last executing test programs: 1m14.559169233s ago: executing program 5 (id=4653): r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x102, 0x4, 0x3f0, 0x1f8, 0x110, 0x0, 0x308, 0x110, 0x308, 0x4, 0x0, {[{{@arp={@remote, @remote, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local={0x2, 0x80, 0xc2, 0x7}}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bridge0\x00', 'erspan0\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@mac=@link_local, @mac=@broadcast, @remote, @multicast1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@MARK={0x28}}, {{@arp={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, {}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'batadv_slave_1\x00', 'ipvlan1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@random="e9fb760d26c0", @multicast2, @broadcast}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440) 1m14.088694992s ago: executing program 5 (id=4662): r0 = socket$can_j1939(0x1d, 0x2, 0x7) getsockopt$SO_J1939_SEND_PRIO(r0, 0x6b, 0x3, 0x0, &(0x7f0000000340)) 1m13.656672618s ago: executing program 5 (id=4668): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="340000003e000701feffffff00000000017c0000040042800c00018006000600800a0000100002800c001480080003"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) 1m13.224712197s ago: executing program 5 (id=4675): syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x800800, &(0x7f00000001c0)={[{@utf8}, {@iocharset={'iocharset', 0x3d, 'macroman'}}, {@sys_tz}, {@zero_size_dir}, {@umask={'umask', 0x3d, 0x5}}, {@umask={'umask', 0x3d, 0x7f}}, {@utf8}, {@errors_continue}, {@allow_utime={'allow_utime', 0x3d, 0x7}}, {@sys_tz}]}, 0x1, 0x1541, &(0x7f0000001f40)="$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") mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0) 1m11.866406101s ago: executing program 5 (id=4696): r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x5, 0x88000) ioctl$LOOP_CHANGE_FD(r0, 0x4c06, 0xffffffffffffffff) 1m8.923311726s ago: executing program 5 (id=4736): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[@sndrcv={0x30, 0x84, 0x1, {0x402, 0x4, 0x4, 0x5, 0x400, 0x2, 0x6, 0x1}}, @authinfo={0x12, 0x84, 0x6, {0xfffa}}], 0x48, 0x2400c852}], 0x1, 0x40000) 1m8.33869785s ago: executing program 32 (id=4736): r0 = socket(0x2, 0x80805, 0x0) sendmmsg$inet_sctp(r0, &(0x7f0000000040)=[{0x0, 0x0, 0x0, 0x0, &(0x7f00000006c0)=[@sndrcv={0x30, 0x84, 0x1, {0x402, 0x4, 0x4, 0x5, 0x400, 0x2, 0x6, 0x1}}, @authinfo={0x12, 0x84, 0x6, {0xfffa}}], 0x48, 0x2400c852}], 0x1, 0x40000) 6.155419076s ago: executing program 4 (id=5536): syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000840)='./file0\x00', 0x804498, &(0x7f0000000f00)=ANY=[@ANYBLOB='shortname=winnt,uni_xlate=1,shortname=mixed,rodir,shortname=lower,utf8=0,uni_xlate=1,dos1xfloppy,check=strict,uni_xlate=1,shortname=win95,iocharset=iso8859-15,codepage=855,shortname=lower,nonumtail=0,nonumtail=0,uni_xlate=0,uni_xlate=0,iocharset=iso8859-6,shortname=lower,nnonumtail=1,shortname=win95,rodir,utf8=0,nnonumtail=1,shortname=lower,shortname=mixed,iocharset=ascii,appraise,uid>', @ANYRESHEX, @ANYBLOB="0200"], 0x1, 0x2d3, &(0x7f0000000a40)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0) 4.837774337s ago: executing program 4 (id=5550): capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000000000000000000000000071120f00000000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x9, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) 4.141721419s ago: executing program 4 (id=5559): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001780)=@newtaction={0x48, 0x32, 0xffff, 0x0, 0x0, {}, [{0x34, 0x1, [@m_gact={0x30, 0x1, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc}, {0xc, 0x8, {0x2}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x1000c041}, 0x0) 3.757383575s ago: executing program 6 (id=5566): r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockopt$inet_tcp_int(r0, 0x6, 0x1b, 0x0, &(0x7f00000002c0)) 3.70698048s ago: executing program 4 (id=5567): syz_mount_image$ext4(&(0x7f0000000480)='ext4\x00', &(0x7f0000000ac0)='./bus\x00', 0x0, &(0x7f0000000440), 0x3, 0x462, &(0x7f0000000b00)="$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") openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0) 3.455860648s ago: executing program 6 (id=5571): r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0) write$9p(r0, &(0x7f0000000140)="ad086b78d4036210a3fb4ab9256d8c8b9bccb36573b89c444a096f99cce8955b8616d1f6dfdba306eda6fcd802c9bd2bc934c72804492216ff78b267d62f7731b8339cc50b7f1b1f3db0060ad91780d15e4b805f0d4840321778be5efcb521302a389dd71e8ba48f", 0x68) 3.309783892s ago: executing program 3 (id=5572): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) bind$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe) 3.139276682s ago: executing program 6 (id=5575): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x2) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000180)="66c646c1e72802621187d1a63d8e4515cafa781918ec65aad25f99b1", 0x1c}], 0x1) 3.009278658s ago: executing program 3 (id=5577): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000080)={'IDLETIMER\x00'}, &(0x7f00000002c0)=0x1e) 2.821627003s ago: executing program 6 (id=5580): r0 = syz_open_procfs(0x0, &(0x7f0000000400)='syscall\x00') lseek(r0, 0x8, 0x0) 2.60264266s ago: executing program 3 (id=5583): syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f0000000040), 0x2, 0xbb8, &(0x7f00000017c0)="$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") quotactl$Q_SETINFO(0xffffffff80000600, &(0x7f0000000140)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xe, 0x1, 0x7}) 2.579774523s ago: executing program 6 (id=5584): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b40)=@filter={'filter\x00', 0x4, 0x4, 0x4b8, 0xffffffff, 0x260, 0x260, 0xe8, 0xfeffffff, 0xffffffff, 0x3e8, 0x3e8, 0x3e8, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@dev={0xfe, 0x80, '\x00', 0x29}, @private2, [0xffffffff, 0xff000000, 0xff, 0xffffff00], [0xffffff00, 0xffffffff, 0xffffffff, 0xffffffff], 'hsr0\x00', 'sit0\x00', {}, {}, 0x87, 0x3, 0x4, 0x5}, 0x2f2, 0xa8, 0xe8}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x7}}}}, {{@ipv6={@private2, @empty, [], [0x0, 0x0, 0xff000000], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0x138, 0x178, 0x0, {}, [@common=@srh1={{0x90}, {0x21, 0x12, 0xbe, 0x7, 0x5aa9, @ipv4={'\x00', '\xff\xff', @empty}, @private1, @local, [0xff000000, 0xff000000, 0x0, 0xff], [0xffffff00, 0xff000000, 0xff], [0x0, 0xffffff, 0xffffff00, 0x7fffff7f], 0x3c80}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x5, {0x2000010}}}}, {{@uncond, 0x0, 0x160, 0x188, 0x0, {}, [@common=@unspec=@addrtype1={{0x28}, {0x21, 0x180, 0x5}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x3, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}, @mcast1, @private1, [0x0, 0x0, 0xff, 0xff], [0x0, 0xffffff00], [0x0, 0xff000000], 0x843, 0x1400}}]}, @REJECT={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x518) 2.568589726s ago: executing program 0 (id=5585): r0 = openat$binfmt_format(0xffffff9c, &(0x7f0000000380)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0) writev(r0, &(0x7f0000003bc0)=[{&(0x7f0000000100)="f101cd", 0x3}], 0x1) 2.40629492s ago: executing program 4 (id=5588): syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x3, &(0x7f0000000000), 0xfc, 0x55d, &(0x7f0000000700)="$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") quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000900)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000940)='./file0\x00') 2.340512706s ago: executing program 0 (id=5589): r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x400000740, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(r0, 0xc040564a, &(0x7f0000000200)={0x0, 0x0, 0x1011, 0x0, 0xffffffff, 0x0, 0x0, 0x1}) 2.23879298s ago: executing program 6 (id=5591): syz_mount_image$ocfs2(&(0x7f00000026c0), &(0x7f0000004780)='./file0\x00', 0x200000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1, 0x4703, &(0x7f0000004800)="$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") quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x0, 0x1100000000, 0x80000000, 0x6f, 0x9, 0x2000000000005, 0x8000000000000001, 0xfffffffffffffffd, 0x7fdf}) 1.976840504s ago: executing program 0 (id=5594): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000005bc0)=@newlink={0x40, 0x10, 0x40b, 0x70bd2b, 0x500, {0x0, 0x0, 0x0, 0x0, 0x24f2}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_MACSEC_CIPHER_SUITE={0xc, 0x4, 0x80c20001000002}]}}}]}, 0x40}}, 0x0) 1.882493888s ago: executing program 3 (id=5596): syz_emit_vhci(&(0x7f00000000c0)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_le_set_ext_adv_params={{0x17}, {0x7, 0xc4}}}}, 0x2) sync() 1.805810756s ago: executing program 1 (id=5597): r0 = syz_open_dev$loop(&(0x7f0000001580), 0x7, 0x82480) ioctl$BLKRRPART(r0, 0x125f, 0x0) 1.675081151s ago: executing program 0 (id=5598): syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000040)='./file0\x00', 0x180c850, &(0x7f0000000f40)={[{@fat=@showexec}, {@shortname_winnt}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@iocharset={'iocharset', 0x3d, 'cp860'}}, {@utf8no}, {@shortname_winnt}, {@fat=@check_strict}, {@uni_xlateno}, {@numtail}, {@fat=@fmask={'fmask', 0x3d, 0x9}}, {@utf8no}]}, 0x2, 0x360, &(0x7f0000000900)="$eJzs3U9oHFUYAPBvO/lbaJODUBSE0ZugoX/woKeUkkJxLypL1YO42FQlGwtZXEwP3caLeBQ86smLeNCDh55FUMSbB69WkKp40N4KFp/s7mx2NrtJU2Fbg7/fYfnyvffNe28zyU4m2ZdXlmPtwnRcvHnzRszNVWJq+cxy3KrEYmTRdzVGzYzJAQAHw62U4s/Us8+SyoSnBABMWPf1/7Ujpcw7X+/VP3n1B4ADr/j5f36vPnO7NVyayJQAgAkbuf//6FDzzPCv+qdKfxUAABxUz7/40jOnqxHP5flcxPq7rVqrFk8P2k9fjDeiEatxPBbidkTvQqHzUOk+nj1XXTme53k7flmMWqeiVYtYb7dqvSuF01m3fjZOxEIsFvXF1UZKKTv7RXXlRN4VEVfb3fFjvdKqTcfhYvwfD8dqnIw8HhipjzhXXTmZFweorffr2xFbg/sWnfkvxUJ8/2pcikZcmD8fKfUva6orV07k+ZlUHapv1WbjwvazsOsdEAAAAAAAAAAAAAAAAAAAAAAA+FeW8m2L2/vfpMH+PUtLY9q7++P06ov9gbZ6+wOl2RQp/fH2E7X3shjaH2jn/jyt2lQcur9LBwAAAAAAAAAAAAAAAAAAgP+M5uZM1BuN1Y3m5uW1ctDeaG4eiohO5s1vP/tqPkb73CGYKsYoNeVF6vJaPWX9zikb6lMEWWfwfubTa9szLveZ3V7F2GnM7t7UaBx55OcPB5mHs/6R/x70yWL8ArMd0ygH60d7U7qbJ+ryqSI4eYfO11NKux3nysujVVGJmLr7T9zeQeoE39x4/cFTzWNPdjNfpp7HHl84f/2Dj39bqzc6I3c0PpnZaN5Oa/Xi4/En2+5BVjp/KtELKuUzYWqv8q3hTD374fcXHnr/u/2NnsqZt8b0yXrL+XyjuVkpvlK6TTO9oJPbUTXfOJdF7DjO9JiTfwLBsY+W69eu/PTrfqtK3yRs1AEAAAAAAAAAAAAAAAAAAPdE6b3iheLNvtN7VT317ORnBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD3zuD//5eCrZHMfoK/2jHaNLu60Yw4er+XCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA/9w/AQAA///ftWu9") openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x101042, 0xb5) 1.480899867s ago: executing program 1 (id=5600): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000000)={@map=r0, 0xffffffffffffffff, 0x2c, 0x0, 0x0, @void, @value}, 0x20) 1.393386085s ago: executing program 2 (id=5601): r0 = openat$binfmt_register(0xffffff9c, &(0x7f0000000040), 0x1, 0x0) pwrite64(r0, &(0x7f0000000240)="e62eb166972ce298f4681ef5c755f60473b17b7887d68440dd9005bc69f6c3c5238bebfbce42365029d64c565a5fc2251eda45a465e64d", 0x37, 0x2) 1.139410789s ago: executing program 2 (id=5602): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) read$dsp(r0, 0x0, 0x0) 1.117145799s ago: executing program 1 (id=5603): syz_mount_image$romfs(&(0x7f0000000140), &(0x7f0000000280)='./file0\x00', 0x208008, &(0x7f0000000000)=ANY=[], 0x80, 0x162, &(0x7f00000005c0)="$eJzs2rFKw0AYB/BPGi3UzdGpUKkONkkTrbNjcXNzLG2uDV5sSQRpX0CcBIVz8CUEn8BHyOimi4MvEUlzhCQWzSDkhP9vyR++NPlyV77pOv7U67KgQ7Q/uzv92PKnXrNnHw1Zlw0o0SeiZhzCKHrQ6Zu3tB5GpK+4oVo7n8m1tTcWJzfM5Y5VdUsAAAAAAAAAAAAAAAAAAAAAAFBSuyFDYyK8a+Zyp5upBi3tfMC54wcVtVe5dlOe4SIm+GO8Pnb+hrNNGVxx7Md1M//7exl2J4K/F9fXuPRmRjBfdFxvMHbGzoVl2T3zwDQPLWP5LKP4xPaT7InC6NnUKZLSeua82WuZ82Zy/7VtV9xeFd8WzBdy/xUIa2q0UTLUiEiBNlQKfU2xf9S/CTVSoo1MSEfExsqpov06d1TRWE+uo7rdeonnnz6c8pEsLr+1Tn+0ZvJNlC9V9eEA8LOvAAAA//8Jlzfq") openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0) 942.266578ms ago: executing program 2 (id=5604): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) getpgrp(0x0) 863.382711ms ago: executing program 0 (id=5605): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_buf(r0, 0x29, 0x20, &(0x7f00000000c0)="0bbb268dd6ffa80800000000000000000000210d0000aaa8fa017242ba9380d440fe0000000000002900000003000000", 0xfe60) 792.559252ms ago: executing program 1 (id=5606): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000240)={0x22c, {{0xa, 0x4e21, 0x2, @mcast2, 0x1}}, {{0xa, 0x4e22, 0x1ff, @private1, 0x9}}}, 0x108) 792.256531ms ago: executing program 2 (id=5607): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8003}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x90, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x68, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0xe1}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x30, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x20, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_DATA={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x104}}, 0x0) 564.472967ms ago: executing program 3 (id=5608): syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5d8, &(0x7f0000000c00)="$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") open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="2000000002"], 0x0) 502.795435ms ago: executing program 1 (id=5609): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x2d, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac02}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0) 439.088223ms ago: executing program 4 (id=5610): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x0) 435.81341ms ago: executing program 0 (id=5611): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) syz_clone(0x2100000, 0x0, 0x0, &(0x7f0000000100), 0x0, &(0x7f0000000180)) 387.40965ms ago: executing program 2 (id=5612): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x80042, 0x0) pwrite64(r0, 0x0, 0x0, 0x5cf7) 71.335478ms ago: executing program 2 (id=5613): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmmsg(r0, &(0x7f0000009900)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000007380)=[{0x10, 0xff, 0x1}, {0x10, 0x84, 0x2b7}], 0x20}}], 0x1, 0x40010) 26.594364ms ago: executing program 3 (id=5614): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)={0x14, 0x38, 0x301, 0x270bd26, 0x25dfdbfa, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x8001}, 0x4) 0s ago: executing program 1 (id=5615): r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000080)=ANY=[@ANYBLOB="540000001400b5950000000000000000024c"], 0x54}, 0x1, 0x0, 0x0, 0x4000800}, 0x80) kernel console output (not intermixed with test programs): duct=e0b5, bcdDevice=ae.2a [ 514.339225][ T52] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 514.353686][T14859] loop0: detected capacity change from 0 to 512 [ 514.463290][T14855] loop1: detected capacity change from 0 to 8192 [ 514.520380][ T6249] loop1: p1 p2 p4[EZD] [ 514.522804][T14859] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 514.584530][ T6249] loop1: p2 start 4326912 is beyond EOD, truncated [ 514.603792][T14861] loop3: detected capacity change from 0 to 1024 [ 514.626118][ T6249] loop1: p4 start 16779772 is beyond EOD, truncated [ 514.651523][ T6219] usb 3-1: USB disconnect, device number 97 [ 514.685265][T14855] loop1: p1 p2 p4[EZD] [ 514.723374][T14861] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 514.752929][T14855] loop1: p2 start 4326912 is beyond EOD, truncated [ 514.768508][T14868] loop4: detected capacity change from 0 to 2048 [ 514.785979][ T6235] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 514.794330][T14855] loop1: p4 start 16779772 is beyond EOD, truncated [ 514.839880][T14870] loop5: detected capacity change from 0 to 128 [ 514.908079][T14868] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 515.137488][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.245680][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 515.438382][T14883] loop5: detected capacity change from 0 to 128 [ 515.445746][T14883] hpfs: Unexpected value for 'help' [ 515.515261][T14882] loop2: detected capacity change from 0 to 512 [ 515.525460][ T6700] udevd[6700]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 515.616455][T14882] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 515.660653][ T6700] udevd[6700]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 515.720615][T14886] loop4: detected capacity change from 0 to 1024 [ 515.814116][T14888] loop5: detected capacity change from 0 to 2048 [ 515.878843][T14886] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 515.933480][T14888] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 516.008262][T14893] loop3: detected capacity change from 0 to 1024 [ 516.047226][T14888] ext4 filesystem being mounted at /630/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 516.061452][T14893] hfsplus: failed to load root directory [ 516.137845][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.167083][ T6240] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.330556][ T6254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.416892][T14897] loop4: detected capacity change from 0 to 512 [ 516.461490][T14898] loop3: detected capacity change from 0 to 2048 [ 516.489112][T14899] loop2: detected capacity change from 0 to 2048 [ 516.534574][T14897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 516.561048][T14874] loop0: detected capacity change from 0 to 32768 [ 516.605861][T14898] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 516.688452][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.721272][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 516.733071][T14899] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 516.779376][T14876] loop1: detected capacity change from 0 to 32768 [ 516.802686][T14874] XFS (loop0): DAX unsupported by block device. Turning off DAX. [ 516.883428][T14874] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 517.004382][ T6240] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.044339][T14876] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 517.264902][T14874] XFS (loop0): Ending clean mount [ 517.276871][T14876] XFS (loop1): Ending clean mount [ 517.298934][T14929] loop2: detected capacity change from 0 to 512 [ 517.302319][T14874] XFS (loop0): Quotacheck needed: Please wait. [ 517.334051][T14876] XFS (loop1): Quotacheck needed: Please wait. [ 517.372295][T14929] EXT4-fs (loop2): #blocks per group too big: 65535 [ 517.381899][ T6407] usb 6-1: new high-speed USB device number 99 using dummy_hcd [ 517.393956][ T1091] XFS (loop0): Metadata CRC error detected at xfs_allocbt_read_verify+0x42/0xe0, xfs_cntbt block 0x10 [ 517.454071][T14931] loop3: detected capacity change from 0 to 512 [ 517.482011][ T1091] XFS (loop0): Unmount and run xfs_repair [ 517.520623][ T1091] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 517.532943][T14931] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 517.550675][ T1091] 00000000: 41 42 33 43 00 00 00 02 ff ff ff ff ff ff ff ff AB3C............ [ 517.574537][T14931] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 517.583026][ T1091] 00000010: 00 00 00 00 00 00 00 10 00 00 00 01 00 00 00 10 ................ [ 517.584279][T14876] XFS (loop1): Quotacheck: Done. [ 517.600827][ T6407] usb 6-1: Using ep0 maxpacket: 32 [ 517.603513][ T1091] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 517.635671][ T1091] 00000030: 00 00 00 00 20 bb 84 11 00 00 04 4e 00 00 00 02 .... ......N.... [ 517.655633][ T6407] usb 6-1: config 0 has an invalid interface number: 136 but max is 0 [ 517.667017][T14931] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended [ 517.686969][ T1091] 00000040: 00 00 04 60 00 00 0b a0 00 00 00 00 00 00 00 00 ...`............ [ 517.701915][ T6407] usb 6-1: config 0 has no interface number 0 [ 517.707056][ T1091] 00000050: 00 00 00 00 00 00 07 00 00 00 00 00 00 00 00 00 ................ [ 517.720202][T14931] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.4114: iget: bad extended attribute block 19 [ 517.732996][ T1091] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 517.733026][ T1091] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 517.733302][ T1091] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x290/0x470" at daddr 0x10 len 8 error 74 [ 517.738049][T14874] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 517.816078][T14931] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.4114: couldn't read orphan inode 15 (err -117) [ 517.830753][ T6407] usb 6-1: New USB device found, idVendor=1a0a, idProduct=0101, bcdDevice=ee.df [ 517.849917][T14931] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 517.871176][ T6407] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 517.890561][ T6239] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 517.905004][ T6407] usb 6-1: Product: syz [ 517.907157][ T6235] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 517.922871][ T6407] usb 6-1: Manufacturer: syz [ 517.948416][ T6235] XFS (loop0): Uncorrected metadata errors detected; please run xfs_repair. [ 517.971026][ T6407] usb 6-1: SerialNumber: syz [ 518.002731][ T6407] usb 6-1: config 0 descriptor?? [ 518.023776][ T6407] usb_ehset_test 6-1:0.136: probe with driver usb_ehset_test failed with error -32 [ 518.145750][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 518.175788][T14936] loop2: detected capacity change from 0 to 1024 [ 518.279340][ T6227] usb 6-1: USB disconnect, device number 99 [ 518.310680][T14913] loop4: detected capacity change from 0 to 32768 [ 518.365221][T14913] BTRFS: device fsid 100ef7e5-a5de-41f0-884c-a25b1c06c78a devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4111 (14913) [ 518.462250][T14913] BTRFS info (device loop4): first mount of filesystem 100ef7e5-a5de-41f0-884c-a25b1c06c78a [ 518.526065][T14913] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm [ 518.535650][T14913] BTRFS info (device loop4): using free-space-tree [ 518.909150][T14956] tmpfs: Bad value for 'mpol' [ 518.944905][T14949] loop2: detected capacity change from 0 to 1764 [ 519.309650][T14965] loop0: detected capacity change from 0 to 21 [ 519.342438][ T6251] BTRFS info (device loop4): last unmount of filesystem 100ef7e5-a5de-41f0-884c-a25b1c06c78a [ 519.357745][T14965] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 519.444917][ T6227] usb 6-1: new high-speed USB device number 100 using dummy_hcd [ 519.599176][T14969] loop2: detected capacity change from 0 to 64 [ 519.712429][ T6227] usb 6-1: Using ep0 maxpacket: 16 [ 519.734728][ T6227] usb 6-1: config 2 has an invalid interface number: 142 but max is 0 [ 519.742981][ T6227] usb 6-1: config 2 has no interface number 0 [ 519.789243][ T6227] usb 6-1: config 2 interface 142 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 16 [ 519.832199][ T6227] usb 6-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c6.6e [ 519.843428][ T6227] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 519.844441][T14972] loop0: detected capacity change from 0 to 2364 [ 519.886720][ T6227] usb 6-1: Product: syz [ 519.927081][ T6227] usb 6-1: Manufacturer: syz [ 519.931751][ T6227] usb 6-1: SerialNumber: syz [ 519.961054][T14962] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 519.981407][ T6227] usb 6-1: NFC: intf ffff88801119b000 id ffffffff8e941b80 [ 520.239443][ T6478] usb 6-1: USB disconnect, device number 100 [ 520.363706][T14979] loop0: detected capacity change from 0 to 128 [ 520.418143][ T6227] usb 3-1: new full-speed USB device number 98 using dummy_hcd [ 520.607349][ T6227] usb 3-1: config 0 has an invalid interface number: 113 but max is 0 [ 520.618795][T14983] loop4: detected capacity change from 0 to 128 [ 520.637641][ T6227] usb 3-1: config 0 has no interface number 0 [ 520.657458][ T6227] usb 3-1: config 0 interface 113 altsetting 2 has an endpoint descriptor with address 0xE7, changing to 0x87 [ 520.712022][ T6227] usb 3-1: config 0 interface 113 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 520.760181][ T6227] usb 3-1: config 0 interface 113 has no altsetting 0 [ 520.795316][ T6227] usb 3-1: New USB device found, idVendor=054c, idProduct=02e1, bcdDevice=e2.c8 [ 520.845572][ T6227] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 520.853634][ T6227] usb 3-1: Product: syz [ 520.898754][ T6227] usb 3-1: Manufacturer: syz [ 520.920047][ T6227] usb 3-1: SerialNumber: syz [ 520.950383][ T6227] usb 3-1: config 0 descriptor?? [ 520.989385][ T6227] pn533_usb 3-1:0.113: NFC: Could not find bulk-in or bulk-out endpoint [ 521.260189][ T6227] usb 3-1: USB disconnect, device number 98 [ 521.711025][T14985] loop0: detected capacity change from 0 to 32768 [ 521.748428][T14985] BTRFS: device fsid 92aec1fe-fee8-4e05-92dc-790b47b871d9 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4132 (14985) [ 521.833706][T14985] BTRFS info (device loop0): first mount of filesystem 92aec1fe-fee8-4e05-92dc-790b47b871d9 [ 521.871692][T14985] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 521.881002][T14985] BTRFS info (device loop0): using free-space-tree [ 521.981327][T14987] loop4: detected capacity change from 0 to 32768 [ 522.020366][T14987] BTRFS: device fsid 28302361-d975-4c41-bd4c-c547b14b74a1 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4133 (14987) [ 522.110709][T14987] BTRFS info (device loop4): first mount of filesystem 28302361-d975-4c41-bd4c-c547b14b74a1 [ 522.171710][T14987] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 522.180589][T14987] BTRFS info (device loop4): using free-space-tree [ 522.400787][T14991] loop5: detected capacity change from 0 to 32768 [ 522.470932][T14991] BTRFS: device fsid 17bca515-437c-4bbd-9eb0-5eb74df1971f devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4135 (14991) [ 522.545081][T14991] BTRFS info (device loop5): first mount of filesystem 17bca515-437c-4bbd-9eb0-5eb74df1971f [ 522.624831][T14991] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm [ 522.636037][ T6235] BTRFS info (device loop0): last unmount of filesystem 92aec1fe-fee8-4e05-92dc-790b47b871d9 [ 522.667687][T14991] BTRFS info (device loop5): using free-space-tree [ 522.730822][ T6251] BTRFS info (device loop4): last unmount of filesystem 28302361-d975-4c41-bd4c-c547b14b74a1 [ 523.268625][T15047] loop1: detected capacity change from 0 to 512 [ 523.392470][ T6254] BTRFS info (device loop5): last unmount of filesystem 17bca515-437c-4bbd-9eb0-5eb74df1971f [ 523.435498][T15050] loop3: detected capacity change from 0 to 128 [ 523.924244][T15055] loop3: detected capacity change from 0 to 512 [ 523.983585][T15057] loop5: detected capacity change from 0 to 256 [ 524.116609][T14996] loop2: detected capacity change from 0 to 32768 [ 525.020945][T15043] loop0: detected capacity change from 0 to 32768 [ 525.193127][T15063] loop2: detected capacity change from 0 to 8192 [ 525.209024][T15045] loop4: detected capacity change from 0 to 32768 [ 525.291294][T15045] BTRFS: device fsid 34a2da50-e117-4d40-8878-8e0fb0127b5f devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4138 (15045) [ 525.418664][T15045] BTRFS info (device loop4): first mount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 525.506574][T15045] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 525.569386][T15045] BTRFS info (device loop4): using free-space-tree [ 525.674086][T15065] loop0: detected capacity change from 0 to 512 [ 525.718789][T15054] loop1: detected capacity change from 0 to 32768 [ 525.918567][T15054] BTRFS: device fsid 16bad5ef-498e-43ba-8a30-25ddcaa179c7 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4142 (15054) [ 526.147854][T15054] BTRFS info (device loop1): first mount of filesystem 16bad5ef-498e-43ba-8a30-25ddcaa179c7 [ 526.170613][T15083] loop2: detected capacity change from 0 to 1024 [ 526.225368][T15054] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm [ 526.339236][T15054] BTRFS info (device loop1): using free-space-tree [ 526.353350][T15083] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 526.402301][ T6251] BTRFS info (device loop4): last unmount of filesystem 34a2da50-e117-4d40-8878-8e0fb0127b5f [ 526.668729][ T6240] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.828129][T15061] loop3: detected capacity change from 0 to 32768 [ 526.896590][T15061] BTRFS: device fsid d09153a9-5497-4f31-8e52-d2d02bbdf7fc devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4145 (15061) [ 527.015222][ T6239] BTRFS info (device loop1): last unmount of filesystem 16bad5ef-498e-43ba-8a30-25ddcaa179c7 [ 527.070330][T15061] BTRFS info (device loop3): first mount of filesystem d09153a9-5497-4f31-8e52-d2d02bbdf7fc [ 527.149844][T15061] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 527.195641][T15061] BTRFS info (device loop3): using free-space-tree [ 527.987539][ T6238] BTRFS info (device loop3): last unmount of filesystem d09153a9-5497-4f31-8e52-d2d02bbdf7fc [ 528.266445][T15090] loop0: detected capacity change from 0 to 32768 [ 528.331851][T15090] BTRFS: device fsid 59b5568a-a427-4554-b73a-27dcd238cc5a devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.4149 (15090) [ 528.398370][T15090] BTRFS info (device loop0): first mount of filesystem 59b5568a-a427-4554-b73a-27dcd238cc5a [ 528.434247][T15090] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 528.483312][T15090] BTRFS info (device loop0): using free-space-tree [ 528.688899][T15107] loop2: detected capacity change from 0 to 32768 [ 528.862279][T15107] (syz.2.4151,15107,0):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 528.933604][T15123] loop1: detected capacity change from 0 to 32768 [ 528.943627][T15107] (syz.2.4151,15107,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 529.038190][T15123] (syz.1.4152,15123,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 529.177162][T15123] (syz.1.4152,15123,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 529.308583][ T6235] BTRFS info (device loop0): last unmount of filesystem 59b5568a-a427-4554-b73a-27dcd238cc5a [ 530.063487][T15130] loop5: detected capacity change from 0 to 32768 [ 530.170649][T15130] (syz.5.4155,15130,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 530.241505][T15130] (syz.5.4155,15130,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 531.000356][T15155] loop1: detected capacity change from 0 to 32768 [ 531.065867][T15155] (syz.1.4158,15155,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 531.141796][T15155] (syz.1.4158,15155,0):ocfs2_fill_super:1177 ERROR: status = -22 [ 531.384726][T15157] loop0: detected capacity change from 0 to 32768 [ 531.460202][T15157] (syz.0.4157,15157,1):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 531.511437][T15157] (syz.0.4157,15157,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 531.554186][T15166] syz.1.4161: attempt to access beyond end of device [ 531.554186][T15166] loop1: rw=2048, sector=0, nr_sectors = 8 limit=0 [ 531.622274][T15166] SQUASHFS error: Failed to read block 0x0: -5 [ 531.630726][T15166] unable to read squashfs_super_block [ 532.808155][T15163] loop4: detected capacity change from 0 to 32768 [ 532.829217][T15163] BTRFS: device fsid 9399ba92-402c-46cb-a272-9c4c6c4f62f5 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.4160 (15163) [ 532.909226][T15163] BTRFS info (device loop4): first mount of filesystem 9399ba92-402c-46cb-a272-9c4c6c4f62f5 [ 532.944500][T15163] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm [ 532.983366][T15163] BTRFS info (device loop4): using free-space-tree [ 533.035065][T15172] loop2: detected capacity change from 0 to 1024 [ 533.138784][T15172] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 533.286177][ T6240] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 533.433040][T15168] loop0: detected capacity change from 0 to 40427 [ 533.488933][T15168] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x3fffff [ 533.522434][T15168] F2FS-fs (loop0): Image doesn't support compression [ 533.561940][T15168] F2FS-fs (loop0): Image doesn't support compression [ 533.569479][ T6251] BTRFS info (device loop4): last unmount of filesystem 9399ba92-402c-46cb-a272-9c4c6c4f62f5 [ 533.646949][T15170] loop1: detected capacity change from 0 to 32768 [ 533.656457][T15195] loop2: detected capacity change from 0 to 128 [ 533.688805][T15168] F2FS-fs (loop0): invalid crc value [ 533.733012][T15170] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 534.015362][T15170] XFS (loop1): Starting recovery (logdev: internal) [ 534.151207][T15170] XFS (loop1): Ending recovery (logdev: internal) [ 534.296379][T15168] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 534.454840][ T6239] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 534.471589][T15183] loop3: detected capacity change from 0 to 32768 [ 534.523958][T15183] BTRFS: device fsid 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4164 (15183) [ 534.579077][T15213] loop5: detected capacity change from 0 to 512 [ 534.670327][T15213] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found [ 534.701150][T15213] UDF-fs: Scanning with blocksize 512 failed [ 534.730744][T15183] BTRFS info (device loop3): first mount of filesystem 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 [ 534.753726][T15213] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found [ 534.761162][T15213] UDF-fs: Scanning with blocksize 1024 failed [ 534.817588][T15213] UDF-fs: warning (device loop5): udf_load_vrs: No VRS found [ 534.829112][T15183] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 534.881603][T15213] UDF-fs: Scanning with blocksize 2048 failed [ 534.887938][T15183] BTRFS info (device loop3): using free-space-tree [ 534.919967][T15213] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 535.001412][T15213] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 535.231303][T15232] loop1: detected capacity change from 0 to 512 [ 535.299431][T15232] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 535.306897][T15232] UDF-fs: Scanning with blocksize 512 failed [ 535.423566][T15232] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 535.459838][T15235] loop5: detected capacity change from 0 to 128 [ 535.489768][T15232] UDF-fs: Scanning with blocksize 1024 failed [ 535.517319][ T6238] BTRFS info (device loop3): last unmount of filesystem 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 [ 535.538982][T15232] UDF-fs: warning (device loop1): udf_load_vrs: No VRS found [ 535.588145][T15232] UDF-fs: Scanning with blocksize 2048 failed [ 535.662030][T15232] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 535.780097][T15232] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 535.948467][T15238] loop5: detected capacity change from 0 to 512 [ 536.836784][T15209] loop2: detected capacity change from 0 to 32768 [ 536.892555][T15209] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz" [ 536.956724][T15244] loop0: detected capacity change from 0 to 16384 [ 536.971760][T15209] dlm: no local IP address has been set [ 536.988047][T15209] dlm: cannot start dlm midcomms -107 [ 537.004986][T15209] gfs2: fsid=syz:syz: dlm_new_lockspace error -107 [ 537.032539][T15244] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 537.070664][T15244] UDF-fs: Scanning with blocksize 512 failed [ 537.148509][T15244] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 537.166187][T15244] UDF-fs: Scanning with blocksize 1024 failed [ 537.198817][T15244] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 537.227599][T15244] UDF-fs: Scanning with blocksize 2048 failed [ 537.332561][T15244] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 538.549888][T15251] loop2: detected capacity change from 0 to 32768 [ 539.017488][T15253] loop0: detected capacity change from 0 to 32768 [ 539.223200][T15253] XFS (loop0): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 539.526814][T15253] XFS (loop0): Ending clean mount [ 539.673742][ T6235] XFS (loop0): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 540.033636][T15271] netlink: 'syz.0.4185': attribute type 33 has an invalid length. [ 540.568837][T15279] loop3: detected capacity change from 0 to 2048 [ 540.575662][T15281] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048) [ 540.713336][ T6249] loop3: p2 p3 p7 [ 540.906659][T15279] loop3: p2 p3 p7 [ 541.196550][T15287] loop3: detected capacity change from 0 to 8 [ 541.219197][T15255] loop4: detected capacity change from 0 to 65536 [ 541.245982][ T6250] udevd[6250]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 541.259745][ T6249] udevd[6249]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 541.260102][ T6700] udevd[6700]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 541.435994][T15255] XFS (loop4): Mounting V5 Filesystem 6653b971-41ab-480a-bd7b-5ff79b9409b5 [ 541.452628][ T6700] udevd[6700]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory [ 541.461701][ T6249] udevd[6249]: inotify_add_watch(7, /dev/loop3p3, 10) failed: No such file or directory [ 541.487471][ T6253] udevd[6253]: inotify_add_watch(7, /dev/loop3p7, 10) failed: No such file or directory [ 541.545711][T15255] workqueue: Failed to create a rescuer kthread for wq "xfs-cil/loop4": -EINTR [ 541.548423][T15255] XFS (loop4): log mount failed [ 541.618042][T15259] loop2: detected capacity change from 0 to 65536 [ 541.694553][T15277] loop0: detected capacity change from 0 to 32768 [ 541.764240][T15259] XFS (loop2): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 541.840595][T15277] (syz.0.4188,15277,0):ocfs2_check_set_options:1244 ERROR: Invalid heartbeat mount options [ 541.897775][T15277] (syz.0.4188,15277,1):ocfs2_fill_super:1177 ERROR: status = -22 [ 542.097558][T15259] XFS (loop2): Ending clean mount [ 542.238028][ T6240] XFS (loop2): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2 [ 542.658432][T15322] loop5: detected capacity change from 0 to 256 [ 543.261479][T15335] loop4: detected capacity change from 0 to 128 [ 543.280340][T15333] loop0: detected capacity change from 0 to 1024 [ 543.330710][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 543.375035][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 543.436377][T15335] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 543.444071][T15335] UDF-fs: Scanning with blocksize 512 failed [ 543.499147][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 543.547592][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 543.573721][T15335] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 543.583772][ T36] hfsplus: b-tree write err: -5, ino 4 [ 543.610515][T15335] UDF-fs: Scanning with blocksize 1024 failed [ 543.619841][T15341] loop3: detected capacity change from 0 to 64 [ 543.665019][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 543.733912][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 543.769010][T15335] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 543.792583][T15345] [U] [ 543.795703][T15345] [U] [ 543.798463][T15345] [U] [ 543.801173][T15345] [U] [ 543.818894][T15335] UDF-fs: Scanning with blocksize 2048 failed [ 543.841309][T15345] [U] [ 543.844104][T15345] [U] [ 543.846824][T15345] [U] [ 543.849550][T15345] [U] [ 543.873688][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 543.893148][T15345] [U] [ 543.895895][T15345] [U] [ 543.898612][T15345] [U] [ 543.915564][T15335] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 543.944094][T15344] [U] [ 543.948708][ T6219] usb 3-1: new high-speed USB device number 99 using dummy_hcd [ 543.972082][T15335] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 543.995051][T15335] UDF-fs: Scanning with blocksize 4096 failed [ 544.033250][T15335] UDF-fs: warning (device loop4): udf_fill_super: No partition found (1) [ 544.161912][ T6219] usb 3-1: Using ep0 maxpacket: 32 [ 544.181646][ T6219] usb 3-1: config 0 has an invalid interface number: 74 but max is 1 [ 544.225790][ T6219] usb 3-1: config 0 has an invalid interface number: 253 but max is 1 [ 544.234042][ T6219] usb 3-1: config 0 has no interface number 0 [ 544.283539][ T6219] usb 3-1: config 0 has no interface number 1 [ 544.330698][ T6219] usb 3-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=8e.fa [ 544.360276][ T6219] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.393392][ T6219] usb 3-1: Product: syz [ 544.405817][ T6219] usb 3-1: Manufacturer: syz [ 544.424457][T15361] netlink: 'syz.4.4222': attribute type 1 has an invalid length. [ 544.453728][ T6219] usb 3-1: SerialNumber: syz [ 544.474705][ T6219] usb 3-1: config 0 descriptor?? [ 544.706672][ T6219] usb 3-1: USB disconnect, device number 99 [ 544.938097][ T30] audit: type=1326 audit(1747969341.706:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15380 comm="syz.5.4232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 544.986636][T15386] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 545.017556][ T30] audit: type=1326 audit(1747969341.706:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15380 comm="syz.5.4232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 545.031297][ T6700] udevd[6700]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.74/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 545.076462][T15388] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 545.160605][ T30] audit: type=1326 audit(1747969341.743:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15380 comm="syz.5.4232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 545.303841][ T30] audit: type=1326 audit(1747969341.743:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15380 comm="syz.5.4232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 545.447117][ T30] audit: type=1326 audit(1747969341.743:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15380 comm="syz.5.4232" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 545.850059][T15415] loop2: detected capacity change from 0 to 256 [ 545.998429][T15423] loop1: detected capacity change from 0 to 128 [ 546.047585][T15425] netlink: 44 bytes leftover after parsing attributes in process `syz.5.4253'. [ 546.122662][T15425] netlink: 43 bytes leftover after parsing attributes in process `syz.5.4253'. [ 546.169248][T15425] netlink: 'syz.5.4253': attribute type 5 has an invalid length. [ 546.204720][T15425] netlink: 43 bytes leftover after parsing attributes in process `syz.5.4253'. [ 547.052835][T15458] loop5: detected capacity change from 0 to 256 [ 547.151239][T15458] FAT-fs (loop5): Directory bread(block 64) failed [ 547.195846][T15458] FAT-fs (loop5): Directory bread(block 65) failed [ 547.215958][T15458] FAT-fs (loop5): Directory bread(block 66) failed [ 547.250757][T15458] FAT-fs (loop5): Directory bread(block 67) failed [ 547.293960][T15458] FAT-fs (loop5): Directory bread(block 68) failed [ 547.312866][T15458] FAT-fs (loop5): Directory bread(block 69) failed [ 547.340125][T15458] FAT-fs (loop5): Directory bread(block 70) failed [ 547.367195][T15458] FAT-fs (loop5): Directory bread(block 71) failed [ 547.388869][T15458] FAT-fs (loop5): Directory bread(block 72) failed [ 547.434665][T15458] FAT-fs (loop5): Directory bread(block 73) failed [ 547.486899][T15467] netlink: 766 bytes leftover after parsing attributes in process `syz.3.4273'. [ 547.496947][ T6478] usb 1-1: new high-speed USB device number 92 using dummy_hcd [ 547.678909][ T6478] usb 1-1: Using ep0 maxpacket: 16 [ 547.723847][ T6478] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xD has an invalid bInterval 0, changing to 7 [ 547.757717][ T6478] usb 1-1: New USB device found, idVendor=4752, idProduct=0011, bcdDevice=32.4f [ 547.785700][ T6478] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 547.793751][ T6478] usb 1-1: Product: syz [ 547.807324][ T6478] usb 1-1: Manufacturer: syz [ 547.812071][ T6478] usb 1-1: SerialNumber: syz [ 547.847538][ T6478] usb 1-1: config 0 descriptor?? [ 547.876619][ T6478] hub 1-1:0.0: bad descriptor, ignoring hub [ 547.903183][ T6478] hub 1-1:0.0: probe with driver hub failed with error -5 [ 547.937030][ T6478] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 548.008333][T15475] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4278'. [ 548.127402][T15453] loop4: detected capacity change from 0 to 32768 [ 548.158104][ T6478] usb 1-1: USB disconnect, device number 92 [ 548.200675][T15453] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode. [ 548.201077][T15477] netlink: 'syz.3.4279': attribute type 10 has an invalid length. [ 548.281628][T15453] ocfs2: Unmounting device (7,4) on (node local) [ 548.288337][T15477] macvlan0: entered promiscuous mode [ 548.327789][T15482] netlink: 'syz.5.4280': attribute type 1 has an invalid length. [ 548.355757][T15477] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 548.368324][T15482] netlink: 'syz.5.4280': attribute type 2 has an invalid length. [ 548.414310][T15484] (unnamed net_device) (uninitialized): option arp_validate: invalid value (18446744073709551614) [ 548.786520][T15493] 8021q: adding VLAN 0 to HW filter on device bond0 [ 548.846887][T15493] bond0: (slave ip6_vti0): The slave device specified does not support setting the MAC address [ 548.955751][T15493] bond0: (slave ip6_vti0): Error -95 calling set_mac_address [ 549.143287][ T6227] usb 2-1: new full-speed USB device number 86 using dummy_hcd [ 549.338169][ T6227] usb 2-1: config 4 has an invalid interface number: 231 but max is 0 [ 549.346671][ T6227] usb 2-1: config 4 has no interface number 0 [ 549.370821][T15515] openvswitch: netlink: nsh attribute has 2 unknown bytes. [ 549.398268][ T6227] usb 2-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 549.409352][ T6227] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 549.446070][ T6227] usb 2-1: Product: syz [ 549.496468][ T6227] usb 2-1: Manufacturer: syz [ 549.501143][ T6227] usb 2-1: SerialNumber: syz [ 549.551598][ T6227] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 549.754915][T15530] loop5: detected capacity change from 0 to 24 [ 549.787200][T15530] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 549.827885][T15530] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 549.902576][T15530] romfs: read error for inode 0x70040 [ 549.930470][T15533] loop3: detected capacity change from 0 to 512 [ 549.989001][ T6227] vp7045: USB control message 'in' went wrong. [ 550.028218][ T6227] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 550.079017][ T6227] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 550.081918][T15533] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 550.119346][T15538] loop4: detected capacity change from 0 to 4096 [ 550.181817][ T6227] usb 2-1: USB disconnect, device number 86 [ 550.289688][T15533] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 21) has entry past directory size at pos 128 [ 550.462514][T15538] ntfs3(loop4): ino=5, "/" indx_read [ 550.526377][T15538] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 551.245906][T15567] netlink: 616 bytes leftover after parsing attributes in process `syz.2.4315'. [ 551.702152][T15585] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 552.266954][T15602] loop5: detected capacity change from 0 to 256 [ 552.295995][T15602] exfat: Deprecated parameter 'utf8' [ 552.379097][T15602] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 552.467236][T15609] openvswitch: netlink: Actions may not be safe on all matching packets [ 552.992265][T15622] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4337'. [ 553.046392][T15622] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4337'. [ 553.238985][T15620] loop1: detected capacity change from 0 to 4096 [ 554.507752][T15570] loop4: detected capacity change from 0 to 65536 [ 554.824716][T15665] loop2: detected capacity change from 0 to 4096 [ 554.909697][T15665] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 555.027641][T15665] ntfs3(loop2): ino=19, mi_enum_attr [ 555.065868][T15665] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 555.901572][T15646] loop1: detected capacity change from 0 to 40427 [ 555.988187][T15646] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x3fffff [ 556.019379][T15646] F2FS-fs (loop1): Image doesn't support compression [ 556.026092][T15646] F2FS-fs (loop1): heap/no_heap options were deprecated [ 556.144504][T15710] netlink: 'syz.0.4374': attribute type 2 has an invalid length. [ 556.156660][T15646] F2FS-fs (loop1): invalid crc value [ 556.242445][T15710] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 556.551605][T15727] (unnamed net_device) (uninitialized): (slave gre0): Device is not bonding slave [ 556.587030][T15646] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 556.606477][T15727] (unnamed net_device) (uninitialized): option active_slave: invalid value (gre0) [ 556.765312][T15735] loop0: detected capacity change from 0 to 512 [ 556.853419][T15740] netlink: 'syz.3.4386': attribute type 5 has an invalid length. [ 556.866080][T15737] loop4: detected capacity change from 0 to 1024 [ 556.870011][T15735] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 556.913266][T15744] ip6t_srh: unknown srh match flags 4000 [ 556.976007][T15746] netlink: 'syz.5.4388': attribute type 2 has an invalid length. [ 556.986510][T15746] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4388'. [ 557.013532][T15735] ext4 filesystem being mounted at /708/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 557.040374][ T6239] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x521/0x1ed0 [ 557.063182][T15746] : entered promiscuous mode [ 557.108550][ T6239] F2FS-fs (loop1): invalid blkaddr: 1027, type: 10, run fsck to fix. [ 557.201375][ T1091] hfsplus: b-tree write err: -5, ino 4 [ 557.473422][ T6235] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 557.931155][ T52] usb 3-1: new high-speed USB device number 100 using dummy_hcd [ 558.146761][ T52] usb 3-1: Using ep0 maxpacket: 32 [ 558.209342][ T52] usb 3-1: unable to get BOS descriptor or descriptor too short [ 558.233609][ T52] usb 3-1: config 7 has an invalid interface number: 187 but max is 0 [ 558.255252][ T52] usb 3-1: config 7 has no interface number 0 [ 558.261425][ T52] usb 3-1: config 7 interface 187 altsetting 6 bulk endpoint 0x3 has invalid maxpacket 16 [ 558.325576][ T52] usb 3-1: config 7 interface 187 has no altsetting 0 [ 558.350515][ T52] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 558.386509][ T52] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 558.412038][ T52] usb 3-1: Product: syz [ 558.416244][ T52] usb 3-1: Manufacturer: syz [ 558.444784][ T52] usb 3-1: SerialNumber: syz [ 558.478215][T15762] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 558.519016][ T6338] usb 1-1: new high-speed USB device number 93 using dummy_hcd [ 558.693830][ T6338] usb 1-1: Using ep0 maxpacket: 16 [ 558.722878][ T6338] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 558.732290][ T52] usb 3-1: Limiting number of CPorts to U8_MAX [ 558.736071][T15793] loop3: detected capacity change from 0 to 2048 [ 558.753749][T15793] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 558.764301][ T52] usb 3-1: Unknown endpoint type found, address 0x07 [ 558.776291][ T6338] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 558.796957][ T52] usb 3-1: Not enough endpoints found in device, aborting! [ 558.807858][ T6338] usb 1-1: Product: syz [ 558.812082][ T6338] usb 1-1: Manufacturer: syz [ 558.864232][ T6338] usb 1-1: SerialNumber: syz [ 558.872480][T15793] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 558.917488][ C0] vkms_vblank_simulate: vblank timer overrun [ 558.951019][ T6338] r8152-cfgselector 1-1: Unknown version 0x0000 [ 558.964230][ T6219] usb 3-1: USB disconnect, device number 100 [ 558.985995][ T6338] r8152-cfgselector 1-1: config 0 descriptor?? [ 559.522037][ T6219] r8152-cfgselector 1-1: USB disconnect, device number 93 [ 559.748228][T15824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4428'. [ 559.779239][T15824] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4428'. [ 559.788977][T15821] loop4: detected capacity change from 0 to 2048 [ 559.821909][T15821] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 559.831559][T15824] geneve2: entered promiscuous mode [ 559.850707][T15828] netlink: 'syz.5.4429': attribute type 13 has an invalid length. [ 559.853642][T15824] geneve2: entered allmulticast mode [ 560.163585][T15828] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 560.292635][T15837] loop3: detected capacity change from 0 to 256 [ 560.421943][ T6407] usb 5-1: new high-speed USB device number 96 using dummy_hcd [ 560.624149][T15847] loop1: detected capacity change from 0 to 64 [ 560.647475][ T6407] usb 5-1: Using ep0 maxpacket: 16 [ 560.679563][ T6407] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 560.725710][ T6407] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 560.791559][ T6407] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 560.817147][ T6407] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 560.868192][ T6407] usb 5-1: Product: syz [ 560.888525][ T6407] usb 5-1: Manufacturer: syz [ 560.903174][ T6407] usb 5-1: SerialNumber: syz [ 561.432608][ T6407] usb 5-1: cannot find UAC_HEADER [ 561.585194][ T6407] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22 [ 561.596911][T15873] loop5: detected capacity change from 0 to 512 [ 561.607938][T15874] loop2: detected capacity change from 0 to 256 [ 561.633184][ T6407] usb 5-1: USB disconnect, device number 96 [ 561.687789][T15873] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 561.730371][T15873] ext4 filesystem being mounted at /710/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 561.748159][T15874] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a371bfb, utbl_chksum : 0xe619d30d) [ 561.827001][ T6616] udevd[6616]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 562.105558][ T6254] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.126198][T15885] loop3: detected capacity change from 0 to 1024 [ 562.161466][T15885] EXT4-fs: Ignoring removed bh option [ 562.224658][T15885] EXT4-fs: inline encryption not supported [ 562.322953][T15885] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 562.338132][T15892] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 562.401697][T15885] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 2: comm syz.3.4455: lblock 2 mapped to illegal pblock 2 (length 1) [ 562.501907][T15885] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 562.556993][T15885] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 48: comm syz.3.4455: lblock 0 mapped to illegal pblock 48 (length 1) [ 562.607058][T15885] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 562.617132][ T6219] usb 5-1: new high-speed USB device number 97 using dummy_hcd [ 562.681596][T15885] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.4455: Failed to acquire dquot type 0 [ 562.764676][T15885] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 562.800861][T15885] EXT4-fs error (device loop3): ext4_evict_inode:259: inode #11: comm syz.3.4455: mark_inode_dirty error [ 562.813640][T15905] ip6gretap1: entered promiscuous mode [ 562.831869][ T6219] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 562.848386][ T6219] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 562.858403][T15885] EXT4-fs warning (device loop3): ext4_evict_inode:262: couldn't mark inode dirty (err -117) [ 562.863344][ T6219] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 562.888014][T15885] EXT4-fs (loop3): 1 orphan inode deleted [ 562.922408][T15885] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 562.922606][ T36] EXT4-fs error (device loop3): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:2: lblock 1 mapped to illegal pblock 1 (length 1) [ 562.964013][ T6219] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 562.983524][ T6219] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 562.999549][ T6338] usb 6-1: new high-speed USB device number 101 using dummy_hcd [ 563.013504][ T36] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 563.027575][ T6219] usb 5-1: config 0 descriptor?? [ 563.039430][ T36] EXT4-fs error (device loop3): ext4_release_dquot:6971: comm kworker/u8:2: Failed to release dquot type 0 [ 563.076818][ T6219] hub 5-1:0.0: USB hub found [ 563.100492][T15885] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 563.142880][T15885] EXT4-fs error (device loop3): __ext4_get_inode_loc:4450: comm syz.3.4455: Invalid inode table block 1 in block_group 0 [ 563.190820][ T6338] usb 6-1: Using ep0 maxpacket: 32 [ 563.203851][ T6338] usb 6-1: config 4 has an invalid interface number: 128 but max is 0 [ 563.228204][T15885] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 563.234050][ T6338] usb 6-1: config 4 has no interface number 0 [ 563.263005][T15885] EXT4-fs error (device loop3): ext4_quota_off:7219: inode #3: comm syz.3.4455: mark_inode_dirty error [ 563.264534][ T6338] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 563.308893][ T6219] hub 5-1:0.0: 9 ports detected [ 563.322063][ T6338] usb 6-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 563.344985][ T6338] usb 6-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 563.346210][ T6219] hub 5-1:0.0: insufficient power available to use all downstream ports [ 563.408717][ T6338] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 563.518793][ T6338] hub 6-1:4.128: USB hub found [ 563.533065][ T6219] hub 5-1:0.0: hub_hub_status failed (err = -71) [ 563.556366][ T6219] hub 5-1:0.0: config failed, can't get hub status (err -71) [ 563.606413][ T6219] usb 5-1: USB disconnect, device number 97 [ 563.690373][ T6338] hub 6-1:4.128: 2 ports detected [ 563.707994][ T6338] hub 6-1:4.128: Using single TT (err -22) [ 563.906006][ T6338] hub 6-1:4.128: hub_hub_status failed (err = -71) [ 563.912732][ T6338] hub 6-1:4.128: config failed, can't get hub status (err -71) [ 563.972202][ T6338] usb 6-1: USB disconnect, device number 101 [ 564.390629][T15948] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4481'. [ 564.411602][T15951] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 564.558140][T15924] loop1: detected capacity change from 0 to 32768 [ 564.565098][ T6338] usb 5-1: new high-speed USB device number 98 using dummy_hcd [ 564.695661][T15924] ERROR: (device loop1): diAllocBit: iag inconsistent [ 564.695661][T15924] [ 564.751612][ T6338] usb 5-1: Using ep0 maxpacket: 16 [ 564.763933][T15924] ialloc: diAlloc returned -5! [ 564.792483][ T6338] usb 5-1: too many endpoints for config 1 interface 0 altsetting 0: 254, using maximum allowed: 30 [ 564.855453][ T6338] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 564.897800][ T6338] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 254 [ 564.942720][ T6338] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 564.952560][ T6338] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 565.000271][ T6338] usb 5-1: SerialNumber: syz [ 565.200586][ T6407] usb 3-1: new high-speed USB device number 101 using dummy_hcd [ 565.301309][ T6338] usb 5-1: USB disconnect, device number 98 [ 565.328245][T15976] IPv6: sit1: Disabled Multicast RS [ 565.383385][ T6407] usb 3-1: Using ep0 maxpacket: 16 [ 565.433790][ T6407] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 565.463036][ T6407] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 565.499947][ T6407] usb 3-1: Product: syz [ 565.515284][ T6407] usb 3-1: Manufacturer: syz [ 565.519991][ T6407] usb 3-1: SerialNumber: syz [ 565.569613][ T6407] r8152-cfgselector 3-1: Unknown version 0x0000 [ 565.603392][ T6407] r8152-cfgselector 3-1: config 0 descriptor?? [ 566.052194][T16001] loop4: detected capacity change from 0 to 256 [ 566.073708][ T6407] r8152-cfgselector 3-1: USB disconnect, device number 101 [ 566.256425][T16001] FAT-fs (loop4): Directory bread(block 64) failed [ 566.269939][T16001] FAT-fs (loop4): Directory bread(block 65) failed [ 566.276646][T16001] FAT-fs (loop4): Directory bread(block 66) failed [ 566.341452][T16001] FAT-fs (loop4): Directory bread(block 67) failed [ 566.363117][T16001] FAT-fs (loop4): Directory bread(block 68) failed [ 566.408801][T16001] FAT-fs (loop4): Directory bread(block 69) failed [ 566.415967][T16001] FAT-fs (loop4): Directory bread(block 70) failed [ 566.467604][T16001] FAT-fs (loop4): Directory bread(block 71) failed [ 566.494501][T16001] FAT-fs (loop4): Directory bread(block 72) failed [ 566.525828][T16001] FAT-fs (loop4): Directory bread(block 73) failed [ 566.932134][T16029] netlink: 12 bytes leftover after parsing attributes in process `syz.5.4522'. [ 566.975321][T16029] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4522'. [ 567.190572][T16038] netlink: 192 bytes leftover after parsing attributes in process `syz.3.4524'. [ 567.260579][T16044] xt_hashlimit: size too large, truncated to 1048576 [ 567.302657][T16044] xt_hashlimit: max too large, truncated to 1048576 [ 567.509289][T16044] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 568.066577][T16071] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4539'. [ 568.175523][T16075] loop5: detected capacity change from 0 to 256 [ 568.294078][ T30] audit: type=1800 audit(1747969363.557:22): pid=16075 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.4541" name="file1" dev="loop5" ino=1048657 res=0 errno=0 [ 568.756526][T16095] loop2: detected capacity change from 0 to 164 [ 568.904008][T16095] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 568.921174][ T6407] usb 2-1: new high-speed USB device number 87 using dummy_hcd [ 568.941663][T16097] loop5: detected capacity change from 0 to 4096 [ 569.003883][T16097] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 569.145622][ T6407] usb 2-1: Using ep0 maxpacket: 8 [ 569.152350][T16097] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 569.181795][ T6407] usb 2-1: New USB device found, idVendor=0458, idProduct=7003, bcdDevice=7a.1a [ 569.199142][T16097] ntfs3(loop5): Failed to load $Extend (-22). [ 569.201990][ T6407] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 569.205260][T16097] ntfs3(loop5): Failed to initialize $Extend. [ 569.239604][T16105] loop2: detected capacity change from 0 to 256 [ 569.260686][ T6407] usb 2-1: Product: syz [ 569.284359][ T6407] usb 2-1: Manufacturer: syz [ 569.298652][ T6407] usb 2-1: SerialNumber: syz [ 569.339210][ T6407] usb 2-1: config 0 descriptor?? [ 569.402489][ T6407] gspca_main: sn9c2028-2.14.0 probing 0458:7003 [ 569.439555][T16105] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 569.641882][T16109] loop3: detected capacity change from 0 to 4096 [ 569.864789][ T6407] gspca_sn9c2028: read1 error -71 [ 569.881139][ T6407] gspca_sn9c2028: read1 error -71 [ 569.913311][ T6407] sn9c2028 2-1:0.0: probe with driver sn9c2028 failed with error -71 [ 569.979959][ T6407] usb 2-1: USB disconnect, device number 87 [ 570.407219][T16131] netlink: 'syz.5.4570': attribute type 2 has an invalid length. [ 570.473059][T16137] tmpfs: Bad value for 'mpol' [ 570.512039][T16134] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4569'. [ 570.567892][T16134] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4569'. [ 570.773019][ T30] audit: type=1400 audit(1747969365.876:23): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=16144 comm="syz.1.4576" [ 571.196915][T16162] bridge0: port 3(netdevsim0) entered blocking state [ 571.242122][T16162] bridge0: port 3(netdevsim0) entered disabled state [ 571.273347][T16162] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 571.336046][T16162] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 571.351820][T16156] loop0: detected capacity change from 0 to 4096 [ 571.370123][T16162] bridge0: port 3(netdevsim0) entered blocking state [ 571.378911][T16162] bridge0: port 3(netdevsim0) entered forwarding state [ 571.435750][T16156] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 571.808058][T16156] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 571.891084][T16184] bond0: option min_links: invalid value (18446744073709551614) [ 571.942505][T16184] bond0: option min_links: allowed values 0 - 2147483647 [ 572.305967][T16190] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 573.051825][T16210] afs: Bad value for 'source' [ 573.190613][T16180] loop2: detected capacity change from 0 to 32768 [ 573.328012][T16180] ERROR: (device loop2): dtSearch: stack overrun! [ 573.328012][T16180] [ 573.352517][T16180] ERROR: (device loop2): remounting filesystem as read-only [ 573.362399][T16180] btstack dump: [ 573.365926][T16180] bn = 0, index = 4 [ 573.369913][T16180] bn = 0, index = 4 [ 573.373824][T16180] bn = 0, index = 4 [ 573.377670][T16180] bn = 0, index = 4 [ 573.381673][T16180] bn = 0, index = 4 [ 573.385588][T16180] bn = 0, index = 4 [ 573.389417][T16180] bn = 0, index = 4 [ 573.394367][T16180] bn = 0, index = 0 [ 573.398431][T16180] jfs_lookup: dtSearch returned -5 [ 573.675865][T16231] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4618'. [ 573.948768][T16233] xt_connbytes: Forcing CT accounting to be enabled [ 574.004909][ T1296] ieee802154 phy0 wpan0: encryption failed: -22 [ 574.012018][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 574.284759][T16252] loop4: detected capacity change from 0 to 512 [ 574.381600][T16252] EXT4-fs (loop4): Test dummy encryption mode enabled [ 574.418741][T16252] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 574.526331][T16252] EXT4-fs (loop4): 1 truncate cleaned up [ 574.536939][T16252] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 574.670365][T16260] loop1: detected capacity change from 0 to 128 [ 574.774894][T16260] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 574.825961][T16260] ext4 filesystem being mounted at /685/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 574.879502][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 574.960372][T16260] __find_get_block_slow() failed. block=144115188075855873, b_blocknr=0, b_state=0x00000019, b_size=1024, device loop1 blocksize: 1024 [ 575.046980][T16260] grow_buffers: requested out-of-range block 144115188075855873 for device loop1 [ 575.100207][T16260] EXT4-fs warning (device loop1): ext4_resize_fs:2019: can't read last block, resize aborted [ 575.274915][T16279] (unnamed net_device) (uninitialized): option primary_reselect: invalid value (65) [ 575.291638][T16277] loop2: detected capacity change from 0 to 1024 [ 575.317765][ T6239] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 575.392537][T16277] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 575.584893][T16277] EXT4-fs error (device loop2): ext4_empty_dir:3107: inode #11: block 623: comm syz.2.4639: Attempting to read directory block (623) that is past i_size (638464) [ 575.854580][ T6240] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.996624][ T30] audit: type=1326 audit(1747969370.759:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.5.4646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 576.018926][ C0] vkms_vblank_simulate: vblank timer overrun [ 576.040995][T16299] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4649'. [ 576.065667][ T30] audit: type=1326 audit(1747969370.787:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.5.4646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 576.091015][ T30] audit: type=1326 audit(1747969370.787:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.5.4646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 576.113514][ T30] audit: type=1326 audit(1747969370.787:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16296 comm="syz.5.4646" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2bdb18e969 code=0x7ffc0000 [ 576.308727][T16305] xt_CT: You must specify a L4 protocol and not use inversions on it [ 576.464376][T16314] xt_hashlimit: overflow, try lower: 1125899906842624/8 [ 576.692690][T16319] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 577.035549][T16333] x_tables: duplicate entry at hook 1 [ 577.136575][T16335] loop2: detected capacity change from 0 to 256 [ 577.207787][T16335] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 577.272992][T16335] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 577.322951][T16347] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 577.376723][T16335] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 577.877719][T16362] loop5: detected capacity change from 0 to 256 [ 577.977462][T16362] exfat: Deprecated parameter 'utf8' [ 578.079364][T16362] exfat: Deprecated parameter 'utf8' [ 578.283869][T16362] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x4d7dfc9d, utbl_chksum : 0xe619d30d) [ 579.412482][T16416] syz.3.4704 uses old SIOCAX25GETINFO [ 580.178127][ T6219] usb 4-1: new full-speed USB device number 92 using dummy_hcd [ 580.369924][T16443] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4717'. [ 580.388323][ T6219] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 580.391914][T16443] netlink: 84 bytes leftover after parsing attributes in process `syz.1.4717'. [ 580.406264][ T6219] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 580.406293][ T6219] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 580.480161][ T6219] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 580.497312][ T6219] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 580.552327][ T6219] usb 4-1: Product: syz [ 580.556705][ T6219] usb 4-1: Manufacturer: syz [ 580.561316][ T6219] usb 4-1: SerialNumber: syz [ 580.943790][T16455] netlink: 88 bytes leftover after parsing attributes in process `syz.4.4723'. [ 581.050464][ T6219] usb 4-1: 0:2 : does not exist [ 581.089201][T16459] loop1: detected capacity change from 0 to 16 [ 581.091177][ T12] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 581.149156][ T6219] usb 4-1: USB disconnect, device number 92 [ 581.163564][T16459] erofs (device loop1): mounted with root inode @ nid 36. [ 581.323091][ T6700] udevd[6700]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 581.642799][ T12] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 581.948128][T16474] loop4: detected capacity change from 0 to 4096 [ 582.054499][T16474] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 582.086173][T16474] ntfs3(loop4): ino=0, "file0" The size of extended attributes must not exceed 64KiB [ 582.088667][ T12] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 582.320453][ T12] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 582.511937][T16493] loop4: detected capacity change from 0 to 164 [ 582.541199][T16493] rock: directory entry would overflow storage [ 582.550214][T16493] rock: sig=0x66, size=4, remaining=3 [ 582.611562][T16493] rock: directory entry would overflow storage [ 582.637194][T16493] rock: sig=0x66, size=4, remaining=3 [ 582.683591][T16493] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 582.818743][ T6338] usb 1-1: new high-speed USB device number 94 using dummy_hcd [ 582.893751][ T12] bridge_slave_1: left allmulticast mode [ 582.899443][ T12] bridge_slave_1: left promiscuous mode [ 582.941823][T16501] capability: warning: `syz.2.4747' uses 32-bit capabilities (legacy support in use) [ 582.975411][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 583.033680][ T6338] usb 1-1: Using ep0 maxpacket: 32 [ 583.042759][ T6338] usb 1-1: config 0 has an invalid interface number: 246 but max is 0 [ 583.063481][ T12] bridge_slave_0: left allmulticast mode [ 583.068019][ T6338] usb 1-1: config 0 has no interface number 0 [ 583.087777][ T6338] usb 1-1: config 0 interface 246 has no altsetting 0 [ 583.091165][ T12] bridge_slave_0: left promiscuous mode [ 583.114840][ T6338] usb 1-1: New USB device found, idVendor=0c8f, idProduct=e086, bcdDevice=74.90 [ 583.148773][ T6338] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 583.150372][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 583.192087][ T6338] usb 1-1: Product: syz [ 583.213949][ T6338] usb 1-1: Manufacturer: syz [ 583.246123][ T6338] usb 1-1: SerialNumber: syz [ 583.305873][ T6338] usb 1-1: config 0 descriptor?? [ 583.576900][T16519] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1 [ 583.587797][T16519] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9 [ 583.600142][T16519] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9 [ 583.611664][T16519] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4 [ 583.634909][T16519] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2 [ 583.648784][T16522] tmpfs: Bad value for 'mpol' [ 584.148193][T16536] fuse: Unknown parameter 'no' [ 584.208058][ T6227] usb 1-1: USB disconnect, device number 94 [ 584.619998][T16552] PM: Enabling pm_trace changes system date and time during resume. [ 584.619998][T16552] PM: Correct system time has to be restored manually after resume. [ 584.773353][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 584.787293][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 584.798538][ T12] bond0 (unregistering): Released all slaves [ 584.817422][T16554] loop2: detected capacity change from 0 to 4096 [ 585.005368][ T12] : left promiscuous mode [ 585.477149][T16573] netlink: 68 bytes leftover after parsing attributes in process `syz.2.4778'. [ 585.889941][T16519] Bluetooth: hci5: command tx timeout [ 585.939768][T16585] loop4: detected capacity change from 0 to 512 [ 586.165847][T16585] EXT4-fs (loop4): 1 orphan inode deleted [ 586.173559][T16585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 586.193829][ T2987] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 586.276736][ T2987] EXT4-fs error (device loop4): ext4_release_dquot:6971: comm kworker/u8:10: Failed to release dquot type 1 [ 586.297119][T16585] ext4 filesystem being mounted at /761/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 586.670601][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 586.738956][ T30] audit: type=1326 audit(1747969380.805:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.2.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00b38e969 code=0x7ffc0000 [ 586.885745][ T30] audit: type=1326 audit(1747969380.805:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.2.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00b38e969 code=0x7ffc0000 [ 587.014475][ T30] audit: type=1326 audit(1747969380.871:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.2.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=91 compat=0 ip=0x7fd00b38e969 code=0x7ffc0000 [ 587.128488][ T30] audit: type=1326 audit(1747969380.871:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.2.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00b38e969 code=0x7ffc0000 [ 587.252992][ T30] audit: type=1326 audit(1747969380.871:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16619 comm="syz.2.4796" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd00b38e969 code=0x7ffc0000 [ 587.318820][T16639] netlink: 'syz.2.4804': attribute type 10 has an invalid length. [ 587.354764][T16639] netlink: 40 bytes leftover after parsing attributes in process `syz.2.4804'. [ 587.531849][T16639] ipvlan1: entered promiscuous mode [ 587.537545][T16639] ipvlan1: entered allmulticast mode [ 587.566212][T16639] veth0_vlan: entered allmulticast mode [ 587.598648][T16639] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check. [ 587.844473][ T12] hsr_slave_0: left promiscuous mode [ 587.885315][ T12] hsr_slave_1: left promiscuous mode [ 587.905717][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 587.952230][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 587.975109][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 588.000663][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 588.076802][T16661] openvswitch: netlink: IP tunnel dst address not specified [ 588.111123][T16519] Bluetooth: hci5: command tx timeout [ 588.121739][ T12] veth1_macvtap: left promiscuous mode [ 588.127340][ T12] veth0_macvtap: left promiscuous mode [ 588.159556][ T12] veth1_vlan: left promiscuous mode [ 588.165990][ T12] veth0_vlan: left promiscuous mode [ 588.180633][T16626] loop0: detected capacity change from 0 to 32768 [ 588.232177][T16626] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 588.320800][T16626] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 588.495140][T16671] MTD: Attempt to mount non-MTD device "/dev/nullb0" [ 588.526108][T16671] /dev/nullb0: Can't open blockdev [ 588.716915][ T6235] ocfs2: Unmounting device (7,0) on (node local) [ 588.842923][T16675] loop2: detected capacity change from 0 to 4096 [ 588.903126][T16675] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 589.022066][T16675] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 589.127785][T16675] ntfs3(loop2): ino=19, mi_enum_attr [ 590.037907][ T12] team0 (unregistering): Port device team_slave_1 removed [ 590.108945][ T12] team0 (unregistering): Port device team_slave_0 removed [ 590.345108][T16519] Bluetooth: hci5: command tx timeout [ 590.697286][T16669] netlink: 830 bytes leftover after parsing attributes in process `syz.1.4818'. [ 590.746077][T16703] netlink: 'syz.0.4836': attribute type 21 has an invalid length. [ 591.095392][T16715] warning: `syz.0.4840' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 591.266424][T16518] chnl_net:caif_netlink_parms(): no params data found [ 592.107137][T16518] bridge0: port 1(bridge_slave_0) entered blocking state [ 592.144565][T16518] bridge0: port 1(bridge_slave_0) entered disabled state [ 592.173209][T16518] bridge_slave_0: entered allmulticast mode [ 592.181218][T16518] bridge_slave_0: entered promiscuous mode [ 592.374105][T16762] netlink: zone id is out of range [ 592.433157][T16518] bridge0: port 2(bridge_slave_1) entered blocking state [ 592.483306][T16518] bridge0: port 2(bridge_slave_1) entered disabled state [ 592.490595][T16518] bridge_slave_1: entered allmulticast mode [ 592.558161][T16519] Bluetooth: hci5: command tx timeout [ 592.560284][T16518] bridge_slave_1: entered promiscuous mode [ 592.722468][T16775] loop3: detected capacity change from 0 to 256 [ 592.745174][T16775] exfat: Deprecated parameter 'utf8' [ 592.770847][T16775] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xdd33351c, utbl_chksum : 0xe619d30d) [ 592.948190][T16518] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 593.024355][T16518] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 593.217853][T16791] loop0: detected capacity change from 0 to 128 [ 593.309908][T16796] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4870'. [ 593.360310][T16796] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4870'. [ 593.606637][T16518] team0: Port device team_slave_0 added [ 593.623507][T16518] team0: Port device team_slave_1 added [ 593.799770][T16809] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4878'. [ 594.032219][T16518] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 594.069189][T16518] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 594.152665][T16518] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 594.169856][T16823] netlink: 'syz.3.4885': attribute type 2 has an invalid length. [ 594.259350][T16518] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 594.266346][T16518] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 594.303609][T16826] netlink: 'syz.4.4886': attribute type 32 has an invalid length. [ 594.328125][T16518] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 594.375207][T16826] netlink: 84 bytes leftover after parsing attributes in process `syz.4.4886'. [ 594.521878][T16834] cgroup: none used incorrectly [ 594.625134][T16518] hsr_slave_0: entered promiscuous mode [ 594.683948][T16518] hsr_slave_1: entered promiscuous mode [ 594.744405][T16518] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 594.771138][T16518] Cannot create hsr debugfs directory [ 595.664319][T16880] loop4: detected capacity change from 0 to 256 [ 595.738812][T16878] loop2: detected capacity change from 0 to 2048 [ 595.818434][T16878] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 595.865401][T16878] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 595.912665][T16878] UDF-fs: Scanning with blocksize 512 failed [ 595.979158][T16880] FAT-fs (loop4): Directory bread(block 64) failed [ 595.985763][T16880] FAT-fs (loop4): Directory bread(block 65) failed [ 596.013722][T16878] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 596.075204][T16880] FAT-fs (loop4): Directory bread(block 66) failed [ 596.081784][T16880] FAT-fs (loop4): Directory bread(block 67) failed [ 596.135339][T16878] process 'syz.2.4907' launched './file2' with NULL argv: empty string added [ 596.147282][T16880] FAT-fs (loop4): Directory bread(block 68) failed [ 596.174252][T16880] FAT-fs (loop4): Directory bread(block 69) failed [ 596.237235][T16880] FAT-fs (loop4): Directory bread(block 70) failed [ 596.243919][T16880] FAT-fs (loop4): Directory bread(block 71) failed [ 596.310336][T16880] FAT-fs (loop4): Directory bread(block 72) failed [ 596.316937][T16880] FAT-fs (loop4): Directory bread(block 73) failed [ 596.334580][T16518] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 596.433750][T16518] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 596.551521][T16518] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 596.668354][T16518] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 597.146094][T16518] 8021q: adding VLAN 0 to HW filter on device bond0 [ 597.238327][T16518] 8021q: adding VLAN 0 to HW filter on device team0 [ 597.306661][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state [ 597.315923][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state [ 597.415799][ T1091] bridge0: port 2(bridge_slave_1) entered blocking state [ 597.423080][ T1091] bridge0: port 2(bridge_slave_1) entered forwarding state [ 597.728715][T16518] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 598.763917][T16518] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 598.955819][T16927] loop3: detected capacity change from 0 to 32768 [ 599.052996][T16927] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.4927 (16927) [ 599.165224][T16927] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 599.223801][T16927] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 599.294705][T16927] BTRFS info (device loop3): using free-space-tree [ 599.461044][T16980] xt_CT: No such helper "syz0" [ 599.590190][ T1147] BTRFS warning (device loop3): checksum verify failed on logical 5255168 mirror 1 wanted 0x9df47653 found 0x8243940d level 1 [ 599.695163][T16927] BTRFS warning (device loop3): failed to read fs tree: -5 [ 599.792085][T16518] veth0_vlan: entered promiscuous mode [ 599.888649][T16518] veth1_vlan: entered promiscuous mode [ 599.906331][T16927] BTRFS error (device loop3): open_ctree failed: -5 [ 600.044326][T16518] veth0_macvtap: entered promiscuous mode [ 600.156314][T16518] veth1_macvtap: entered promiscuous mode [ 600.221628][T17021] loop0: detected capacity change from 0 to 512 [ 600.277551][T17021] EXT4-fs: Ignoring removed bh option [ 600.283010][T17021] EXT4-fs: Ignoring removed mblk_io_submit option [ 600.354381][T16518] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 600.431314][T16518] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 600.539223][T16518] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 600.588034][T17021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 600.620081][T16518] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 600.650814][T17021] ext4 filesystem being mounted at /805/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 600.708099][T16518] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 600.746650][T16518] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 600.798043][T17038] loop2: detected capacity change from 0 to 256 [ 600.918233][T17043] netlink: 'syz.1.4963': attribute type 2 has an invalid length. [ 600.948859][T17043] netlink: 'syz.1.4963': attribute type 1 has an invalid length. [ 600.968842][T17043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4963'. [ 601.025520][T17038] FAT-fs (loop2): Directory bread(block 1285) failed [ 601.059616][ T6235] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 601.096563][T17038] FAT-fs (loop2): Directory bread(block 1285) failed [ 601.167026][T17038] FAT-fs (loop2): Directory bread(block 1285) failed [ 601.173823][T17038] FAT-fs (loop2): Directory bread(block 1285) failed [ 601.207453][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 601.215360][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 601.313256][T17050] loop4: detected capacity change from 0 to 1024 [ 601.448380][T17050] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 601.547906][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 601.548646][T17050] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 601.598620][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 601.666186][T17050] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.4966: Failed to acquire dquot type 0 [ 601.776680][T17050] EXT4-fs error (device loop4): mb_free_blocks:1948: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 601.869654][T17050] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4966: corrupted inode contents [ 601.946210][T17050] EXT4-fs error (device loop4): ext4_dirty_inode:6103: inode #13: comm syz.4.4966: mark_inode_dirty error [ 602.042361][T17050] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4966: corrupted inode contents [ 602.117680][T17050] EXT4-fs error (device loop4): __ext4_ext_dirty:207: inode #13: comm syz.4.4966: mark_inode_dirty error [ 602.211504][T17050] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4966: corrupted inode contents [ 602.331294][ T30] audit: type=1400 audit(1747969395.388:33): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA009F5D15F47DB2D pid=17079 comm="syz.2.4975" [ 602.351409][ C0] vkms_vblank_simulate: vblank timer overrun [ 602.363032][T17050] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 602.425782][T17050] EXT4-fs error (device loop4): ext4_do_update_inode:5211: inode #13: comm syz.4.4966: corrupted inode contents [ 602.473026][T17050] EXT4-fs error (device loop4): ext4_truncate:4255: inode #13: comm syz.4.4966: mark_inode_dirty error [ 602.509171][T17050] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 602.552694][T17050] EXT4-fs (loop4): 1 truncate cleaned up [ 602.594850][T17050] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 602.634698][T17078] loop0: detected capacity change from 0 to 4096 [ 602.713890][T17078] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 602.825455][T17050] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5 [ 602.874481][T17050] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 602.910857][T17097] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 602.920996][T17096] netlink: 'syz.6.4981': attribute type 21 has an invalid length. [ 602.929732][T17097] batadv_slave_0: entered promiscuous mode [ 602.955324][T17050] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.4966: Failed to acquire dquot type 0 [ 602.960667][T17096] netlink: 164 bytes leftover after parsing attributes in process `syz.6.4981'. [ 602.981994][T17097] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 603.098982][T17097] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 603.260470][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 603.393696][T17106] loop0: detected capacity change from 0 to 1024 [ 603.462191][T17106] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 603.578340][T17120] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4990'. [ 603.589150][T17106] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 603.702848][T17122] loop3: detected capacity change from 0 to 16 [ 603.753929][ T6235] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 603.788761][T17122] erofs (device loop3): mounted with root inode @ nid 36. [ 603.852316][T17122] erofs (device loop3): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 603.932013][T17122] erofs (device loop3): failed to decompress -20 in[58, 4038] out[1851] [ 603.978939][T17122] erofs (device loop3): read error -117 @ 43 of nid 36 [ 604.306037][ T6478] usb 5-1: new high-speed USB device number 99 using dummy_hcd [ 604.334257][T17144] ip_vti0: entered promiscuous mode [ 604.477984][ T6478] usb 5-1: Using ep0 maxpacket: 32 [ 604.496513][ T6478] usb 5-1: config 8 has an invalid interface number: 203 but max is 0 [ 604.545777][ T6478] usb 5-1: config 8 has no interface number 0 [ 604.551963][ T6478] usb 5-1: config 8 interface 203 has no altsetting 0 [ 604.580513][T17148] netlink: 348 bytes leftover after parsing attributes in process `syz.1.5001'. [ 604.601221][ T6478] usb 5-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice=eb.7a [ 604.644834][ T6478] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 604.680050][ T6478] usb 5-1: Product: syz [ 604.693861][ T6478] usb 5-1: Manufacturer: syz [ 604.725960][ T6478] usb 5-1: SerialNumber: syz [ 604.954212][T17164] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 605.006545][ T6478] port100 5-1:8.203: NFC: Could not find bulk-in or bulk-out endpoint [ 605.086005][ T6478] usb 5-1: USB disconnect, device number 99 [ 605.143538][T17169] loop0: detected capacity change from 0 to 64 [ 606.212964][T17211] netlink: 'syz.4.5028': attribute type 1 has an invalid length. [ 606.254303][T17211] netlink: 'syz.4.5028': attribute type 2 has an invalid length. [ 606.386393][ T6227] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 606.610202][ T6227] usb 7-1: Using ep0 maxpacket: 32 [ 606.654361][ T6227] usb 7-1: config 0 has an invalid interface number: 85 but max is 0 [ 606.697286][ T6227] usb 7-1: config 0 has no interface number 0 [ 606.743246][ T6227] usb 7-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 606.788839][ T6227] usb 7-1: config 0 interface 85 has no altsetting 0 [ 606.833695][ T6227] usb 7-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 606.867455][ T6227] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 606.936475][ T6227] usb 7-1: Product: syz [ 606.967566][ T6227] usb 7-1: Manufacturer: syz [ 606.995810][ T6227] usb 7-1: SerialNumber: syz [ 607.019289][ T6227] usb 7-1: config 0 descriptor?? [ 607.104719][T17240] loop4: detected capacity change from 0 to 256 [ 607.131543][T17240] exfat: Deprecated parameter 'namecase' [ 607.170496][T17240] exfat: Deprecated parameter 'utf8' [ 607.343479][T17240] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 607.493832][ T6227] appletouch 7-1:0.85: Failed to request geyser raw mode [ 607.545104][ T6227] appletouch 7-1:0.85: probe with driver appletouch failed with error -5 [ 607.636711][ T6227] usb 7-1: USB disconnect, device number 2 [ 607.811777][T17262] loop2: detected capacity change from 0 to 164 [ 607.951857][T17262] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 607.964943][T17264] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5050'. [ 607.974600][ T52] usb 2-1: new high-speed USB device number 88 using dummy_hcd [ 608.003061][T17262] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 608.026731][T17264] netlink: 'syz.0.5050': attribute type 1 has an invalid length. [ 608.105171][T17262] Symlink component flag not implemented [ 608.110981][T17262] Symlink component flag not implemented [ 608.138971][T17262] Symlink component flag not implemented (7) [ 608.165537][T17262] Symlink component flag not implemented (116) [ 608.188798][ T52] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7 [ 608.232060][ T52] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83 [ 608.305067][ T52] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 608.337116][ T52] usb 2-1: New USB device found, idVendor=2040, idProduct=1605, bcdDevice= a.94 [ 608.377633][ T52] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 608.425520][ T52] usb 2-1: config 0 descriptor?? [ 608.508338][ T52] em28xx 2-1:0.0: New device @ 480 Mbps (2040:1605, interface 0, class 0) [ 608.517150][ T52] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class) [ 608.775788][ T52] em28xx 2-1:0.0: unknown em28xx chip ID (0) [ 608.820522][ T52] em28xx 2-1:0.0: Config register raw data: 0xfffffffb [ 608.865807][ T52] em28xx 2-1:0.0: AC97 chip type couldn't be determined [ 608.901141][ T52] em28xx 2-1:0.0: No AC97 audio processor [ 608.997156][ T52] usb 2-1: USB disconnect, device number 88 [ 609.016319][ T52] em28xx 2-1:0.0: Disconnecting em28xx [ 609.071095][ T52] em28xx 2-1:0.0: Freeing device [ 609.130678][T17302] loop4: detected capacity change from 0 to 164 [ 609.206679][T17302] ISOFS: primary root directory is empty. Disabling Rock Ridge and switching to Joliet. [ 609.248286][T17306] sctp: [Deprecated]: syz.2.5065 (pid 17306) Use of int in maxseg socket option. [ 609.248286][T17306] Use struct sctp_assoc_value instead [ 609.287042][T17308] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5066'. [ 609.654194][T17318] kernel read not supported for file /  (pid: 17318 comm: syz.4.5068) [ 609.744238][ T30] audit: type=1800 audit(1747969402.310:34): pid=17318 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.5068" name=200120 dev="mqueue" ino=42091 res=0 errno=0 [ 610.228030][T17335] xt_addrtype: both incoming and outgoing interface limitation cannot be selected [ 610.459819][T17286] loop3: detected capacity change from 0 to 32768 [ 610.603768][T17286] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 610.757164][T17286] XFS (loop3): Ending clean mount [ 610.780976][T17286] XFS (loop3): Quotacheck needed: Please wait. [ 610.950036][T17286] XFS (loop3): Quotacheck: Done. [ 611.198523][ T6238] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 611.231688][T17363] usb usb8: usbfs: process 17363 (syz.0.5085) did not claim interface 2 before use [ 611.345642][T17366] loop4: detected capacity change from 0 to 2048 [ 611.398635][T17366] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 611.572584][T17328] loop6: detected capacity change from 0 to 32768 [ 611.930103][ T30] audit: type=1326 audit(1747969404.378:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17378 comm="syz.0.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 612.076059][ T30] audit: type=1326 audit(1747969404.378:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17378 comm="syz.0.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 612.208803][ T30] audit: type=1326 audit(1747969404.396:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17378 comm="syz.0.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=193 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 612.246297][T17387] loop1: detected capacity change from 0 to 64 [ 612.374220][ T30] audit: type=1326 audit(1747969404.396:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17378 comm="syz.0.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 612.471595][ T30] audit: type=1326 audit(1747969404.396:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17378 comm="syz.0.5092" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 612.912897][ T6338] usb 3-1: new high-speed USB device number 102 using dummy_hcd [ 612.986817][T17409] netlink: 412 bytes leftover after parsing attributes in process `syz.4.5104'. [ 613.019033][T17405] loop6: detected capacity change from 0 to 1764 [ 613.072056][T17411] loop3: detected capacity change from 0 to 1764 [ 613.109008][ T6338] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 613.127923][ T30] audit: type=1326 audit(1747969405.500:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.0.5105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 613.132203][ T6338] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 613.230661][ T6338] usb 3-1: Product: syz [ 613.247642][ T30] audit: type=1326 audit(1747969405.500:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.0.5105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 613.270227][ T6338] usb 3-1: Manufacturer: syz [ 613.287355][ T6338] usb 3-1: SerialNumber: syz [ 613.371239][ T6338] r8152-cfgselector 3-1: Unknown version 0x0000 [ 613.377613][ T30] audit: type=1326 audit(1747969405.575:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.0.5105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 613.377672][ T30] audit: type=1326 audit(1747969405.575:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17412 comm="syz.0.5105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7dd78e969 code=0x7ffc0000 [ 613.537863][ T6338] r8152-cfgselector 3-1: config 0 descriptor?? [ 613.722759][T17427] loop1: detected capacity change from 0 to 1024 [ 613.864879][T17431] loop6: detected capacity change from 0 to 1024 [ 613.887133][T17431] EXT4-fs: Ignoring removed bh option [ 613.892607][T17431] EXT4-fs: inline encryption not supported [ 613.935635][T17435] syz.3.5115 uses obsolete (PF_INET,SOCK_PACKET) [ 613.954646][T17431] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 614.035738][T17431] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c84ce018, mo2=0000] [ 614.103888][T17431] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 2: comm syz.6.5113: lblock 2 mapped to illegal pblock 2 (length 1) [ 614.150446][ T6338] r8152-cfgselector 3-1: USB disconnect, device number 102 [ 614.163266][T17431] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 48: comm syz.6.5113: lblock 0 mapped to illegal pblock 48 (length 1) [ 614.207911][T17442] tmpfs: Group quota inode hardlimit too large. [ 614.217076][T17445] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5117'. [ 614.228148][T17431] EXT4-fs error (device loop6): ext4_acquire_dquot:6935: comm syz.6.5113: Failed to acquire dquot type 0 [ 614.310185][T17431] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 614.348358][T17431] EXT4-fs error (device loop6): ext4_evict_inode:259: inode #11: comm syz.6.5113: mark_inode_dirty error [ 614.433859][T17431] EXT4-fs warning (device loop6): ext4_evict_inode:262: couldn't mark inode dirty (err -117) [ 614.487446][T17431] EXT4-fs (loop6): 1 orphan inode deleted [ 614.517528][T17453] netlink: 256 bytes leftover after parsing attributes in process `syz.0.5121'. [ 614.527389][T17431] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 614.540183][T16779] EXT4-fs error (device loop6): ext4_map_blocks:675: inode #3: block 1: comm kworker/u8:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 614.556345][T17453] unsupported nlmsg_type 40 [ 614.614314][T16779] EXT4-fs error (device loop6): ext4_release_dquot:6971: comm kworker/u8:4: Failed to release dquot type 0 [ 614.799029][T17459] ubi31: attaching mtd0 [ 614.814726][T17459] ubi31: scanning is finished [ 614.834248][T17459] ubi31: empty MTD device detected [ 614.842273][T16518] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 614.878466][T16518] EXT4-fs error (device loop6): __ext4_get_inode_loc:4450: comm syz-executor: Invalid inode table block 1 in block_group 0 [ 614.929504][T16518] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5899: Corrupt filesystem [ 614.948666][T17462] autofs4:pid:17462:check_dev_ioctl_version: ioctl control interface version mismatch: kernel(1.1), user(1.1536), cmd(0xc0189375) [ 614.990617][T16518] EXT4-fs error (device loop6): ext4_quota_off:7219: inode #3: comm syz-executor: mark_inode_dirty error [ 615.000153][T17462] autofs4:pid:17462:validate_dev_ioctl: invalid device control module version supplied for cmd(0xc0189375) [ 615.200981][T17473] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 615.208105][T17475] syz.6.5129 (17475): /proc/17474/oom_adj is deprecated, please use /proc/17474/oom_score_adj instead. [ 615.231081][T17459] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB) [ 615.241658][T17459] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes [ 615.302968][T17459] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1 [ 615.412343][T17459] ubi31: VID header offset: 64 (aligned 64), data offset: 128 [ 615.473417][T17459] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0 [ 615.499937][T17459] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23 [ 615.522202][T17483] netlink: 'syz.3.5136': attribute type 5 has an invalid length. [ 615.539386][T17459] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 2874703677 [ 615.574709][T17483] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5136'. [ 615.593176][T17459] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0 [ 615.667459][T17476] ubi31: background thread "ubi_bgt31d" started, PID 17476 [ 616.677156][T17526] openvswitch: netlink: Missing key (keys=40, expected=10000000) [ 617.192077][T17550] loop0: detected capacity change from 0 to 64 [ 617.279454][T17544] loop3: detected capacity change from 0 to 4096 [ 617.295712][T17556] netlink: 'syz.6.5171': attribute type 1 has an invalid length. [ 617.341649][T17556] netlink: 224 bytes leftover after parsing attributes in process `syz.6.5171'. [ 617.376102][T17544] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 617.531614][T17544] ntfs3(loop3): ino=19, mi_enum_attr [ 617.553338][T17544] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 617.649765][T17544] ntfs3(loop3): failed to convert "c46c" to iso8859-2 [ 617.732442][T17544] ntfs3(loop3): ino=20, mi_enum_attr [ 617.937864][T17573] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5178'. [ 618.017331][T17575] netlink: 'syz.0.5179': attribute type 29 has an invalid length. [ 618.079869][T17575] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5179'. [ 618.460450][T17591] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5186'. [ 618.942935][T17612] xt_recent: Unsupported userspace flags (000000de) [ 619.898023][ T6407] usb 3-1: new high-speed USB device number 103 using dummy_hcd [ 619.996221][T17655] loop1: detected capacity change from 0 to 512 [ 620.090281][T17655] EXT4-fs (loop1): 1 orphan inode deleted [ 620.100624][ T6407] usb 3-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 620.111513][ T6407] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 620.127865][ T6407] usb 3-1: Product: syz [ 620.128374][ T2943] __quota_error: 4 callbacks suppressed [ 620.128392][ T2943] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14 [ 620.136777][ T6407] usb 3-1: Manufacturer: syz [ 620.148686][T17655] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 620.167187][ T6407] usb 3-1: SerialNumber: syz [ 620.179147][ T2943] EXT4-fs error (device loop1): ext4_release_dquot:6971: comm kworker/u8:9: Failed to release dquot type 1 [ 620.197193][ T6407] usb 3-1: config 0 descriptor?? [ 620.212954][ T6407] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 620.248893][T17655] ext4 filesystem being mounted at /795/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 620.780819][T17676] loop3: detected capacity change from 0 to 1024 [ 620.941511][ T6407] gspca_sunplus: reg_w_riv err -71 [ 620.947698][ T6407] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 620.986866][ T6407] usb 3-1: USB disconnect, device number 103 [ 621.013166][ T6239] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 621.452148][T17693] loop0: detected capacity change from 0 to 164 [ 622.290688][T17727] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5244'. [ 622.546244][T17733] loop3: detected capacity change from 0 to 1024 [ 622.587818][T17733] EXT4-fs: Ignoring removed oldalloc option [ 622.651481][T17733] EXT4-fs: Ignoring removed bh option [ 622.776256][T17733] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 622.817449][T17749] netlink: 348 bytes leftover after parsing attributes in process `syz.4.5254'. [ 622.959546][T17733] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 623.015050][T17754] tmpfs: Bad value for 'mpol' [ 623.041015][T17757] loop2: detected capacity change from 0 to 64 [ 623.447049][T17772] loop3: detected capacity change from 0 to 256 [ 623.587508][T17771] loop1: detected capacity change from 0 to 4096 [ 623.735539][T17772] FAT-fs (loop3): Directory bread(block 64) failed [ 623.740638][T17783] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 623.783629][T17772] FAT-fs (loop3): Directory bread(block 65) failed [ 623.849440][T17772] FAT-fs (loop3): Directory bread(block 66) failed [ 623.856036][T17772] FAT-fs (loop3): Directory bread(block 67) failed [ 623.927253][T17772] FAT-fs (loop3): Directory bread(block 68) failed [ 623.933860][T17772] FAT-fs (loop3): Directory bread(block 69) failed [ 624.028101][T17772] FAT-fs (loop3): Directory bread(block 70) failed [ 624.095873][T17772] FAT-fs (loop3): Directory bread(block 71) failed [ 624.102563][T17772] FAT-fs (loop3): Directory bread(block 72) failed [ 624.172231][T17772] FAT-fs (loop3): Directory bread(block 73) failed [ 624.473195][T17808] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.5277'. [ 624.534785][T17808] netlink: 4268 bytes leftover after parsing attributes in process `syz.1.5277'. [ 625.455140][T17845] loop4: detected capacity change from 0 to 64 [ 625.518777][T17849] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5294'. [ 626.009098][T17869] netlink: 60 bytes leftover after parsing attributes in process `syz.4.5303'. [ 626.244606][T17880] loop2: detected capacity change from 0 to 1764 [ 627.037927][T17910] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 627.158265][T17918] trusted_key: encrypted_key: keylen parameter is missing [ 627.159154][T17917] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5323'. [ 627.215610][T17917] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode broadcast(3) [ 627.751511][ T9] usb 1-1: new high-speed USB device number 95 using dummy_hcd [ 627.771527][T17938] loop2: detected capacity change from 0 to 64 [ 627.954839][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 627.989657][ T9] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86 [ 628.072209][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7 [ 628.119510][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0 [ 628.184442][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 255, changing to 11 [ 628.234106][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid maxpacket 59391, setting to 1024 [ 628.313878][ T9] usb 1-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36 [ 628.346359][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 628.359174][T17958] netlink: 452 bytes leftover after parsing attributes in process `syz.3.5338'. [ 628.392702][ T9] usb 1-1: Product: syz [ 628.396929][ T9] usb 1-1: Manufacturer: syz [ 628.455835][ T9] usb 1-1: SerialNumber: syz [ 628.515969][ T9] usb 1-1: config 0 descriptor?? [ 628.787620][T17973] netlink: 'syz.6.5345': attribute type 1 has an invalid length. [ 628.812576][T17973] netlink: 232 bytes leftover after parsing attributes in process `syz.6.5345'. [ 629.010193][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.038669][ T9] input input44: Device does not respond to id packet M [ 629.084645][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.113326][ T9] input input44: Device does not respond to id packet P [ 629.138473][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.173320][ T9] input input44: Device does not respond to id packet B [ 629.191690][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.222988][ T9] input input44: Device does not respond to id packet N [ 629.266958][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.314717][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.344291][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.380790][ T9] iforce 1-1:0.0: usb_submit_urb failed: -71 [ 629.453231][ T9] input: Unknown I-Force Device [%04x:%04x] as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input44 [ 629.551690][ T9] usb 1-1: USB disconnect, device number 95 [ 629.953087][T18011] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5359'. [ 629.995132][T18012] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5360'. [ 630.086620][T18011] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5359'. [ 630.222434][T18018] loop2: detected capacity change from 0 to 8 [ 630.304163][T18018] SQUASHFS error: zlib decompression failed, data probably corrupt [ 630.406188][T18023] loop3: detected capacity change from 0 to 2048 [ 630.416709][T18018] SQUASHFS error: Failed to read block 0x4e8: -5 [ 630.449910][T18018] SQUASHFS error: Failed to read block 0x4ee: -5 [ 630.480488][ T30] audit: type=1800 audit(1747969421.729:45): pid=18018 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5365" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 630.536551][T18023] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 630.611448][T18034] loop0: detected capacity change from 0 to 256 [ 630.710708][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 630.718292][T18040] netlink: 'syz.2.5372': attribute type 11 has an invalid length. [ 630.790590][T18040] netlink: 428 bytes leftover after parsing attributes in process `syz.2.5372'. [ 630.815532][T18034] FAT-fs (loop0): Directory bread(block 64) failed [ 630.851165][T18043] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5373'. [ 630.851853][T18034] FAT-fs (loop0): Directory bread(block 65) failed [ 630.945379][T18034] FAT-fs (loop0): Directory bread(block 66) failed [ 631.002739][T18034] FAT-fs (loop0): Directory bread(block 67) failed [ 631.024314][T18034] FAT-fs (loop0): Directory bread(block 68) failed [ 631.075912][T18034] FAT-fs (loop0): Directory bread(block 69) failed [ 631.135962][T18034] FAT-fs (loop0): Directory bread(block 70) failed [ 631.193047][T18034] FAT-fs (loop0): Directory bread(block 71) failed [ 631.239026][T18034] FAT-fs (loop0): Directory bread(block 72) failed [ 631.282164][T18034] FAT-fs (loop0): Directory bread(block 73) failed [ 631.731466][T18070] loop6: detected capacity change from 0 to 128 [ 631.833660][T18070] FAT-fs (loop6): Directory bread(block 32) failed [ 631.856503][T18070] FAT-fs (loop6): Directory bread(block 33) failed [ 631.863230][T18070] FAT-fs (loop6): Directory bread(block 34) failed [ 631.911034][T18070] FAT-fs (loop6): Directory bread(block 35) failed [ 631.937073][T18070] FAT-fs (loop6): Directory bread(block 36) failed [ 631.970320][T18070] FAT-fs (loop6): Directory bread(block 37) failed [ 632.012741][T18070] FAT-fs (loop6): Directory bread(block 38) failed [ 632.050122][T18070] FAT-fs (loop6): Directory bread(block 39) failed [ 632.102813][T18070] FAT-fs (loop6): Directory bread(block 40) failed [ 632.110253][T18070] FAT-fs (loop6): Directory bread(block 41) failed [ 632.240159][T18092] loop0: detected capacity change from 0 to 256 [ 632.663395][T18102] loop1: detected capacity change from 0 to 1024 [ 632.948389][ T6407] usb 1-1: new high-speed USB device number 96 using dummy_hcd [ 632.956997][T18110] loop2: detected capacity change from 0 to 1764 [ 633.014356][T18110] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 633.119594][ T6219] usb 5-1: new high-speed USB device number 100 using dummy_hcd [ 633.161160][ T6407] usb 1-1: Using ep0 maxpacket: 32 [ 633.172894][ T6407] usb 1-1: unable to get BOS descriptor or descriptor too short [ 633.184293][ T6407] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 256, setting to 64 [ 633.214444][ T9] usb 4-1: new high-speed USB device number 93 using dummy_hcd [ 633.250913][ T6407] usb 1-1: New USB device found, idVendor=0123, idProduct=0001, bcdDevice=4a.fe [ 633.291552][ T6407] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 633.324434][ T6407] usb 1-1: Product: syz [ 633.340436][ T6407] usb 1-1: Manufacturer: syz [ 633.341637][ T6219] usb 5-1: config 0 has an invalid interface number: 127 but max is 1 [ 633.363974][ T6407] usb 1-1: SerialNumber: syz [ 633.379398][ T6219] usb 5-1: config 0 has more interface descriptors, than it declares in bNumInterfaces, ignoring interface number: 255 [ 633.397610][ T6407] usb 1-1: config 0 descriptor?? [ 633.414608][ T6219] usb 5-1: config 0 has no interface number 1 [ 633.432210][ T6219] usb 5-1: config 0 interface 127 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 633.490130][ T9] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 633.521303][ T6219] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 29 [ 633.534933][ T6478] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 633.551743][ T9] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 633.563339][ T9] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 633.574548][ T6219] usb 5-1: New USB device found, idVendor=1908, idProduct=1315, bcdDevice= 0.00 [ 633.590824][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 633.599215][ T6219] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 633.607255][ T6219] usb 5-1: Product: syz [ 633.615201][T18127] loop2: detected capacity change from 0 to 256 [ 633.626161][ T9] usb 4-1: SerialNumber: syz [ 633.639615][ T6407] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input45 [ 633.660720][ T6219] usb 5-1: Manufacturer: syz [ 633.681671][ T6219] usb 5-1: SerialNumber: syz [ 633.700296][ T6478] usb 7-1: Using ep0 maxpacket: 32 [ 633.704304][ T6219] usb 5-1: config 0 descriptor?? [ 633.727417][ T6219] usb-storage 5-1:0.127: USB Mass Storage device detected [ 633.739389][ T6478] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 633.789299][ T6219] usb-storage 5-1:0.127: Quirks match for vid 1908 pid 1315: 20000 [ 633.823501][ T6478] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11 [ 633.878132][ T6478] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 633.884647][ T6407] usb 1-1: USB disconnect, device number 96 [ 633.924337][ T6219] usb-storage 5-1:0.0: USB Mass Storage device detected [ 633.935058][ T6478] usb 7-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 633.952576][ T6478] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 633.961703][ T9] usb 4-1: 0:2 : does not exist [ 633.987888][ T9] usb 4-1: unit 5: unexpected type 0x03 [ 634.003555][ T6219] usb-storage 5-1:0.0: Quirks match for vid 1908 pid 1315: 20000 [ 634.017061][ T6478] usb 7-1: config 0 descriptor?? [ 634.042846][T18119] raw-gadget.3 gadget.6: fail, usb_ep_enable returned -22 [ 634.063887][ T6478] hub 7-1:0.0: USB hub found [ 634.139163][ T9] usb 4-1: USB disconnect, device number 93 [ 634.175111][ T6219] usb 5-1: USB disconnect, device number 100 [ 634.336738][ T6478] hub 7-1:0.0: 2 ports detected [ 634.341698][ T6478] usb 7-1: selecting invalid altsetting 1 [ 634.375904][ T6478] hub 7-1:0.0: Using single TT (err -22) [ 634.382465][ T6249] udevd[6249]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 634.533968][ T6478] hub 7-1:0.0: hub_hub_status failed (err = -71) [ 634.542309][ T6478] hub 7-1:0.0: config failed, can't get hub status (err -71) [ 634.597629][ T6478] usbhid 7-1:0.0: can't add hid device: -71 [ 634.603683][ T6478] usbhid 7-1:0.0: probe with driver usbhid failed with error -71 [ 634.694298][ T6478] usb 7-1: USB disconnect, device number 3 [ 635.031654][T17300] usb 3-1: new high-speed USB device number 104 using dummy_hcd [ 635.101488][T18164] loop3: detected capacity change from 0 to 4096 [ 635.117116][ T6227] usb 5-1: new high-speed USB device number 101 using dummy_hcd [ 635.138071][T18169] netlink: 'syz.0.5421': attribute type 10 has an invalid length. [ 635.224773][T17300] usb 3-1: Using ep0 maxpacket: 16 [ 635.253777][T17300] usb 3-1: New USB device found, idVendor=07ab, idProduct=fc01, bcdDevice=28.e0 [ 635.277673][ T6227] usb 5-1: Using ep0 maxpacket: 32 [ 635.307799][T17300] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 635.316258][ T6227] usb 5-1: config 0 has an invalid interface number: 9 but max is 0 [ 635.321389][T18169] bond0: (slave dummy0): Enslaving as an active interface with an up link [ 635.338175][ T6227] usb 5-1: config 0 has no interface number 0 [ 635.349662][T17300] usb 3-1: Product: syz [ 635.365438][T17300] usb 3-1: Manufacturer: syz [ 635.370078][T17300] usb 3-1: SerialNumber: syz [ 635.388123][T18174] loop1: detected capacity change from 0 to 47 [ 635.423345][ T6227] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c [ 635.437808][ T6227] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 635.450214][T17300] usb 3-1: config 0 descriptor?? [ 635.461932][ T6227] usb 5-1: Product: syz [ 635.466128][ T6227] usb 5-1: Manufacturer: syz [ 635.482724][T17300] ums-freecom 3-1:0.0: USB Mass Storage device detected [ 635.501432][ T6227] usb 5-1: SerialNumber: syz [ 635.546308][ T6227] usb 5-1: config 0 descriptor?? [ 635.600299][ T6227] gspca_main: gspca_topro-2.14.0 probing 06a2:0003 [ 635.698893][T17300] usb 3-1: USB disconnect, device number 104 [ 635.729250][T18182] libceph: resolve '0' (ret=-3): failed [ 635.872999][T18188] netlink: 'syz.1.5426': attribute type 3 has an invalid length. [ 635.998729][ T6227] gspca_topro: reg_w err -71 [ 636.057862][ T6227] gspca_topro: Sensor soi763a [ 636.099097][ T6227] usb 5-1: USB disconnect, device number 101 [ 636.430339][T18208] loop1: detected capacity change from 0 to 64 [ 636.438018][T17300] usb 4-1: new high-speed USB device number 94 using dummy_hcd [ 636.632775][T18214] Illegal XDP return value 4294967274 on prog (id 355) dev N/A, expect packet loss! [ 636.667788][T17300] usb 4-1: Using ep0 maxpacket: 32 [ 636.731227][T17300] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 636.741463][T17300] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 636.798154][T17300] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0080, bcdDevice=4a.83 [ 636.845069][T17300] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 636.916579][T17300] usb 4-1: Product: syz [ 636.927376][T17300] usb 4-1: Manufacturer: syz [ 636.932047][T17300] usb 4-1: SerialNumber: syz [ 636.992212][T17300] usb 4-1: config 0 descriptor?? [ 637.208454][ T30] audit: type=1326 audit(1747969428.015:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18229 comm="syz.4.5444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 637.252330][T17300] snd-usb-6fire 4-1:0.0: unknown device firmware state received from device: [ 637.318460][T17300] ea af d9 87 ad fc c9 53 [ 637.339948][T17300] snd-usb-6fire 4-1:0.0: probe with driver snd-usb-6fire failed with error -5 [ 637.370836][ T30] audit: type=1326 audit(1747969428.015:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18229 comm="syz.4.5444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 637.450168][T18243] loop2: detected capacity change from 0 to 256 [ 637.476549][T17300] usb 4-1: USB disconnect, device number 94 [ 637.505145][ T30] audit: type=1326 audit(1747969428.043:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18229 comm="syz.4.5444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 637.617446][ T30] audit: type=1326 audit(1747969428.043:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18229 comm="syz.4.5444" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 637.743526][T18243] FAT-fs (loop2): Directory bread(block 64) failed [ 637.758411][T18243] FAT-fs (loop2): Directory bread(block 65) failed [ 637.801399][T18243] FAT-fs (loop2): Directory bread(block 66) failed [ 637.808008][T18243] FAT-fs (loop2): Directory bread(block 67) failed [ 637.864317][T18243] FAT-fs (loop2): Directory bread(block 68) failed [ 637.891150][T18243] FAT-fs (loop2): Directory bread(block 69) failed [ 637.927517][T18243] FAT-fs (loop2): Directory bread(block 70) failed [ 637.949487][T18243] FAT-fs (loop2): Directory bread(block 71) failed [ 637.997776][T18243] FAT-fs (loop2): Directory bread(block 72) failed [ 638.033029][T18243] FAT-fs (loop2): Directory bread(block 73) failed [ 638.058775][T18258] 9pnet_fd: Insufficient options for proto=fd [ 638.816097][ T6227] usb 2-1: new high-speed USB device number 89 using dummy_hcd [ 638.891171][T18240] loop0: detected capacity change from 0 to 32768 [ 638.906429][T18288] loop3: detected capacity change from 0 to 256 [ 638.925811][T18288] exfat: Deprecated parameter 'namecase' [ 638.931619][T18240] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5445 (18240) [ 638.982521][T18288] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 639.032255][T18240] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 639.058041][ T6227] usb 2-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55 [ 639.088553][ T6227] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 639.115194][T18240] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 639.144134][ T6227] usb 2-1: Product: syz [ 639.167215][ T6227] usb 2-1: Manufacturer: syz [ 639.181888][ T6227] usb 2-1: SerialNumber: syz [ 639.202230][ T6227] usb 2-1: config 0 descriptor?? [ 639.227418][ T6227] gspca_main: sonixb-2.14.0 probing 0c45:60a8 [ 639.422653][T18240] BTRFS info (device loop0): rebuilding free space tree [ 639.440803][T18316] netlink: 'syz.6.5471': attribute type 10 has an invalid length. [ 639.498834][T18316] macvlan1: entered allmulticast mode [ 639.561447][T18316] veth1_vlan: entered allmulticast mode [ 639.571427][T18240] BTRFS info (device loop0): disabling free space tree [ 639.618562][T18240] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 639.646594][T18316] team0: Port device macvlan1 added [ 639.679080][ T6227] sonixb 2-1:0.0: Error writing register 01: -71 [ 639.697664][ T1296] ieee802154 phy1 wpan1: encryption failed: -22 [ 639.712913][T18240] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 639.731764][ T6227] sonixb 2-1:0.0: probe with driver sonixb failed with error -71 [ 639.762689][ T6227] usb 2-1: USB disconnect, device number 89 [ 640.111150][ T30] audit: type=1326 audit(1747969430.728:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.4.5476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 640.208713][ T30] audit: type=1326 audit(1747969430.728:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.4.5476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 640.240244][ T6235] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 640.331429][T18338] netlink: 168 bytes leftover after parsing attributes in process `syz.3.5479'. [ 640.353020][ T30] audit: type=1326 audit(1747969430.737:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.4.5476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 640.355643][T18338] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5479'. [ 640.438887][ T30] audit: type=1326 audit(1747969430.803:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.4.5476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 640.463097][ T30] audit: type=1326 audit(1747969430.803:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18331 comm="syz.4.5476" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3dab8e969 code=0x7ffc0000 [ 640.883863][T18353] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5484'. [ 641.132981][T18358] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5488'. [ 641.545314][T18368] openvswitch: netlink: Port 10289156 exceeds max allowable 65535 [ 642.096007][T18385] loop6: detected capacity change from 0 to 4096 [ 642.197026][T18391] tipc: Can't bind to reserved service type 2 [ 642.204625][T18385] NILFS (loop6): invalid segment: Checksum error in segment payload [ 642.256370][T18385] NILFS (loop6): trying rollback from an earlier position [ 642.340204][T18385] NILFS (loop6): recovery complete [ 642.392336][T18396] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 642.532236][T18393] loop3: detected capacity change from 0 to 4096 [ 642.557958][T18402] netlink: 'syz.2.5509': attribute type 13 has an invalid length. [ 642.642730][T18393] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 642.718451][T18393] ntfs3(loop3): Failed to load $Extend (-2). [ 642.724600][T18393] ntfs3(loop3): Failed to initialize $Extend. [ 642.836289][T18393] ntfs3(loop3): ino=5, "/" indx_read [ 643.635837][T18426] loop0: detected capacity change from 0 to 2048 [ 643.773324][T18434] netlink: 'syz.4.5525': attribute type 10 has an invalid length. [ 643.790919][T18433] loop3: detected capacity change from 0 to 1024 [ 643.849811][T18436] loop6: detected capacity change from 0 to 128 [ 643.933442][T18434] netlink: 40 bytes leftover after parsing attributes in process `syz.4.5525'. [ 644.005750][T18438] netlink: 308 bytes leftover after parsing attributes in process `syz.2.5527'. [ 644.080958][ T53] hfsplus: b-tree write err: -5, ino 4 [ 644.241988][T18401] loop1: detected capacity change from 0 to 32768 [ 644.365565][T18401] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 644.782344][T18401] XFS (loop1): Ending clean mount [ 644.964207][ T6239] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 644.965251][T18464] loop2: detected capacity change from 0 to 2048 [ 644.979712][T18468] loop4: detected capacity change from 0 to 256 [ 645.098730][T18464] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 645.304963][T18470] loop6: detected capacity change from 0 to 4096 [ 645.450915][T18476] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 645.506202][T18470] NILFS error (device loop6): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 645.689735][T18470] Remounting filesystem read-only [ 645.965149][T18488] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 646.064706][ T6407] usb 1-1: new high-speed USB device number 97 using dummy_hcd [ 646.302417][ T6407] usb 1-1: Using ep0 maxpacket: 32 [ 646.345763][ T6407] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 646.367389][ T6407] usb 1-1: New USB device found, idVendor=0000, idProduct=0000, bcdDevice=de.fe [ 646.401005][ T6407] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 646.435496][ T6407] usb 1-1: Product: syz [ 646.451527][ T6407] usb 1-1: Manufacturer: syz [ 646.456182][ T6407] usb 1-1: SerialNumber: syz [ 646.522789][ T6407] gspca_main: spca501-2.14.0 probing 0000:0000 [ 646.815581][T18516] tc_dump_action: action bad kind [ 646.971299][ T6407] gspca_spca501: reg write: error -71 [ 646.987615][ T6407] spca501 1-1:2.0: Reg write failed for 0x02,0xa048,0x00 [ 647.013549][T18524] netlink: 'syz.2.5563': attribute type 3 has an invalid length. [ 647.019949][ T6407] spca501 1-1:2.0: probe with driver spca501 failed with error -22 [ 647.104357][ T6407] usb 1-1: USB disconnect, device number 97 [ 647.359238][T18533] loop4: detected capacity change from 0 to 512 [ 647.394579][T18537] netlink: 'syz.1.5570': attribute type 2 has an invalid length. [ 647.461850][T18533] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 647.614828][T18533] EXT4-fs error (device loop4): __ext4_iget:5025: inode #15: block 1803188595: comm syz.4.5567: invalid block [ 647.733036][T18533] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.5567: couldn't read orphan inode 15 (err -117) [ 647.833981][T18533] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 648.059951][T18560] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5579'. [ 648.323136][T18570] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 648.360479][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 648.443772][T18567] loop3: detected capacity change from 0 to 4096 [ 648.570975][T18567] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 648.951476][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 649.175364][T18594] loop4: detected capacity change from 0 to 512 [ 649.241937][T18598] loop0: detected capacity change from 0 to 256 [ 649.277421][T18594] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 649.307201][T18594] EXT4-fs (loop4): orphan cleanup on readonly fs [ 649.391199][T18594] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.5588: bad orphan inode 15 [ 649.416641][T18598] FAT-fs (loop0): Directory bread(block 64) failed [ 649.476060][T18598] FAT-fs (loop0): Directory bread(block 65) failed [ 649.507319][T18594] ext4_test_bit(bit=14, block=18) = 1 [ 649.515110][T18598] FAT-fs (loop0): Directory bread(block 66) failed [ 649.534698][T18598] FAT-fs (loop0): Directory bread(block 67) failed [ 649.557033][T18598] FAT-fs (loop0): Directory bread(block 68) failed [ 649.583720][T18598] FAT-fs (loop0): Directory bread(block 69) failed [ 649.588784][T18594] is_bad_inode(inode)=0 [ 649.594622][T18598] FAT-fs (loop0): Directory bread(block 70) failed [ 649.630538][T18594] NEXT_ORPHAN(inode)=1023 [ 649.643716][T18598] FAT-fs (loop0): Directory bread(block 71) failed [ 649.650832][T18598] FAT-fs (loop0): Directory bread(block 72) failed [ 649.677794][T18598] FAT-fs (loop0): Directory bread(block 73) failed [ 649.682356][T18594] max_ino=32 [ 649.697699][T18594] i_nlink=0 [ 649.723438][T18609] loop1: detected capacity change from 0 to 24 [ 649.759945][T18594] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2962: inode #15: comm syz.4.5588: corrupted xattr block 19: e_value size too large [ 649.812394][T18594] EXT4-fs warning (device loop4): ext4_evict_inode:279: xattr delete (err -117) [ 649.867161][T18594] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 650.038762][T18584] loop6: detected capacity change from 0 to 32768 [ 650.059550][T18584] (syz.6.5591,18584,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 650.075481][T18584] (syz.6.5591,18584,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 650.198574][T18584] JBD2: Ignoring recovery information on journal [ 650.356365][T18620] loop3: detected capacity change from 0 to 1024 [ 650.384207][T18620] EXT4-fs: Ignoring removed orlov option [ 650.465269][ T6251] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 650.467238][T18584] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 650.491367][T18620] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 650.516089][T18626] netlink: 'syz.1.5609': attribute type 11 has an invalid length. [ 650.575949][T18626] netlink: 224 bytes leftover after parsing attributes in process `syz.1.5609'. [ 650.765965][ T6238] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 650.864156][T18584] [ 650.866573][T18584] ====================================================== [ 650.873592][T18584] WARNING: possible circular locking dependency detected [ 650.880626][T18584] 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 Not tainted [ 650.887743][T18584] ------------------------------------------------------ [ 650.894782][T18584] syz.6.5591/18584 is trying to acquire lock: [ 650.900839][T18584] ffff88806a42a610 (sb_internal#3){.+.+}-{0:0}, at: ocfs2_acquire_dquot+0x455/0xb30 [ 650.910281][T18584] [ 650.910281][T18584] but task is already holding lock: [ 650.917638][T18584] ffff8880591b14a0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270 [ 650.928575][T18584] [ 650.928575][T18584] which lock already depends on the new lock. [ 650.928575][T18584] [ 650.938973][T18584] [ 650.938973][T18584] the existing dependency chain (in reverse order) is: [ 650.947999][T18584] [ 650.947999][T18584] -> #6 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}: [ 650.956881][T18584] lock_acquire+0x120/0x360 [ 650.961919][T18584] down_write+0x96/0x1f0 [ 650.966689][T18584] ocfs2_lock_global_qf+0x1e8/0x270 [ 650.972414][T18584] ocfs2_acquire_dquot+0x2b0/0xb30 [ 650.978056][T18584] dqget+0x7b1/0xf10 [ 650.982474][T18584] dquot_set_dqblk+0x2b/0xfa0 [ 650.987712][T18584] quota_setquota+0x4b7/0x540 [ 650.993259][T18584] __se_sys_quotactl+0x279/0x950 [ 650.998719][T18584] do_syscall_64+0xf6/0x210 [ 651.003776][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.010192][T18584] [ 651.010192][T18584] -> #5 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{4:4}: [ 651.020820][T18584] lock_acquire+0x120/0x360 [ 651.025864][T18584] down_write+0x96/0x1f0 [ 651.030635][T18584] ocfs2_lock_global_qf+0x1ca/0x270 [ 651.036360][T18584] ocfs2_acquire_dquot+0x2b0/0xb30 [ 651.042005][T18584] dqget+0x7b1/0xf10 [ 651.046434][T18584] dquot_set_dqblk+0x2b/0xfa0 [ 651.051644][T18584] quota_setquota+0x4b7/0x540 [ 651.056857][T18584] __se_sys_quotactl+0x279/0x950 [ 651.062367][T18584] do_syscall_64+0xf6/0x210 [ 651.067418][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.073835][T18584] [ 651.073835][T18584] -> #4 (&dquot->dq_lock){+.+.}-{4:4}: [ 651.081493][T18584] lock_acquire+0x120/0x360 [ 651.086527][T18584] __mutex_lock+0x182/0xe80 [ 651.091558][T18584] dqget+0x72a/0xf10 [ 651.095985][T18584] __dquot_initialize+0x3b3/0xcb0 [ 651.101537][T18584] __ext4_new_inode+0x7db/0x3bd0 [ 651.107002][T18584] ext4_xattr_inode_lookup_create+0xa3a/0x1c20 [ 651.113679][T18584] ext4_xattr_block_set+0x223/0x2ac0 [ 651.119484][T18584] ext4_xattr_set_handle+0x1350/0x1590 [ 651.125462][T18584] ext4_xattr_set+0x230/0x320 [ 651.130656][T18584] __vfs_setxattr+0x43c/0x480 [ 651.135891][T18584] __vfs_setxattr_noperm+0x12d/0x660 [ 651.141706][T18584] vfs_setxattr+0x16b/0x2f0 [ 651.146739][T18584] filename_setxattr+0x274/0x600 [ 651.152207][T18584] path_setxattrat+0x364/0x3a0 [ 651.157494][T18584] __x64_sys_setxattr+0xbc/0xe0 [ 651.162878][T18584] do_syscall_64+0xf6/0x210 [ 651.167917][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.174338][T18584] [ 651.174338][T18584] -> #3 (&ei->xattr_sem){++++}-{4:4}: [ 651.181913][T18584] lock_acquire+0x120/0x360 [ 651.186952][T18584] down_read+0x46/0x2e0 [ 651.191642][T18584] ext4_setattr+0x855/0x1bd0 [ 651.196752][T18584] notify_change+0xb36/0xe40 [ 651.201862][T18584] chown_common+0x3f9/0x5a0 [ 651.206896][T18584] do_fchownat+0x161/0x270 [ 651.211840][T18584] __x64_sys_chown+0x82/0xa0 [ 651.216959][T18584] do_syscall_64+0xf6/0x210 [ 651.221996][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.228407][T18584] [ 651.228407][T18584] -> #2 (jbd2_handle){++++}-{0:0}: [ 651.235736][T18584] lock_acquire+0x120/0x360 [ 651.240767][T18584] start_this_handle+0x1fa7/0x21c0 [ 651.246414][T18584] jbd2__journal_start+0x2c1/0x5b0 [ 651.252057][T18584] jbd2_journal_start+0x2a/0x40 [ 651.257443][T18584] ocfs2_start_trans+0x376/0x6d0 [ 651.262912][T18584] ocfs2_modify_bh+0xe8/0x470 [ 651.268113][T18584] ocfs2_local_read_info+0x1465/0x17e0 [ 651.274096][T18584] dquot_load_quota_sb+0x791/0xbd0 [ 651.279734][T18584] dquot_load_quota_inode+0x2e1/0x5d0 [ 651.285634][T18584] ocfs2_enable_quotas+0x1c6/0x450 [ 651.291267][T18584] ocfs2_fill_super+0x5115/0x63d0 [ 651.296815][T18584] get_tree_bdev_flags+0x40e/0x4d0 [ 651.302452][T18584] vfs_get_tree+0x92/0x2b0 [ 651.307387][T18584] do_new_mount+0x24a/0xa40 [ 651.312413][T18584] __se_sys_mount+0x317/0x410 [ 651.317622][T18584] do_syscall_64+0xf6/0x210 [ 651.322651][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.329060][T18584] [ 651.329060][T18584] -> #1 (&journal->j_trans_barrier){.+.+}-{4:4}: [ 651.337590][T18584] lock_acquire+0x120/0x360 [ 651.342621][T18584] down_read+0x46/0x2e0 [ 651.347300][T18584] ocfs2_start_trans+0x36a/0x6d0 [ 651.352764][T18584] ocfs2_modify_bh+0xe8/0x470 [ 651.357964][T18584] ocfs2_local_read_info+0x1465/0x17e0 [ 651.363947][T18584] dquot_load_quota_sb+0x791/0xbd0 [ 651.369585][T18584] dquot_load_quota_inode+0x2e1/0x5d0 [ 651.375483][T18584] ocfs2_enable_quotas+0x1c6/0x450 [ 651.381113][T18584] ocfs2_fill_super+0x5115/0x63d0 [ 651.386661][T18584] get_tree_bdev_flags+0x40e/0x4d0 [ 651.392302][T18584] vfs_get_tree+0x92/0x2b0 [ 651.397245][T18584] do_new_mount+0x24a/0xa40 [ 651.402278][T18584] __se_sys_mount+0x317/0x410 [ 651.407482][T18584] do_syscall_64+0xf6/0x210 [ 651.412515][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.418940][T18584] [ 651.418940][T18584] -> #0 (sb_internal#3){.+.+}-{0:0}: [ 651.426437][T18584] validate_chain+0xb9b/0x2140 [ 651.431726][T18584] __lock_acquire+0xaac/0xd20 [ 651.436934][T18584] lock_acquire+0x120/0x360 [ 651.441995][T18584] ocfs2_start_trans+0x26b/0x6d0 [ 651.447469][T18584] ocfs2_acquire_dquot+0x455/0xb30 [ 651.453109][T18584] dqget+0x7b1/0xf10 [ 651.457529][T18584] dquot_set_dqblk+0x2b/0xfa0 [ 651.462731][T18584] quota_setquota+0x4b7/0x540 [ 651.467968][T18584] __se_sys_quotactl+0x279/0x950 [ 651.473446][T18584] do_syscall_64+0xf6/0x210 [ 651.478476][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.484889][T18584] [ 651.484889][T18584] other info that might help us debug this: [ 651.484889][T18584] [ 651.495119][T18584] Chain exists of: [ 651.495119][T18584] sb_internal#3 --> &ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7 --> &ocfs2_quota_ip_alloc_sem_key [ 651.495119][T18584] [ 651.512126][T18584] Possible unsafe locking scenario: [ 651.512126][T18584] [ 651.519571][T18584] CPU0 CPU1 [ 651.524968][T18584] ---- ---- [ 651.530325][T18584] lock(&ocfs2_quota_ip_alloc_sem_key); [ 651.535964][T18584] lock(&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7); [ 651.545785][T18584] lock(&ocfs2_quota_ip_alloc_sem_key); [ 651.553945][T18584] rlock(sb_internal#3); [ 651.558289][T18584] [ 651.558289][T18584] *** DEADLOCK *** [ 651.558289][T18584] [ 651.566523][T18584] 4 locks held by syz.6.5591/18584: [ 651.571727][T18584] #0: ffff88806a42a0e0 (&type->s_umount_key#95){++++}-{4:4}, at: super_lock+0x2a9/0x3b0 [ 651.581618][T18584] #1: ffff8880592ac0a8 (&dquot->dq_lock){+.+.}-{4:4}, at: ocfs2_acquire_dquot+0x2a3/0xb30 [ 651.591668][T18584] #2: ffff8880591b1800 (&ocfs2_sysfile_lock_key[args->fi_sysfile_type]#7){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x1ca/0x270 [ 651.604678][T18584] #3: ffff8880591b14a0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1e8/0x270 [ 651.616030][T18584] [ 651.616030][T18584] stack backtrace: [ 651.621914][T18584] CPU: 0 UID: 0 PID: 18584 Comm: syz.6.5591 Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(full) [ 651.621941][T18584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 651.621955][T18584] Call Trace: [ 651.621964][T18584] [ 651.621979][T18584] dump_stack_lvl+0x189/0x250 [ 651.622016][T18584] ? __pfx_dump_stack_lvl+0x10/0x10 [ 651.622047][T18584] ? __pfx__printk+0x10/0x10 [ 651.622070][T18584] ? print_lock_name+0xde/0x100 [ 651.622106][T18584] print_circular_bug+0x2ee/0x310 [ 651.622132][T18584] check_noncircular+0x134/0x160 [ 651.622157][T18584] validate_chain+0xb9b/0x2140 [ 651.622187][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622215][T18584] __lock_acquire+0xaac/0xd20 [ 651.622248][T18584] ? ocfs2_acquire_dquot+0x455/0xb30 [ 651.622280][T18584] lock_acquire+0x120/0x360 [ 651.622309][T18584] ? ocfs2_acquire_dquot+0x455/0xb30 [ 651.622342][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622374][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622399][T18584] ? do_raw_spin_unlock+0x122/0x240 [ 651.622426][T18584] ocfs2_start_trans+0x26b/0x6d0 [ 651.622457][T18584] ? ocfs2_acquire_dquot+0x455/0xb30 [ 651.622492][T18584] ? __pfx_ocfs2_start_trans+0x10/0x10 [ 651.622522][T18584] ? do_raw_spin_unlock+0x122/0x240 [ 651.622548][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622572][T18584] ? _raw_spin_unlock+0x28/0x50 [ 651.622595][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622620][T18584] ? ocfs2_qinfo_unlock+0x121/0x150 [ 651.622657][T18584] ocfs2_acquire_dquot+0x455/0xb30 [ 651.622693][T18584] ? from_kuid+0x1b0/0x640 [ 651.622720][T18584] ? __pfx_ocfs2_acquire_dquot+0x10/0x10 [ 651.622752][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622777][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622802][T18584] ? percpu_counter_add_batch+0xea/0x1e0 [ 651.622826][T18584] dqget+0x7b1/0xf10 [ 651.622869][T18584] dquot_set_dqblk+0x2b/0xfa0 [ 651.622905][T18584] quota_setquota+0x4b7/0x540 [ 651.622930][T18584] ? __pfx_quota_setquota+0x10/0x10 [ 651.622952][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.622991][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.623021][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.623044][T18584] ? do_quotactl+0x734/0x860 [ 651.623071][T18584] __se_sys_quotactl+0x279/0x950 [ 651.623093][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.623122][T18584] ? __pfx___se_sys_quotactl+0x10/0x10 [ 651.623154][T18584] ? do_syscall_64+0xba/0x210 [ 651.623182][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.623209][T18584] do_syscall_64+0xf6/0x210 [ 651.623238][T18584] ? srso_alias_return_thunk+0x5/0xfbef5 [ 651.623263][T18584] ? exc_page_fault+0x91/0x110 [ 651.623291][T18584] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 651.623315][T18584] RIP: 0033:0x7f69e1f8e969 [ 651.623334][T18584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 651.623352][T18584] RSP: 002b:00007f69e2e61038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3 [ 651.623375][T18584] RAX: ffffffffffffffda RBX: 00007f69e21b5fa0 RCX: 00007f69e1f8e969 [ 651.623391][T18584] RDX: 0000000000000000 RSI: 0000200000000040 RDI: ffffffff80000800 [ 651.623412][T18584] RBP: 00007f69e2010ab1 R08: 0000000000000000 R09: 0000000000000000 [ 651.623426][T18584] R10: 0000200000000100 R11: 0000000000000246 R12: 0000000000000000 [ 651.623441][T18584] R13: 0000000000000000 R14: 00007f69e21b5fa0 R15: 00007fff0e4218f8 [ 651.623464][T18584] [ 651.658336][T18633] netlink: 60 bytes leftover after parsing attributes in process `syz.1.5615'. [ 652.120580][T16518] ocfs2: Unmounting device (7,6) on (node local)