netlink: 127868 bytes leftover after parsing attributes in process `syz.4.6799'. [ 1616.503891][T21088] loop2: detected capacity change from 0 to 2048 [ 1616.595874][T21088] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 1616.692735][T21088] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1618.133402][T21115] syz_tun: tun_net_xmit 86 [ 1618.943375][T21128] loop3: detected capacity change from 0 to 512 [ 1619.053778][T21130] loop2: detected capacity change from 0 to 512 [ 1619.126665][T21130] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1619.135047][T21130] UDF-fs: Scanning with blocksize 512 failed [ 1619.145697][ C1] syz_tun: tun_net_xmit 86 [ 1619.213982][T21130] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1619.223239][T21130] UDF-fs: Scanning with blocksize 1024 failed [ 1619.245281][T21130] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1619.253088][T21130] UDF-fs: Scanning with blocksize 2048 failed [ 1619.315959][T21128] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1619.329263][T21128] ext4 filesystem being mounted at /1172/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1619.353379][T21130] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1619.413549][T21128] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #12: comm syz.3.6819: invalid size [ 1619.440150][T21130] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1619.444584][T21128] EXT4-fs (loop3): Remounting filesystem read-only [ 1619.580886][ T8811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1619.658934][T21140] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6821'. [ 1619.660686][T16161] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 1619.668319][T21140] netlink: 72 bytes leftover after parsing attributes in process `syz.0.6821'. [ 1619.679021][T16161] Quota error (device loop3): write_blk: dquota write failed [ 1619.679118][T16161] Quota error (device loop3): free_dqentry: Can't write quota data block 5 [ 1619.709208][T16161] EXT4-fs (loop3): Quota write (off=5120, len=1024) cancelled because transaction is not started [ 1619.720628][T16161] Quota error (device loop3): write_blk: dquota write failed [ 1619.728364][T16161] Quota error (device loop3): free_dqentry: Can't write quota data block 5 [ 1620.089645][T21145] loop4: detected capacity change from 0 to 512 [ 1620.158871][T21145] EXT4-fs: Ignoring removed oldalloc option [ 1620.168333][T21145] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1620.185855][ C1] syz_tun: tun_net_xmit 86 [ 1620.487276][T21145] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2863: Unable to expand inode 11. Delete some EAs or run e2fsck. [ 1620.500829][T21145] EXT4-fs (loop4): 1 truncate cleaned up [ 1620.511937][T21145] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1620.800529][T21145] tmpfs: Bad value for 'mpol' [ 1621.235270][T21170] x_tables: ip6_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING [ 1621.479102][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1621.626716][T21172] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1622.260401][T21182] netlink: 'syz.3.6840': attribute type 10 has an invalid length. [ 1622.769178][T21190] loop2: detected capacity change from 0 to 256 [ 1623.540954][T21190] FAT-fs (loop2): Directory bread(block 64) failed [ 1623.548081][T21190] FAT-fs (loop2): Directory bread(block 65) failed [ 1623.555582][T21190] FAT-fs (loop2): Directory bread(block 66) failed [ 1623.562381][T21190] FAT-fs (loop2): Directory bread(block 67) failed [ 1623.569659][T21190] FAT-fs (loop2): Directory bread(block 68) failed [ 1623.576561][T21190] FAT-fs (loop2): Directory bread(block 69) failed [ 1623.584939][T21204] loop3: detected capacity change from 0 to 128 [ 1623.593572][T21190] FAT-fs (loop2): Directory bread(block 70) failed [ 1623.605238][T21190] FAT-fs (loop2): Directory bread(block 71) failed [ 1623.612186][T21190] FAT-fs (loop2): Directory bread(block 72) failed [ 1623.619957][T21190] FAT-fs (loop2): Directory bread(block 73) failed [ 1623.675489][T21204] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 1624.130002][T21212] netlink: 16 bytes leftover after parsing attributes in process `syz.0.6856'. [ 1624.184698][ T5270] usb 4-1: new high-speed USB device number 46 using dummy_hcd [ 1624.354793][ T5270] usb 4-1: Using ep0 maxpacket: 32 [ 1624.405131][ T5270] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1624.447560][ T5270] usb 4-1: config 1 has an invalid descriptor of length 14, skipping remainder of the config [ 1624.458298][ T5270] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 1624.552659][ T5270] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1624.562136][ T5270] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 1624.570642][ T5270] usb 4-1: SerialNumber: syz [ 1624.592623][ T5270] cdc_ether 4-1:1.0: skipping garbage [ 1624.598338][ T5270] usb 4-1: bad CDC descriptors [ 1624.834723][ T5270] usb 4-1: USB disconnect, device number 46 [ 1626.025615][T21237] openvswitch: netlink: Key 0 has unexpected len 4 expected 0 [ 1626.335305][T21242] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 1626.342143][T21242] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 1626.354113][T21242] vhci_hcd vhci_hcd.0: Device attached [ 1626.403002][T21245] netlink: 'syz.0.6870': attribute type 29 has an invalid length. [ 1626.505059][T21243] vhci_hcd: connection closed [ 1626.553552][T16162] vhci_hcd: stop threads [ 1626.563051][T16162] vhci_hcd: release socket [ 1626.568792][T16162] vhci_hcd: disconnect device [ 1626.744585][T21250] netlink: 'syz.4.6874': attribute type 4 has an invalid length. [ 1626.756486][T21250] netlink: 152 bytes leftover after parsing attributes in process `syz.4.6874'. [ 1626.929797][T21250] A link change request failed with some changes committed already. Interface veth0_virt_wifi may have been left with an inconsistent configuration, please check. [ 1627.253337][T21259] netlink: 'syz.1.6876': attribute type 12 has an invalid length. [ 1627.799654][T21267] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6883'. [ 1628.600340][T21282] x_tables: duplicate underflow at hook 2 [ 1628.972333][T21293] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6892'. [ 1629.809960][T21300] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6896'. [ 1629.900086][T21300] netlink: 20 bytes leftover after parsing attributes in process `syz.1.6896'. [ 1629.971259][T21308] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6898'. [ 1630.034580][T21305] loop4: detected capacity change from 0 to 1024 [ 1630.319698][T21310] loop2: detected capacity change from 0 to 164 [ 1630.485126][T21310] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 1630.946485][T21318] loop3: detected capacity change from 0 to 1024 [ 1631.345638][ T8834] hfsplus: b-tree write err: -5, ino 4 [ 1632.200208][ T1241] ieee802154 phy0 wpan0: encryption failed: -22 [ 1632.208199][ T1241] ieee802154 phy1 wpan1: encryption failed: -22 [ 1633.076500][T21353] loop2: detected capacity change from 0 to 16 [ 1633.138755][T21353] cramfs: empty filesystem [ 1633.312394][T21357] x_tables: ip_tables: osf match: used from hooks OUTPUT, but only valid from PREROUTING/INPUT/FORWARD [ 1634.420071][T21373] loop3: detected capacity change from 0 to 764 [ 1634.498874][T21373] rock: directory entry would overflow storage [ 1634.507413][T21373] rock: sig=0x4f50, size=4, remaining=3 [ 1634.513619][T21373] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 1636.047920][T21400] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1636.297515][T21405] netlink: 'syz.4.6945': attribute type 27 has an invalid length. [ 1636.818446][T21417] tmpfs: Bad value for 'mpol' [ 1637.066965][T21421] loop3: detected capacity change from 0 to 24 [ 1637.155267][T21421] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1638.694800][T12661] usb 5-1: new high-speed USB device number 30 using dummy_hcd [ 1638.869362][T12661] usb 5-1: Using ep0 maxpacket: 16 [ 1638.896910][T12661] usb 5-1: config 0 has an invalid interface number: 105 but max is 0 [ 1638.905651][T12661] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1638.916334][T12661] usb 5-1: config 0 has no interface number 0 [ 1639.081496][T12661] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1639.091206][T12661] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1639.099718][T12661] usb 5-1: Product: syz [ 1639.104142][T12661] usb 5-1: Manufacturer: syz [ 1639.109091][T12661] usb 5-1: SerialNumber: syz [ 1639.138216][T12661] usb 5-1: config 0 descriptor?? [ 1639.191535][T12661] usb 5-1: Found UVC 0.00 device syz (046d:08f3) [ 1639.198392][T12661] usb 5-1: No valid video chain found. [ 1639.240386][T16283] usb 2-1: new full-speed USB device number 41 using dummy_hcd [ 1639.392011][T12661] usb 5-1: USB disconnect, device number 30 [ 1639.461435][T16283] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1639.474694][T16283] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1639.486359][T16283] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1639.654028][T16283] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1639.667054][T16283] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1639.676390][T16283] usb 2-1: Product: syz [ 1639.683190][T16283] usb 2-1: Manufacturer: syz [ 1639.689017][T16283] usb 2-1: SerialNumber: syz [ 1639.872689][T21464] netlink: 96 bytes leftover after parsing attributes in process `syz.2.6976'. [ 1639.886270][T21464] netlink: 96 bytes leftover after parsing attributes in process `syz.2.6976'. [ 1640.257479][T16283] usb 2-1: 0:2 : does not exist [ 1640.385066][T16283] usb 2-1: USB disconnect, device number 41 [ 1640.826554][T17340] udevd[17340]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1641.480033][T21486] netlink: 16 bytes leftover after parsing attributes in process `syz.1.6985'. [ 1641.489690][T21486] netlink: 52 bytes leftover after parsing attributes in process `syz.1.6985'. [ 1642.896737][T21508] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6994'. [ 1642.906187][T21508] netlink: 60 bytes leftover after parsing attributes in process `syz.0.6994'. [ 1643.334647][T16283] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 1643.610916][T16283] usb 2-1: Using ep0 maxpacket: 32 [ 1643.644622][T21518] netlink: 'syz.0.7011': attribute type 27 has an invalid length. [ 1643.654754][T21518] netlink: 'syz.0.7011': attribute type 3 has an invalid length. [ 1643.662709][T21518] netlink: 132 bytes leftover after parsing attributes in process `syz.0.7011'. [ 1643.676328][T16283] usb 2-1: New USB device found, idVendor=a97a, idProduct=5131, bcdDevice=c0.00 [ 1643.685926][T16283] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1643.694207][T16283] usb 2-1: Product: syz [ 1643.698740][T16283] usb 2-1: Manufacturer: syz [ 1643.703578][T16283] usb 2-1: SerialNumber: syz [ 1644.137337][T16283] usb 2-1: config 0 descriptor?? [ 1644.164981][T15954] usb 4-1: new high-speed USB device number 47 using dummy_hcd [ 1644.169302][T16283] usb-storage 2-1:0.0: USB Mass Storage device detected [ 1644.329131][T15954] usb 4-1: Using ep0 maxpacket: 32 [ 1644.375067][T15954] usb 4-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 1644.386486][T15954] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1644.463921][T16283] usb 2-1: USB disconnect, device number 42 [ 1644.577629][T15954] usb 4-1: config 0 descriptor?? [ 1644.678777][T15954] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 1644.936584][T21536] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7008'. [ 1644.946156][T21536] netlink: 20 bytes leftover after parsing attributes in process `syz.0.7008'. [ 1644.972284][T21536] bridge2: the hash_elasticity option has been deprecated and is always 16 [ 1645.070774][T15954] gspca_nw80x: reg_r err -71 [ 1645.076726][T15954] nw80x 4-1:0.0: probe with driver nw80x failed with error -71 [ 1645.145626][T15954] usb 4-1: USB disconnect, device number 47 [ 1645.481740][T21538] loop4: detected capacity change from 0 to 1024 [ 1645.570892][T21538] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1645.835445][T21545] netlink: 'syz.0.7013': attribute type 1 has an invalid length. [ 1645.978769][T21538] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1646.237705][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1648.104990][T21584] netlink: 'syz.3.7033': attribute type 2 has an invalid length. [ 1648.137527][ T29] audit: type=1326 audit(2000000883.879:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21577 comm="syz.2.7029" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fb1579 code=0x0 [ 1649.776760][T21610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7045'. [ 1653.194584][T21666] netlink: 10 bytes leftover after parsing attributes in process `syz.3.7074'. [ 1653.402422][T21662] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7072'. [ 1655.404231][T21679] kexec: Could not allocate control_code_buffer [ 1656.694863][T21715] loop4: detected capacity change from 0 to 16 [ 1657.683338][T21729] IPv6: Can't replace route, no match found [ 1657.874194][T21731] netlink: 108 bytes leftover after parsing attributes in process `syz.0.7105'. [ 1658.117680][T21724] infiniband syz2: set active [ 1658.122634][T21724] infiniband syz2: added bond_slave_1 [ 1658.388498][T21724] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR [ 1658.436432][T21724] infiniband syz2: Couldn't open port 1 [ 1658.579912][T21724] RDS/IB: syz2: added [ 1658.584169][T21724] smc: adding ib device syz2 with port count 1 [ 1658.591195][T21724] smc: ib device syz2 port 1 has pnetid [ 1658.967345][T21743] loop2: detected capacity change from 0 to 64 [ 1659.034931][T21744] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7111'. [ 1660.002231][T21746] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 1660.008613][T21746] Bluetooth: hci3: Error when powering off device on rfkill (-4) [ 1660.185869][T21746] Bluetooth: hci5: Opcode 0x0c1a failed: -4 [ 1660.192047][T21746] Bluetooth: hci5: Error when powering off device on rfkill (-4) [ 1660.565576][T21761] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7117'. [ 1662.232618][T21773] netlink: 416 bytes leftover after parsing attributes in process `syz.1.7120'. [ 1662.242098][T21773] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7120'. [ 1662.346725][T21746] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1662.352896][T21746] Bluetooth: hci0: Error when powering off device on rfkill (-4) [ 1662.605516][T21785] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7125'. [ 1664.919432][T16283] usb 2-1: new high-speed USB device number 43 using dummy_hcd [ 1665.169726][T21833] netlink: 16 bytes leftover after parsing attributes in process `syz.3.7145'. [ 1665.192667][T21833] gre1: entered allmulticast mode [ 1666.291543][T21854] syz_tun: tun_net_xmit 54 [ 1666.737420][T16283] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02 [ 1666.747058][T16283] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1666.755546][T16283] usb 2-1: Product: syz [ 1666.759945][T16283] usb 2-1: Manufacturer: syz [ 1666.764894][T16283] usb 2-1: SerialNumber: syz [ 1666.794387][T16283] usb 2-1: config 0 descriptor?? [ 1667.415591][T16283] usb 2-1: USB disconnect, device number 43 [ 1667.831598][T21884] SET target dimension over the limit! [ 1670.430065][T21931] netlink: 52 bytes leftover after parsing attributes in process `syz.1.7182'. [ 1670.768837][T21937] netlink: 'syz.4.7188': attribute type 1 has an invalid length. [ 1670.837132][T21940] cifs: Bad value for 'source' [ 1670.909378][T21941] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7187'. [ 1670.918809][T21941] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7187'. [ 1673.882912][T21999] ip6t_srh: unknown srh match flags 4108 [ 1674.305569][T22007] netlink: 'syz.2.7221': attribute type 22 has an invalid length. [ 1674.313655][T22007] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7221'. [ 1674.323182][T22007] netlink: 'syz.2.7221': attribute type 22 has an invalid length. [ 1674.407467][T22003] loop3: detected capacity change from 0 to 4096 [ 1674.448916][T22003] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1674.552243][T22003] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1675.616967][T22024] netlink: 'syz.4.7229': attribute type 5 has an invalid length. [ 1675.625587][T22024] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7229'. [ 1675.995201][ T29] audit: type=1326 audit(2000000911.709:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22029 comm="syz.1.7231" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1676.017923][ T29] audit: type=1326 audit(2000000911.749:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22029 comm="syz.1.7231" exe="/root/syz-executor" sig=0 arch=40000003 syscall=43 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1676.091154][ T29] audit: type=1326 audit(2000000911.799:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22029 comm="syz.1.7231" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fd6579 code=0x7ffc0000 [ 1676.364401][T22038] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1676.439719][T22032] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7233'. [ 1676.449192][T22032] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7233'. [ 1676.882812][T22049] loop3: detected capacity change from 0 to 1024 [ 1677.215020][T12661] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 1677.476441][T22054] autofs4:pid:22054:validate_dev_ioctl: path string terminator missing for cmd(0xc018937c) [ 1677.543704][T12661] usb 3-1: config 0 interface 0 altsetting 3 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1677.557445][T12661] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 1677.569178][T12661] usb 3-1: config 0 interface 0 altsetting 3 endpoint 0x8F has invalid wMaxPacketSize 0 [ 1677.579503][T12661] usb 3-1: config 0 interface 0 has no altsetting 0 [ 1677.655377][T12661] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice=1c.08 [ 1677.664998][T12661] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1677.673270][T12661] usb 3-1: Product: syz [ 1677.677873][T12661] usb 3-1: Manufacturer: syz [ 1677.682717][T12661] usb 3-1: SerialNumber: syz [ 1677.747340][T12661] usb 3-1: config 0 descriptor?? [ 1678.278722][T12661] usbtest 3-1:0.0: Linux user mode ISO test driver [ 1678.286114][T12661] usbtest 3-1:0.0: high-speed {control iso-in} tests (+alt) [ 1678.574804][T16283] usb 3-1: USB disconnect, device number 31 [ 1679.272429][T22083] netlink: 'syz.4.7256': attribute type 21 has an invalid length. [ 1679.281469][T22083] netlink: 'syz.4.7256': attribute type 1 has an invalid length. [ 1679.854460][T22091] netlink: 'syz.3.7261': attribute type 4 has an invalid length. [ 1679.862569][T22091] netlink: 152 bytes leftover after parsing attributes in process `syz.3.7261'. [ 1680.021007][T22091] A link change request failed with some changes committed already. Interface veth0_virt_wifi may have been left with an inconsistent configuration, please check. [ 1680.041997][T22095] loop4: detected capacity change from 0 to 512 [ 1680.144846][T22095] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 1680.228520][T22095] EXT4-fs error (device loop4): ext4_orphan_get:1414: comm syz.4.7263: bad orphan inode 15 [ 1680.286550][T22095] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1680.430919][T16652] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1681.068021][T22113] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7268'. [ 1681.839199][T22127] ===================================================== [ 1681.846951][T22127] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xbc/0x110 [ 1681.854525][T22127] _copy_to_user+0xbc/0x110 [ 1681.859244][T22127] con_font_op+0x14a2/0x1710 [ 1681.864090][T22127] vt_compat_ioctl+0x79b/0x990 [ 1681.869328][T22127] tty_compat_ioctl+0x801/0xce0 [ 1681.874740][T22127] __se_compat_sys_ioctl+0x785/0x1080 [ 1681.880341][T22127] __ia32_compat_sys_ioctl+0x93/0xe0 [ 1681.885968][T22127] ia32_sys_call+0x32a2/0x40d0 [ 1681.890987][T22127] __do_fast_syscall_32+0xb0/0x110 [ 1681.896514][T22127] do_fast_syscall_32+0x38/0x80 [ 1681.901588][T22127] do_SYSENTER_32+0x1f/0x30 [ 1681.906530][T22127] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1681.913159][T22127] [ 1681.916109][T22127] Uninit was created at: [ 1681.920639][T22127] ___kmalloc_large_node+0x22c/0x370 [ 1681.926810][T22127] __kmalloc_large_node_noprof+0x3f/0x1e0 [ 1681.932772][T22127] __kmalloc_node_noprof+0x9d6/0xf50 [ 1681.938419][T22127] __kvmalloc_node_noprof+0xc0/0x2d0 [ 1681.943930][T22127] con_font_op+0x659/0x1710 [ 1681.948782][T22127] vt_compat_ioctl+0x79b/0x990 [ 1681.953774][T22127] tty_compat_ioctl+0x801/0xce0 [ 1681.959281][T22127] __se_compat_sys_ioctl+0x785/0x1080 [ 1681.964956][T22127] __ia32_compat_sys_ioctl+0x93/0xe0 [ 1681.970451][T22127] ia32_sys_call+0x32a2/0x40d0 [ 1681.975685][T22127] __do_fast_syscall_32+0xb0/0x110 [ 1681.981024][T22127] do_fast_syscall_32+0x38/0x80 [ 1681.986351][T22127] do_SYSENTER_32+0x1f/0x30 [ 1681.991054][T22127] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1681.997704][T22127] [ 1682.000133][T22127] Bytes 65536-131071 of 131072 are uninitialized [ 1682.006691][T22127] Memory access of size 131072 starts at ffff88809ac00000 [ 1682.013961][T22127] Data copied to user address 0000000020000a40 [ 1682.020346][T22127] [ 1682.022802][T22127] CPU: 1 UID: 0 PID: 22127 Comm: syz.2.7278 Not tainted 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 1682.034061][T22127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1682.044578][T22127] ===================================================== [ 1682.051630][T22127] Disabling lock debugging due to kernel taint [ 1682.058079][T22127] Kernel panic - not syncing: kmsan.panic set ... [ 1682.064643][T22127] CPU: 1 UID: 0 PID: 22127 Comm: syz.2.7278 Tainted: G B 6.12.0-rc3-syzkaller-00013-geca631b8fe80 #0 [ 1682.077119][T22127] Tainted: [B]=BAD_PAGE [ 1682.081397][T22127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 1682.091620][T22127] Call Trace: [ 1682.095020][T22127] [ 1682.098066][T22127] dump_stack_lvl+0x216/0x2d0 [ 1682.102961][T22127] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1682.108974][T22127] dump_stack+0x1e/0x30 [ 1682.113338][T22127] panic+0x4e2/0xcf0 [ 1682.117521][T22127] ? kmsan_get_metadata+0xe1/0x1c0 [ 1682.122836][T22127] kmsan_report+0x2c7/0x2d0 [ 1682.127575][T22127] ? kmsan_internal_check_memory+0x48c/0x560 [ 1682.133774][T22127] ? kmsan_copy_to_user+0xd5/0xf0 [ 1682.139002][T22127] ? _copy_to_user+0xbc/0x110 [ 1682.143865][T22127] ? con_font_op+0x14a2/0x1710 [ 1682.148790][T22127] ? vt_compat_ioctl+0x79b/0x990 [ 1682.153928][T22127] ? tty_compat_ioctl+0x801/0xce0 [ 1682.159146][T22127] ? __se_compat_sys_ioctl+0x785/0x1080 [ 1682.164885][T22127] ? __ia32_compat_sys_ioctl+0x93/0xe0 [ 1682.170532][T22127] ? ia32_sys_call+0x32a2/0x40d0 [ 1682.175686][T22127] ? __do_fast_syscall_32+0xb0/0x110 [ 1682.181177][T22127] ? do_fast_syscall_32+0x38/0x80 [ 1682.186394][T22127] ? do_SYSENTER_32+0x1f/0x30 [ 1682.191257][T22127] ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1682.197960][T22127] ? kmsan_get_metadata+0x13e/0x1c0 [ 1682.203321][T22127] ? kmsan_get_metadata+0x13e/0x1c0 [ 1682.208682][T22127] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1682.215236][T22127] ? kmsan_internal_unpoison_memory+0x14/0x20 [ 1682.221522][T22127] ? irqentry_enter+0x37/0x60 [ 1682.226380][T22127] ? sysvec_call_function_single+0x4f/0x90 [ 1682.232388][T22127] ? kmsan_get_metadata+0xc/0x1c0 [ 1682.237576][T22127] kmsan_internal_check_memory+0x48c/0x560 [ 1682.243617][T22127] kmsan_copy_to_user+0xd5/0xf0 [ 1682.248686][T22127] ? should_fail_usercopy+0x2e/0x40 [ 1682.254174][T22127] _copy_to_user+0xbc/0x110 [ 1682.258869][T22127] con_font_op+0x14a2/0x1710 [ 1682.263644][T22127] ? kmsan_get_metadata+0x13e/0x1c0 [ 1682.269020][T22127] vt_compat_ioctl+0x79b/0x990 [ 1682.273995][T22127] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1682.279995][T22127] ? __pfx_vt_compat_ioctl+0x10/0x10 [ 1682.285489][T22127] tty_compat_ioctl+0x801/0xce0 [ 1682.290535][T22127] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 1682.296517][T22127] ? __pfx_tty_compat_ioctl+0x10/0x10 [ 1682.302084][T22127] __se_compat_sys_ioctl+0x785/0x1080 [ 1682.307649][T22127] ? kmsan_get_metadata+0x13e/0x1c0 [ 1682.313016][T22127] ? kmsan_internal_set_shadow_origin+0x69/0x100 [ 1682.319560][T22127] ? kmsan_get_metadata+0x13e/0x1c0 [ 1682.324936][T22127] __ia32_compat_sys_ioctl+0x93/0xe0 [ 1682.330412][T22127] ia32_sys_call+0x32a2/0x40d0 [ 1682.335389][T22127] __do_fast_syscall_32+0xb0/0x110 [ 1682.340710][T22127] ? irqentry_exit+0x16/0x60 [ 1682.345484][T22127] do_fast_syscall_32+0x38/0x80 [ 1682.350533][T22127] do_SYSENTER_32+0x1f/0x30 [ 1682.355227][T22127] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 1682.361761][T22127] RIP: 0023:0xf7fb1579 [ 1682.365961][T22127] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 [ 1682.385767][T22127] RSP: 002b:00000000f573656c EFLAGS: 00000206 ORIG_RAX: 0000000000000036 [ 1682.394365][T22127] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000004b72 [ 1682.402483][T22127] RDX: 00000000200004c0 RSI: 0000000000000000 RDI: 0000000000000000 [ 1682.410592][T22127] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 1682.418706][T22127] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000 [ 1682.426818][T22127] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 1682.434944][T22127] [ 1682.438346][T22127] Kernel Offset: disabled [ 1682.442738][T22127] Rebooting in 86400 seconds..