last executing test programs: 2.931528164s ago: executing program 3 (id=9184): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="5c00000015006bab9e3fe3d86e17aa31026b876c1d0000007ea60847160af36504000a0038001d000d0000009ee517d34460bc24eab556a705251e6182949a3651f60aaf80f4b1930400e7861000bd63ce77e599f360496539554188", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x48800) 2.711473604s ago: executing program 1 (id=9187): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0e000000040000000400000001"], 0x50) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000300)={r0, &(0x7f00000002c0), 0x0}, 0x20) 2.711359033s ago: executing program 3 (id=9188): r0 = socket$inet_udp(0x2, 0x2, 0x0) getsockopt$sock_buf(r0, 0x1, 0x6, 0x0, &(0x7f0000000300)) 2.696375904s ago: executing program 1 (id=9189): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x80002, 0x0) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045007, 0x0) 2.507624762s ago: executing program 3 (id=9192): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x503, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x14615}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GENEVE_UDP_CSUM={0x5, 0x8, 0x1}, @IFLA_GENEVE_PORT={0x6, 0x5, 0x4e21}]}}}]}, 0x44}}, 0x4000) 2.507408062s ago: executing program 2 (id=9193): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000280)={0x10, 0x1402, 0x1, 0x70bd2c, 0x25dfdbfd}, 0x10}, 0x1, 0x0, 0x0, 0x4000801}, 0x800) 2.432261315s ago: executing program 1 (id=9194): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000140)={[{@test_dummy_encryption_v1}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x1, 0x241, &(0x7f0000000540)="$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") rename(&(0x7f00000034c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0\x00') 2.32749111s ago: executing program 2 (id=9195): syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000600)='./file0\x00', 0x0, &(0x7f0000000640), 0x1, 0x5b3, &(0x7f0000000680)="$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") symlink(&(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 2.155572517s ago: executing program 3 (id=9197): r0 = syz_open_dev$sndpcmc(&(0x7f0000000480), 0x1, 0x0) ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r0, 0xc1004110, &(0x7f0000000000)={0x0, [0x6, 0xffff1337, 0x3], [{0x0, 0x0, 0x0, 0x1}, {0x35, 0x39}, {0x0, 0x8}, {0x800000, 0x800001}, {}, {0x1ff}, {0x0, 0x1000}, {}, {}, {}, {}, {0x0, 0xe68b}], 0xc}) 2.136865158s ago: executing program 1 (id=9198): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f05e13f000009058303", @ANYRESDEC], 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x10, &(0x7f00000000c0)=@ready={0x0, 0x0, 0x6, "7b4b04a0", {0x1, 0x802, 0x2, 0x5, 0x9}}) 1.919558827s ago: executing program 3 (id=9200): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)=@newlink={0x5c, 0x10, 0x403, 0xfffffffc, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_LAST_MEMBER_CNT={0x8, 0x1c, 0x8}, @IFLA_BR_MCAST_QUERY_USE_IFADDR={0x5, 0x18, 0x1}, @IFLA_BR_VLAN_STATS_PER_PORT={0x5}, @IFLA_BR_MCAST_STARTUP_QUERY_CNT={0x8, 0x1d, 0x1}, @IFLA_BR_VLAN_STATS_ENABLED={0x5, 0x29, 0x1}]}}}]}, 0x5c}, 0x1, 0x300000000000000, 0x0, 0x4004}, 0x0) 1.86074071s ago: executing program 2 (id=9202): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14, 0x10, 0x1, 0x2}, [@NFT_MSG_NEWSET={0x118, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2c}, @NFTA_SET_DESC={0xd4, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_DESC_CONCAT={0xc8, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x8}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xa}]}, {0x24, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x6}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}, {0x34, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x764f15e2}, @NFTA_SET_FIELD_LEN={0x8}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0xfffffffffffffdeb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_FIELD_LEN={0x8}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x28}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xcb}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}]}]}]}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0xa4}]}], {0x14, 0x10}}, 0x140}}, 0x0) 1.795575283s ago: executing program 3 (id=9203): syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0)={[{}]}, 0x1, 0x232, &(0x7f0000000000)="$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") syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006325a640402000207265970000010902240001000000000904000002214c6a0009050702000000da000905"], 0x0) 1.555562173s ago: executing program 2 (id=9206): openat$mixer(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) close(0x3) 1.40673919s ago: executing program 2 (id=9209): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000005c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000610000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000110b0008850000000500000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000000)="c1188e19b95d02ff4284860188a8", 0x0, 0x20000006, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.159759s ago: executing program 0 (id=9211): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5b5d}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x2}]}]}, @IFLA_ALT_IFNAME={0x14, 0x35, 'wg1\x00'}]}, 0x44}}, 0x0) 1.053517344s ago: executing program 0 (id=9212): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0xc02, &(0x7f0000000380)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@sys_tz}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x4}}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}, {@keep_last_dots}, {@keep_last_dots}, {@iocharset={'iocharset', 0x3d, 'maccyrillic'}}, {@allow_utime={'allow_utime', 0x3d, 0x3}}, {}]}, 0x1, 0x151e, &(0x7f0000007640)="$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") mount$nfs(&(0x7f00000000c0)='\xb2\x83\x87J9I\xc3i\xe4\x81\xc5:\xccLD\x9d\xd8\xc7\x90v\x8b\x00\x00\x01\x00\x00\x00\x00\x00h#\xfacl\x01\x8cC\x1f|\xa5\xcb\x8f\xe5WJ\x00>\xf2\xd6\t\xf4I\xc5\xcb\x15A\xb5\xbbG\x9e\xea\xc4\x03\xf2\xf5\xf4\xa1\x9c\xe0Q<=\xb1\x9b,vjn\x8b[0\xd9\xcb\xf8\x1a\xdf\x9e\x89\x91H\xf4\x11p\xd2\x96\x82\xd9)6\xcdm\x88\x91\x1dv\xff\xb3\xad\x8b\x82\xcdR\x98\x80k1\xce}\x90\xe8e\xdb\xb1HL\x1d%\xc4\x1atCt\xb4\x00\xb29E\x87-\xd1\xcd\xf3w\"\v\xf3`\x06x\xb4TQ\x8dB\a\xe4\xe2\xf8\xd6%C\xf9\xd6~\xf80\xfcE\xa0\x80\x0e\"\xb0\a\x88\xbc\x7fbn\x02\xeb\x9b\x04\x1d\t', &(0x7f0000000000)='./file0\x00', 0x0, 0x123b058, 0x0) 683.549681ms ago: executing program 0 (id=9213): r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) write$char_usb(r0, 0x0, 0x0) 571.327926ms ago: executing program 0 (id=9214): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000e00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="3000000019000100200000000000000080"], 0x30}}, 0x0) 426.155721ms ago: executing program 0 (id=9215): r0 = syz_open_dev$radio(&(0x7f0000000280), 0x2, 0x2) ioctl$VIDIOC_S_HW_FREQ_SEEK(r0, 0x40305652, &(0x7f00000002c0)={0x0, 0x1, 0x0, 0x0, 0x80, 0xfa000, 0x1a5e00}) 203.532081ms ago: executing program 1 (id=9216): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000400)={0x60, 0x2, 0x6, 0x5, 0x0, 0x0, {0x0, 0x0, 0x3}, [@IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0xc}, @IPSET_ATTR_BUCKETSIZE={0x5, 0x15, 0x7}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:ip,mark\x00'}]}, 0x60}, 0x1, 0x0, 0x0, 0x24000040}, 0x0) 117.363775ms ago: executing program 0 (id=9217): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000780)=ANY=[@ANYBLOB="b702000004000000bfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff1d6405000000000065040400210000000404000001e37c60b7040000000000006a0a00fe000000008500000032000000b70000000000000095000000000000000ce0de7621e5e832249c04112cf7af2b75d0d1f034b1b3fb6bd3ce8fa62c7941272ff49142d860010ab162aa2264ab67e55a00000000000000edfe0969a9ddc125b686a1e83c8790c893d713b3295dad0ea697181d1e85b64126b5d72f204754d1d4a93f24215dee354e93cfc3f50ff23f8432c72012f021c84c59a9d4c142f439d3040cfee621589fb3a2f1407c7cbed48e7026f8d52d4bca2608c79aa4a73732028f88ce07ed1075da4a2ef44e3d8b88873f0b1de87dfb6d15936ec0a27cb554def9e27396df6b7851ffa26237ea6730880f06371beb3b290b7d8629a6f0373fefa0acb60888fc14ad2b83ca03ac2aee792482ced58af4140cc4ce3efef26e00c5b2200a91cb80c6065a697d6fc8aa8b65aee0783b04cff0218ce82c9687b4474da89c474c23727555fc5e5f8ad0f2f7a261140440fce1f12cc6df312accd011d888384283092d987c40bbb46f68c2431b97906f00000000349834fa147bd5923bbd4e606708034931a8f1a89bdf77093a0000427aab8e21e1a33d3fe093547532fce6549dd648ad233e05a7b3ea178007c1c32e871ac81f287c4aabbd153390b16d1d41ee433e3aee000000000009e106d6b5289f0000000000000000000000f7bc9f46cb71f6b889d37807865e3b4e9916dd0f72c9d58ea333b90f8886dcbf5ddda0e42ca08e3303632401f2f5212b40c0e88c957fd767dbfc80b07ad668b4f6f92fb209d7c2dbac597843c8eb7bf92fe6d0bb0b72549795c2ed19e441eb69869844152ba9da0588e42cdbc5fcd245ce5e3ef0dca64931276702a312db7956f0a75eb9caa17d47a6331c7c963cbf86a845ce27c26b7136d3e7207318b1df7a6320c64f18ccd926eaeddcde8d5006d6c38db117fb1115221a66169172720ccca770bff37e59511b2606138377eda44b2f288b491ab8aae0e11a98303b0e407e0f9d21f4a3ebbd3fabf6da9a1a1f869a339fab465d8322b7280b0734fd115a19b33c8644fff71b3c62f2e1b827e2663e06a751182e968c8ab05fb1d0115d4b11d944f2c06acc023a02b7416a9a10218d21503cda13bb5df6c992e52e1c01793b728eac000058ab3b3900d279297dadc127e2f38fc60c23af2e1fefa5a83456647191ba1953d320f59aa261fe79613df6bf43884e9649691e32680d75a541c27ffe74f9d13340f2cf1c7dc2b7db01213216cd4ecfd30efe137641471987289b7e23482e026b26eacd1b97443e2ea2d1d6e31a01ee0ae7fa195a2152b2338b086423a3883f2ce3e2f84e04f4d52c985eac4b46336908599564b47db0e6aa97ee51a360f4382fd99745725d44c77d097f69d19fe86f71c38a0226d44ebe0ecbd959f14b540745cd03b8c9f02b825ba45ca85706c73115f70871db9d2a1bc2a517b39f9648123917a5db07ba4e27f961373767e1ea8f7cc558e483abef1a9923c5cfa2081e430680950b7d7c377726b557ad31fdee17ba7057741f39d29d8ab295222f96297a777bb235416e72c84afef2bdb08fb375147b028b89f15af45bc8976b91158c13c9876daa71e7db0f5a17376be39ea79ce1246c547c740e31c64e5d293e0e5a544dd166010061d6ccae46c173b8e11721e4bce22c16af00000021f80ac6c3971006db853e3c40a5417d6eac09eb0e01ac6bd4c6dacdcb1d6d2ef9c8bdea91c984022821e961236d08f8b9072ec6cb5d5a68833fd5b4e80a5ac2bc6ff323f5ce612b59ce8177956c1affcc8baf4c8b59ab959aff9a7bd81f7c7c1f1bb92ddbeed6bce8041c7f0c1c584e6ae027678ce3cfbfea938aecc3c5119c5875b7fb35dc20f5c7aaae1e276104f607a73fe501c1045873a2b1eb80e95c87f099d98028dc82bdc7ef08c871fb3061c3c5ebd613e6e5e8cf099bb6e8c0441a133c85138b36a02c47fbedf7ed1d3ce74c9ec2c676c0b2d4b5eca61dbf5769b483c2a9f6bec666dae4e81960e9bad7f17cfc3d5bcc7b7f437110ca8ffa908c12086b2227eb202a8d56e0925ba994b05c98c39de44d25932449ddf08e5377814a40877eab4440ca01b3f50d2014a61a7d32105254b424238122386424efa3a7041254f686a5faac120942287f75e8e3db569ce47b120059d774a37e11d013be50cd2cbb00f6d2a23af61ec7d30bb7dc33a92f900b6ff1d29dc61cc40b846040dbafd00c6bcfbcf700"/1664], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffffe}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x702, 0xe, 0x0, &(0x7f0000000380)="e460334470b8d480eb00c1520800", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 59.287837ms ago: executing program 2 (id=9218): r0 = syz_open_dev$sg(&(0x7f00000002c0), 0x5d7000000000000, 0x1) ioctl$SG_GET_NUM_WAITING(r0, 0x227d, 0x0) 0s ago: executing program 1 (id=9219): r0 = socket$inet_icmp(0x2, 0x2, 0x1) sendmmsg$inet(r0, &(0x7f0000000600)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000001c0)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}], 0x1, 0x0) kernel console output (not intermixed with test programs): 173ms [ 975.583671][ T8] gfs2: fsid=syz:syz.0: jid=0: Done [ 975.588950][T23704] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 977.639004][T23712] loop1: detected capacity change from 0 to 131072 [ 977.699016][T23712] F2FS-fs (loop1): Found nat_bits in checkpoint [ 977.849506][T23712] F2FS-fs (loop1): Mounted with checkpoint version = 1b41e955 [ 978.346826][T23719] loop3: detected capacity change from 0 to 32768 [ 978.377795][T23719] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz" [ 978.393561][T23719] dlm: no local IP address has been set [ 978.404160][T23719] dlm: cannot start dlm midcomms -107 [ 978.409577][T23719] gfs2: fsid=syz:syz: dlm_new_lockspace error -107 [ 979.787897][T23730] loop2: detected capacity change from 0 to 32768 [ 979.828591][T23730] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.7742 (23730) [ 979.873340][T23730] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 979.900866][T23730] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 979.915987][T23730] BTRFS info (device loop2): using free space tree [ 980.115329][T23730] BTRFS info (device loop2): enabling ssd optimizations [ 980.154937][T23730] BTRFS info (device loop2): auto enabling async discard [ 980.335517][ T5957] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 980.728624][T20182] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 9 /dev/loop2 scanned by udevd (20182) [ 981.808095][T23750] loop2: detected capacity change from 0 to 32768 [ 981.848485][T23750] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 981.854527][T23728] loop3: detected capacity change from 0 to 131072 [ 981.856681][T23750] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 981.944060][T23728] F2FS-fs (loop3): Failed to initialize F2FS segment manager (-4) [ 982.040085][T23750] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 982.075230][ T8] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 982.089280][ T8] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 982.339901][ T8] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 234ms [ 982.369497][ T8] gfs2: fsid=syz:syz.0: jid=0: Done [ 982.385908][T23750] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 984.523873][T23764] loop2: detected capacity change from 0 to 32768 [ 984.545039][T23764] BTRFS: device fsid c0ead524-1f1c-4ccc-9384-0f6d362fec31 devid 1 transid 8 /dev/loop2 scanned by syz.2.7747 (23764) [ 984.600129][T23764] BTRFS info (device loop2): first mount of filesystem c0ead524-1f1c-4ccc-9384-0f6d362fec31 [ 984.643684][T23764] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 984.684147][T23764] BTRFS info (device loop2): using free space tree [ 984.887219][T23764] BTRFS info (device loop2): enabling ssd optimizations [ 984.903968][T23764] BTRFS info (device loop2): auto enabling async discard [ 985.150227][ T5957] BTRFS info (device loop2): last unmount of filesystem c0ead524-1f1c-4ccc-9384-0f6d362fec31 [ 987.734444][T23789] loop0: detected capacity change from 0 to 64 [ 988.649011][T23791] loop0: detected capacity change from 0 to 32768 [ 988.691063][T23791] BTRFS: device fsid 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 devid 1 transid 8 /dev/loop0 scanned by syz.0.7753 (23791) [ 988.768911][T23791] BTRFS info (device loop0): first mount of filesystem 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 [ 988.799070][T23791] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 988.830764][T23791] BTRFS info (device loop0): using free space tree [ 989.023067][T23791] BTRFS info (device loop0): enabling ssd optimizations [ 989.060472][T23791] BTRFS info (device loop0): auto enabling async discard [ 989.265999][ T5955] BTRFS info (device loop0): last unmount of filesystem 4c645aab-a6bb-4c7f-acba-f49e7dbd8268 [ 989.510339][T23809] loop0: detected capacity change from 0 to 1024 [ 989.889914][T23811] loop0: detected capacity change from 0 to 2364 [ 990.127110][T23815] loop0: detected capacity change from 0 to 512 [ 990.262529][T23815] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 990.459293][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 990.557787][T23820] loop3: detected capacity change from 0 to 132 [ 990.652464][T23822] loop0: detected capacity change from 0 to 736 [ 990.807892][T23824] loop3: detected capacity change from 0 to 64 [ 990.886234][T23826] loop0: detected capacity change from 0 to 128 [ 990.998747][T23828] loop3: detected capacity change from 0 to 128 [ 991.187258][T23830] loop0: detected capacity change from 0 to 128 [ 991.203901][T23832] loop1: detected capacity change from 0 to 128 [ 991.319953][T23834] loop3: detected capacity change from 0 to 512 [ 991.470689][T23837] loop1: detected capacity change from 0 to 128 [ 991.496357][T23838] loop0: detected capacity change from 0 to 256 [ 991.568612][T23813] loop2: detected capacity change from 0 to 32768 [ 991.664694][T23813] gfs2: fsid=syz:syz: Trying to join cluster "lock_dlm", "syz:syz" [ 991.706969][T23813] dlm: no local IP address has been set [ 991.712609][T23813] dlm: cannot start dlm midcomms -107 [ 991.717732][T23840] loop3: detected capacity change from 0 to 2048 [ 991.718231][T23813] gfs2: fsid=syz:syz: dlm_new_lockspace error -107 [ 991.834763][T23845] loop0: detected capacity change from 0 to 1024 [ 991.851981][T23844] loop1: detected capacity change from 0 to 512 [ 992.058884][T23847] loop2: detected capacity change from 0 to 64 [ 992.207049][T23851] loop3: detected capacity change from 0 to 256 [ 992.263778][T23853] loop0: detected capacity change from 0 to 2048 [ 992.425283][T23855] loop2: detected capacity change from 0 to 512 [ 992.482275][T23852] loop1: detected capacity change from 0 to 8192 [ 992.584441][T23859] loop0: detected capacity change from 0 to 128 [ 992.780725][T23861] loop3: detected capacity change from 0 to 2048 [ 992.856317][T23868] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 992.957164][T23867] loop2: detected capacity change from 0 to 2048 [ 993.045038][T23869] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 993.173408][T23866] loop0: detected capacity change from 0 to 8192 [ 993.306075][T23872] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 993.310455][T23863] loop1: detected capacity change from 0 to 16384 [ 993.435005][T23875] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 993.438736][T23871] loop3: detected capacity change from 0 to 4096 [ 993.747392][T23877] loop0: detected capacity change from 0 to 4096 [ 993.781696][T23877] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512). [ 993.957638][T23879] loop1: detected capacity change from 0 to 4096 [ 993.979441][T23879] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 994.277658][T23883] loop0: detected capacity change from 0 to 4096 [ 994.356014][T23874] loop2: detected capacity change from 0 to 32768 [ 994.501877][T23886] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 994.637757][T23885] loop1: detected capacity change from 0 to 8192 [ 994.699077][T23885] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 994.700049][T23888] loop0: detected capacity change from 0 to 4096 [ 995.172467][T23890] loop1: detected capacity change from 0 to 4096 [ 995.288728][T23890] ntfs: volume version 3.1. [ 995.427069][T23881] loop3: detected capacity change from 0 to 65536 [ 995.456133][T23894] loop0: detected capacity change from 0 to 4096 [ 995.623880][T23897] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 995.702955][T23894] ntfs: volume version 3.1. [ 996.056783][T23901] loop0: detected capacity change from 0 to 64 [ 996.417134][T23896] loop1: detected capacity change from 0 to 32768 [ 996.440388][T23896] (syz.1.7793,23896,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 996.471149][T23896] (syz.1.7793,23896,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 996.766177][T23899] loop3: detected capacity change from 0 to 32768 [ 996.793470][T23899] (syz.3.7794,23899,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 996.834658][T23899] (syz.3.7794,23899,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 997.208498][T23903] loop0: detected capacity change from 0 to 32768 [ 997.227145][T23903] (syz.0.7796,23903,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 997.258749][T23903] (syz.0.7796,23903,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 997.487643][T23905] loop1: detected capacity change from 0 to 32768 [ 997.519928][T23905] (syz.1.7797,23905,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 997.550999][T23905] (syz.1.7797,23905,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 998.045689][T23907] loop3: detected capacity change from 0 to 32768 [ 998.065154][T23907] (syz.3.7798,23907,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 998.100744][T23907] (syz.3.7798,23907,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 998.183743][T23909] loop0: detected capacity change from 0 to 32768 [ 998.238019][T23909] (syz.0.7799,23909,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 998.267927][T23909] (syz.0.7799,23909,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 999.236057][T23917] loop2: detected capacity change from 0 to 128 [ 999.276990][T23917] qnx6: wrong signature (magic) at position (0x2000) - will try alternative position (0x0000). [ 999.304378][T23917] qnx6: wrong signature (magic) in superblock #1. [ 999.310857][T23917] qnx6: unable to read the first superblock [ 999.893922][T23913] loop3: detected capacity change from 0 to 65536 [ 999.912424][T23913] (syz.3.7801,23913,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 999.946424][T23913] (syz.3.7801,23913,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 1000.062932][T23915] loop0: detected capacity change from 0 to 65536 [ 1000.081872][T23915] (syz.0.7802,23915,0):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 1000.128851][T23915] (syz.0.7802,23915,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 1000.266074][T23919] loop2: detected capacity change from 0 to 32768 [ 1000.293561][T23919] (syz.2.7804,23919,1):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options [ 1000.335838][T23919] (syz.2.7804,23919,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 1001.452803][T23921] loop3: detected capacity change from 0 to 32768 [ 1001.507486][T23921] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 1001.564820][T23921] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 1001.634386][T23921] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 1001.679124][ T5954] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 1001.697083][ T5954] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 1001.874524][ T5954] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 165ms [ 1001.897436][ T5954] gfs2: fsid=syz:syz.0: jid=0: Done [ 1001.924495][T23921] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 1003.222809][T23925] loop2: detected capacity change from 0 to 131072 [ 1003.254161][T23925] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1003.292544][T23925] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 1003.334322][T23925] REISERFS (device loop2): using ordered data mode [ 1003.377157][T23925] reiserfs: using flush barriers [ 1003.396998][T23923] loop0: detected capacity change from 0 to 131072 [ 1003.410240][T23925] REISERFS (device loop2): journal params: device loop2, size 15748, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1003.467562][T23925] REISERFS (device loop2): checking transaction log (loop2) [ 1003.480957][T23923] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1005.888843][T23942] loop1: detected capacity change from 0 to 8192 [ 1005.905827][T23942] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1005.930385][T23942] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 1005.942699][T23942] REISERFS (device loop1): using ordered data mode [ 1005.949548][T23942] reiserfs: using flush barriers [ 1005.967051][T23942] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1006.071801][T23942] REISERFS (device loop1): checking transaction log (loop1) [ 1006.250812][T23942] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[1 2 0(1) DIR], item_len 35, item_location 4029, free_space(entry_count) 2 [ 1006.285173][T23942] REISERFS error (device loop1): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 1006.312010][T23942] REISERFS (device loop1): Remounting filesystem read-only [ 1006.332552][T23942] REISERFS error (device loop1): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD] [ 1006.367985][T23942] REISERFS warning (device loop1): reiserfs_fill_super: corrupt root inode, run fsck [ 1006.768035][T23945] loop1: detected capacity change from 0 to 8 [ 1006.989302][T23947] loop1: detected capacity change from 0 to 24 [ 1007.034706][T23947] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1007.058630][T23947] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1007.304634][T23949] loop1: detected capacity change from 0 to 2048 [ 1007.394518][T23950] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1007.688435][T23952] loop1: detected capacity change from 0 to 8 [ 1008.082637][T23956] loop0: detected capacity change from 0 to 1 [ 1008.100493][T23956] syz.0.7817: attempt to access beyond end of device [ 1008.100493][T23956] loop0: rw=2048, sector=0, nr_sectors = 8 limit=1 [ 1008.164120][T23956] SQUASHFS error: Failed to read block 0x0: -5 [ 1008.188190][T23956] unable to read squashfs_super_block [ 1008.534349][T23960] loop0: detected capacity change from 0 to 4096 [ 1008.567581][T23960] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 1008.957465][T23925] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[1 2 0(1) DIR], item_len 35, item_location 4029, free_space(entry_count) 2 [ 1008.991237][T23925] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 15767. Fsck? [ 1009.020639][T23925] REISERFS (device loop2): Remounting filesystem read-only [ 1009.035494][T23925] REISERFS error (device loop2): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD] [ 1009.051631][T23925] REISERFS warning (device loop2): reiserfs_fill_super: corrupt root inode, run fsck [ 1011.542855][T23964] loop2: detected capacity change from 0 to 256 [ 1011.572671][T23964] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1011.608915][T23964] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 1011.620173][T23964] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 1011.627961][T23964] UDF-fs: Scanning with blocksize 512 failed [ 1011.644983][T23964] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1011.678487][T23964] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1011.864144][T23966] loop2: detected capacity change from 0 to 256 [ 1011.893808][T23966] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1011.925048][T23966] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=512, location=512 [ 1011.951129][T23966] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 1011.958821][T23966] UDF-fs: Scanning with blocksize 512 failed [ 1012.005172][T23966] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 1012.034466][T23966] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1012.372904][T23968] loop2: detected capacity change from 0 to 8192 [ 1012.428131][T23968] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1012.507607][T23968] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 1012.516878][T23968] REISERFS (device loop2): using ordered data mode [ 1012.576651][T23968] reiserfs: using flush barriers [ 1012.624999][T23968] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1012.669360][T23968] REISERFS (device loop2): checking transaction log (loop2) [ 1012.932378][T23968] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[1 2 0(1) DIR], item_len 35, item_location 4029, free_space(entry_count) 2 [ 1012.960707][T23973] loop3: detected capacity change from 0 to 128 [ 1012.977979][T23968] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 1012.999372][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.009441][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1013.025113][T23968] REISERFS (device loop2): Remounting filesystem read-only [ 1013.053227][T23973] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1013.073893][T23968] REISERFS error (device loop2): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD] [ 1013.087675][T23973] UDF-fs: Scanning with blocksize 512 failed [ 1013.105841][T23968] REISERFS warning (device loop2): reiserfs_fill_super: corrupt root inode, run fsck [ 1013.123494][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.160204][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1013.191305][T23973] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1013.198997][T23973] UDF-fs: Scanning with blocksize 1024 failed [ 1013.228140][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.268565][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1013.310087][T23973] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1013.324868][T23973] UDF-fs: Scanning with blocksize 2048 failed [ 1013.349166][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.381294][T23973] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1013.401674][T23973] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1013.410546][T23975] loop0: detected capacity change from 0 to 4096 [ 1013.417080][T23973] UDF-fs: Scanning with blocksize 4096 failed [ 1013.438156][T23973] UDF-fs: warning (device loop3): udf_fill_super: No partition found (1) [ 1013.460981][T23975] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 1013.482033][T23975] UDF-fs: Scanning with blocksize 512 failed [ 1013.530595][T23975] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1013.709732][T23979] loop3: detected capacity change from 0 to 256 [ 1013.726434][T23977] loop2: detected capacity change from 0 to 4096 [ 1013.755519][T23979] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.779017][T23977] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 1013.793971][T23977] UDF-fs: Scanning with blocksize 512 failed [ 1013.805008][T23979] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=512, location=512 [ 1013.830363][T23981] loop0: detected capacity change from 0 to 512 [ 1013.843450][T23979] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 1013.864122][T23979] UDF-fs: Scanning with blocksize 512 failed [ 1013.886385][T23981] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1013.893807][T23981] UDF-fs: Scanning with blocksize 512 failed [ 1013.905501][T23977] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1013.922434][T23979] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1013.933441][T23981] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1013.945684][T23981] UDF-fs: Scanning with blocksize 1024 failed [ 1013.983579][T23981] UDF-fs: warning (device loop0): udf_load_vrs: No VRS found [ 1013.986403][T23979] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1013.999469][T23981] UDF-fs: Scanning with blocksize 2048 failed [ 1014.018237][T23981] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 1014.121204][T23981] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1014.298580][T23985] loop3: detected capacity change from 0 to 128 [ 1014.405205][T23987] loop0: detected capacity change from 0 to 128 [ 1014.554034][T14545] kworker/dying (14545) used greatest stack depth: 15184 bytes left [ 1014.554386][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1014.579440][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1014.697656][T23983] loop2: detected capacity change from 0 to 16384 [ 1014.719478][T23989] loop3: detected capacity change from 0 to 16384 [ 1014.742118][T23983] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1014.749662][T23989] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 1014.752101][T23983] UDF-fs: Scanning with blocksize 512 failed [ 1014.763200][T23989] UDF-fs: Scanning with blocksize 512 failed [ 1014.768107][T23989] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 1014.790438][T23989] UDF-fs: Scanning with blocksize 1024 failed [ 1014.804646][T23991] loop0: detected capacity change from 0 to 2048 [ 1014.815758][T23983] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1014.835702][T23989] UDF-fs: warning (device loop3): udf_load_vrs: No VRS found [ 1014.836124][T23983] UDF-fs: Scanning with blocksize 1024 failed [ 1014.861325][T23989] UDF-fs: Scanning with blocksize 2048 failed [ 1014.899925][T23983] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found [ 1014.920430][T23989] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1014.944711][T23983] UDF-fs: Scanning with blocksize 2048 failed [ 1015.026873][T23983] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1015.121093][T23993] loop0: detected capacity change from 0 to 128 [ 1015.162527][T23995] loop3: detected capacity change from 0 to 128 [ 1015.550808][T24001] loop3: detected capacity change from 0 to 128 [ 1015.605637][T24003] loop2: detected capacity change from 0 to 512 [ 1015.656586][T23999] loop0: detected capacity change from 0 to 8192 [ 1015.964190][T24009] loop2: detected capacity change from 0 to 128 [ 1016.028628][T24005] loop3: detected capacity change from 0 to 8192 [ 1016.279006][T24013] loop0: detected capacity change from 0 to 128 [ 1016.387175][T24015] loop2: detected capacity change from 0 to 2048 [ 1016.422846][T24017] loop3: detected capacity change from 0 to 256 [ 1016.616933][T24020] loop0: detected capacity change from 0 to 512 [ 1016.787720][T24022] loop3: detected capacity change from 0 to 2048 [ 1016.803123][T24024] loop2: detected capacity change from 0 to 256 [ 1016.956943][T24027] loop1: detected capacity change from 0 to 2048 [ 1017.716030][T24028] loop0: detected capacity change from 0 to 32768 [ 1022.516176][T24045] loop3: detected capacity change from 0 to 65536 [ 1022.563328][T24047] loop1: detected capacity change from 0 to 32768 [ 1022.596966][T24045] XFS (loop3): Mounting V5 Filesystem d408de26-55fb-48ab-a8ab-aacedb20f9dd [ 1022.724933][T24047] XFS (loop1): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 1022.746475][T24045] XFS (loop3): Ending clean mount [ 1022.797420][ T5956] XFS (loop3): Unmounting Filesystem d408de26-55fb-48ab-a8ab-aacedb20f9dd [ 1022.959055][T24047] XFS (loop1): Ending clean mount [ 1023.123522][ T5961] XFS (loop1): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6 [ 1024.011629][T24067] loop3: detected capacity change from 0 to 32768 [ 1024.133929][T24067] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1024.374876][T24067] XFS (loop3): Ending clean mount [ 1024.459810][ T5956] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1025.088258][T24069] loop1: detected capacity change from 0 to 65536 [ 1025.164245][T24069] XFS (loop1): Mounting V5 Filesystem 4194cad6-cad4-4798-ac4c-c2118f686eb1 [ 1025.387909][T24069] XFS (loop1): Ending clean mount [ 1025.518102][ T5961] XFS (loop1): Unmounting Filesystem 4194cad6-cad4-4798-ac4c-c2118f686eb1 [ 1025.848515][T24079] loop3: detected capacity change from 0 to 32768 [ 1025.856085][T24089] loop2: detected capacity change from 0 to 4096 [ 1025.912415][T24089] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 1025.956346][T24089] UDF-fs: Scanning with blocksize 512 failed [ 1025.993300][T24079] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1026.012801][T24089] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1026.122817][T24079] XFS (loop3): Ending clean mount [ 1026.300080][ T5956] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1026.873486][T24115] ieee802154 phy0 wpan0: encryption failed: -22 [ 1026.941948][T24117] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1027.242754][T24107] loop2: detected capacity change from 0 to 32768 [ 1027.292730][T24107] loop2: p1 p9 p11 [ 1027.809669][ T9652] udevd[9652]: inotify_add_watch(7, /dev/loop2p9, 10) failed: No such file or directory [ 1027.813196][T20182] udevd[20182]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 1027.838856][ T9815] udevd[9815]: inotify_add_watch(7, /dev/loop2p11, 10) failed: No such file or directory [ 1028.023124][T24103] loop1: detected capacity change from 0 to 65536 [ 1028.085505][T24103] XFS (loop1): Mounting V5 Filesystem 3e7e19ec-4fa8-4c61-9f42-f376546f3591 [ 1028.322803][T24103] XFS (loop1): Ending clean mount [ 1028.366923][T24167] loop0: detected capacity change from 0 to 512 [ 1028.421283][ T5961] XFS (loop1): Unmounting Filesystem 3e7e19ec-4fa8-4c61-9f42-f376546f3591 [ 1028.447033][ T9815] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1028.622995][T24172] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7898'. [ 1028.826451][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 1028.826467][ T28] audit: type=1326 audit(2000528929.504:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24179 comm="syz.2.7901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1028.949491][ T28] audit: type=1326 audit(2000528929.541:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24179 comm="syz.2.7901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1029.021455][ T28] audit: type=1326 audit(2000528929.541:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24179 comm="syz.2.7901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1029.050157][T24188] loop2: detected capacity change from 0 to 8 [ 1029.123865][ T28] audit: type=1326 audit(2000528929.541:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24179 comm="syz.2.7901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1029.150072][T24192] netlink: 84 bytes leftover after parsing attributes in process `syz.3.7906'. [ 1029.192175][ T28] audit: type=1326 audit(2000528929.541:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24179 comm="syz.2.7901" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1029.216505][ T5954] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 1029.318861][T24194] bridge0: port 3(netdevsim0) entered blocking state [ 1029.337862][T24194] bridge0: port 3(netdevsim0) entered disabled state [ 1029.348346][T24194] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 1029.361082][T24194] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 1029.378124][T24194] bridge0: port 3(netdevsim0) entered blocking state [ 1029.385601][T24194] bridge0: port 3(netdevsim0) entered forwarding state [ 1029.451958][ T5954] usb 2-1: Using ep0 maxpacket: 8 [ 1029.463273][ T5954] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 1029.484730][ T5954] usb 2-1: config 0 has no interface number 0 [ 1029.491080][ T5954] usb 2-1: config 0 interface 1 has no altsetting 0 [ 1029.518890][ T5954] usb 2-1: New USB device found, idVendor=10c4, idProduct=eac1, bcdDevice=70.2f [ 1029.537280][ T5954] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1029.551704][ T5954] usb 2-1: Product: syz [ 1029.563903][ T5954] usb 2-1: Manufacturer: syz [ 1029.582255][ T5954] usb 2-1: SerialNumber: syz [ 1029.603092][ T5954] usb 2-1: config 0 descriptor?? [ 1029.832434][ T5954] i2c-cp2615: probe of 2-1:0.1 failed with error -22 [ 1029.896180][T24211] loop0: detected capacity change from 0 to 1024 [ 1029.952343][T24211] syz.0.7916: attempt to access beyond end of device [ 1029.952343][T24211] loop0: rw=0, sector=1835012, nr_sectors = 4 limit=1024 [ 1029.980122][T24211] Buffer I/O error on dev loop0, logical block 458753, async page read [ 1029.989231][T24211] hfsplus: unable to mark blocks free: error -5 [ 1029.995626][T24211] hfsplus: can't free extent [ 1030.050545][ T5954] usb 2-1: USB disconnect, device number 14 [ 1030.163094][T24219] netlink: 'syz.0.7920': attribute type 13 has an invalid length. [ 1030.863565][T24250] loop2: detected capacity change from 0 to 128 [ 1031.276231][T24268] loop0: detected capacity change from 0 to 64 [ 1031.314601][T24268] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1031.976483][T24286] loop0: detected capacity change from 0 to 16 [ 1032.017885][T24286] erofs: (device loop0): mounted with root inode @ nid 36. [ 1032.045051][T24286] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1032.084049][T24286] erofs: (device loop0): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 1032.111111][T24286] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1032.146142][T24286] erofs: (device loop0): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 1032.178938][T24286] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1032.202566][T24286] erofs: (device loop0): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 1032.227825][T24286] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1032.248512][T24290] loop3: detected capacity change from 0 to 64 [ 1032.248621][T24286] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 1032.284870][T24286] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 1032.307785][ T28] audit: type=1800 audit(2000528932.749:44): pid=24286 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7953" name="file2" dev="loop0" ino=89 res=0 errno=0 [ 1032.478385][T24264] loop2: detected capacity change from 0 to 65536 [ 1032.561244][T24264] XFS (loop2): Mounting V5 Filesystem e4654a66-62e5-4963-a81e-012d9d4871af [ 1032.633658][T24299] comedi comedi0: Minor 2048 is invalid! [ 1032.736282][T24264] XFS (loop2): Ending clean mount [ 1032.906508][ T5957] XFS (loop2): Unmounting Filesystem e4654a66-62e5-4963-a81e-012d9d4871af [ 1033.232265][T24274] loop1: detected capacity change from 0 to 65536 [ 1033.334043][T24274] XFS (loop1): Deprecated V4 format (crc=0) not supported by kernel. [ 1033.479334][T24321] netlink: 'syz.3.7965': attribute type 1 has an invalid length. [ 1033.520846][T24321] netlink: 146340 bytes leftover after parsing attributes in process `syz.3.7965'. [ 1034.053802][T24343] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1034.158570][T24347] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1035.078723][T24386] netlink: 40 bytes leftover after parsing attributes in process `syz.3.7994'. [ 1035.187498][T24390] bridge0: port 3(netdevsim0) entered blocking state [ 1035.212652][T24389] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1035.217121][T24390] bridge0: port 3(netdevsim0) entered disabled state [ 1035.241966][T24390] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 1035.254741][T24390] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 1035.277243][T24390] bridge0: port 3(netdevsim0) entered blocking state [ 1035.284192][T24390] bridge0: port 3(netdevsim0) entered forwarding state [ 1035.532223][T24405] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1035.556263][T24408] netlink: 'syz.3.8004': attribute type 1 has an invalid length. [ 1035.588301][T24408] netlink: 'syz.3.8004': attribute type 3 has an invalid length. [ 1035.596103][T24408] netlink: 224 bytes leftover after parsing attributes in process `syz.3.8004'. [ 1035.639637][T24408] NCSI netlink: No device for ifindex 0 [ 1035.710741][T24411] dvmrp0: entered allmulticast mode [ 1035.852831][T24417] loop2: detected capacity change from 0 to 16 [ 1035.915261][T24417] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1035.924081][T24419] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1036.001383][T24423] loop3: detected capacity change from 0 to 1024 [ 1036.095657][T24423] syz.3.8012: attempt to access beyond end of device [ 1036.095657][T24423] loop3: rw=0, sector=1835012, nr_sectors = 4 limit=1024 [ 1036.149647][T24423] Buffer I/O error on dev loop3, logical block 458753, async page read [ 1036.179328][T24423] hfsplus: unable to mark blocks free: error -5 [ 1036.213423][T24423] hfsplus: can't free extent [ 1036.440110][T24435] loop2: detected capacity change from 0 to 256 [ 1036.466116][T24435] FAT-fs (loop2): "posix" option is obsolete, not supported now [ 1036.961204][T24459] warning: `syz.2.8029' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 1036.995495][T24461] kAFS: unparsable volume name [ 1037.145390][T24464] loop1: detected capacity change from 0 to 1024 [ 1037.158244][T24467] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8033'. [ 1037.192115][T24467] netlink: 440 bytes leftover after parsing attributes in process `syz.2.8033'. [ 1037.244448][T24469] loop0: detected capacity change from 0 to 1024 [ 1037.248125][T24464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1037.266639][T24469] EXT4-fs: Ignoring removed mblk_io_submit option [ 1037.277500][T24469] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1037.322178][T24464] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #11: comm syz.1.8031: directory missing '.' [ 1037.347260][T24469] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1037.502767][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1037.565516][ T5961] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1037.593262][T24481] mac80211_hwsim hwsim3 wlan0: entered allmulticast mode [ 1037.648071][T24481] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 1038.098016][T24505] bond0: option ad_select: unable to set because the bond device is up [ 1038.111760][ T28] audit: type=1326 audit(2000528938.193:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24502 comm="syz.0.8050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1038.177320][ T28] audit: type=1326 audit(2000528938.193:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24502 comm="syz.0.8050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1038.199588][ C0] vkms_vblank_simulate: vblank timer overrun [ 1038.240729][ T28] audit: type=1326 audit(2000528938.193:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24502 comm="syz.0.8050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1038.336399][ T28] audit: type=1326 audit(2000528938.193:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24502 comm="syz.0.8050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1038.385864][T24516] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 1038.392592][ T28] audit: type=1326 audit(2000528938.193:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24502 comm="syz.0.8050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1038.414829][ C0] vkms_vblank_simulate: vblank timer overrun [ 1038.801400][T24529] dvmrp0: entered allmulticast mode [ 1038.821491][T24533] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 1038.940391][T24538] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 1038.957715][T24538] Cannot find add_set index 2 as target [ 1039.375517][T24553] loop1: detected capacity change from 0 to 256 [ 1039.761639][T24565] loop0: detected capacity change from 0 to 128 [ 1039.820077][T24565] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1039.887204][T24565] ext4 filesystem being mounted at /1979/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1040.038730][T24574] loop3: detected capacity change from 0 to 2048 [ 1040.071868][T24574] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1040.118217][ T5955] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1040.884720][T24602] loop3: detected capacity change from 0 to 16 [ 1040.909195][T24602] erofs: (device loop3): mounted with root inode @ nid 36. [ 1041.226571][T24612] netlink: 36 bytes leftover after parsing attributes in process `syz.3.8102'. [ 1041.262456][T24612] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8102'. [ 1041.331678][T24594] loop0: detected capacity change from 0 to 32768 [ 1041.398911][T24594] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1041.433448][T24622] loop1: detected capacity change from 0 to 512 [ 1041.442205][T24622] EXT4-fs: Ignoring removed nobh option [ 1041.498023][T24622] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1041.547883][T24627] loop2: detected capacity change from 0 to 2048 [ 1041.549691][T24622] ext4 filesystem being mounted at /2015/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1041.578300][ T5955] ocfs2: Unmounting device (7,0) on (node local) [ 1041.596266][T24627] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1041.654153][ T9652] udevd[9652]: incorrect nilfs2 checksum on /dev/loop2 [ 1041.658844][T24628] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1041.703611][ T6360] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 1041.723018][ T5961] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1041.893290][T24630] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 1041.934948][ T6360] usb 4-1: config 0 has an invalid interface number: 83 but max is 0 [ 1041.976722][ T6360] usb 4-1: config 0 has no interface number 0 [ 1042.012087][ T6360] usb 4-1: config 0 interface 83 altsetting 0 endpoint 0x8B has an invalid bInterval 101, changing to 7 [ 1042.072261][ T6360] usb 4-1: config 0 interface 83 altsetting 0 endpoint 0x8B has invalid maxpacket 26468, setting to 1024 [ 1042.094596][ T6360] usb 4-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61 [ 1042.118477][ T6360] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1042.138941][T24638] loop0: detected capacity change from 0 to 512 [ 1042.146671][ T6360] usb 4-1: config 0 descriptor?? [ 1042.173251][ T6360] ttusbir 4-1:0.83: cannot find expected altsetting [ 1042.193934][T24641] loop1: detected capacity change from 0 to 2048 [ 1042.206017][T24638] EXT4-fs (loop0): Test dummy encryption mode enabled [ 1042.212837][T24638] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 1042.244143][T24638] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.8112: bad orphan inode 131083 [ 1042.258899][T24641] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1042.288015][T24638] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1042.351057][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1042.427786][ T6360] usb 4-1: USB disconnect, device number 35 [ 1042.747988][T24659] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 1043.084335][T24673] netlink: 'syz.0.8128': attribute type 4 has an invalid length. [ 1043.128767][T24673] netlink: 152 bytes leftover after parsing attributes in process `syz.0.8128'. [ 1043.195594][T24673] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check. [ 1043.256457][T24683] loop3: detected capacity change from 0 to 64 [ 1043.418409][ T6360] usb 3-1: new high-speed USB device number 40 using dummy_hcd [ 1043.656061][ T6360] usb 3-1: Using ep0 maxpacket: 32 [ 1043.669163][ T6360] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1043.686234][ T6360] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1043.698297][ T6360] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 1043.724164][ T6360] usb 3-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 1043.733038][ T6360] usb 3-1: Product: syz [ 1043.743773][ T6360] usb 3-1: Manufacturer: syz [ 1043.753421][ T6360] hub 3-1:4.0: USB hub found [ 1043.826699][T24703] loop3: detected capacity change from 0 to 1024 [ 1043.868824][T24704] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode [ 1043.898188][T24703] hfsplus: keylen 65060 too large [ 1043.915008][T24704] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 1043.988828][ T6360] hub 3-1:4.0: 1 port detected [ 1044.215590][ T6360] hub 3-1:4.0: hub_hub_status failed (err = -71) [ 1044.222605][ T6360] hub 3-1:4.0: config failed, can't get hub status (err -71) [ 1044.301268][ T6360] usb 3-1: USB disconnect, device number 40 [ 1044.403928][T24722] netlink: 'syz.0.8150': attribute type 1 has an invalid length. [ 1044.551593][T24728] netlink: 'syz.0.8153': attribute type 1 has an invalid length. [ 1044.656945][T24732] netlink: 'syz.1.8155': attribute type 10 has an invalid length. [ 1044.678745][T24732] veth1_macvtap: left promiscuous mode [ 1044.773069][T24738] (null): rxe_set_mtu: Set mtu to 1024 [ 1044.967128][T24743] netlink: 'syz.2.8160': attribute type 6 has an invalid length. [ 1045.188501][T24750] loop2: detected capacity change from 0 to 764 [ 1045.401830][T24738] infiniband syz!: set active [ 1045.426073][T24738] infiniband syz!: added team_slave_0 [ 1045.559360][T24738] RDS/IB: syz!: added [ 1045.582807][T24738] smc: adding ib device syz! with port count 1 [ 1045.605283][T24738] smc: ib device syz! port 1 has pnetid [ 1045.722938][T17910] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 1045.835313][T24775] loop0: detected capacity change from 0 to 1024 [ 1045.848952][T24775] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 1045.926002][T17910] usb 3-1: Using ep0 maxpacket: 16 [ 1045.927626][T24775] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1045.938656][T17910] usb 3-1: config 0 has no interfaces? [ 1045.948969][ T788] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 1045.963758][T17910] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1045.979440][T17910] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1045.998486][T17910] usb 3-1: Product: syz [ 1046.009367][T17910] usb 3-1: Manufacturer: syz [ 1046.014106][T17910] usb 3-1: SerialNumber: syz [ 1046.035047][T17910] r8152-cfgselector 3-1: config 0 descriptor?? [ 1046.050447][T24775] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 1046.114313][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1046.163436][ T788] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1046.196625][ T788] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1046.225518][ T788] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 1046.234663][ T788] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1046.268334][ T788] usb 2-1: config 0 descriptor?? [ 1046.280305][T17910] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 1046.558832][ T6010] usb 3-1: USB disconnect, device number 41 [ 1046.951985][T24798] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8187'. [ 1047.064574][ T788] usbhid 2-1:0.0: can't add hid device: -71 [ 1047.081970][ T788] usbhid: probe of 2-1:0.0 failed with error -71 [ 1047.110688][ T788] usb 2-1: USB disconnect, device number 15 [ 1047.289305][T24812] dlm: no local IP address has been set [ 1047.305594][T24812] dlm: cannot start dlm midcomms -107 [ 1047.380449][ T6360] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 1047.546394][T24816] loop2: detected capacity change from 0 to 4096 [ 1047.565921][T24816] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1047.626481][ T6360] usb 1-1: Using ep0 maxpacket: 8 [ 1047.632689][T24818] loop1: detected capacity change from 0 to 4096 [ 1047.644037][T24818] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 1047.649996][ T6360] usb 1-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76 [ 1047.680397][ T6360] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1047.690177][ T6360] usb 1-1: Product: syz [ 1047.695626][ T6360] usb 1-1: Manufacturer: syz [ 1047.700276][ T6360] usb 1-1: SerialNumber: syz [ 1047.743771][ T6360] usb 1-1: config 0 descriptor?? [ 1047.749010][T24816] ntfs3: loop2: failed to convert "c46c" to iso8859-15 [ 1047.780623][ T6360] gspca_main: ALi m5602-2.14.0 probing 0402:5602 [ 1047.789550][T24808] loop3: detected capacity change from 0 to 32768 [ 1047.839751][T24808] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.8190 (24808) [ 1047.857019][T24818] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1047.908106][T24808] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1047.924720][T24818] ntfs3: loop1: ino=1f, "file2" failed to open parent directory r=5 to update [ 1047.952693][T24808] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1048.000139][T24808] BTRFS info (device loop3): enabling ssd optimizations [ 1048.007171][T24808] BTRFS info (device loop3): not using ssd optimizations [ 1048.064095][T24808] BTRFS info (device loop3): turning off barriers [ 1048.103107][T24808] BTRFS info (device loop3): using free space tree [ 1048.127360][T13229] ntfs3: loop1: ino=1f, failed to open parent directory r=5 to update [ 1048.261970][ T6360] gspca_m5602: Failed to find a sensor [ 1048.277838][ T6360] ALi m5602 1-1:0.0: ALi m5602 webcam failed [ 1048.289182][ T6360] usb 1-1: USB disconnect, device number 47 [ 1048.310112][T24836] tc_dump_action: action bad kind [ 1048.664165][ T5956] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1048.920952][T24853] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 1049.257496][T24864] qrtr: Invalid version 195 [ 1049.603891][T24878] netlink: 'syz.2.8216': attribute type 10 has an invalid length. [ 1049.630613][T24878] veth1_macvtap: left promiscuous mode [ 1050.089165][ T6360] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 1050.239893][ T28] audit: type=1326 audit(2000528949.530:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24904 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1050.263479][ T28] audit: type=1326 audit(2000528949.530:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24904 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1050.286279][ T28] audit: type=1326 audit(2000528949.530:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24904 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1050.338021][ T28] audit: type=1326 audit(2000528949.530:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24904 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1050.363911][ T6360] usb 2-1: Using ep0 maxpacket: 16 [ 1050.386894][ T6360] usb 2-1: config 0 has an invalid interface number: 8 but max is 0 [ 1050.396258][ T6360] usb 2-1: config 0 has no interface number 0 [ 1050.398935][ T28] audit: type=1326 audit(2000528949.530:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24904 comm="syz.2.8228" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce0838f749 code=0x7ffc0000 [ 1050.409719][ T6360] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 208, changing to 11 [ 1050.460082][ T6360] usb 2-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid maxpacket 25296, setting to 1024 [ 1050.485951][ T6360] usb 2-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 1050.498536][ T6360] usb 2-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 1050.517623][ T6360] usb 2-1: Product: syz [ 1050.526677][ T6360] usb 2-1: SerialNumber: syz [ 1050.558236][ T6360] usb 2-1: config 0 descriptor?? [ 1050.574095][ T6360] cm109 2-1:0.8: invalid payload size 1024, expected 4 [ 1050.599911][ T6360] input: CM109 USB driver as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.8/input/input83 [ 1050.637688][T24915] tmpfs: Bad value for 'mpol' [ 1050.980702][T24925] loop2: detected capacity change from 0 to 16 [ 1051.020425][T24925] erofs: (device loop2): mounted with root inode @ nid 36. [ 1051.071708][T24925] erofs: (device loop2): z_erofs_extent_lookback: bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1051.126374][T24925] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress -32 in[46, 4050] out[1851] [ 1051.161643][T24925] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 43 of nid 36 [ 1051.229255][ C1] cm109 2-1:0.8: cm109_urb_irq_callback: urb status -71 [ 1051.236465][ C1] cm109 2-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 1051.236750][ T6010] usb 2-1: USB disconnect, device number 16 [ 1051.243420][ C1] cm109 2-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 1051.358823][ T6010] cm109 2-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 1051.368832][T24932] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 1051.397885][T24933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8239'. [ 1051.437771][T24933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8239'. [ 1051.805288][T24947] usb usb5: usbfs: process 24947 (syz.3.8248) did not claim interface 0 before use [ 1052.119331][T24939] loop2: detected capacity change from 0 to 32768 [ 1052.132978][T24939] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.8242 (24939) [ 1052.189383][T24939] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1052.220589][T24939] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 1052.246260][T24939] BTRFS info (device loop2): enabling ssd optimizations [ 1052.281474][T24939] BTRFS info (device loop2): not using ssd optimizations [ 1052.301823][T24939] BTRFS info (device loop2): turning off barriers [ 1052.326361][T24939] BTRFS info (device loop2): using free space tree [ 1052.712909][ T5957] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1053.140054][T24998] loop0: detected capacity change from 0 to 4096 [ 1053.182131][T24998] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1053.306897][T24963] loop3: detected capacity change from 0 to 32768 [ 1053.406294][T24963] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1053.410067][T24998] ntfs3: loop0: failed to convert "c46c" to iso8859-15 [ 1053.670166][T24963] XFS (loop3): Ending clean mount [ 1053.769288][T25006] loop2: detected capacity change from 0 to 8192 [ 1053.801105][T25006] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1053.829899][T25006] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 1053.850831][T25006] REISERFS (device loop2): using ordered data mode [ 1053.857508][T25006] reiserfs: using flush barriers [ 1053.867168][T25006] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1053.892555][T25006] REISERFS (device loop2): checking transaction log (loop2) [ 1053.901782][ T5956] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1053.902748][T25006] REISERFS (device loop2): Using r5 hash to sort names [ 1053.968996][T25006] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 1054.867979][T25050] loop2: detected capacity change from 0 to 512 [ 1054.894380][T25050] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 1054.933815][T25050] EXT4-fs (loop2): 1 truncate cleaned up [ 1054.949966][T25050] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1054.953846][T25053] loop3: detected capacity change from 0 to 1024 [ 1055.190435][ T5957] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1056.013615][T25094] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8300'. [ 1056.039742][T25094] unsupported nlmsg_type 40 [ 1056.488392][ T6360] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 1056.505180][T25106] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8306'. [ 1056.693108][ T6360] usb 2-1: config 40 has an invalid interface number: 33 but max is 0 [ 1056.699182][T25096] loop0: detected capacity change from 0 to 40427 [ 1056.701550][ T6360] usb 2-1: config 40 has no interface number 0 [ 1056.720219][T25096] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 1056.728099][T25096] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1056.749961][T25096] F2FS-fs (loop0): build fault injection attr: rate: 18446, type: 0x7ffff [ 1056.755521][ T6360] usb 2-1: config 40 interface 33 has no altsetting 0 [ 1056.775562][ T6360] usb 2-1: New USB device found, idVendor=04cb, idProduct=0113, bcdDevice=25.0c [ 1056.787641][ T6360] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1056.796655][T25096] F2FS-fs (loop0): invalid crc value [ 1056.806578][ T6360] usb 2-1: Product: syz [ 1056.816510][T25096] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1056.824405][ T6360] usb 2-1: Manufacturer: syz [ 1056.850673][ T6360] usb 2-1: SerialNumber: syz [ 1056.977715][T25096] F2FS-fs (loop0): Start checkpoint disabled! [ 1057.004740][T25096] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1057.024222][T25096] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 1057.088922][ T6360] gspca_main: finepix-2.14.0 probing 04cb:0113 [ 1057.122304][ T6360] usb 2-1: USB disconnect, device number 17 [ 1057.394237][ T1121] kworker/u4:5: attempt to access beyond end of device [ 1057.394237][ T1121] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 1057.438211][ T1121] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 1057.449714][ T1121] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 1057.485875][T25117] loop2: detected capacity change from 0 to 512 [ 1057.497487][T25117] EXT4-fs: Ignoring removed bh option [ 1057.511415][T25119] loop3: detected capacity change from 0 to 512 [ 1057.526004][T25119] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1057.552469][T25117] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 1057.567910][T25117] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 1057.569777][T25119] EXT4-fs (loop3): 1 truncate cleaned up [ 1057.587217][T25117] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 1057.596762][T25119] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1057.615371][T25117] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006] [ 1057.633644][T25117] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1057.784504][ T5956] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1057.816417][T25117] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 1057.979320][ T5957] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1058.325445][T25142] netlink: 'syz.3.8321': attribute type 13 has an invalid length. [ 1058.882706][T25162] kAFS: unparsable volume name [ 1058.986564][T25167] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8333'. [ 1059.488912][T25148] loop3: detected capacity change from 0 to 32768 [ 1059.546575][T25148] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1059.741651][T25148] XFS (loop3): Ending clean mount [ 1059.783116][T25148] XFS (loop3): Quotacheck needed: Please wait. [ 1059.864472][T25148] XFS (loop3): Quotacheck: Done. [ 1059.920119][ T6010] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 1060.050141][ T5956] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1060.133859][ T6010] usb 2-1: Using ep0 maxpacket: 8 [ 1060.156667][ T6010] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 1060.187081][ T6010] usb 2-1: config 179 has no interface number 0 [ 1060.194071][ T6010] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 1060.228313][ T6010] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 1060.283481][ T6010] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9 [ 1060.317743][ T6010] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024 [ 1060.379761][ T6010] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1060.417856][T25176] loop2: detected capacity change from 0 to 40427 [ 1060.428062][ T6010] usb 2-1: config 179 interface 65 has no altsetting 0 [ 1060.445890][T25176] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 1060.451011][ T6010] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 1060.473605][T25176] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 1060.511671][T25176] F2FS-fs (loop2): build fault injection attr: rate: 18446, type: 0x7ffff [ 1060.514684][ T6010] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1060.561642][ T6010] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input84 [ 1060.593904][T25176] F2FS-fs (loop2): invalid crc value [ 1060.636637][ T5141] input input84: unable to receive magic message: -110 [ 1060.655290][T25176] F2FS-fs (loop2): Found nat_bits in checkpoint [ 1060.677901][ T5141] input input84: unable to receive magic message: -32 [ 1060.805459][T25212] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1060.839860][ T5141] input input84: unable to receive magic message: -32 [ 1060.855463][T25176] F2FS-fs (loop2): Start checkpoint disabled! [ 1060.888823][T25176] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 1060.915273][ T5141] input input84: unable to receive magic message: -32 [ 1060.919436][T25176] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 1060.951885][ T5141] input input84: unable to receive magic message: -32 [ 1060.991194][ T5141] input input84: unable to receive magic message: -32 [ 1061.158482][ T12] kworker/u4:1: attempt to access beyond end of device [ 1061.158482][ T12] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 1061.163093][ T6010] usb 2-1: USB disconnect, device number 18 [ 1061.163149][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1061.180457][ T12] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 1061.196890][ T6010] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 1061.201657][ T12] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 1061.404406][T25222] ALSA: mixer_oss: invalid OSS volume 'u' [ 1061.680885][T25232] loop3: detected capacity change from 0 to 1764 [ 1062.171777][T25252] loop0: detected capacity change from 0 to 256 [ 1062.208586][T25252] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1062.435318][T25261] netlink: zone id is out of range [ 1062.455043][T25262] loop1: detected capacity change from 0 to 256 [ 1062.472543][T25264] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8372'. [ 1062.503252][T25261] netlink: set zone limit has 4 unknown bytes [ 1062.522649][T25264] veth2: entered promiscuous mode [ 1062.542128][T25264] veth2: entered allmulticast mode [ 1062.593581][T25262] FAT-fs (loop1): Directory bread(block 64) failed [ 1062.605441][T25262] FAT-fs (loop1): Directory bread(block 65) failed [ 1062.644978][T25262] FAT-fs (loop1): Directory bread(block 66) failed [ 1062.674328][T25262] FAT-fs (loop1): Directory bread(block 67) failed [ 1062.685237][T25262] FAT-fs (loop1): Directory bread(block 68) failed [ 1062.704157][T25262] FAT-fs (loop1): Directory bread(block 69) failed [ 1062.725606][T25262] FAT-fs (loop1): Directory bread(block 70) failed [ 1062.743866][T25262] FAT-fs (loop1): Directory bread(block 71) failed [ 1062.750632][T25262] FAT-fs (loop1): Directory bread(block 72) failed [ 1062.760603][T25262] FAT-fs (loop1): Directory bread(block 73) failed [ 1062.933914][T25277] loop2: detected capacity change from 0 to 64 [ 1062.979829][T25277] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 1063.031009][ T5954] usb 4-1: new full-speed USB device number 36 using dummy_hcd [ 1063.247566][ T5954] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1063.258940][ T5954] usb 4-1: not running at top speed; connect to a high speed hub [ 1063.281149][ T5954] usb 4-1: config 17 has an invalid interface number: 8 but max is 1 [ 1063.317737][ T5954] usb 4-1: config 17 has 1 interface, different from the descriptor's value: 2 [ 1063.345860][ T5954] usb 4-1: config 17 has no interface number 0 [ 1063.380723][ T5954] usb 4-1: config 17 interface 8 altsetting 6 endpoint 0x3 has an invalid bInterval 0, changing to 4 [ 1063.403037][ T5954] usb 4-1: config 17 interface 8 altsetting 6 endpoint 0x3 has invalid maxpacket 12410, setting to 1023 [ 1063.426522][ T5954] usb 4-1: config 17 interface 8 has no altsetting 0 [ 1063.436107][ T5954] usb 4-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=2c.ff [ 1063.445850][ T5954] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1063.468521][ T5954] usb 4-1: Product: syz [ 1063.490401][ T5954] usb 4-1: Manufacturer: syz [ 1063.499684][ T5954] usb 4-1: SerialNumber: syz [ 1063.682483][T25300] loop2: detected capacity change from 0 to 16 [ 1063.707335][T25300] erofs: (device loop2): mounted with root inode @ nid 36. [ 1063.762569][T25300] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 32768 [ 1063.792642][ T5954] usb 4-1: selecting invalid altsetting 0 [ 1063.798433][ T5954] usb 4-1: 8:6 : no UAC_FORMAT_TYPE desc [ 1063.819719][T25300] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 32768 [ 1063.844174][ T5954] usb 4-1: selecting invalid altsetting 0 [ 1063.855135][T25300] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 32811 of nid 36 [ 1063.897531][ T5954] usb 4-1: USB disconnect, device number 36 [ 1063.957031][T20182] udevd[20182]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.8/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1064.813089][T25341] bridge0: port 1(bridge_slave_0) entered disabled state [ 1064.855044][T25341] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1065.070483][T25353] misc userio: Invalid payload size [ 1065.173257][T25357] openvswitch: netlink: Either Ethernet header or EtherType is required. [ 1065.373970][T25363] loop0: detected capacity change from 0 to 16 [ 1065.384820][T25363] erofs: (device loop0): mounted with root inode @ nid 36. [ 1065.421355][T25363] erofs: (device loop0): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 1065.462204][T25363] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535 [ 1065.479515][T25363] erofs: (device loop0): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 1065.511631][T25363] erofs: (device loop0): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 65535 [ 1065.539327][T25363] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 72 of nid 36 [ 1065.803246][T25374] netlink: 'syz.3.8427': attribute type 1 has an invalid length. [ 1065.809611][T25351] loop2: detected capacity change from 0 to 32768 [ 1065.827073][T25375] loop0: detected capacity change from 0 to 2048 [ 1065.852549][T25374] netlink: 161700 bytes leftover after parsing attributes in process `syz.3.8427'. [ 1065.895153][T25375] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1065.910839][T25351] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1066.267771][T25395] netlink: 52 bytes leftover after parsing attributes in process `syz.3.8434'. [ 1066.282691][T25351] XFS (loop2): Ending clean mount [ 1066.300919][T25351] XFS (loop2): Quotacheck needed: Please wait. [ 1066.414346][T25351] XFS (loop2): Quotacheck: Done. [ 1066.486171][T25407] loop3: detected capacity change from 0 to 64 [ 1066.497155][T25407] hfs: unable to locate alternate MDB [ 1066.502977][T25407] hfs: continuing without an alternate MDB [ 1066.722218][ T5957] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1067.108716][ T28] audit: type=1326 audit(2000528965.301:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.8451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1067.130983][ C0] vkms_vblank_simulate: vblank timer overrun [ 1067.190126][ T28] audit: type=1326 audit(2000528965.301:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.8451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1067.190171][ T28] audit: type=1326 audit(2000528965.311:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.8451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1067.190206][ T28] audit: type=1326 audit(2000528965.311:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.8451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1067.190240][ T28] audit: type=1326 audit(2000528965.311:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25426 comm="syz.3.8451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1067.417039][ T28] audit: type=1400 audit(2000528965.601:60): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=25436 comm="syz.2.8454" [ 1067.842762][T25457] SET target dimension over the limit! [ 1067.926346][T25431] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 1067.945691][T25431] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 1068.091666][T25467] mac80211_hwsim hwsim3 wlan0: entered promiscuous mode [ 1068.111564][T25467] mac80211_hwsim hwsim3 wlan0: left allmulticast mode [ 1068.418144][T25483] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode active-backup(1) [ 1068.622409][ T6360] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 1068.857453][ T6360] usb 4-1: Using ep0 maxpacket: 16 [ 1068.876258][ T6360] usb 4-1: config index 0 descriptor too short (expected 65, got 36) [ 1068.888679][ T6360] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1068.902499][ T6360] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1068.915849][ T6360] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1068.940016][ T6360] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 1068.955059][ T6360] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1068.964562][ T6010] usb 3-1: new high-speed USB device number 42 using dummy_hcd [ 1068.995655][ T6360] usb 4-1: config 0 descriptor?? [ 1069.021210][ T6360] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input85 [ 1069.063198][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.070294][T25511] loop1: detected capacity change from 0 to 256 [ 1069.077821][ T8] usb 1-1: new high-speed USB device number 48 using dummy_hcd [ 1069.086172][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.127183][ T9815] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.136156][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.154754][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.158739][ T6010] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1069.172916][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.188404][ T6010] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1069.198861][ T5141] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.210670][ T6010] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1069.251057][ T6010] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=67 [ 1069.270533][ T6010] usb 3-1: SerialNumber: syz [ 1069.283528][ T8] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1069.307323][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1069.318418][T25479] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1069.326532][ T8] usb 1-1: Product: syz [ 1069.336076][ T788] usb 4-1: USB disconnect, device number 37 [ 1069.346836][ T8] usb 1-1: Manufacturer: syz [ 1069.352571][ T8] usb 1-1: SerialNumber: syz [ 1069.380954][ T8] usb 1-1: config 0 descriptor?? [ 1069.480363][ T5967] Bluetooth: hci0: command 0x0c1a tx timeout [ 1069.540478][ T6010] usb 3-1: 0:2 : does not exist [ 1069.614097][T25522] loop1: detected capacity change from 0 to 1024 [ 1069.621180][ T6010] usb 3-1: USB disconnect, device number 42 [ 1069.624669][T25522] EXT4-fs: inline encryption not supported [ 1069.644929][ T8] usb-storage 1-1:0.0: USB Mass Storage device detected [ 1069.674477][T25522] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1069.754466][T20182] udevd[20182]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1069.775109][ T5961] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1069.902746][ T8] usb 1-1: USB disconnect, device number 48 [ 1070.128272][ T28] audit: type=1326 audit(2000528968.136:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25540 comm="syz.3.8503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1070.150977][ T5967] Bluetooth: hci1: command 0x0406 tx timeout [ 1070.162752][ T28] audit: type=1326 audit(2000528968.136:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25540 comm="syz.3.8503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1070.210101][ T28] audit: type=1326 audit(2000528968.136:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25540 comm="syz.3.8503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1070.232379][ C0] vkms_vblank_simulate: vblank timer overrun [ 1070.245408][ T28] audit: type=1326 audit(2000528968.136:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25540 comm="syz.3.8503" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1070.278162][ T787] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 1070.285856][T25545] netlink: 'syz.2.8505': attribute type 1 has an invalid length. [ 1070.294424][T25545] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8505'. [ 1070.399768][T25551] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8508'. [ 1070.498966][ T787] usb 2-1: config 220 has an invalid interface number: 76 but max is 2 [ 1070.536846][ T787] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1070.555222][ T787] usb 2-1: config 220 has no interface number 2 [ 1070.565910][ T787] usb 2-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1070.590495][ T787] usb 2-1: config 220 interface 0 has no altsetting 0 [ 1070.597313][ T787] usb 2-1: config 220 interface 76 has no altsetting 0 [ 1070.604670][ T787] usb 2-1: config 220 interface 1 has no altsetting 0 [ 1070.614741][ T787] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1070.624212][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1070.650435][ T787] usb 2-1: Product: syz [ 1070.658050][ T787] usb 2-1: Manufacturer: syz [ 1070.662685][ T787] usb 2-1: SerialNumber: syz [ 1070.928193][ T787] usb 2-1: selecting invalid altsetting 0 [ 1070.942970][ T787] usb 2-1: Found UVC 7.01 device syz (8086:0b07) [ 1070.949371][ T787] usb 2-1: No valid video chain found. [ 1070.992779][ T787] usb 2-1: selecting invalid altsetting 0 [ 1071.034741][ T787] usbtest: probe of 2-1:220.1 failed with error -22 [ 1071.037454][T25576] netlink: 'syz.3.8521': attribute type 13 has an invalid length. [ 1071.059022][ T787] usb 2-1: USB disconnect, device number 19 [ 1071.124489][T25576] gretap0: refused to change device tx_queue_len [ 1071.134111][T25576] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1071.514512][T25592] loop3: detected capacity change from 0 to 1764 [ 1071.865941][T25583] loop0: detected capacity change from 0 to 32768 [ 1071.867081][T25603] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8534'. [ 1072.054243][ T787] usb 3-1: new high-speed USB device number 43 using dummy_hcd [ 1072.090020][T25610] x_tables: duplicate underflow at hook 2 [ 1072.262685][T25615] ieee802154 phy0 wpan0: encryption failed: -90 [ 1072.294416][ T787] usb 3-1: config 0 has an invalid interface number: 199 but max is 1 [ 1072.314564][ T787] usb 3-1: config 0 has no interface number 1 [ 1072.335688][ T787] usb 3-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1072.374321][ T787] usb 3-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 1072.418883][ T787] usb 3-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 1072.438664][ T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1072.457609][ T787] usb 3-1: SerialNumber: syz [ 1072.472376][ T787] usb 3-1: config 0 descriptor?? [ 1072.494231][ T787] usb 3-1: Found UVC 0.00 device (0002:0000) [ 1072.501163][ T787] usb 3-1: No valid video chain found. [ 1072.688109][T25631] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8547'. [ 1072.715477][T25633] loop0: detected capacity change from 0 to 512 [ 1072.748832][T25633] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 1072.776600][ T8] usb 3-1: USB disconnect, device number 43 [ 1072.796545][T25633] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 1072.812228][T25633] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.8549: bg 0: block 248: padding at end of block bitmap is not set [ 1072.832065][T25633] __quota_error: 6 callbacks suppressed [ 1072.832081][T25633] Quota error (device loop0): write_blk: dquota write failed [ 1072.855770][T25633] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1072.914544][T25633] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.8549: Failed to acquire dquot type 1 [ 1072.972044][T25633] EXT4-fs (loop0): 1 truncate cleaned up [ 1073.000603][T25633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 1073.093638][T25633] Quota error (device loop0): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 1073.116432][T25633] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1073.130649][T25633] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.8549: Failed to acquire dquot type 1 [ 1073.215303][T25643] loop1: detected capacity change from 0 to 4096 [ 1073.235059][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 1073.264295][ T42] Quota error (device loop0): do_check_range: Getting block 0 out of range 1-5 [ 1073.283720][T25643] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1073.290362][ T42] EXT4-fs error (device loop0): ext4_release_dquot:6969: comm kworker/u4:2: Failed to release dquot type 1 [ 1073.303612][T25643] ntfs3: loop1: Failed to load $Extend (-22). [ 1073.308735][T25639] loop3: detected capacity change from 0 to 32768 [ 1073.310568][T25643] ntfs3: loop1: Failed to initialize $Extend. [ 1073.431696][T25639] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1073.636533][T25639] (syz.3.8551,25639,0):ocfs2_read_blocks:239 ERROR: status = -12 [ 1073.655740][T25649] loop2: detected capacity change from 0 to 4096 [ 1073.674916][T25639] (syz.3.8551,25639,0):ocfs2_search_one_group:1684 ERROR: status = -12 [ 1073.701172][T25639] (syz.3.8551,25639,0):ocfs2_claim_suballoc_bits:1920 ERROR: status = -12 [ 1073.709819][T25649] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1073.752963][T25639] (syz.3.8551,25639,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -12 [ 1073.788585][T25639] (syz.3.8551,25639,0):ocfs2_claim_new_inode:2216 ERROR: status = -12 [ 1073.875401][T25639] (syz.3.8551,25639,0):ocfs2_claim_new_inode:2231 ERROR: status = -12 [ 1073.898775][T25639] (syz.3.8551,25639,0):ocfs2_mknod_locked:639 ERROR: status = -12 [ 1073.924703][T25639] (syz.3.8551,25639,0):ocfs2_symlink:1944 ERROR: status = -12 [ 1073.951972][T25639] (syz.3.8551,25639,1):ocfs2_symlink:2068 ERROR: status = -12 [ 1074.027447][T25659] netlink: 'syz.1.8560': attribute type 2 has an invalid length. [ 1074.038966][T25659] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.8560'. [ 1074.092371][ T5956] ocfs2: Unmounting device (7,3) on (node local) [ 1074.552446][T25675] netlink: 'syz.1.8568': attribute type 5 has an invalid length. [ 1074.610139][T25677] loop0: detected capacity change from 0 to 64 [ 1074.617121][T25679] netlink: 'syz.2.8570': attribute type 1 has an invalid length. [ 1074.630332][T25679] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8570'. [ 1074.706150][T25683] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8572'. [ 1075.328987][T25711] netlink: 'syz.1.8586': attribute type 1 has an invalid length. [ 1075.382254][T25711] netlink: 'syz.1.8586': attribute type 2 has an invalid length. [ 1075.593245][T25723] loop1: detected capacity change from 0 to 1024 [ 1075.874148][T25733] netlink: 'syz.1.8597': attribute type 10 has an invalid length. [ 1075.883776][T25733] veth1_vlan: entered allmulticast mode [ 1075.917186][T25733] team0: Device veth1_vlan failed to register rx_handler [ 1076.567177][T25728] loop3: detected capacity change from 0 to 40427 [ 1076.601745][T25728] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 1076.623671][T25728] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1076.672236][T25728] F2FS-fs (loop3): invalid crc value [ 1076.690210][T25728] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1076.863793][T25728] F2FS-fs (loop3): Try to recover 1th superblock, ret: -30 [ 1076.912252][T25728] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1076.993436][T25769] loop0: detected capacity change from 0 to 64 [ 1077.593804][T25757] loop1: detected capacity change from 0 to 32768 [ 1077.680517][ T28] audit: type=1326 audit(2000528975.207:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25783 comm="syz.3.8622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1077.740002][T25757] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1077.743453][ T28] audit: type=1326 audit(2000528975.207:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25783 comm="syz.3.8622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1077.772996][ T28] audit: type=1326 audit(2000528975.245:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25783 comm="syz.3.8622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=453 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1077.797695][ T28] audit: type=1326 audit(2000528975.245:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25783 comm="syz.3.8622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1077.821381][ T28] audit: type=1326 audit(2000528975.245:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25783 comm="syz.3.8622" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa0ea18f749 code=0x7ffc0000 [ 1077.868485][T25757] (syz.1.8609,25757,1):ocfs2_read_blocks:239 ERROR: status = -12 [ 1077.899193][T25757] (syz.1.8609,25757,1):ocfs2_search_one_group:1684 ERROR: status = -12 [ 1077.934843][T25757] (syz.1.8609,25757,1):ocfs2_claim_suballoc_bits:1920 ERROR: status = -12 [ 1077.970595][T25757] (syz.1.8609,25757,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -12 [ 1078.018406][T25757] (syz.1.8609,25757,1):ocfs2_claim_new_inode:2216 ERROR: status = -12 [ 1078.051289][T25757] (syz.1.8609,25757,1):ocfs2_claim_new_inode:2231 ERROR: status = -12 [ 1078.083384][T25757] (syz.1.8609,25757,1):ocfs2_mknod_locked:639 ERROR: status = -12 [ 1078.091264][T25757] (syz.1.8609,25757,1):ocfs2_symlink:1944 ERROR: status = -12 [ 1078.122039][T25757] (syz.1.8609,25757,1):ocfs2_symlink:2068 ERROR: status = -12 [ 1078.194793][ T5961] ocfs2: Unmounting device (7,1) on (node local) [ 1078.230869][T25774] loop2: detected capacity change from 0 to 32768 [ 1078.390554][T25798] loop3: detected capacity change from 0 to 4096 [ 1078.478883][T25798] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1078.583180][T25798] ntfs3: loop3: Failed to load $Extend (-22). [ 1078.615419][T25806] loop1: detected capacity change from 0 to 512 [ 1078.623067][T25798] ntfs3: loop3: Failed to initialize $Extend. [ 1078.624816][T25806] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 1078.792058][T25806] EXT4-fs (loop1): 1 orphan inode deleted [ 1078.797849][T25806] EXT4-fs (loop1): 1 truncate cleaned up [ 1078.838462][T25806] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1078.983269][T25806] EXT4-fs error (device loop1): ext4_search_dir:1549: inode #2: block 13: comm syz.1.8629: bad entry in directory: inode out of bounds - offset=44, inode=1292, rec_len=16, size=1024 fake=0 [ 1079.043646][T25806] EXT4-fs (loop1): Remounting filesystem read-only [ 1079.153986][ T5961] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1079.580082][ T6360] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 1079.678217][T25845] netlink: 'syz.3.8650': attribute type 10 has an invalid length. [ 1079.689563][T25845] veth1_vlan: entered allmulticast mode [ 1079.719170][T25845] team0: Device veth1_vlan failed to register rx_handler [ 1079.748824][T25846] netlink: 'syz.0.8651': attribute type 10 has an invalid length. [ 1079.764796][T25846] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 1079.790186][T25846] team0: Port device virt_wifi0 added [ 1079.804653][ T6360] usb 2-1: Using ep0 maxpacket: 16 [ 1079.826256][ T6360] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1079.847098][ T6360] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1079.871580][ T6360] usb 2-1: Product: syz [ 1079.878149][T25850] bridge0: port 4(veth0_to_bridge) entered blocking state [ 1079.888903][T25850] bridge0: port 4(veth0_to_bridge) entered disabled state [ 1079.896237][ T6360] usb 2-1: Manufacturer: syz [ 1079.913500][ T6360] usb 2-1: SerialNumber: syz [ 1079.916446][T25850] veth0_to_bridge: entered allmulticast mode [ 1079.926475][ T6360] r8152-cfgselector 2-1: config 0 descriptor?? [ 1079.930988][T25850] veth0_to_bridge: entered promiscuous mode [ 1080.236964][ T1289] ieee802154 phy0 wpan0: encryption failed: -22 [ 1080.243872][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 1080.384213][ T6360] r8152-cfgselector 2-1: Unknown version 0x0000 [ 1080.414175][ T6360] r8152-cfgselector 2-1: USB disconnect, device number 20 [ 1080.771459][T25883] comedi comedi0: Minor 3 could not be opened [ 1080.902773][T25888] loop0: detected capacity change from 0 to 1024 [ 1081.155507][ T12] hfsplus: b-tree write err: -5, ino 4 [ 1081.171316][T25876] loop3: detected capacity change from 0 to 32768 [ 1081.631853][T25908] netlink: 'syz.1.8681': attribute type 10 has an invalid length. [ 1081.663106][T25908] net veth1_virt_wifi virt_wifi0: entered allmulticast mode [ 1081.664902][T25911] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8683'. [ 1081.692865][T25908] team0: Port device virt_wifi0 added [ 1081.904576][T25918] netlink: 32 bytes leftover after parsing attributes in process `syz.3.8686'. [ 1082.227028][T25902] loop0: detected capacity change from 0 to 32768 [ 1082.268440][T25902] (syz.0.8679,25902,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1082.309861][T25902] (syz.0.8679,25902,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1082.384707][T25902] JBD2: Ignoring recovery information on journal [ 1082.475102][T25902] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1082.607999][T25948] loop1: detected capacity change from 0 to 256 [ 1082.725392][T25948] FAT-fs (loop1): Directory bread(block 64) failed [ 1082.762996][T25948] FAT-fs (loop1): Directory bread(block 65) failed [ 1082.787269][T25948] FAT-fs (loop1): Directory bread(block 66) failed [ 1082.794001][T25948] FAT-fs (loop1): Directory bread(block 67) failed [ 1082.829338][T25948] FAT-fs (loop1): Directory bread(block 68) failed [ 1082.837535][T25948] FAT-fs (loop1): Directory bread(block 69) failed [ 1082.848132][T25948] FAT-fs (loop1): Directory bread(block 70) failed [ 1082.855215][T25948] FAT-fs (loop1): Directory bread(block 71) failed [ 1082.866316][T25948] FAT-fs (loop1): Directory bread(block 72) failed [ 1082.886490][ T5955] ocfs2: Unmounting device (7,0) on (node local) [ 1082.892987][T25948] FAT-fs (loop1): Directory bread(block 73) failed [ 1083.431018][T25970] loop2: detected capacity change from 0 to 8 [ 1083.438092][T25970] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1083.488609][T20182] udevd[20182]: incorrect cramfs checksum on /dev/loop2 [ 1083.499304][T25970] cramfs: Error -5 while decompressing! [ 1083.531793][T25970] cramfs: ffffffff96fde388(26)->ffff888054eb5000(4096) [ 1083.549968][T25970] cramfs: Error -3 while decompressing! [ 1083.558416][T20182] udevd[20182]: incorrect cramfs checksum on /dev/loop2 [ 1083.566527][T25970] cramfs: ffffffff96fde3a2(26)->ffff888057606000(4096) [ 1083.588148][T25970] cramfs: Error -3 while decompressing! [ 1083.598465][T25970] cramfs: ffffffff96fde3bc(16)->ffff888057607000(4096) [ 1083.622253][T25970] cramfs: Error -5 while decompressing! [ 1083.635263][T25970] cramfs: ffffffff96fde388(26)->ffff888054eb5000(4096) [ 1083.643242][T20182] udevd[20182]: incorrect cramfs checksum on /dev/loop2 [ 1083.963478][T25981] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8711'. [ 1083.983358][T25981] netlink: 'syz.2.8711': attribute type 5 has an invalid length. [ 1083.991330][T25981] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8711'. [ 1084.019773][T25981] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0 [ 1084.039661][T25981] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0 [ 1084.081191][T25981] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0 [ 1084.097340][T25981] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0 [ 1084.107389][T25981] geneve2: entered promiscuous mode [ 1084.113206][T25981] geneve2: entered allmulticast mode [ 1084.158755][T25972] loop0: detected capacity change from 0 to 32768 [ 1084.401548][T25990] usb usb8: usbfs: process 25990 (syz.2.8715) did not claim interface 0 before use [ 1084.689771][T26003] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8721'. [ 1085.113885][T26021] loop2: detected capacity change from 0 to 256 [ 1085.218067][T26023] netlink: 20 bytes leftover after parsing attributes in process `syz.3.8731'. [ 1085.244128][T26021] FAT-fs (loop2): Directory bread(block 64) failed [ 1085.256788][T26023] netlink: 36 bytes leftover after parsing attributes in process `syz.3.8731'. [ 1085.272645][T26021] FAT-fs (loop2): Directory bread(block 65) failed [ 1085.299740][T26021] FAT-fs (loop2): Directory bread(block 66) failed [ 1085.317724][T26021] FAT-fs (loop2): Directory bread(block 67) failed [ 1085.331692][T26021] FAT-fs (loop2): Directory bread(block 68) failed [ 1085.353426][T26021] FAT-fs (loop2): Directory bread(block 69) failed [ 1085.360140][T26021] FAT-fs (loop2): Directory bread(block 70) failed [ 1085.397699][T26021] FAT-fs (loop2): Directory bread(block 71) failed [ 1085.414630][T26021] FAT-fs (loop2): Directory bread(block 72) failed [ 1085.432242][T26021] FAT-fs (loop2): Directory bread(block 73) failed [ 1085.564672][T26027] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8733'. [ 1085.749797][T26012] loop1: detected capacity change from 0 to 32768 [ 1086.016346][T26033] Cannot find del_set index 2 as target [ 1086.454114][T26006] loop0: detected capacity change from 0 to 40435 [ 1086.456502][T26039] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1086.510730][T26006] F2FS-fs (loop0): Segment count (31) mismatch with total segments from devices (16843008) [ 1086.539624][T26006] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 1086.547918][T26006] F2FS-fs (loop0): build fault injection attr: rate: 14, type: 0x7ffff [ 1086.679650][T26049] loop2: detected capacity change from 0 to 128 [ 1086.744245][T26049] FAT-fs (loop2): Directory bread(block 162) failed [ 1086.788320][T26049] FAT-fs (loop2): Directory bread(block 163) failed [ 1086.806973][T26049] FAT-fs (loop2): Directory bread(block 164) failed [ 1086.842095][T26049] FAT-fs (loop2): Directory bread(block 165) failed [ 1086.882758][T26049] FAT-fs (loop2): Directory bread(block 166) failed [ 1086.909859][T26049] FAT-fs (loop2): Directory bread(block 167) failed [ 1086.929636][T26049] FAT-fs (loop2): Directory bread(block 168) failed [ 1086.967325][T26049] FAT-fs (loop2): Directory bread(block 169) failed [ 1087.016868][T26049] FAT-fs (loop2): Directory bread(block 162) failed [ 1087.047122][T26049] FAT-fs (loop2): Directory bread(block 163) failed [ 1087.098156][T26049] syz.2.8743: attempt to access beyond end of device [ 1087.098156][T26049] loop2: rw=3, sector=226, nr_sectors = 6 limit=128 [ 1087.191751][T26049] syz.2.8743: attempt to access beyond end of device [ 1087.191751][T26049] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 1087.329492][T26066] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8751'. [ 1088.157281][T26105] netlink: 132 bytes leftover after parsing attributes in process `syz.3.8770'. [ 1088.311117][T26111] netlink: 44 bytes leftover after parsing attributes in process `syz.0.8772'. [ 1088.492781][T26122] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1088.886972][T26135] loop3: detected capacity change from 0 to 4096 [ 1088.986606][T26135] ntfs: volume version 3.1. [ 1089.541514][T26167] netlink: 'syz.0.8800': attribute type 46 has an invalid length. [ 1089.549971][T26167] netlink: 'syz.0.8800': attribute type 19 has an invalid length. [ 1089.579494][T26168] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8799'. [ 1089.602024][T26168] netlink: 132 bytes leftover after parsing attributes in process `syz.3.8799'. [ 1089.636406][T26168] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check. [ 1089.643534][T26163] loop1: detected capacity change from 0 to 4096 [ 1090.369941][T26195] loop1: detected capacity change from 0 to 2048 [ 1090.481821][T26195] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1090.723320][T26208] loop1: detected capacity change from 0 to 256 [ 1090.769378][T26208] MINIX-fs: mounting file system with errors, running fsck is recommended [ 1090.930428][T26186] loop0: detected capacity change from 0 to 32768 [ 1090.938433][T26210] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1091.235866][T26221] netlink: 196 bytes leftover after parsing attributes in process `syz.0.8825'. [ 1091.596676][T26232] binder: 26231:26232 ioctl c0046209 0 returned -22 [ 1092.013183][T25514] usb 1-1: new full-speed USB device number 49 using dummy_hcd [ 1092.228988][T25514] usb 1-1: config 1 has an invalid interface number: 105 but max is 0 [ 1092.248212][T25514] usb 1-1: config 1 has no interface number 0 [ 1092.291192][T25514] usb 1-1: config 1 interface 105 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1092.305892][T25514] usb 1-1: config 1 interface 105 has no altsetting 0 [ 1092.319129][T25514] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 1092.330821][T25514] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1092.352435][T25514] usb 1-1: Product: syz [ 1092.361355][T25514] usb 1-1: Manufacturer: syz [ 1092.382347][T25514] usb 1-1: SerialNumber: syz [ 1092.453964][T26266] loop1: detected capacity change from 0 to 4096 [ 1092.501586][T26266] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1092.582692][T26270] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1092.623761][T26266] EXT4-fs error (device loop1): ext4_empty_dir:3154: inode #12: block 80: comm syz.1.8846: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 1092.657678][T25514] aqc111: probe of 1-1:1.105 failed with error -22 [ 1092.691187][T26266] EXT4-fs (loop1): Remounting filesystem read-only [ 1092.710297][T26266] EXT4-fs warning (device loop1): ext4_empty_dir:3156: inode #12: comm syz.1.8846: directory missing '..' [ 1092.806900][ T5961] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1092.878742][T25514] usb 1-1: USB disconnect, device number 49 [ 1093.034811][T26280] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1093.418037][T26295] netlink: 'syz.2.8860': attribute type 10 has an invalid length. [ 1094.215986][T26334] netlink: 12 bytes leftover after parsing attributes in process `syz.1.8880'. [ 1094.225546][T26334] netlink: 60 bytes leftover after parsing attributes in process `syz.1.8880'. [ 1094.245854][T26335] sctp: [Deprecated]: syz.2.8879 (pid 26335) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1094.245854][T26335] Use struct sctp_sack_info instead [ 1094.312634][ T6360] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 1094.371874][T26339] loop2: detected capacity change from 0 to 2048 [ 1094.404784][T26339] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1094.482882][ T5954] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 1094.518270][ T6360] usb 4-1: Using ep0 maxpacket: 32 [ 1094.541388][ T6360] usb 4-1: config 0 has an invalid interface number: 228 but max is 0 [ 1094.558170][ T6360] usb 4-1: config 0 has no interface number 0 [ 1094.567797][ T6360] usb 4-1: config 0 interface 228 has no altsetting 0 [ 1094.597642][ T6360] usb 4-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice= 0.02 [ 1094.615400][ T6360] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1094.635836][ T6360] usb 4-1: Product: syz [ 1094.640062][ T6360] usb 4-1: Manufacturer: syz [ 1094.664273][ T6360] usb 4-1: SerialNumber: syz [ 1094.684469][ T6360] usb 4-1: config 0 descriptor?? [ 1094.752489][ T5954] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1094.771911][ T5954] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1094.781112][ T5954] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1094.826596][ T5954] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1094.959506][T26357] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 1095.018875][ T6360] net1080 4-1:0.228 usb0: register 'net1080' at usb-dummy_hcd.3-1, NetChip TurboCONNECT, 92:a3:3d:9a:ac:d9 [ 1095.120886][T26363] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8893'. [ 1095.237518][ T6010] usb 4-1: USB disconnect, device number 38 [ 1095.253754][ T6010] net1080 4-1:0.228 usb0: unregister 'net1080' usb-dummy_hcd.3-1, NetChip TurboCONNECT [ 1095.594608][ T6360] usb 2-1: new full-speed USB device number 21 using dummy_hcd [ 1095.810795][ T6360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10 [ 1095.840528][ T6360] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 1095.856540][ T6360] usb 2-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9 [ 1095.873187][ T6360] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1095.881228][ T6360] usb 2-1: Product: syz [ 1095.886916][ T6360] usb 2-1: Manufacturer: syz [ 1095.892189][ T6360] usb 2-1: SerialNumber: syz [ 1095.901185][ T6360] usb 2-1: config 0 descriptor?? [ 1095.927814][ T6360] input: KB Gear Tablet as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input86 [ 1095.984482][ T5954] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 1096.009466][ T5954] stv0680 1-1:4.0: STV(e): camera ping failed!! [ 1096.022478][ T5954] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1096.030688][ T5954] stv0680 1-1:4.0: last error: 0, command = 0x0 [ 1096.072435][ T5954] usb 1-1: USB disconnect, device number 50 [ 1096.209886][ T6360] usb 2-1: USB disconnect, device number 21 [ 1096.503457][ T6010] usb 3-1: new high-speed USB device number 44 using dummy_hcd [ 1096.699379][ T6010] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1096.727707][ T6010] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1096.736237][ T6010] usb 3-1: Product: syz [ 1096.755798][ T6010] usb 3-1: Manufacturer: syz [ 1096.771601][ T6010] usb 3-1: SerialNumber: syz [ 1096.786495][ T6010] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1096.811856][T25514] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1097.235783][T26438] loop3: detected capacity change from 0 to 4096 [ 1097.248916][T26438] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 1097.341472][ T6010] usb 3-1: USB disconnect, device number 44 [ 1097.359482][T26447] binder: 26446:26447 ioctl c0046209 0 returned -22 [ 1097.947250][T25514] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1097.954725][T25514] ath9k_htc: Failed to initialize the device [ 1097.998133][ T6010] usb 3-1: ath9k_htc: USB layer deinitialized [ 1098.066616][T26475] binder: 26474:26475 ioctl c0046209 0 returned -22 [ 1098.442056][ T28] audit: type=1326 audit(2000528994.617:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26488 comm="syz.1.8944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1098.512626][ T28] audit: type=1326 audit(2000528994.617:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26488 comm="syz.1.8944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1098.598614][ T28] audit: type=1326 audit(2000528994.617:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26488 comm="syz.1.8944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1098.694059][ T28] audit: type=1326 audit(2000528994.617:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26488 comm="syz.1.8944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1098.742905][T26502] (unnamed net_device) (uninitialized): option arp_interval: invalid value (18446744073709551615) [ 1098.770103][ T28] audit: type=1326 audit(2000528994.617:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26488 comm="syz.1.8944" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1098.799817][T26502] (unnamed net_device) (uninitialized): option arp_interval: allowed values 0 - 2147483647 [ 1099.247415][T26485] loop3: detected capacity change from 0 to 32768 [ 1099.296674][T26485] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.8942 (26485) [ 1099.344903][T26485] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1099.379080][T26485] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1099.387814][T26485] BTRFS info (device loop3): using free space tree [ 1099.390791][T26524] program syz.2.8949 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1099.571561][T26485] BTRFS info (device loop3): enabling ssd optimizations [ 1099.578615][T26485] BTRFS info (device loop3): auto enabling async discard [ 1099.709365][T26550] netlink: 4 bytes leftover after parsing attributes in process `syz.2.8953'. [ 1099.957104][ T5956] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1100.270914][T20182] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop3 scanned by udevd (20182) [ 1100.672740][ T6010] usb 3-1: new high-speed USB device number 45 using dummy_hcd [ 1100.897520][T26588] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1100.899113][ T6010] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1100.929336][ T6010] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1100.949300][ T6010] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1100.978530][ T6010] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1100.991134][T26563] loop1: detected capacity change from 0 to 32768 [ 1101.033311][T26593] loop3: detected capacity change from 0 to 164 [ 1101.081244][T26593] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1101.104698][T26563] [ 1101.104698][T26563] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1101.104698][T26563] [ 1101.167516][T26593] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1101.235012][T26593] Symlink component flag not implemented [ 1101.247372][T26593] Symlink component flag not implemented [ 1101.260015][ T5961] [ 1101.260015][ T5961] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1101.260015][ T5961] [ 1101.282481][T26593] Symlink component flag not implemented (7) [ 1101.303902][T26593] Symlink component flag not implemented (116) [ 1101.318909][ T5961] [ 1101.318909][ T5961] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1101.318909][ T5961] [ 1101.792875][T26613] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8973'. [ 1101.814014][T26613] netlink: 30 bytes leftover after parsing attributes in process `syz.3.8973'. [ 1102.131632][ T6010] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 1102.166867][T26628] loop1: detected capacity change from 0 to 2048 [ 1102.184859][ T6010] stv0680 3-1:4.0: STV(e): camera ping failed!! [ 1102.214706][ T6010] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1102.234791][ T6010] stv0680 3-1:4.0: last error: 0, command = 0x0 [ 1102.245745][T26628] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1102.266055][ T6010] usb 3-1: USB disconnect, device number 45 [ 1102.935460][T26649] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.8989'. [ 1103.409167][T26664] loop0: detected capacity change from 0 to 16 [ 1103.423788][T26664] erofs: (device loop0): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 125300) [ 1103.506989][T20182] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1103.558860][T26651] loop1: detected capacity change from 0 to 32768 [ 1103.602026][ T8] usb 3-1: new high-speed USB device number 46 using dummy_hcd [ 1103.609928][T26651] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 1103.781276][T26670] netlink: 14 bytes leftover after parsing attributes in process `syz.3.8998'. [ 1103.783280][ T9652] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 1103.837494][ T8] usb 3-1: Using ep0 maxpacket: 16 [ 1103.845842][T26672] netlink: 268 bytes leftover after parsing attributes in process `syz.1.8999'. [ 1103.845847][ T8] usb 3-1: config 0 has an invalid interface number: 105 but max is 0 [ 1103.845869][ T8] usb 3-1: config 0 descriptor has 1 excess byte, ignoring [ 1103.861504][T26672] unsupported nla_type 65024 [ 1103.891577][ T8] usb 3-1: config 0 has no interface number 0 [ 1103.911010][ T8] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1103.944281][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1103.955103][ T8] usb 3-1: Product: syz [ 1103.959316][ T8] usb 3-1: Manufacturer: syz [ 1103.975255][ T8] usb 3-1: SerialNumber: syz [ 1104.004229][ T8] usb 3-1: config 0 descriptor?? [ 1104.022541][ T8] usb 3-1: Found UVC 0.00 device syz (046d:08f3) [ 1104.028972][ T8] usb 3-1: No valid video chain found. [ 1104.229824][T26682] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 1104.238852][T26682] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1104.342606][ T8] usb 3-1: USB disconnect, device number 46 [ 1104.834261][T26700] IPv6: NLM_F_CREATE should be specified when creating new route [ 1105.036370][T26706] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9016'. [ 1105.247680][T26713] ipt_ECN: cannot use operation on non-tcp rule [ 1105.434304][T26725] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1106.081904][ T28] audit: type=1326 audit(2000529001.763:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.164054][ T28] audit: type=1326 audit(2000529001.791:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.220750][T26760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9043'. [ 1106.262401][ T28] audit: type=1326 audit(2000529001.791:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.291637][T26760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.9043'. [ 1106.325007][ T28] audit: type=1326 audit(2000529001.791:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.349893][ T28] audit: type=1326 audit(2000529001.791:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.392521][ T28] audit: type=1326 audit(2000529001.791:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.451070][ T28] audit: type=1326 audit(2000529001.791:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.526276][ T28] audit: type=1326 audit(2000529001.791:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.559368][T26771] loop1: detected capacity change from 0 to 1024 [ 1106.585727][ T28] audit: type=1326 audit(2000529001.791:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26752 comm="syz.0.9040" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fdcb978f749 code=0x7ffc0000 [ 1106.738589][T26778] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 1107.130143][ T28] audit: type=1326 audit(2000529002.745:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26794 comm="syz.1.9060" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19fbd8f749 code=0x7ffc0000 [ 1107.188876][T26796] loop2: detected capacity change from 0 to 2048 [ 1107.237983][T26796] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1107.363116][ T5957] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1107.543164][T26780] loop3: detected capacity change from 0 to 32768 [ 1107.551694][T26808] netlink: 'syz.1.9066': attribute type 1 has an invalid length. [ 1107.637695][T26780] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1107.933588][T26780] XFS (loop3): Ending clean mount [ 1108.055717][ T5956] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1108.440644][T26811] loop0: detected capacity change from 0 to 40427 [ 1108.491355][T26811] F2FS-fs (loop0): invalid crc value [ 1108.532106][T26811] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1108.654728][T26811] F2FS-fs (loop0): Start checkpoint disabled! [ 1108.669246][T26811] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 1109.050996][T26856] loop1: detected capacity change from 0 to 136 [ 1109.122726][T26856] Symlink component flag not implemented [ 1109.988516][T26897] netlink: 72 bytes leftover after parsing attributes in process `syz.2.9104'. [ 1110.014726][T26897] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9104'. [ 1110.026919][T26897] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9104'. [ 1110.178049][T26904] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 1110.480359][T26919] netlink: 'syz.1.9113': attribute type 3 has an invalid length. [ 1110.511269][T26921] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9116'. [ 1110.532096][T26921] netlink: 108 bytes leftover after parsing attributes in process `syz.0.9116'. [ 1110.904308][T26937] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9124'. [ 1111.165982][T26950] loop2: detected capacity change from 0 to 128 [ 1111.178054][T26950] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1111.212884][T26950] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1111.249517][T26950] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1111.270721][T26950] ext4 filesystem being mounted at /2143/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1111.352881][T26958] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9134'. [ 1111.377993][T26958] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9134'. [ 1111.453701][ T5957] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1112.186759][T26991] xt_recent: hitcount (4294967293) is larger than allowed maximum (255) [ 1112.361927][T26999] binder: BC_ATTEMPT_ACQUIRE not supported [ 1112.367833][T26999] binder: 26998:26999 ioctl c0306201 2000000003c0 returned -22 [ 1112.408332][T27001] netlink: 'syz.2.9154': attribute type 12 has an invalid length. [ 1112.440527][T27003] __nla_validate_parse: 5 callbacks suppressed [ 1112.440544][T27003] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9156'. [ 1112.594626][T27009] loop1: detected capacity change from 0 to 64 [ 1113.232803][T27040] loop2: detected capacity change from 0 to 256 [ 1113.480323][T27049] netlink: 'syz.3.9178': attribute type 21 has an invalid length. [ 1113.488266][T27049] netlink: 132 bytes leftover after parsing attributes in process `syz.3.9178'. [ 1113.689290][T27058] loop0: detected capacity change from 0 to 512 [ 1113.711078][T27058] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1113.765397][T27058] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1113.791210][T27058] ext4 filesystem being mounted at /2248/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1114.058727][ T5955] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1114.189171][T27078] geneve2: entered allmulticast mode [ 1114.234415][T27084] loop1: detected capacity change from 0 to 128 [ 1114.247489][T27084] EXT4-fs (loop1): Test dummy encryption mode enabled [ 1114.296130][T27084] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 1114.339523][T27084] ext4 filesystem being mounted at /2298/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 1114.393138][T27088] loop2: detected capacity change from 0 to 512 [ 1114.432441][T27092] netlink: 52 bytes leftover after parsing attributes in process `syz.0.9196'. [ 1114.487861][ T5961] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1114.498374][T27088] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1114.695451][T27101] bridge1: entered promiscuous mode [ 1114.741105][ T5957] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1114.834727][T27105] loop3: detected capacity change from 0 to 8 [ 1114.881385][ T8] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1114.884176][T27105] SQUASHFS error: xz decompression failed, data probably corrupt [ 1114.903905][T27105] SQUASHFS error: Failed to read block 0x108: -5 [ 1114.910872][T27105] SQUASHFS error: Unable to read metadata cache entry [106] [ 1114.921521][T27105] SQUASHFS error: Unable to read inode 0x11f [ 1114.933076][T27108] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9202'. [ 1115.094652][ T8] usb 2-1: Using ep0 maxpacket: 8 [ 1115.118503][ T8] usb 2-1: config 179 has an invalid interface number: 65 but max is 0 [ 1115.142041][ T8] usb 2-1: config 179 has no interface number 0 [ 1115.158457][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 1115.170173][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 1115.183345][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9 [ 1115.198931][ T8] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024 [ 1115.224180][ T8] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1115.248623][ T8] usb 2-1: config 179 interface 65 has no altsetting 0 [ 1115.264176][ T8] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 1115.284276][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1115.318280][ T8] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input88 [ 1115.384747][ T5141] input input88: unable to receive magic message: -110 [ 1115.436385][ T5954] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 1115.605808][T27125] loop0: detected capacity change from 0 to 256 [ 1115.624110][ T5141] input input88: unable to receive magic message: -32 [ 1115.659135][ T5954] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1115.659346][ T5141] input input88: unable to receive magic message: -32 [ 1115.679688][ T5954] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1115.697961][T27125] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d) [ 1115.718733][ T5954] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid maxpacket 33119, setting to 1024 [ 1115.745238][ T5954] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 1115.757277][T25514] usb 2-1: USB disconnect, device number 22 [ 1115.757333][ C0] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1115.780883][ T5954] usb 4-1: New USB device found, idVendor=2040, idProduct=2000, bcdDevice=65.72 [ 1115.792956][ T5954] usb 4-1: New USB device strings: Mfr=151, Product=0, SerialNumber=0 [ 1115.802557][T25514] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 1115.837868][ T5954] usb 4-1: Manufacturer: syz [ 1115.849304][ T5954] usb 4-1: config 0 descriptor?? [ 1115.863576][T27105] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 1115.873621][ T5954] smsusb:smsusb_probe: board id=9, interface number 0 [ 1115.915846][ T5954] smsusb:siano_media_device_register: media controller created [ 1115.942073][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.949456][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.956872][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.964214][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.971560][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.978898][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.989297][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1115.996629][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.003948][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.011259][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.018549][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.025831][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.035023][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.042357][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.049670][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.077909][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.077988][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.078052][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.078113][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.078174][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.078233][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.088017][T27129] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9214'. [ 1116.095295][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.139230][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.146553][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.153858][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.161173][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.168493][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.176305][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.183606][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.190906][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.198198][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.205572][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.212832][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.220305][ T5954] smsmdtv:smscore_sendrequest_and_wait: sendrequest returned error -22 [ 1116.228940][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.229045][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.229136][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.229223][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.258339][ T5954] smsmdtv:smscore_set_device_mode: mode detect failed -22 [ 1116.265534][ T5954] smsmdtv:smscore_start_device: set device mode failed , rc -22 [ 1116.273480][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.280797][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.288109][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.295430][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.302724][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.310033][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.317342][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.324643][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.332476][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.339917][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.347212][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.354515][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.361813][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.369204][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.376510][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.383797][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.391056][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.398295][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.406014][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.413326][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.420958][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.428253][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.435539][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.442839][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.450125][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.457423][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.464716][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.472080][ T5954] smsusb:smsusb_init_device: smscore_start_device(...) failed [ 1116.492915][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.500309][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.526618][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.534021][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.541370][ C1] smsusb:smsusb_onresponse: error, urb status -71, 0 bytes [ 1116.551766][ T5954] ------------[ cut here ]------------ [ 1116.557272][ T5954] ODEBUG: free active (active state 0) object: ffff88803062a8c8 object type: work_struct hint: do_submit_urb+0x0/0x360 [ 1116.570194][ T5954] WARNING: CPU: 1 PID: 5954 at lib/debugobjects.c:518 debug_check_no_obj_freed+0x446/0x540 [ 1116.580689][ T5954] Modules linked in: [ 1116.584614][ T5954] CPU: 1 PID: 5954 Comm: kworker/1:3 Not tainted syzkaller #0 [ 1116.592560][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1116.603118][ T5954] Workqueue: usb_hub_wq hub_event [ 1116.608186][ T5954] RIP: 0010:debug_check_no_obj_freed+0x446/0x540 [ 1116.615058][ T5954] Code: 4c 8b 4d 00 48 c7 c7 00 79 fc 8a 48 c7 c6 60 75 fc 8a 48 c7 c2 80 7a fc 8a 8b 0c 24 4d 89 f8 41 55 e8 9e b9 29 fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 a3 5f 24 [ 1116.635513][ T5954] RSP: 0018:ffffc9000475eb38 EFLAGS: 00010282 [ 1116.641620][ T5954] RAX: 80eb0fdf4af83a00 RBX: ffffffff9717a3e0 RCX: 0000000000100000 [ 1116.649854][ T5954] RDX: ffffc90017f5a000 RSI: 0000000000083e68 RDI: 0000000000083e69 [ 1116.657925][ T5954] RBP: ffffffff8aa9ea40 R08: ffffc9000475e727 R09: 1ffff920008ebce4 [ 1116.666108][ T5954] R10: dffffc0000000000 R11: fffff520008ebce5 R12: ffff88803062b000 [ 1116.674117][ T5954] R13: ffffffff870c45b0 R14: ffff88803062a000 R15: ffff88803062a8c8 [ 1116.682194][ T5954] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 1116.691194][ T5954] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1116.697873][ T5954] CR2: 00007fdcba5156c0 CR3: 000000000cb30000 CR4: 00000000003506e0 [ 1116.705874][ T5954] Call Trace: [ 1116.709283][ T5954] [ 1116.712252][ T5954] slab_free_freelist_hook+0xd2/0x1b0 [ 1116.717669][ T5954] ? smsusb_term_device+0x1ac/0x220 [ 1116.722977][ T5954] __kmem_cache_free+0xba/0x1f0 [ 1116.727869][ T5954] smsusb_term_device+0x1ac/0x220 [ 1116.733033][ T5954] smsusb_probe+0x1708/0x1da0 [ 1116.738015][ T5954] ? s2255_print_cfg+0x1b0/0x1b0 [ 1116.743118][ T5954] ? smsusb1_detectmode+0x260/0x260 [ 1116.748354][ T5954] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 1116.754314][ T5954] ? pm_runtime_enable+0x192/0x2a0 [ 1116.759462][ T5954] ? __pm_runtime_set_status+0x8ab/0xb80 [ 1116.765217][ T5954] usb_probe_interface+0x5a4/0xb00 [ 1116.770378][ T5954] ? usb_register_driver+0x3d0/0x3d0 [ 1116.775761][ T5954] really_probe+0x25b/0xb40 [ 1116.780302][ T5954] ? pm_runtime_barrier+0x14b/0x1c0 [ 1116.785595][ T5954] __driver_probe_device+0x18c/0x330 [ 1116.790925][ T5954] driver_probe_device+0x4f/0x420 [ 1116.796010][ T5954] __device_attach_driver+0x2ca/0x520 [ 1116.801408][ T5954] bus_for_each_drv+0x24b/0x2d0 [ 1116.806345][ T5954] ? coredump_store+0x90/0x90 [ 1116.811048][ T5954] ? bus_find_device+0x320/0x320 [ 1116.816057][ T5954] __device_attach+0x2b5/0x400 [ 1116.820853][ T5954] ? device_attach+0x20/0x20 [ 1116.825483][ T5954] ? __kmem_cache_free+0xba/0x1f0 [ 1116.830637][ T5954] ? do_raw_spin_unlock+0x121/0x230 [ 1116.835873][ T5954] bus_probe_device+0x180/0x260 [ 1116.840799][ T5954] device_add+0x85b/0xc20 [ 1116.845181][ T5954] usb_set_configuration+0x1a79/0x20c0 [ 1116.851037][ T5954] usb_generic_driver_probe+0x8d/0x150 [ 1116.856541][ T5954] usb_probe_device+0x13d/0x280 [ 1116.861549][ T5954] ? usb_register_device_driver+0x230/0x230 [ 1116.867479][ T5954] really_probe+0x25b/0xb40 [ 1116.872127][ T5954] ? pm_runtime_barrier+0x14b/0x1c0 [ 1116.877359][ T5954] __driver_probe_device+0x18c/0x330 [ 1116.882742][ T5954] driver_probe_device+0x4f/0x420 [ 1116.887807][ T5954] __device_attach_driver+0x2ca/0x520 [ 1116.893322][ T5954] bus_for_each_drv+0x24b/0x2d0 [ 1116.898207][ T5954] ? coredump_store+0x90/0x90 [ 1116.902960][ T5954] ? bus_find_device+0x320/0x320 [ 1116.907931][ T5954] __device_attach+0x2b5/0x400 [ 1116.912794][ T5954] ? device_attach+0x20/0x20 [ 1116.917407][ T5954] ? __kmem_cache_free+0xba/0x1f0 [ 1116.922619][ T5954] ? do_raw_spin_unlock+0x121/0x230 [ 1116.927850][ T5954] bus_probe_device+0x180/0x260 [ 1116.932736][ T5954] device_add+0x85b/0xc20 [ 1116.937255][ T5954] usb_new_device+0xa31/0x1630 [ 1116.942058][ T5954] ? usb_disconnect+0x8a0/0x8a0 [ 1116.946991][ T5954] ? _raw_spin_unlock_irq+0x23/0x50 [ 1116.952215][ T5954] ? lockdep_hardirqs_on+0x98/0x150 [ 1116.957777][ T5954] hub_event+0x2962/0x49c0 [ 1116.962275][ T5954] ? hub_post_resume+0x120/0x120 [ 1116.967358][ T5954] ? read_lock_is_recursive+0x20/0x20 [ 1116.972769][ T5954] ? _raw_spin_unlock_irq+0x23/0x50 [ 1116.978060][ T5954] ? process_scheduled_works+0x957/0x15b0 [ 1116.983810][ T5954] ? process_scheduled_works+0x957/0x15b0 [ 1116.989613][ T5954] process_scheduled_works+0xa45/0x15b0 [ 1116.995224][ T5954] ? assign_work+0x400/0x400 [ 1116.999930][ T5954] ? assign_work+0x39e/0x400 [ 1117.004557][ T5954] worker_thread+0xa55/0xfc0 [ 1117.009417][ T5954] kthread+0x2fa/0x390 [ 1117.013508][ T5954] ? pr_cont_work+0x560/0x560 [ 1117.018191][ T5954] ? kthread_blkcg+0xd0/0xd0 [ 1117.022871][ T5954] ret_from_fork+0x48/0x80 [ 1117.027415][ T5954] ? kthread_blkcg+0xd0/0xd0 [ 1117.032055][ T5954] ret_from_fork_asm+0x11/0x20 [ 1117.036861][ T5954] [ 1117.039968][ T5954] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1117.047257][ T5954] CPU: 1 PID: 5954 Comm: kworker/1:3 Not tainted syzkaller #0 [ 1117.054702][ T5954] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1117.065195][ T5954] Workqueue: usb_hub_wq hub_event [ 1117.070250][ T5954] Call Trace: [ 1117.073520][ T5954] [ 1117.076443][ T5954] dump_stack_lvl+0x16c/0x230 [ 1117.081128][ T5954] ? show_regs_print_info+0x20/0x20 [ 1117.086321][ T5954] ? load_image+0x3b0/0x3b0 [ 1117.090822][ T5954] panic+0x2c0/0x710 [ 1117.094715][ T5954] ? bpf_jit_dump+0xd0/0xd0 [ 1117.099214][ T5954] ? ret_from_fork_asm+0x11/0x20 [ 1117.104152][ T5954] __warn+0x2e0/0x470 [ 1117.108122][ T5954] ? debug_check_no_obj_freed+0x446/0x540 [ 1117.113834][ T5954] ? debug_check_no_obj_freed+0x446/0x540 [ 1117.119541][ T5954] report_bug+0x2be/0x4f0 [ 1117.123862][ T5954] ? debug_check_no_obj_freed+0x446/0x540 [ 1117.129572][ T5954] ? debug_check_no_obj_freed+0x446/0x540 [ 1117.135281][ T5954] ? debug_check_no_obj_freed+0x448/0x540 [ 1117.140991][ T5954] handle_bug+0xcf/0x120 [ 1117.145229][ T5954] exc_invalid_op+0x1a/0x50 [ 1117.149728][ T5954] asm_exc_invalid_op+0x1a/0x20 [ 1117.154570][ T5954] RIP: 0010:debug_check_no_obj_freed+0x446/0x540 [ 1117.160892][ T5954] Code: 4c 8b 4d 00 48 c7 c7 00 79 fc 8a 48 c7 c6 60 75 fc 8a 48 c7 c2 80 7a fc 8a 8b 0c 24 4d 89 f8 41 55 e8 9e b9 29 fd 48 83 c4 08 <0f> 0b 4c 8b 6c 24 18 48 b9 00 00 00 00 00 fc ff df ff 05 a3 5f 24 [ 1117.180504][ T5954] RSP: 0018:ffffc9000475eb38 EFLAGS: 00010282 [ 1117.186565][ T5954] RAX: 80eb0fdf4af83a00 RBX: ffffffff9717a3e0 RCX: 0000000000100000 [ 1117.194524][ T5954] RDX: ffffc90017f5a000 RSI: 0000000000083e68 RDI: 0000000000083e69 [ 1117.202571][ T5954] RBP: ffffffff8aa9ea40 R08: ffffc9000475e727 R09: 1ffff920008ebce4 [ 1117.210534][ T5954] R10: dffffc0000000000 R11: fffff520008ebce5 R12: ffff88803062b000 [ 1117.218497][ T5954] R13: ffffffff870c45b0 R14: ffff88803062a000 R15: ffff88803062a8c8 [ 1117.226466][ T5954] ? smsusb_onresponse+0x890/0x890 [ 1117.231590][ T5954] ? smsusb_onresponse+0x890/0x890 [ 1117.236719][ T5954] slab_free_freelist_hook+0xd2/0x1b0 [ 1117.242116][ T5954] ? smsusb_term_device+0x1ac/0x220 [ 1117.247332][ T5954] __kmem_cache_free+0xba/0x1f0 [ 1117.252202][ T5954] smsusb_term_device+0x1ac/0x220 [ 1117.257233][ T5954] smsusb_probe+0x1708/0x1da0 [ 1117.261919][ T5954] ? s2255_print_cfg+0x1b0/0x1b0 [ 1117.266868][ T5954] ? smsusb1_detectmode+0x260/0x260 [ 1117.272064][ T5954] ? _raw_spin_unlock_irqrestore+0x86/0x110 [ 1117.277951][ T5954] ? pm_runtime_enable+0x192/0x2a0 [ 1117.283077][ T5954] ? __pm_runtime_set_status+0x8ab/0xb80 [ 1117.288734][ T5954] usb_probe_interface+0x5a4/0xb00 [ 1117.293860][ T5954] ? usb_register_driver+0x3d0/0x3d0 [ 1117.299182][ T5954] really_probe+0x25b/0xb40 [ 1117.303721][ T5954] ? pm_runtime_barrier+0x14b/0x1c0 [ 1117.308913][ T5954] __driver_probe_device+0x18c/0x330 [ 1117.314194][ T5954] driver_probe_device+0x4f/0x420 [ 1117.319215][ T5954] __device_attach_driver+0x2ca/0x520 [ 1117.324584][ T5954] bus_for_each_drv+0x24b/0x2d0 [ 1117.329430][ T5954] ? coredump_store+0x90/0x90 [ 1117.334095][ T5954] ? bus_find_device+0x320/0x320 [ 1117.339044][ T5954] __device_attach+0x2b5/0x400 [ 1117.343820][ T5954] ? device_attach+0x20/0x20 [ 1117.348436][ T5954] ? __kmem_cache_free+0xba/0x1f0 [ 1117.353474][ T5954] ? do_raw_spin_unlock+0x121/0x230 [ 1117.358687][ T5954] bus_probe_device+0x180/0x260 [ 1117.363540][ T5954] device_add+0x85b/0xc20 [ 1117.367869][ T5954] usb_set_configuration+0x1a79/0x20c0 [ 1117.373360][ T5954] usb_generic_driver_probe+0x8d/0x150 [ 1117.378828][ T5954] usb_probe_device+0x13d/0x280 [ 1117.383679][ T5954] ? usb_register_device_driver+0x230/0x230 [ 1117.389573][ T5954] really_probe+0x25b/0xb40 [ 1117.394093][ T5954] ? pm_runtime_barrier+0x14b/0x1c0 [ 1117.399303][ T5954] __driver_probe_device+0x18c/0x330 [ 1117.404594][ T5954] driver_probe_device+0x4f/0x420 [ 1117.409622][ T5954] __device_attach_driver+0x2ca/0x520 [ 1117.415004][ T5954] bus_for_each_drv+0x24b/0x2d0 [ 1117.419858][ T5954] ? coredump_store+0x90/0x90 [ 1117.424624][ T5954] ? bus_find_device+0x320/0x320 [ 1117.429569][ T5954] __device_attach+0x2b5/0x400 [ 1117.434331][ T5954] ? device_attach+0x20/0x20 [ 1117.438909][ T5954] ? __kmem_cache_free+0xba/0x1f0 [ 1117.443931][ T5954] ? do_raw_spin_unlock+0x121/0x230 [ 1117.449130][ T5954] bus_probe_device+0x180/0x260 [ 1117.454016][ T5954] device_add+0x85b/0xc20 [ 1117.458365][ T5954] usb_new_device+0xa31/0x1630 [ 1117.463152][ T5954] ? usb_disconnect+0x8a0/0x8a0 [ 1117.468013][ T5954] ? _raw_spin_unlock_irq+0x23/0x50 [ 1117.473231][ T5954] ? lockdep_hardirqs_on+0x98/0x150 [ 1117.478440][ T5954] hub_event+0x2962/0x49c0 [ 1117.482882][ T5954] ? hub_post_resume+0x120/0x120 [ 1117.487811][ T5954] ? read_lock_is_recursive+0x20/0x20 [ 1117.493183][ T5954] ? _raw_spin_unlock_irq+0x23/0x50 [ 1117.498371][ T5954] ? process_scheduled_works+0x957/0x15b0 [ 1117.504087][ T5954] ? process_scheduled_works+0x957/0x15b0 [ 1117.509817][ T5954] process_scheduled_works+0xa45/0x15b0 [ 1117.515387][ T5954] ? assign_work+0x400/0x400 [ 1117.519978][ T5954] ? assign_work+0x39e/0x400 [ 1117.524565][ T5954] worker_thread+0xa55/0xfc0 [ 1117.529172][ T5954] kthread+0x2fa/0x390 [ 1117.533231][ T5954] ? pr_cont_work+0x560/0x560 [ 1117.537904][ T5954] ? kthread_blkcg+0xd0/0xd0 [ 1117.542484][ T5954] ret_from_fork+0x48/0x80 [ 1117.546921][ T5954] ? kthread_blkcg+0xd0/0xd0 [ 1117.551506][ T5954] ret_from_fork_asm+0x11/0x20 [ 1117.556274][ T5954] [ 1117.559530][ T5954] Kernel Offset: disabled [ 1117.563898][ T5954] Rebooting in 86400 seconds..