last executing test programs: 11m51.112680956s ago: executing program 0 (id=6): r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0) ioctl$VIDIOC_SUBSCRIBE_EVENT(r0, 0x4020565a, &(0x7f0000000180)={0x3, 0x980900, 0x1}) ioctl$VIDIOC_DQEVENT(r0, 0x80885659, &(0x7f0000000240)={0x0, @src_change}) 11m50.410905706s ago: executing program 0 (id=7): r0 = socket$nl_generic(0x11, 0x3, 0x10) syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="0180c20000000180c200000108f944"], 0x0) sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0) 11m49.486356386s ago: executing program 0 (id=10): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000140), 0xffffffffffffffff) sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000000c0)={0x20, r1, 0x511, 0x0, 0x0, {}, [@IPVS_CMD_ATTR_DAEMON={0xc, 0x3, 0x0, 0x1, [@IPVS_DAEMON_ATTR_STATE={0x8, 0x1, 0x1}]}]}, 0x20}}, 0x0) 11m48.431419312s ago: executing program 0 (id=14): syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000080)='./file0\x00', 0x1000801, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES32=0x0, @ANYRESOCT], 0x8, 0x1cc, &(0x7f00000006c0)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) listxattr(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 11m47.529732067s ago: executing program 0 (id=17): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000020c0), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000002440)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000002400)={0xffffffffffffffff}, 0x106, 0x6}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000002a00)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f00000029c0), r1, 0x0, 0x1, 0x4}}, 0x20) 11m34.90513825s ago: executing program 0 (id=57): r0 = socket(0x15, 0x5, 0x0) connect$can_j1939(r0, &(0x7f0000000040)={0xa, 0x0, 0xffffc0fe}, 0x1c) getsockname$packet(r0, 0x0, &(0x7f0000000400)) 11m32.412611573s ago: executing program 32 (id=57): r0 = socket(0x15, 0x5, 0x0) connect$can_j1939(r0, &(0x7f0000000040)={0xa, 0x0, 0xffffc0fe}, 0x1c) getsockname$packet(r0, 0x0, &(0x7f0000000400)) 10.70351454s ago: executing program 1 (id=2783): syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000a00)='./bus\x00', 0x200000, &(0x7f00000005c0)={[{@dioread_nolock}, {@grpquota}, {@bh}, {@noblock_validity}]}, 0x4, 0x480, &(0x7f0000001040)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0xbc) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000100)={0x0, 0x2904c, 0x0, 0x10003, '\x00', [{0x0, 0x5, 0x0, 0xffffffffffffffff}, {0xffffffff, 0x0, 0x9, 0x100000000002}]}) 8.043560005s ago: executing program 1 (id=2793): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000180), 0x3, 0x570, &(0x7f0000000680)="$eJzs3V1rHFUYAOB3Nkm/tSmUoiIS6IWV2k2T+FFBsF6KFgt6X5dkGmo23ZLdlCYW2l7YG2+kCCIWxB/gvZfFP+CvKGihSAl64U1kNrPtNtnN52q2zvPAtOfMzObM2TPv2Xd2dtkACmsk+6cU8WLcjK+TiMNt2wYj3ziyst/So+uT2ZLE8vInfySR5Ota+yf5/wfzygsR8cuXESdLa9utLyzOVKrVdC6vjzZmr4zWFxZPXZqtTKfT6eXxiYkzb06Mv/P2Wz3r62vn//ru43sfnPnq+NK3Pz04cieJs3Eo39bejx242V4ZiZH8ORmKs6t2HOtBY/0k2e0DYFsG8jgfimwOOBwDedQD/383ImIZKKhE/ENBtfKA1rV9j66DnxkP31+5AFrb/8GV90ZiX/Pa6MBS8tSVUXa9O9yD9rM2fv797p1siQ3eh7jRg/YAWm7eiojTg4Nr578kn/+273TzzeP1rW6jaK8/sJvuZfnP653yn9Lj/Cc65D8HO8Tudmwc/6UHPWimqyz/e7dj/vt46hoeyGvPNXO+oeTipWp6OiKej4gTMbQ3q693P+fM0v3lbtva879sydpv5YL5cTwY3Pv0Y6YqjcpO+tzu4a2Il57kv0msmf/3NXPd1eOfPR/nN9nGsfTuK922bdz/dr3PgJd/jHi14/g/uaOVrH9/crR5Poy2zoq1/rx97Ndu7W+t/72Xjf+B9fs/nLTfr61vvY0f9v2ddtu23fN/T/Jps7wnX3et0mjMjUXsST5au378yWNb9db+Wf9PHF9//ut0/u+PiM822f/bR2933bUfxn9qS+O/9cL9D7/4vlv7mxv/N5qlE/mazcx/mz3AnTx3AAAAAAAA0G9KEXEoklL5cblUKpdXPt9xNA6UqrV64+TF2vzlqWh+V3Y4hkqtO92H2z4PMZZ/HrZVH19Vn4iIIxHxzcD+Zr08WatO7XbnAQAAAAAAAAAAAAAAAAAAoE8c7PL9/8xvA7t9dMC/zk9+Q3FtGP+9+KUnoC95/Yfi6hL/pgUoAIEOxSX+objEPxSX+IfiEv9QXOIfAAAAAAAAAAAAAAAAAAAAAAAAAAAAeur8uXPZsrz06PpkVp+6ujA/U7t6aiqtz5Rn5yfLk7W5K+XpWm26mpYna7Mb/b1qrXZlbDzmr4020npjtL6weGG2Nn+5ceHSbGU6vZAO/Se9AgAAAAAAAAAAAAAAAAAAgGdLfWFxplKtpnMKXQvvxW4fxucv7+ThSedRTto6uGJbTQz2yzAp9LSwyxMTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALT5JwAA//821zOC") mkdirat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x0) mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c}) 7.423116145s ago: executing program 3 (id=2795): mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1) r0 = socket$inet6(0xa, 0x805, 0x0) getsockopt$bt_hci(r0, 0x84, 0x85, &(0x7f0000000080)=""/4060, &(0x7f00000010c0)=0xfdc) 7.13311249s ago: executing program 5 (id=2797): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x400000000a882, 0x0) r1 = dup(r0) ioctl$BLKRRPART(r1, 0x125f, 0x0) 6.658097184s ago: executing program 4 (id=2798): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x80000001}, 0x10) sendmsg$nl_route_sched(r0, &(0x7f000000a280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newtaction={0x48, 0x5a, 0x301, 0x40000, 0x0, {0x2}, [{0x34, 0x1, [@m_police={0x30, 0xb, 0x0, 0x0, {{0xb}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4}, 0x2004e080) 6.349644282s ago: executing program 3 (id=2799): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0) sendmsg$NFC_CMD_START_POLL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010023484af53b607cc707000000080001"], 0x2c}}, 0x0) 6.021893175s ago: executing program 5 (id=2801): syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1804810, &(0x7f0000000140)=ANY=[], 0xfb, 0x6af, &(0x7f0000000d00)="$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") r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') ioctl$sock_SIOCINQ(r0, 0x541b, 0x0) 5.763653844s ago: executing program 1 (id=2802): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010700000000fcdbdf2567"], 0x24}}, 0x40) 5.273583942s ago: executing program 2 (id=2803): capset(&(0x7f0000000340)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x5f22}) r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002) ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5393, &(0x7f0000000000)) 5.271020916s ago: executing program 4 (id=2804): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0xfffffffffffffffc, &(0x7f0000000000)={0xffffffffffffffff}, 0x111, 0xa}}, 0x20) write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1, 0xb6}}, 0x10) 5.082057902s ago: executing program 3 (id=2805): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000002a00)={[{@noblock_validity}, {@resgid={'resgid', 0x3d, 0xee00}}, {@acl}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x3}}, {@nodiscard}]}, 0xfe, 0x472, &(0x7f0000000940)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000300)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007000000000000070000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ffffffff000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000001e"]) 4.686367246s ago: executing program 5 (id=2806): mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a) mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0) mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2b00ad, &(0x7f0000000200)={[{@noswap}, {@mpol={'mpol', 0x3d, {'interleave', '=static', @void}}}]}) 4.130492931s ago: executing program 4 (id=2807): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000002840)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x8) getsockopt$sock_buf(r0, 0x1, 0x1a, 0x0, &(0x7f0000000200)=0x15) 3.912176093s ago: executing program 1 (id=2808): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00') syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000280)='./file1\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00', @ANYRES32], 0x47, 0xc15, &(0x7f0000001940)="$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") read$FUSE(r0, &(0x7f00000061c0)={0x2020}, 0x2020) 3.91194598s ago: executing program 2 (id=2809): r0 = socket$netlink(0x10, 0x3, 0x4) capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x6, 0x20007, 0x6eb6, 0x0, 0x10040, 0x1}) writev(r0, &(0x7f0000000300)=[{&(0x7f0000000340)="580000001400192340834b80040d8c560a117436c379000000000000000058000b4824ca145f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100050c100000000000204e0000", 0x58}], 0x1) 3.341421446s ago: executing program 3 (id=2810): sendmsg$IPVS_CMD_ZERO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0) syz_mount_image$exfat(&(0x7f0000001500), &(0x7f00000013c0)='./file0\x00', 0x800, &(0x7f00000000c0)=ANY=[@ANYRES64=0x0], 0x2, 0x14e1, &(0x7f0000003f40)="$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") openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file1\x00', 0x121542, 0x60) 3.213328514s ago: executing program 2 (id=2811): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge_slave_0\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0xffea, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="3000000071000100000000000000000007000000", @ANYRES32=r1, @ANYBLOB="0c00018008000100000001000c0002"], 0x30}}, 0x0) 3.139212428s ago: executing program 5 (id=2812): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x4b, &(0x7f0000000180)=0xfffffff7, 0x4) sendmsg$inet6(r0, &(0x7f0000001b40)={&(0x7f00000016c0)={0xa, 0x4e24, 0xfffffffa, @empty, 0x5}, 0x1c, 0x0, 0x0, &(0x7f00000019c0)=[@pktinfo={{0x20, 0x29, 0x32, {@ipv4={'\x00', '\xff\xff', @loopback}}}}], 0x20}, 0x4) 2.70199884s ago: executing program 4 (id=2813): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1000000000, &(0x7f0000006680)) r0 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r0, 0x0) 2.165891955s ago: executing program 1 (id=2814): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f00000000c0)={0x7, 0x6, 0x5cd4, 0x3ff, 0x7, "c556a1ee190dd378a88ef3c4b342bb788b09dd", 0x2}) 2.148819848s ago: executing program 5 (id=2815): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="140000001000010000000000000000000a00000a28010000060a010400000000000000000200000048000480440001800a0001006d61746368000000340002800900010074696d65000000001c00030007682c020b7b37f27f5101007f51010049f4e34e86f469eb08000240000000000900010073797a30000000000900020073797a32"], 0x150}, 0x1, 0x0, 0x0, 0x4000000}, 0x0) 2.14006119s ago: executing program 2 (id=2816): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x2c240, 0x0) r1 = syz_open_dev$loop(&(0x7f00000000c0), 0x47ffffa, 0x122842) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) 1.563710971s ago: executing program 4 (id=2817): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000002c00000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x94) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1000001, 0x32, 0xffffffffffffffff, 0x0) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000023c0)={r0, 0x58, &(0x7f00000014c0)}, 0x10) 1.293758542s ago: executing program 3 (id=2818): unshare(0x8040600) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000100), 0x34) 1.007462839s ago: executing program 2 (id=2819): io_setup(0x6, &(0x7f0000001380)=0x0) r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0) io_submit(r0, 0x1, &(0x7f0000001140)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) 829.351001ms ago: executing program 5 (id=2820): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)={0x1c, 0x2e, 0x9, 0x70bd27, 0x0, {0x4}, [@typed={0x6, 0xb, 0x0, 0x0, @str='{\x00'}]}, 0x1c}, 0x1, 0x0, 0x0, 0x42804}, 0x84) shmat(0xffffffffffffffff, &(0x7f0000ffe000/0x1000)=nil, 0x0) 671.958117ms ago: executing program 1 (id=2821): ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl(r0, 0x8b1a, &(0x7f0000000040)) 174.142247ms ago: executing program 4 (id=2822): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001180)='/proc/vmallocinfo\x00', 0x0, 0x0) preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)=""/4113, 0x1011}], 0x1, 0xf0, 0xa) syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000007c0), 0x1, 0x73a, &(0x7f0000000800)="$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") 52.703947ms ago: executing program 3 (id=2823): sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x40, &(0x7f00000001c0)={0x11, 0x88a8, 0x0, 0x1, 0xd8, 0x6, @multicast}, 0x14) r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000080), 0x2) write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[@ANYBLOB="03010000b5"], 0xc8) 0s ago: executing program 2 (id=2824): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000004000ed0000000008100d00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10) kexec_load(0x88, 0x0, 0x0, 0x3c0001) kernel console output (not intermixed with test programs): s invalid maxpacket 0 [ 577.387697][ T796] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 577.536754][ T796] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 577.552327][ T796] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 577.569504][ T796] usb 2-1: Manufacturer: syz [ 577.648886][ T796] usb 2-1: config 0 descriptor?? [ 577.956994][ T9432] loop3: detected capacity change from 0 to 256 [ 578.417584][ T796] rc_core: IR keymap rc-hauppauge not found [ 578.429350][ T796] Registered IR keymap rc-empty [ 578.446158][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 578.479434][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 578.505239][ T9437] loop4: detected capacity change from 0 to 1024 [ 578.667558][ T796] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0 [ 578.684193][ T796] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input13 [ 578.716755][ T9437] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=842c018, mo2=0002] [ 578.760251][ T9437] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 578.832693][ T9437] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1439: bg 0: block 88: padding at end of block bitmap is not set [ 579.028013][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.069105][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.180762][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.238002][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.280412][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.328632][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.352046][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.387156][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.461876][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 579.491830][ T9447] loop5: detected capacity change from 0 to 128 [ 579.528690][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.566916][ T796] mceusb 2-1:0.0: Error: mce write submit urb error = -90 [ 579.637741][ T796] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1 [ 579.652658][ T796] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 579.669501][ T9447] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 579.688546][ T796] usb 2-1: USB disconnect, device number 4 [ 579.740032][ T9447] hpfs: filesystem error: improperly stopped [ 579.753199][ T9447] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 579.768012][ T9447] hpfs: You really don't want any checks? You are crazy... [ 579.809918][ T9447] hpfs: hpfs_map_sector(): read error [ 579.826852][ T9447] hpfs: code page support is disabled [ 579.901422][ T9447] hpfs: hpfs_map_4sectors(): unaligned read [ 579.907896][ T9447] hpfs: hpfs_map_4sectors(): unaligned read [ 579.915212][ T9447] hpfs: filesystem error: unable to find root dir [ 580.952098][ T9460] Bluetooth: MGMT ver 1.23 [ 581.200242][ T9464] loop1: detected capacity change from 0 to 512 [ 581.264329][ T9464] EXT4-fs: Ignoring removed nobh option [ 581.393769][ T9458] loop5: detected capacity change from 0 to 4096 [ 581.457999][ T9464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 581.484517][ T9464] ext4 filesystem being mounted at /305/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 582.092115][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 582.511118][ T9475] sd 0:0:1:0: device reset [ 583.510787][ T9485] loop2: detected capacity change from 0 to 1024 [ 583.872656][ T12] hfsplus: b-tree write err: -5, ino 4 [ 585.031234][ T797] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 585.191859][ T5906] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 585.312078][ T797] usb 4-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64 [ 585.321537][ T797] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 585.330005][ T797] usb 4-1: Product: syz [ 585.334705][ T797] usb 4-1: Manufacturer: syz [ 585.339530][ T797] usb 4-1: SerialNumber: syz [ 585.400997][ T5906] usb 5-1: Using ep0 maxpacket: 32 [ 585.426211][ T5906] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 585.437920][ T5906] usb 5-1: New USB device found, idVendor=046d, idProduct=c70a, bcdDevice= 0.00 [ 585.453220][ T5906] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 585.496768][ T797] usb 4-1: config 0 descriptor?? [ 585.559398][ T797] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state. [ 585.610394][ T5906] usb 5-1: config 0 descriptor?? [ 585.687283][ T797] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 585.789178][ T797] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0)) [ 585.799271][ T797] usb 4-1: media controller created [ 585.848415][ T9500] dvb-usb: bulk message failed: -22 (7/0) [ 585.993212][ T797] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 586.140326][ T5906] logitech-djreceiver 0003:046D:C70A.0013: hidraw0: USB HID v0.00 Device [HID 046d:c70a] on usb-dummy_hcd.4-1/input0 [ 586.345261][ T9510] 9p: Bad value for 'rfdno' [ 586.363884][ T796] usb 5-1: USB disconnect, device number 10 [ 586.896167][ T797] DVB: Unable to find symbol mt352_attach() [ 588.061274][ T797] DVB: Unable to find symbol nxt6000_attach() [ 588.067647][ T797] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)' [ 588.165518][ T797] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input14 [ 588.251653][ T797] dvb-usb: schedule remote query interval to 1000 msecs. [ 588.259363][ T797] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected. [ 588.270179][ T797] dvb-usb: bulk message failed: -22 (7/0) [ 588.276309][ T797] dvb-usb: bulk message failed: -22 (7/0) [ 588.442715][ T797] usb 4-1: USB disconnect, device number 9 [ 588.958245][ T797] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected. [ 589.836470][ T9534] loop3: detected capacity change from 0 to 512 [ 590.009479][ T9534] EXT4-fs warning (device loop3): dx_probe:846: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 590.022137][ T9534] EXT4-fs warning (device loop3): dx_probe:849: Enable large directory feature to access it [ 590.032823][ T9534] EXT4-fs warning (device loop3): dx_probe:934: inode #2: comm syz.3.1480: Corrupt directory, running e2fsck is recommended [ 590.174009][ T9534] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117 [ 590.230250][ T9534] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.1480: corrupted in-inode xattr: e_name out of bounds [ 590.279887][ T9534] EXT4-fs (loop3): Remounting filesystem read-only [ 590.298958][ T9534] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 590.548994][ T9534] EXT4-fs warning (device loop3): ext4_empty_dir:3087: inode #2: comm syz.3.1480: directory missing '.' [ 590.759734][ T9548] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1486'. [ 590.953632][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 594.506437][ T797] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 594.710812][ T797] usb 3-1: Using ep0 maxpacket: 16 [ 594.744402][ T797] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 594.755148][ T797] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 594.771291][ T797] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 594.782856][ T797] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 594.793286][ T797] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 594.847679][ T797] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 594.857622][ T797] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 594.871005][ T797] usb 3-1: Manufacturer: syz [ 595.042877][ T797] usb 3-1: config 0 descriptor?? [ 595.298045][ T796] kernel write not supported for file /sequencer (pid: 796 comm: kworker/1:2) [ 595.850924][ T797] rc_core: IR keymap rc-hauppauge not found [ 595.857159][ T797] Registered IR keymap rc-empty [ 595.863184][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 595.961151][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.017828][ T797] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0 [ 596.033204][ T797] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input15 [ 596.182098][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.323308][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.351993][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.379186][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.457966][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.519906][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.571636][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.631924][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.655929][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.690989][ T797] mceusb 3-1:0.0: Error: mce write submit urb error = -90 [ 596.744293][ T797] mceusb 3-1:0.0: Registered with mce emulator interface version 1 [ 596.753020][ T797] mceusb 3-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 596.824320][ T797] usb 3-1: USB disconnect, device number 7 [ 598.677370][ T9626] loop4: detected capacity change from 0 to 16 [ 598.782303][ T9626] erofs (device loop4): mounted with root inode @ nid 36. [ 599.286138][ T9631] loop1: detected capacity change from 0 to 64 [ 601.064443][ T9639] loop5: detected capacity change from 0 to 4096 [ 601.129807][ T9639] ntfs3(loop5): ino=0, mi_enum_attr [ 601.171885][ T9647] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1526'. [ 601.256064][ T796] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 601.341830][ T9639] ntfs3(loop5): ino=0, mi_enum_attr [ 601.347519][ T9639] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 601.637959][ T796] usb 5-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65 [ 601.653240][ T796] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 601.667152][ T796] usb 5-1: Product: syz [ 601.672708][ T796] usb 5-1: Manufacturer: syz [ 601.677632][ T796] usb 5-1: SerialNumber: syz [ 601.788398][ T796] usb 5-1: config 0 descriptor?? [ 602.067491][ T9652] netlink: 'syz.2.1528': attribute type 1 has an invalid length. [ 602.129989][ T796] cx82310_eth 5-1:0.0: probe with driver cx82310_eth failed with error -22 [ 602.414205][ T9654] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1529'. [ 602.566743][ T796] cxacru 5-1:0.0: usbatm_usb_probe: bind failed: -19! [ 602.597932][ T796] usb 5-1: USB disconnect, device number 11 [ 603.527757][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 603.540044][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 604.517283][ T9672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1537'. [ 604.532017][ T9672] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1537'. [ 604.546686][ T9672] netlink: 'syz.1.1537': attribute type 12 has an invalid length. [ 604.561024][ T9672] netlink: 'syz.1.1537': attribute type 11 has an invalid length. [ 605.230276][ T9680] loop5: detected capacity change from 0 to 2048 [ 605.253926][ T9680] UDF-fs: warning (device loop5): udf_load_vrs: No anchor found [ 605.267307][ T9680] UDF-fs: Scanning with blocksize 512 failed [ 605.353464][ T9680] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 605.948917][ T9687] loop3: detected capacity change from 0 to 736 [ 606.081740][ T797] usb 5-1: new full-speed USB device number 12 using dummy_hcd [ 606.340103][ T797] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 606.351766][ T797] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 606.362415][ T797] usb 5-1: New USB device found, idVendor=1e7d, idProduct=319c, bcdDevice= 0.00 [ 606.371893][ T797] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 606.466270][ T797] usb 5-1: config 0 descriptor?? [ 606.973126][ T797] isku 0003:1E7D:319C.0014: item fetching failed at offset 5/7 [ 607.036698][ T797] isku 0003:1E7D:319C.0014: parse failed [ 607.043087][ T797] isku 0003:1E7D:319C.0014: probe with driver isku failed with error -22 [ 607.209136][ T797] usb 5-1: USB disconnect, device number 12 [ 608.528672][ T9708] loop2: detected capacity change from 0 to 2048 [ 608.630046][ T9708] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 608.646020][ T9708] NILFS (loop2): mounting unchecked fs [ 608.737533][ T9714] loop3: detected capacity change from 0 to 512 [ 608.766461][ T9713] use of bytesused == 0 is deprecated and will be removed in the future, [ 608.775542][ T9713] use the actual size instead. [ 608.785909][ T9708] NILFS (loop2): recovery complete [ 608.797349][ T9714] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 608.833494][ T9716] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 608.958795][ T9715] loop1: detected capacity change from 0 to 1024 [ 609.083470][ T9715] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 609.096474][ T9715] ext4 filesystem being mounted at /332/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 609.235077][ T9715] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #15: comm syz.1.1557: corrupted xattr block 128: invalid ea_ino [ 609.765709][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 609.952278][ T9725] loop3: detected capacity change from 0 to 64 [ 611.120149][ T9734] loop4: detected capacity change from 0 to 1024 [ 611.835997][ T30] kauditd_printk_skb: 1 callbacks suppressed [ 611.836078][ T30] audit: type=1800 audit(1767056063.453:65): pid=9734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1565" name="file2" dev="loop4" ino=2 res=0 errno=0 [ 612.096851][ T9744] loop2: detected capacity change from 0 to 256 [ 612.211242][ T9744] exfat: Deprecated parameter 'namecase' [ 612.416935][ T9744] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2e76b09e, utbl_chksum : 0xe619d30d) [ 613.581260][ T30] audit: type=1800 audit(1767056065.183:66): pid=9753 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1572" name="SYSV00000000" dev="tmpfs" ino=1 res=0 errno=0 [ 614.949848][ T9768] loop1: detected capacity change from 0 to 256 [ 615.024295][ T9768] exfat: Deprecated parameter 'namecase' [ 615.031475][ T9768] exfat: Deprecated parameter 'namecase' [ 615.037467][ T9768] exfat: Deprecated parameter 'namecase' [ 615.090964][ T9] usb 4-1: new full-speed USB device number 10 using dummy_hcd [ 615.138497][ T9768] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 615.345158][ T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 615.363446][ T9] usb 4-1: New USB device found, idVendor=172f, idProduct=0502, bcdDevice= 0.00 [ 615.374658][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 615.476077][ T9768] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 615.573036][ T9] usb 4-1: config 0 descriptor?? [ 616.082106][ T9] waltop 0003:172F:0502.0015: unknown main item tag 0x0 [ 616.089426][ T9] waltop 0003:172F:0502.0015: item fetching failed at offset 3/5 [ 616.187506][ T9773] loop5: detected capacity change from 0 to 128 [ 616.207425][ T9] waltop 0003:172F:0502.0015: probe with driver waltop failed with error -22 [ 616.301804][ T9773] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 616.323945][ T9] usb 4-1: USB disconnect, device number 10 [ 616.447074][ T9773] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 616.660981][ T30] audit: type=1800 audit(1767056068.253:67): pid=9773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1581" name="file2" dev="loop5" ino=105 res=0 errno=0 [ 619.110111][ T9799] loop4: detected capacity change from 0 to 128 [ 619.197657][ T9799] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 619.301739][ T9799] hpfs: filesystem error: improperly stopped [ 619.308187][ T9799] hpfs: You really don't want any checks? You are crazy... [ 619.390291][ T9799] hpfs: hpfs_map_sector(): read error [ 619.396478][ T9799] hpfs: code page support is disabled [ 619.486196][ T9799] hpfs: hpfs_map_4sectors(): unaligned read [ 619.533717][ T9799] hpfs: hpfs_map_4sectors(): unaligned read [ 619.539834][ T9799] hpfs: filesystem error: unable to find root dir [ 620.398330][ T9807] loop3: detected capacity change from 0 to 256 [ 620.506345][ T9807] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 620.525508][ T9809] loop2: detected capacity change from 0 to 256 [ 620.626251][ T9809] exfat: Deprecated parameter 'namecase' [ 620.746593][ T9807] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 620.817457][ T9809] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 621.837092][ T9815] loop1: detected capacity change from 0 to 1024 [ 621.859130][ T9815] EXT4-fs: Ignoring removed oldalloc option [ 621.958482][ T9815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 621.977252][ T9815] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 622.231284][ T9815] EXT4-fs error (device loop1): ext4_readdir:264: inode #2: block 16: comm syz.1.1601: path /342/file1: bad entry in directory: directory entry overrun - offset=876, inode=0, rec_len=1024, size=1024 fake=0 [ 622.349784][ T9815] EXT4-fs (loop1): Remounting filesystem read-only [ 622.965280][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 623.266890][ T30] audit: type=1326 audit(1767056074.863:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.295024][ T30] audit: type=1326 audit(1767056074.863:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.323712][ T30] audit: type=1326 audit(1767056074.863:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.356515][ T30] audit: type=1326 audit(1767056074.863:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.386131][ T30] audit: type=1326 audit(1767056074.913:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.413998][ T30] audit: type=1326 audit(1767056074.963:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.446406][ T30] audit: type=1326 audit(1767056074.963:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=267 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.476372][ T30] audit: type=1326 audit(1767056075.063:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=225 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.504705][ T30] audit: type=1326 audit(1767056075.063:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 623.532604][ T30] audit: type=1326 audit(1767056075.063:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9828 comm="syz.3.1606" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 625.883673][ T797] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 626.137664][ T797] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 626.149339][ T797] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 626.160029][ T797] usb 5-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 626.169532][ T797] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 626.398805][ T9858] loop5: detected capacity change from 0 to 256 [ 626.459394][ T797] usb 5-1: config 0 descriptor?? [ 627.105803][ T797] steelseries 0003:1038:1410.0016: not enough fields in HID_OUTPUT_REPORT 0 [ 627.389272][ T5863] usb 5-1: USB disconnect, device number 13 [ 627.848896][ T9866] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1624'. [ 629.241325][ T9877] loop1: detected capacity change from 0 to 764 [ 629.339130][ T9877] rock: directory entry would overflow storage [ 629.346101][ T9877] rock: sig=0x4654, size=5, remaining=4 [ 630.169703][ T9882] tmpfs: Cannot retroactively limit inodes [ 630.208867][ T9878] loop2: detected capacity change from 0 to 4096 [ 632.610143][ T9906] loop1: detected capacity change from 0 to 16 [ 633.126430][ T9910] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 634.641106][ T9925] loop2: detected capacity change from 0 to 128 [ 634.696813][ T9925] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 634.697058][ T9925] hpfs: filesystem error: improperly stopped [ 634.697156][ T9925] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 634.697258][ T9925] hpfs: You really don't want any checks? You are crazy... [ 634.697739][ T9925] hpfs: hpfs_map_sector(): read error [ 634.697802][ T9925] hpfs: code page support is disabled [ 634.698883][ T9925] hpfs: hpfs_map_4sectors(): unaligned read [ 634.736206][ T9925] hpfs: hpfs_map_4sectors(): unaligned read [ 634.736304][ T9925] hpfs: filesystem error: unable to find root dir [ 636.558951][ T9932] loop4: detected capacity change from 0 to 4096 [ 636.586355][ T9932] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 637.037869][ T9941] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1659'. [ 639.328452][ T9961] loop2: detected capacity change from 0 to 512 [ 639.449573][ T9961] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 639.485243][ T9963] loop5: detected capacity change from 0 to 64 [ 639.618201][ T9961] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 639.638411][ T9961] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 639.791473][ T9961] System zones: 0-1, 15-15, 18-18, 34-34 [ 639.831479][ T9961] EXT4-fs (loop2): orphan cleanup on readonly fs [ 639.838284][ T9961] __quota_error: 2 callbacks suppressed [ 639.838367][ T9961] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0 [ 639.854302][ T9961] EXT4-fs warning (device loop2): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 639.869463][ T9961] EXT4-fs (loop2): Cannot turn on quotas: error -22 [ 639.931339][ T9961] EXT4-fs (loop2): 1 truncate cleaned up [ 639.939660][ T9961] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 640.216617][ T9973] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0 [ 640.239067][ T9971] IPVS: stopping master sync thread 9973 ... [ 640.514498][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 641.178235][ T9982] syz.3.1677 (9982): drop_caches: 4 [ 641.864447][ T9987] loop4: detected capacity change from 0 to 2048 [ 641.903236][ T9983] loop2: detected capacity change from 0 to 4096 [ 641.959159][ T9987] ext4: Unknown parameter 'obj_role' [ 641.969315][ T9983] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 643.938243][T10008] loop2: detected capacity change from 0 to 256 [ 644.074146][T10008] exfat: Deprecated parameter 'namecase' [ 644.307015][T10008] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 644.340040][T10005] loop3: detected capacity change from 0 to 4096 [ 644.462868][T10014] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 645.611140][T10020] loop2: detected capacity change from 0 to 1024 [ 645.623411][T10016] loop4: detected capacity change from 0 to 4096 [ 645.823061][T10016] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 645.847251][T10020] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 645.854293][T10020] hfsplus: xattr searching failed [ 645.988285][T10025] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 646.000306][T10025] hfsplus: xattr searching failed [ 646.183068][T10016] ntfs3(loop4): ino=1a, mi_enum_attr [ 646.189086][T10016] ntfs3(loop4): ino=1a, mi_enum_attr [ 646.195053][T10016] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 646.431786][T10016] ntfs3: Volume is dirty and "force" flag is not set! [ 646.490957][ T4014] hfsplus: b-tree write err: -5, ino 4 [ 647.592231][T10035] loop5: detected capacity change from 0 to 2048 [ 647.681984][T10039] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 648.873838][T10052] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1708'. [ 650.428934][T10067] loop1: detected capacity change from 0 to 1024 [ 651.168854][T10076] loop2: detected capacity change from 0 to 2048 [ 651.324410][T10081] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 651.329440][T10080] loop5: detected capacity change from 0 to 64 [ 651.470856][T10082] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 1970324836974592 [ 651.480369][T10082] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=15) [ 651.567788][T10085] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1722'. [ 651.616215][T10082] Remounting filesystem read-only [ 651.622866][T10082] NILFS (loop2): error -5 truncating bmap (ino=15) [ 651.629939][T10082] syz.2.1719: attempt to access beyond end of device [ 651.629939][T10082] loop2: rw=8388608, sector=2199023255622, nr_sectors = 2 limit=2048 [ 651.645470][T10082] NILFS (loop2): I/O error reading meta-data file (ino=6, block-offset=0) [ 652.180162][ T5805] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 652.472203][T10088] loop4: detected capacity change from 0 to 2048 [ 652.504036][T10088] EXT4-fs: Ignoring removed i_version option [ 652.652895][T10088] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 652.666021][T10088] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 652.752337][ T5906] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 653.008131][ T5906] usb 2-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 653.019894][ T5906] usb 2-1: config 0 interface 0 has no altsetting 0 [ 653.027054][ T5906] usb 2-1: New USB device found, idVendor=20a0, idProduct=4287, bcdDevice= 0.00 [ 653.040947][ T5906] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 653.121368][ T5906] usb 2-1: config 0 descriptor?? [ 653.335653][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 653.460193][T10101] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1729'. [ 653.475686][T10101] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1729'. [ 653.491278][T10101] netlink: 'syz.5.1729': attribute type 6 has an invalid length. [ 653.686247][ T5906] hid-u2fzero 0003:20A0:4287.0017: hidraw0: USB HID v0.00 Device [HID 20a0:4287] on usb-dummy_hcd.1-1/input0 [ 653.702713][ T5906] hid-u2fzero 0003:20A0:4287.0017: NitroKey U2F LED initialised [ 653.711337][ T5906] hid-u2fzero 0003:20A0:4287.0017: NitroKey U2F RNG initialised [ 653.882119][ T5906] usb 2-1: USB disconnect, device number 5 [ 654.626667][ T30] audit: type=1800 audit(1767056106.233:80): pid=10111 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1734" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 655.767815][T10123] loop3: detected capacity change from 0 to 64 [ 656.649906][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.649906][ T1897] loop3: rw=8388609, sector=440, nr_sectors = 1 limit=64 [ 656.664924][ T1897] Buffer I/O error on dev loop3, logical block 440, lost async page write [ 656.674421][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.674421][ T1897] loop3: rw=8388609, sector=441, nr_sectors = 1 limit=64 [ 656.688954][ T1897] Buffer I/O error on dev loop3, logical block 441, lost async page write [ 656.697952][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.697952][ T1897] loop3: rw=8388609, sector=442, nr_sectors = 1 limit=64 [ 656.712763][ T1897] Buffer I/O error on dev loop3, logical block 442, lost async page write [ 656.727039][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.727039][ T1897] loop3: rw=8388609, sector=443, nr_sectors = 1 limit=64 [ 656.743018][ T1897] Buffer I/O error on dev loop3, logical block 443, lost async page write [ 656.752244][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.752244][ T1897] loop3: rw=8388609, sector=444, nr_sectors = 1 limit=64 [ 656.766488][ T1897] Buffer I/O error on dev loop3, logical block 444, lost async page write [ 656.775350][T10130] loop1: detected capacity change from 0 to 64 [ 656.775450][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.775450][ T1897] loop3: rw=8388609, sector=449, nr_sectors = 1 limit=64 [ 656.796238][ T1897] Buffer I/O error on dev loop3, logical block 449, lost async page write [ 656.806885][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.806885][ T1897] loop3: rw=8388609, sector=450, nr_sectors = 1 limit=64 [ 656.827538][ T1897] Buffer I/O error on dev loop3, logical block 450, lost async page write [ 656.839436][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.839436][ T1897] loop3: rw=8388609, sector=451, nr_sectors = 1 limit=64 [ 656.854075][ T1897] Buffer I/O error on dev loop3, logical block 451, lost async page write [ 656.863224][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.863224][ T1897] loop3: rw=8388609, sector=452, nr_sectors = 1 limit=64 [ 656.877997][ T1897] Buffer I/O error on dev loop3, logical block 452, lost async page write [ 656.886895][ T1897] kworker/u8:10: attempt to access beyond end of device [ 656.886895][ T1897] loop3: rw=8388609, sector=457, nr_sectors = 1 limit=64 [ 656.901485][ T1897] Buffer I/O error on dev loop3, logical block 457, lost async page write [ 657.079312][T10131] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1742'. [ 658.512638][T10144] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1749'. [ 659.745201][ T5906] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 659.961158][ T5906] usb 6-1: Using ep0 maxpacket: 16 [ 659.977498][ T5906] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 659.989527][ T5906] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 660.004211][ T5906] usb 6-1: New USB device found, idVendor=146b, idProduct=0902, bcdDevice= 0.00 [ 660.015188][ T5906] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 660.193057][ T5906] usb 6-1: config 0 descriptor?? [ 660.673596][ T5906] bigben 0003:146B:0902.0018: unexpected rdesc, please submit for review [ 660.687501][ T5906] bigben 0003:146B:0902.0018: item fetching failed at offset 3/5 [ 660.832657][T10159] loop4: detected capacity change from 0 to 4096 [ 660.843660][ T5906] bigben 0003:146B:0902.0018: parse failed [ 660.850129][ T5906] bigben 0003:146B:0902.0018: probe with driver bigben failed with error -22 [ 660.963160][ T5906] usb 6-1: USB disconnect, device number 5 [ 661.167118][T10159] ntfs3(loop4): ino=b, mi_enum_attr [ 661.173067][T10159] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 661.287694][T10159] ntfs3(loop4): Failed to load $Extend (-22). [ 661.294590][T10159] ntfs3(loop4): Failed to initialize $Extend. [ 661.501250][T10172] loop2: detected capacity change from 0 to 22 [ 661.560718][T10172] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 663.658609][T10195] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1772'. [ 663.957541][T10198] loop2: detected capacity change from 0 to 128 [ 664.238953][T10198] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 664.366652][T10198] ext4 filesystem being mounted at /363/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 664.967871][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 664.975424][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 665.068312][ T5805] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 665.707459][T10219] loop2: detected capacity change from 0 to 128 [ 666.497907][T10225] loop5: detected capacity change from 0 to 2048 [ 666.709890][T10225] EXT4-fs error (device loop5): ext4_ext_check_inode:523: inode #2: comm syz.5.1785: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5) [ 666.791285][T10225] EXT4-fs (loop5): get root inode failed [ 666.797178][T10225] EXT4-fs (loop5): mount failed [ 667.043859][T10235] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1789'. [ 667.487341][T10225] loop5: detected capacity change from 0 to 2048 [ 667.597539][T10225] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 668.647678][T10248] loop3: detected capacity change from 0 to 64 [ 669.459190][T10253] loop2: detected capacity change from 0 to 4096 [ 669.477965][T10253] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512). [ 669.579202][T10257] loop4: detected capacity change from 0 to 512 [ 669.649728][T10257] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 669.781769][T10257] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz.4.1799: bad orphan inode 131083 [ 669.863860][T10257] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 670.236408][T10257] EXT4-fs error (device loop4): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.4.1799: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 670.294405][T10257] EXT4-fs error (device loop4) in ext4_delete_entry:2737: Corrupt filesystem [ 670.832911][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 671.958024][T10284] loop3: detected capacity change from 0 to 64 [ 672.467602][T10289] netlink: 6 bytes leftover after parsing attributes in process `syz.4.1812'. [ 675.237492][T10310] loop2: detected capacity change from 0 to 2048 [ 675.543794][T10314] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 675.849600][T10316] bridge0: port 3(ipvlan3) entered blocking state [ 675.856984][T10316] bridge0: port 3(ipvlan3) entered disabled state [ 675.869941][T10316] ipvlan3: entered allmulticast mode [ 675.877609][T10316] bridge0: entered allmulticast mode [ 675.884996][T10316] ipvlan3: left allmulticast mode [ 675.890274][T10316] bridge0: left allmulticast mode [ 676.209722][T10319] loop5: detected capacity change from 0 to 512 [ 676.408547][T10319] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 676.530188][T10319] EXT4-fs error (device loop5): ext4_get_branch:178: inode #13: block 1024: comm syz.5.1826: invalid block [ 676.641290][T10319] EXT4-fs (loop5): Remounting filesystem read-only [ 676.702848][T10319] EXT4-fs (loop5): 1 truncate cleaned up [ 676.711456][T10319] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 677.167797][T10319] EXT4-fs (loop5): changing journal_checksum during remount not supported; ignoring [ 677.687256][ T6137] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 678.491023][T10344] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1837'. [ 678.670736][ T5906] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 678.882103][ T5906] usb 6-1: Using ep0 maxpacket: 32 [ 678.944924][ T5906] usb 6-1: config 0 has an invalid interface number: 51 but max is 0 [ 678.953486][ T5906] usb 6-1: config 0 has no interface number 0 [ 679.091906][ T5906] usb 6-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 679.101476][ T5906] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 679.109917][ T5906] usb 6-1: Product: syz [ 679.115457][ T5906] usb 6-1: Manufacturer: syz [ 679.120306][ T5906] usb 6-1: SerialNumber: syz [ 679.229369][ T5906] usb 6-1: config 0 descriptor?? [ 679.287117][ T5906] quatech2 6-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 679.569636][ T5906] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 679.596362][ T5906] usb 6-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 679.949562][ C0] usb 6-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 679.971436][ T5906] usb 6-1: USB disconnect, device number 6 [ 680.055527][ T5906] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 680.115266][ T5906] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 680.129322][ T5906] quatech2 6-1:0.51: device disconnected [ 681.268090][T10364] loop4: detected capacity change from 0 to 512 [ 681.478414][T10364] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 681.491845][T10364] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 1024: comm syz.4.1846: invalid block [ 681.618136][T10364] EXT4-fs (loop4): Remounting filesystem read-only [ 681.663662][T10364] EXT4-fs (loop4): 1 truncate cleaned up [ 681.672262][T10364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 681.879189][T10374] loop2: detected capacity change from 0 to 64 [ 682.056564][T10364] EXT4-fs (loop4): changing journal_checksum during remount not supported; ignoring [ 682.484802][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 683.467438][ T5906] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 683.653142][ T5906] usb 5-1: Using ep0 maxpacket: 32 [ 683.720329][ T5906] usb 5-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 683.729952][ T5906] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 683.824327][ T5906] usb 5-1: config 0 descriptor?? [ 683.889450][ T5906] gspca_main: sunplus-2.14.0 probing 041e:400b [ 684.592433][T10395] program syz.1.1861 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 684.628511][ T5906] gspca_sunplus: reg_r err -71 [ 684.634350][ T5906] sunplus 5-1:0.0: probe with driver sunplus failed with error -71 [ 684.654039][ T5906] usb 5-1: USB disconnect, device number 14 [ 686.387577][T10416] loop1: detected capacity change from 0 to 128 [ 686.609022][T10418] loop5: detected capacity change from 0 to 512 [ 686.759242][T10418] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.1871: inode has both inline data and extents flags [ 686.790034][T10421] loop2: detected capacity change from 0 to 512 [ 686.805687][T10421] EXT4-fs: Ignoring removed nobh option [ 686.858760][T10418] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.1871: couldn't read orphan inode 15 (err -117) [ 686.898425][T10421] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.1872: iget: bad i_size value: 38620345925642 [ 686.959863][T10418] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 687.009273][T10421] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1872: couldn't read orphan inode 15 (err -117) [ 687.088530][T10421] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 687.553846][ T6137] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 687.787943][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 688.680063][T10443] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1878'. [ 688.779007][T10443] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1878'. [ 689.983284][T10451] loop3: detected capacity change from 0 to 4096 [ 690.186667][T10459] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 691.465420][T10466] loop4: detected capacity change from 0 to 1024 [ 691.912768][T10473] loop1: detected capacity change from 0 to 256 [ 692.328965][T10473] FAT-fs (loop1): Directory bread(block 64) failed [ 692.336666][T10473] FAT-fs (loop1): Directory bread(block 65) failed [ 692.344188][T10473] FAT-fs (loop1): Directory bread(block 66) failed [ 692.356592][T10473] FAT-fs (loop1): Directory bread(block 67) failed [ 692.365398][T10473] FAT-fs (loop1): Directory bread(block 68) failed [ 692.372304][T10473] FAT-fs (loop1): Directory bread(block 69) failed [ 692.379289][T10473] FAT-fs (loop1): Directory bread(block 70) failed [ 692.386334][T10473] FAT-fs (loop1): Directory bread(block 71) failed [ 692.393461][T10473] FAT-fs (loop1): Directory bread(block 72) failed [ 692.400219][T10473] FAT-fs (loop1): Directory bread(block 73) failed [ 692.754148][T10480] loop4: detected capacity change from 0 to 256 [ 692.829294][T10480] exfat: Deprecated parameter 'utf8' [ 692.846504][T10480] exfat: Deprecated parameter 'utf8' [ 693.064885][T10480] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 695.097446][T10497] loop1: detected capacity change from 0 to 4096 [ 695.196837][T10497] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 695.239147][T10497] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096) [ 695.358719][T10506] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 695.516649][T10497] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=15) [ 695.589454][T10497] Remounting filesystem read-only [ 695.642919][T10497] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 524288 [ 695.659287][T10497] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=15) [ 695.678861][T10497] NILFS (loop1): error -5 truncating bmap (ino=15) [ 695.881095][T10508] loop4: detected capacity change from 0 to 2048 [ 696.102741][ T5810] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 696.132858][T10508] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 696.298655][T10517] loop5: detected capacity change from 0 to 128 [ 696.368013][T10508] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 696.384803][T10508] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28 [ 696.397600][T10508] EXT4-fs (loop4): This should not happen!! Data will be lost [ 696.397600][T10508] [ 696.409048][T10508] EXT4-fs (loop4): Total free blocks count 0 [ 696.415464][T10508] EXT4-fs (loop4): Free/Dirty block details [ 696.421812][T10508] EXT4-fs (loop4): free_blocks=2415919504 [ 696.427774][T10508] EXT4-fs (loop4): dirty_blocks=32 [ 696.434080][T10508] EXT4-fs (loop4): Block reservation details [ 696.440294][T10508] EXT4-fs (loop4): i_reserved_data_blocks=2 [ 696.535815][T10517] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 696.679830][T10517] ext4 filesystem being mounted at /345/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 696.866288][ T35] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 696.893396][T10521] loop3: detected capacity change from 0 to 256 [ 697.006797][T10521] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 256) [ 697.258564][T10523] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 697.454791][ T6137] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 697.812138][T10527] loop4: detected capacity change from 0 to 256 [ 697.865576][T10527] exfat: Deprecated parameter 'utf8' [ 697.978546][T10527] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 698.418936][T10534] loop1: detected capacity change from 0 to 1024 [ 699.158226][ T3808] hfsplus: b-tree write err: -5, ino 4 [ 700.687469][T10561] binder: 10560:10561 ioctl c0306201 800003c0 returned -22 [ 703.647386][T10593] loop3: detected capacity change from 0 to 512 [ 703.819029][T10593] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.1947: Parent and EA inode have the same ino 15 [ 703.867411][T10593] EXT4-fs error (device loop3): ext4_xattr_inode_iget:437: comm syz.3.1947: Parent and EA inode have the same ino 15 [ 703.897115][T10593] EXT4-fs (loop3): 1 orphan inode deleted [ 703.924409][T10593] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 703.930596][ C0] hrtimer: interrupt took 697492 ns [ 704.143475][T10593] EXT4-fs error (device loop3): ext4_rename:3810: inode #15: comm syz.3.1947: target of rename is already freed [ 704.599989][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 705.333994][T10615] loop1: detected capacity change from 0 to 128 [ 705.443563][T10615] FAT-fs (loop1): Directory bread(block 414) failed [ 705.450730][T10615] FAT-fs (loop1): Directory bread(block 415) failed [ 705.463304][T10615] FAT-fs (loop1): Directory bread(block 416) failed [ 705.472475][T10615] FAT-fs (loop1): Directory bread(block 417) failed [ 705.479361][T10615] FAT-fs (loop1): Directory bread(block 418) failed [ 705.486426][T10615] FAT-fs (loop1): Directory bread(block 419) failed [ 705.494101][T10615] FAT-fs (loop1): Directory bread(block 420) failed [ 705.501204][T10615] FAT-fs (loop1): Directory bread(block 421) failed [ 705.889308][T10621] FAT-fs (loop1): Directory bread(block 414) failed [ 705.896601][T10621] FAT-fs (loop1): Directory bread(block 415) failed [ 707.056773][T10631] netlink: 'syz.1.1965': attribute type 2 has an invalid length. [ 711.300862][ T797] usb 5-1: new full-speed USB device number 15 using dummy_hcd [ 711.470819][T10684] dummy0: entered promiscuous mode [ 711.536043][ T797] usb 5-1: config 0 has an invalid interface number: 41 but max is 0 [ 711.544599][ T797] usb 5-1: config 0 has no interface number 0 [ 711.551208][ T797] usb 5-1: config 0 interface 41 has no altsetting 0 [ 711.632203][ T797] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 711.641890][ T797] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 711.650229][ T797] usb 5-1: Product: syz [ 711.655200][ T797] usb 5-1: Manufacturer: syz [ 711.660054][ T797] usb 5-1: SerialNumber: syz [ 711.702156][T10684] dummy0: left promiscuous mode [ 711.853731][ T797] usb 5-1: config 0 descriptor?? [ 712.555667][ T797] CoreChips 5-1:0.41: probe with driver CoreChips failed with error -71 [ 712.652556][ T797] usb 5-1: USB disconnect, device number 15 [ 716.267602][ T796] usb 6-1: new full-speed USB device number 7 using dummy_hcd [ 716.466093][ T796] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 716.482187][ T796] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 3 [ 716.661327][ T796] usb 6-1: New USB device found, idVendor=04e2, idProduct=1424, bcdDevice=c7.eb [ 716.676263][ T796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 716.690272][ T796] usb 6-1: Product: syz [ 716.705911][ T796] usb 6-1: Manufacturer: syz [ 716.716227][ T796] usb 6-1: SerialNumber: syz [ 716.752697][ T796] usb 6-1: config 0 descriptor?? [ 716.921958][T10740] loop1: detected capacity change from 0 to 1024 [ 717.046162][ T796] usb 6-1: USB disconnect, device number 7 [ 717.364453][T10744] loop3: detected capacity change from 0 to 1024 [ 717.399106][ T12] hfsplus: b-tree write err: -5, ino 4 [ 717.429015][T10744] EXT4-fs: Ignoring removed nomblk_io_submit option [ 717.495054][T10744] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 717.558897][T10744] System zones: 0-1, 3-36 [ 717.636840][T10744] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 718.303885][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 718.557171][ T796] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 718.784817][ T796] usb 2-1: Using ep0 maxpacket: 32 [ 718.857483][ T796] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 718.875637][ T796] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 718.897679][ T796] usb 2-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.40 [ 718.910031][ T796] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 719.101944][ T796] usb 2-1: config 0 descriptor?? [ 719.776844][ T796] magicmouse 0003:05AC:0265.0019: hidraw0: USB HID v0.00 Device [HID 05ac:0265] on usb-dummy_hcd.1-1/input0 [ 719.978296][ T797] usb 2-1: USB disconnect, device number 6 [ 720.134300][T10768] [U] µ4Oc¸ß– [ 720.539048][T10774] netlink: 128 bytes leftover after parsing attributes in process `syz.4.2030'. [ 721.249412][T10779] CUSE: unknown device info "" [ 721.260285][T10779] CUSE: unknown device info "Ö" [ 721.282100][T10779] CUSE: unknown device info "ÿÿÿÿÿÿÿ" [ 721.288247][T10779] CUSE: unknown device info "ðÿÿÿ" [ 721.299397][T10779] CUSE: unknown device info "" [ 721.316166][T10779] CUSE: unknown device info "" [ 721.327475][T10779] CUSE: unknown device info "" [ 721.339732][T10779] CUSE: unknown device info "" [ 721.346443][T10779] CUSE: unknown device info "ýÿÿÿÿÿÿÿ#Û" [ 721.353041][T10779] CUSE: unknown device info "ÿÿÿÿ" [ 721.358440][T10779] CUSE: unknown device info "" [ 721.369398][T10779] CUSE: unknown device info "€" [ 721.380103][T10779] CUSE: DEVNAME unspecified [ 721.462328][T10784] afs: Unexpected value for 'dyn' [ 721.503810][T10785] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2035'. [ 722.256238][ C1] sd 0:0:1:0: [sda] tag#8990 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 722.267360][ C1] sd 0:0:1:0: [sda] tag#8990 CDB: Write(6) 0a 00 4e 23 00 00 20 00 fe 80 00 00 [ 722.430113][T10794] tipc: Started in network mode [ 722.436057][T10794] tipc: Node identity fe80000000000000000000000000001, cluster identity 9 [ 722.445947][T10794] tipc: Enabling of bearer rejected, failed to enable media [ 722.678997][ T796] usb 6-1: new high-speed USB device number 8 using dummy_hcd [ 722.874947][ T796] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 722.885358][ T796] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 722.904342][ T796] usb 6-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.00 [ 722.919278][ T796] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 723.056947][T10801] netlink: 68 bytes leftover after parsing attributes in process `syz.2.2044'. [ 723.099311][ T796] usb 6-1: config 0 descriptor?? [ 723.637141][ T796] waterforce 0003:1044:7A4D.001A: item fetching failed at offset 0/1 [ 723.757885][ T796] waterforce 0003:1044:7A4D.001A: hid parse failed with -22 [ 723.771496][ T796] waterforce 0003:1044:7A4D.001A: probe with driver waterforce failed with error -22 [ 723.849464][ T796] usb 6-1: USB disconnect, device number 8 [ 724.307431][ T797] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 724.567590][ T797] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 724.578361][ T797] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 724.678811][ T797] usb 3-1: config 0 descriptor?? [ 724.745040][ T797] cp210x 3-1:0.0: cp210x converter detected [ 725.360282][T10821] loop4: detected capacity change from 0 to 256 [ 725.409992][ T797] cp210x 3-1:0.0: failed to get vendor val 0x370c size 73: -71 [ 725.419247][ T797] cp210x 3-1:0.0: GPIO initialisation failed: -71 [ 725.466043][T10821] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 725.525616][ T797] usb 3-1: cp210x converter now attached to ttyUSB0 [ 725.618275][ T797] usb 3-1: USB disconnect, device number 8 [ 725.657985][ T797] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 725.667846][ T797] cp210x 3-1:0.0: device disconnected [ 726.409791][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 726.422276][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 726.431741][ T797] usb 4-1: new full-speed USB device number 11 using dummy_hcd [ 726.667820][ T797] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 726.678725][ T797] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 726.688136][ T797] usb 4-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8 [ 726.697603][ T797] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 726.895907][ T797] usb 4-1: config 0 descriptor?? [ 726.939414][ T797] dvb-usb: found a 'Artec T1 USB2.0' in warm state. [ 726.946824][ T797] dvb-usb: bulk message failed: -22 (3/0) [ 727.046761][ T797] dvb-usb: will use the device's hardware PID filter (table count: 16). [ 727.059173][ T797] dvbdev: DVB: registering new adapter (Artec T1 USB2.0) [ 727.079100][ T797] usb 4-1: media controller created [ 727.099622][ T797] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 727.186013][T10827] dvb-usb: bulk message failed: -22 (2/0) [ 727.293806][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 727.300071][ T797] dvb-usb: no frontend was attached by 'Artec T1 USB2.0' [ 727.383336][ T797] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input17 [ 727.471939][ T797] dvb-usb: schedule remote query interval to 150 msecs. [ 727.488340][ T797] dvb-usb: Artec T1 USB2.0 successfully initialized and connected. [ 727.586129][ T797] usb 4-1: USB disconnect, device number 11 [ 727.752561][ T797] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected. [ 728.976341][T10836] loop1: detected capacity change from 0 to 8192 [ 729.648052][T10852] loop3: detected capacity change from 0 to 4096 [ 729.827415][T10861] nbd: must specify an index to disconnect [ 729.984274][T10852] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 730.395400][T10852] ntfs3(loop3): Failed to load $Extend (-22). [ 730.402237][T10852] ntfs3(loop3): Failed to initialize $Extend. [ 730.972170][T10870] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 731.036589][T10868] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2074'. [ 732.384782][T10884] loop4: detected capacity change from 0 to 256 [ 732.616292][T10884] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 732.741651][ T30] audit: type=1800 audit(2000000057.860:81): pid=10884 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2081" name="file1" dev="loop4" ino=1048737 res=0 errno=0 [ 732.867826][T10886] loop2: detected capacity change from 0 to 256 [ 733.183108][T10888] 9p: Bad value for 'rfdno' [ 733.478686][T10893] loop3: detected capacity change from 0 to 1024 [ 733.536626][T10893] EXT4-fs: Ignoring removed mblk_io_submit option [ 733.549483][T10893] EXT4-fs: inline encryption not supported [ 733.608488][T10893] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 733.762083][T10893] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.2085: bad orphan inode 11 [ 733.860919][T10893] EXT4-fs (loop3): Remounting filesystem read-only [ 733.868034][T10893] ext4_test_bit(bit=10, block=4) = 1 [ 733.874349][T10893] is_bad_inode(inode)=0 [ 733.878742][T10893] NEXT_ORPHAN(inode)=3254779904 [ 733.883996][T10893] max_ino=32 [ 733.887351][T10893] i_nlink=0 [ 733.893142][T10893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 734.223660][T10893] EXT4-fs: Cannot change journaled quota options when quota turned on [ 734.607642][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 736.649998][T10931] loop3: detected capacity change from 0 to 16 [ 736.739080][T10931] erofs (device loop3): mounted with root inode @ nid 36. [ 737.237921][T10934] loop1: detected capacity change from 0 to 2048 [ 737.443326][T10934] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 737.461703][T10934] ext4 filesystem being mounted at /443/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 737.610266][T10934] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 737.686193][T10941] kAFS: Can only specify source 'none' with -o dyn [ 737.856448][T10934] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 737.928789][ T797] kernel write not supported for file /snd/seq (pid: 797 comm: kworker/0:2) [ 738.349486][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 739.451233][T10960] loop2: detected capacity change from 0 to 64 [ 739.891172][ T797] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 740.077246][ T797] usb 5-1: Using ep0 maxpacket: 32 [ 740.138190][ T797] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 740.147547][ T797] usb 5-1: config 0 has no interface number 0 [ 740.253191][ T797] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 740.262841][ T797] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 740.271490][ T797] usb 5-1: Product: syz [ 740.281382][ T797] usb 5-1: Manufacturer: syz [ 740.287828][ T797] usb 5-1: SerialNumber: syz [ 740.339966][ T797] usb 5-1: config 0 descriptor?? [ 740.450135][ T797] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 740.831062][T10974] sch_tbf: burst 22 is lower than device lo mtu (65550) ! [ 741.076035][ T797] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 741.163688][ T797] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 741.326151][T10977] loop5: detected capacity change from 0 to 256 [ 741.336023][ C0] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 741.345574][ T797] usb 5-1: USB disconnect, device number 16 [ 741.406815][ T797] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 741.478293][ T797] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 741.492557][ T797] quatech2 5-1:0.51: device disconnected [ 741.640249][T10977] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 741.736762][ T796] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 741.956205][ T796] usb 2-1: Using ep0 maxpacket: 8 [ 741.986469][ T796] usb 2-1: config 2 has an invalid interface number: 31 but max is 0 [ 742.000858][ T796] usb 2-1: config 2 has no interface number 0 [ 742.007347][ T796] usb 2-1: config 2 interface 31 has no altsetting 0 [ 742.159354][ T796] usb 2-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f [ 742.174506][ T796] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 742.188337][ T796] usb 2-1: Product: syz [ 742.198467][ T796] usb 2-1: Manufacturer: syz [ 742.208894][ T796] usb 2-1: SerialNumber: syz [ 743.189752][ T796] ch9200 2-1:2.31: probe with driver ch9200 failed with error -22 [ 743.297242][ T796] usb 2-1: USB disconnect, device number 7 [ 743.990101][T10997] netlink: 220 bytes leftover after parsing attributes in process `syz.4.2130'. [ 744.605760][T10999] loop3: detected capacity change from 0 to 1024 [ 744.994671][T11007] bridge0: port 3(ipvlan2) entered blocking state [ 745.001962][T11007] bridge0: port 3(ipvlan2) entered disabled state [ 745.009210][T11007] ipvlan2: entered allmulticast mode [ 745.015315][T11007] bridge0: entered allmulticast mode [ 745.023450][T11007] ipvlan2: left allmulticast mode [ 745.028746][T11007] bridge0: left allmulticast mode [ 745.550141][T11009] loop5: detected capacity change from 0 to 512 [ 745.651227][T11009] EXT4-fs (loop5): warning: mounting unchecked fs, running e2fsck is recommended [ 745.718799][T11009] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 745.734109][T11009] System zones: 0-2, 18-18, 34-35 [ 745.770123][T11009] EXT4-fs (loop5): mounted filesystem 00000000-0700-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 746.297988][ T6137] EXT4-fs (loop5): unmounting filesystem 00000000-0700-0000-0000-000000000000. [ 746.822523][T11024] loop1: detected capacity change from 0 to 256 [ 747.102031][ T5906] usb 6-1: new high-speed USB device number 9 using dummy_hcd [ 747.363959][ T5906] usb 6-1: unable to get BOS descriptor or descriptor too short [ 747.414906][ T5906] usb 6-1: config 128 has an invalid interface number: 144 but max is 0 [ 747.424194][ T5906] usb 6-1: config 128 has no interface number 0 [ 747.431172][ T5906] usb 6-1: config 128 interface 144 has no altsetting 0 [ 747.529394][ T5906] usb 6-1: New USB device found, idVendor=05cc, idProduct=3352, bcdDevice=b5.7e [ 747.539653][ T5906] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 747.552607][ T5906] usb 6-1: Product: syz [ 747.557060][ T5906] usb 6-1: Manufacturer: syz [ 747.563612][ T5906] usb 6-1: SerialNumber: syz [ 748.047853][ T5906] usb 6-1: [ueagle-atm] ADSL device founded vid (0X5CC) pid (0X3352) Rev (0XB57E): ADI930 [ 748.139093][T11039] netlink: 95 bytes leftover after parsing attributes in process `syz.1.2149'. [ 748.341308][ T797] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 748.541924][ T797] usb 4-1: Using ep0 maxpacket: 32 [ 748.576548][ T5906] usb 6-1: reset high-speed USB device number 9 using dummy_hcd [ 748.603053][ T797] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 748.614160][ T797] usb 4-1: New USB device found, idVendor=9022, idProduct=d662, bcdDevice=b3.0e [ 748.630786][ T797] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 748.738486][ T797] usb 4-1: config 0 descriptor?? [ 748.797000][ T797] dvb-usb: found a 'TeVii S662' in warm state. [ 748.803754][ T797] dw2102: su3000_power_ctrl: 1, initialized 0 [ 748.810028][ T797] dvb-usb: bulk message failed: -22 (2/0) [ 748.859964][ T5906] usb 6-1: unable to get BOS descriptor or descriptor too short [ 748.888806][ T5906] usb 6-1: device firmware changed [ 748.905049][ T5906] usb 6-1: [ueagle-atm] pre-firmware device, uploading firmware [ 748.915533][ T5906] usb 6-1: [ueagle-atm] loading firmware ueagle-atm/adi930.fw [ 748.946917][T11043] loop2: detected capacity change from 0 to 4096 [ 748.963763][ T9] usb 6-1: Direct firmware load for ueagle-atm/adi930.fw failed with error -2 [ 748.973344][ T9] usb 6-1: Falling back to sysfs fallback for: ueagle-atm/adi930.fw [ 749.018297][ T797] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 749.043899][ T5906] usb 6-1: USB disconnect, device number 9 [ 749.061372][T11038] dvb-usb: bulk message failed: -22 (3/0) [ 749.067361][T11038] dw2102: i2c transfer failed. [ 749.072859][T11038] dvb-usb: bulk message failed: -22 (4/0) [ 749.078786][T11038] dw2102: i2c transfer failed. [ 749.100950][ T797] dvbdev: DVB: registering new adapter (TeVii S662) [ 749.108269][ T797] usb 4-1: media controller created [ 749.113890][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.119991][ T797] dw2102: i2c transfer failed. [ 749.125056][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.131115][ T797] dw2102: i2c transfer failed. [ 749.136148][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.142187][ T797] dw2102: i2c transfer failed. [ 749.147662][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.154552][ T797] dw2102: i2c transfer failed. [ 749.159501][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.165610][ T797] dw2102: i2c transfer failed. [ 749.170749][ T797] dvb-usb: bulk message failed: -22 (6/0) [ 749.176856][ T797] dw2102: i2c transfer failed. [ 749.182399][ T797] dvb-usb: MAC address: 02:02:02:02:02:02 [ 749.316612][ T797] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 749.329013][T11049] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 749.691810][ T797] dvb-usb: bulk message failed: -22 (3/0) [ 749.704952][ T797] dw2102: command 0x0e transfer failed. [ 749.713173][ T797] dvb-usb: bulk message failed: -22 (3/0) [ 749.719249][ T797] dw2102: command 0x0e transfer failed. [ 750.052225][ T797] dvb-usb: bulk message failed: -22 (3/0) [ 750.058530][ T797] dw2102: command 0x0e transfer failed. [ 750.064768][ T797] dvb-usb: bulk message failed: -22 (3/0) [ 750.070974][ T797] dw2102: command 0x0e transfer failed. [ 750.076693][ T797] dvb-usb: bulk message failed: -22 (1/0) [ 750.083536][ T797] dw2102: command 0x51 transfer failed. [ 750.089337][ T797] dvb-usb: bulk message failed: -22 (5/0) [ 750.095435][ T797] dw2102: i2c probe for address 0x68 failed. [ 750.101827][ T797] dvb-usb: bulk message failed: -22 (5/0) [ 750.114752][ T797] dw2102: i2c probe for address 0x69 failed. [ 750.122869][ T797] dvb-usb: bulk message failed: -22 (5/0) [ 750.128907][ T797] dw2102: i2c probe for address 0x6a failed. [ 750.135475][ T797] dw2102: probing for demodulator failed. Is the external power switched on? [ 750.144865][ T797] dvb-usb: no frontend was attached by 'TeVii S662' [ 750.369833][T11053] loop5: detected capacity change from 0 to 256 [ 750.463987][T11053] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 750.729275][T11053] exFAT-fs (loop5): start_clu is invalid cluster(0xffffffff) [ 751.090785][ T797] rc_core: IR keymap rc-tt-1500 not found [ 751.096847][ T797] Registered IR keymap rc-empty [ 751.104024][ T797] rc rc0: TeVii S662 as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0 [ 751.115965][ T797] input: TeVii S662 as /devices/platform/dummy_hcd.3/usb4/4-1/rc/rc0/input18 [ 751.287417][ T797] dvb-usb: schedule remote query interval to 250 msecs. [ 751.295839][ T797] dw2102: su3000_power_ctrl: 0, initialized 1 [ 751.302713][ T797] dvb-usb: TeVii S662 successfully initialized and connected. [ 751.413749][ T797] usb 4-1: USB disconnect, device number 12 [ 751.476364][T11063] loop4: detected capacity change from 0 to 512 [ 751.607158][T11063] EXT4-fs (loop4): orphan cleanup on readonly fs [ 751.613970][T11063] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -13 [ 751.759168][T11063] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 751.799974][T11063] EXT4-fs error (device loop4): ext4_clear_blocks:876: inode #13: comm syz.4.2159: attempt to clear invalid blocks 2 len 1 [ 751.839210][T11063] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2159: invalid indirect mapped block 1819239214 (level 0) [ 751.883686][T11063] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #13: comm syz.4.2159: invalid indirect mapped block 1819239214 (level 1) [ 752.029498][T11063] EXT4-fs (loop4): 1 truncate cleaned up [ 752.039787][T11063] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 752.277571][ T797] dvb-usb: TeVii S662 successfully deinitialized and disconnected. [ 752.338884][T11063] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 752.411231][T11063] EXT4-fs error (device loop4): __ext4_remount:6789: comm syz.4.2159: Abort forced by user [ 752.458288][T11063] EXT4-fs (loop4): Remounting filesystem read-only [ 752.471173][T11063] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. [ 752.739358][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 753.117384][T11078] loop1: detected capacity change from 0 to 8 [ 753.302595][T11078] cramfs: bad data blocksize 4294967270 [ 753.308617][T11078] cramfs: Error -3 while decompressing! [ 753.314746][T11078] cramfs: ffffffff950a80a2(26)->ffff88805748f000(4096) [ 753.322542][T11078] cramfs: bad data blocksize 3221485902 [ 753.328301][T11078] cramfs: bad data blocksize 4294967270 [ 753.366562][ T30] audit: type=1800 audit(2000000078.460:82): pid=11078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2164" name="file2" dev="loop1" ino=348 res=0 errno=0 [ 753.787840][T11086] loop2: detected capacity change from 0 to 764 [ 753.912853][T11086] rock: directory entry would overflow storage [ 753.919411][T11086] rock: sig=0x4654, size=5, remaining=4 [ 755.397641][ T797] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 755.645637][ T797] usb 6-1: config 220 has an invalid interface number: 76 but max is 2 [ 755.654600][ T797] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 755.664233][ T797] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 755.675213][ T797] usb 6-1: config 220 has no interface number 2 [ 755.681947][ T797] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 755.695583][ T797] usb 6-1: config 220 interface 0 has no altsetting 0 [ 755.702802][ T797] usb 6-1: config 220 interface 76 has no altsetting 0 [ 755.709979][ T797] usb 6-1: config 220 interface 1 has no altsetting 0 [ 755.946000][T11107] loop4: detected capacity change from 0 to 512 [ 756.004942][ T797] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 756.014575][ T797] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 756.023136][ T797] usb 6-1: Product: syz [ 756.027696][ T797] usb 6-1: Manufacturer: syz [ 756.032680][ T797] usb 6-1: SerialNumber: syz [ 756.075867][T11107] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 756.322135][T11107] EXT4-fs (loop4): 1 truncate cleaned up [ 756.331508][T11107] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 756.450199][ T797] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07) [ 756.465021][ T797] uvcvideo 6-1:220.0: No valid video chain found. [ 756.474759][ T797] usb 6-1: selecting invalid altsetting 0 [ 756.592718][ T797] usb 6-1: selecting invalid altsetting 0 [ 756.599000][ T797] usbtest 6-1:220.1: probe with driver usbtest failed with error -22 [ 756.722196][ T797] usb 6-1: USB disconnect, device number 10 [ 756.898106][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 760.458562][T11154] loop3: detected capacity change from 0 to 2048 [ 760.593068][T11154] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 760.766913][T11154] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters [ 760.833208][T11154] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 10 with max blocks 22 with error 28 [ 760.846082][T11154] EXT4-fs (loop3): This should not happen!! Data will be lost [ 760.846082][T11154] [ 760.861475][T11154] EXT4-fs (loop3): Total free blocks count 0 [ 760.867684][T11154] EXT4-fs (loop3): Free/Dirty block details [ 760.875597][T11154] EXT4-fs (loop3): free_blocks=2415919504 [ 760.882250][T11154] EXT4-fs (loop3): dirty_blocks=32 [ 760.887576][T11154] EXT4-fs (loop3): Block reservation details [ 760.893944][T11154] EXT4-fs (loop3): i_reserved_data_blocks=2 [ 761.256482][T11167] loop1: detected capacity change from 0 to 512 [ 761.319433][T11168] loop2: detected capacity change from 0 to 256 [ 761.332919][T11167] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 761.364674][ T4034] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 761.413899][T11167] EXT4-fs (loop1): invalid journal inode [ 761.419841][T11167] EXT4-fs (loop1): can't get journal size [ 761.510983][T11167] EXT4-fs (loop1): 1 truncate cleaned up [ 761.519850][T11167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 761.711074][T11168] FAT-fs (loop2): Directory bread(block 64) failed [ 761.717891][T11168] FAT-fs (loop2): Directory bread(block 65) failed [ 761.725215][T11168] FAT-fs (loop2): Directory bread(block 66) failed [ 761.732121][T11168] FAT-fs (loop2): Directory bread(block 67) failed [ 761.739238][T11168] FAT-fs (loop2): Directory bread(block 68) failed [ 761.746225][T11168] FAT-fs (loop2): Directory bread(block 69) failed [ 761.753940][T11168] FAT-fs (loop2): Directory bread(block 70) failed [ 761.760975][T11168] FAT-fs (loop2): Directory bread(block 71) failed [ 761.767990][T11168] FAT-fs (loop2): Directory bread(block 72) failed [ 761.774993][T11168] FAT-fs (loop2): Directory bread(block 73) failed [ 762.153672][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 764.272843][T11196] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2216'. [ 764.435243][T11196] vxlan0: entered promiscuous mode [ 764.448252][T11196] vxlan0: entered allmulticast mode [ 764.463425][ T1897] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 764.508967][ T1897] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 764.518678][ T1897] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 764.594196][ T1897] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 764.916179][T11201] macsec1: entered allmulticast mode [ 764.927576][T11201] macvlan0: entered allmulticast mode [ 764.938986][T11201] veth1_vlan: entered allmulticast mode [ 764.972655][T11201] macvlan0: left allmulticast mode [ 764.978030][T11201] veth1_vlan: left allmulticast mode [ 765.345521][T11206] loop3: detected capacity change from 0 to 64 [ 765.572535][T11208] loop1: detected capacity change from 0 to 256 [ 765.589118][T11208] exfat: Deprecated parameter 'utf8' [ 765.606666][T11208] exfat: Deprecated parameter 'namecase' [ 765.618555][T11208] exfat: Deprecated parameter 'namecase' [ 765.630281][T11208] exfat: Deprecated parameter 'utf8' [ 765.856416][T11208] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x5bbffacf, utbl_chksum : 0xe619d30d) [ 765.876950][T11208] exFAT-fs (loop1): failed to test first cluster bit of root dir(5) [ 767.321593][T11224] loop2: detected capacity change from 0 to 64 [ 769.105820][T11238] loop2: detected capacity change from 0 to 16 [ 769.202144][T11238] erofs (device loop2): mounted with root inode @ nid 36. [ 773.287000][T11277] binder: 11276:11277 ioctl c0306201 800003c0 returned -22 [ 773.685029][T11283] overlayfs: workdir and upperdir must be separate subtrees [ 774.538911][T11289] sctp: [Deprecated]: syz.4.2257 (pid 11289) Use of struct sctp_assoc_value in delayed_ack socket option. [ 774.538911][T11289] Use struct sctp_sack_info instead [ 774.866947][T11293] loop2: detected capacity change from 0 to 128 [ 775.124195][T11293] bio_check_eod: 15 callbacks suppressed [ 775.124284][T11293] syz.2.2258: attempt to access beyond end of device [ 775.124284][T11293] loop2: rw=2049, sector=154, nr_sectors = 6 limit=128 [ 775.223981][T11293] syz.2.2258: attempt to access beyond end of device [ 775.223981][T11293] loop2: rw=8390657, sector=158, nr_sectors = 2 limit=128 [ 775.238434][T11293] buffer_io_error: 14 callbacks suppressed [ 775.238518][T11293] Buffer I/O error on dev loop2, logical block 79, lost async page write [ 775.253993][T11293] syz.2.2258: attempt to access beyond end of device [ 775.253993][T11293] loop2: rw=8390657, sector=160, nr_sectors = 2 limit=128 [ 775.268314][T11293] Buffer I/O error on dev loop2, logical block 80, lost async page write [ 775.294018][T11293] syz.2.2258: attempt to access beyond end of device [ 775.294018][T11293] loop2: rw=2049, sector=162, nr_sectors = 6 limit=128 [ 775.427185][T11293] syz.2.2258: attempt to access beyond end of device [ 775.427185][T11293] loop2: rw=8390657, sector=166, nr_sectors = 2 limit=128 [ 775.457843][T11293] Buffer I/O error on dev loop2, logical block 83, lost async page write [ 775.478423][T11293] syz.2.2258: attempt to access beyond end of device [ 775.478423][T11293] loop2: rw=8390657, sector=168, nr_sectors = 2 limit=128 [ 775.509145][T11293] Buffer I/O error on dev loop2, logical block 84, lost async page write [ 775.624002][T11293] syz.2.2258: attempt to access beyond end of device [ 775.624002][T11293] loop2: rw=2049, sector=186, nr_sectors = 6 limit=128 [ 775.996752][T11302] netlink: 'syz.3.2261': attribute type 3 has an invalid length. [ 780.773938][ T797] kernel write not supported for file /971/loginuid (pid: 797 comm: kworker/0:2) [ 781.537812][T11348] loop1: detected capacity change from 0 to 128 [ 781.600792][T11348] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 781.611015][T11350] loop5: detected capacity change from 0 to 8 [ 781.790856][T11350] cramfs: bad data blocksize 4294967270 [ 781.796666][T11350] cramfs: Error -3 while decompressing! [ 781.803030][T11350] cramfs: ffffffff950a80a2(26)->ffff8880215b5000(4096) [ 781.810885][T11350] cramfs: bad data blocksize 3221485902 [ 781.816716][T11350] cramfs: bad data blocksize 4294967270 [ 781.870213][ T30] audit: type=1800 audit(2000000106.950:83): pid=11350 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2282" name="file2" dev="loop5" ino=348 res=0 errno=0 [ 781.985677][T11348] UDF-fs: error (device loop1): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40) [ 783.428977][ T30] audit: type=1326 audit(2000000108.550:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11360 comm="syz.3.2289" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 783.451737][ T30] audit: type=1326 audit(2000000108.550:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11360 comm="syz.3.2289" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 783.771419][ T30] audit: type=1326 audit(2000000108.700:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11360 comm="syz.3.2289" exe="/root/syz-executor" sig=0 arch=40000003 syscall=333 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 783.798364][ T30] audit: type=1326 audit(2000000108.700:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11360 comm="syz.3.2289" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 783.824498][ T30] audit: type=1326 audit(2000000108.700:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11360 comm="syz.3.2289" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70cd539 code=0x7ffc0000 [ 785.051492][T11376] loop5: detected capacity change from 0 to 1024 [ 785.936241][T11386] loop4: detected capacity change from 0 to 8 [ 786.088625][ T4014] hfsplus: b-tree write err: -5, ino 4 [ 786.135368][T11386] cramfs: bad data blocksize 4294967270 [ 786.141786][T11386] cramfs: Error -3 while decompressing! [ 786.147880][T11386] cramfs: ffffffff950a80a2(26)->ffff888057400000(4096) [ 786.161972][T11386] cramfs: bad data blocksize 3221485902 [ 786.167778][T11386] cramfs: bad data blocksize 4294967270 [ 786.210688][ T30] audit: type=1800 audit(2000000111.300:89): pid=11386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2298" name="file2" dev="loop4" ino=348 res=0 errno=0 [ 787.849438][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 787.867169][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 791.088722][T11435] netlink: 'syz.2.2319': attribute type 3 has an invalid length. [ 793.636879][T11458] batadv0: entered promiscuous mode [ 793.693151][T11454] batadv0: left promiscuous mode [ 796.568248][T11482] netlink: 'syz.5.2348': attribute type 11 has an invalid length. [ 797.340661][ T30] audit: type=1326 audit(2000000122.420:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.363382][ T30] audit: type=1326 audit(2000000122.430:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.386055][ T30] audit: type=1326 audit(2000000122.430:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.657229][ T30] audit: type=1326 audit(2000000122.570:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.696605][ T30] audit: type=1326 audit(2000000122.570:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.731591][ T30] audit: type=1326 audit(2000000122.570:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.775328][ T30] audit: type=1326 audit(2000000122.570:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.810842][ T30] audit: type=1326 audit(2000000122.570:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.851223][T11490] loop2: detected capacity change from 0 to 512 [ 797.854195][T11490] EXT4-fs: Ignoring removed oldalloc option [ 797.854321][T11490] EXT4-fs: Ignoring removed bh option [ 797.906952][ T30] audit: type=1326 audit(2000000122.570:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 797.945139][ T30] audit: type=1326 audit(2000000122.570:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11487 comm="syz.4.2340" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f95539 code=0x7ffc0000 [ 798.058218][T11490] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c118, mo2=0002] [ 798.127495][T11490] System zones: 1-12 [ 798.198044][T11490] EXT4-fs error (device loop2): ext4_iget_extra_inode:5073: inode #15: comm syz.2.2342: corrupted in-inode xattr: e_value size too large [ 798.260208][T11490] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.2342: couldn't read orphan inode 15 (err -117) [ 798.348703][T11490] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 798.958181][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 800.026599][T11507] loop2: detected capacity change from 0 to 16 [ 800.065895][T11507] erofs (device loop2): mounted with root inode @ nid 36. [ 800.442400][T11512] loop1: detected capacity change from 0 to 1024 [ 801.690919][ T5906] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 801.951610][ T5906] usb 3-1: config 0 has an invalid interface number: 2 but max is 0 [ 801.959993][ T5906] usb 3-1: config 0 has no interface number 0 [ 801.966837][ T5906] usb 3-1: too many endpoints for config 0 interface 2 altsetting 1: 65, using maximum allowed: 30 [ 801.978106][ T5906] usb 3-1: config 0 interface 2 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 801.989444][ T5906] usb 3-1: config 0 interface 2 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0 [ 801.999711][ T5906] usb 3-1: config 0 interface 2 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 65 [ 802.013192][ T5906] usb 3-1: config 0 interface 2 has no altsetting 0 [ 802.020122][ T5906] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 802.034553][ T5906] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 802.498396][ T5906] usb 3-1: config 0 descriptor?? [ 803.056705][ T5906] hid-multitouch 0003:1FD2:6007.001B: item fetching failed at offset 0/3 [ 803.139731][ T5906] hid-multitouch 0003:1FD2:6007.001B: probe with driver hid-multitouch failed with error -22 [ 803.311073][ T5906] usb 3-1: USB disconnect, device number 9 [ 806.395235][T11549] loop3: detected capacity change from 0 to 4096 [ 806.482997][T11549] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 806.598347][T11551] loop4: detected capacity change from 0 to 4096 [ 806.689130][T11551] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 806.781154][ T5906] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 806.798382][T11551] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 4096) [ 807.002143][T11558] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 807.067833][ T5906] usb 3-1: config 1 has an invalid interface number: 7 but max is 0 [ 807.076415][ T5906] usb 3-1: config 1 has no interface number 0 [ 807.083061][ T5906] usb 3-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 807.094920][ T5906] usb 3-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 807.105840][ T5906] usb 3-1: config 1 interface 7 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 807.188265][ T30] kauditd_printk_skb: 7 callbacks suppressed [ 807.188352][ T30] audit: type=1800 audit(2000000132.300:107): pid=11551 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2372" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 807.252370][T11551] syz.4.2372: attempt to access beyond end of device [ 807.252370][T11551] loop4: rw=8912896, sector=2097320, nr_sectors = 8 limit=4096 [ 807.334512][T11560] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2376'. [ 807.375218][T11551] syz.4.2372: attempt to access beyond end of device [ 807.375218][T11551] loop4: rw=8388608, sector=2097320, nr_sectors = 8 limit=4096 [ 807.399889][ T5906] usb 3-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 807.409712][ T5906] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 807.418306][ T5906] usb 3-1: Product: syz [ 807.422985][ T5906] usb 3-1: Manufacturer: syz [ 807.427794][ T5906] usb 3-1: SerialNumber: syz [ 807.484555][T11551] syz.4.2372: attempt to access beyond end of device [ 807.484555][T11551] loop4: rw=8388608, sector=2097320, nr_sectors = 8 limit=4096 [ 807.517043][T11557] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 807.928062][T11557] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 808.261367][ T5906] sierra_net 3-1:1.7 wwan0: register 'sierra_net' at usb-dummy_hcd.2-1, Sierra Wireless USB-to-WWAN Modem, 00:00:00:00:01:07 [ 808.586293][T11562] loop1: detected capacity change from 0 to 128 [ 808.755076][ T5906] sierra_net 3-1:1.7 wwan0: Submit SYNC failed -71 [ 808.763030][ T5906] sierra_net 3-1:1.7 wwan0: Send SYNC failed, status -71 [ 808.947078][T11562] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 809.086062][ T5906] sierra_net 3-1:1.7 wwan0: Submit SYNC failed -71 [ 809.100273][ T5906] sierra_net 3-1:1.7 wwan0: Send SYNC failed, status -71 [ 809.522568][ T5906] usb 3-1: USB disconnect, device number 10 [ 809.532549][ T5906] sierra_net 3-1:1.7 wwan0: unregister 'sierra_net' usb-dummy_hcd.2-1, Sierra Wireless USB-to-WWAN Modem [ 809.559034][T11562] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 809.876703][ T5906] sierra_net 3-1:1.7 wwan0 (unregistered): usb_control_msg failed, status -19 [ 813.239675][T11587] loop2: detected capacity change from 0 to 2048 [ 813.345549][T11584] loop4: detected capacity change from 0 to 4096 [ 813.369433][T11587] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 813.442761][ T9] usb 6-1: [UEAGLE-ATM] firmware is not available [ 813.511678][T11592] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 813.605231][T11587] NILFS (loop2): error -2 truncating bmap (ino=16) [ 814.204688][T11592] NILFS (loop2): vblocknr = 15 has abnormal lifetime: start cno (= 4128770) > current cno (= 3) [ 814.220994][T11592] NILFS error (device loop2): nilfs_bmap_propagate: broken bmap (inode number=16) [ 814.389094][T11592] Remounting filesystem read-only [ 814.478152][ T5805] NILFS (loop2): disposed unprocessed dirty file(s) when stopping log writer [ 814.906036][T11597] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2392'. [ 817.107762][T11615] loop3: detected capacity change from 0 to 64 [ 817.167868][T11614] loop4: detected capacity change from 0 to 1024 [ 818.500014][T11621] infiniband syz0: set active [ 818.505174][T11621] infiniband syz0: added bond_slave_0 [ 818.747769][ T4034] hfsplus: b-tree write err: -5, ino 4 [ 818.999318][T11621] RDS/IB: syz0: added [ 819.020041][T11621] smc: adding ib device syz0 with port count 1 [ 819.043442][T11621] smc: ib device syz0 port 1 has no pnetid [ 819.165677][T11628] loop3: detected capacity change from 0 to 16 [ 819.251519][T11629] netlink: 72 bytes leftover after parsing attributes in process `syz.1.2407'. [ 820.095626][T11633] loop2: detected capacity change from 0 to 16 [ 820.175855][T11633] erofs (device loop2): mounted with root inode @ nid 36. [ 820.787467][ T9] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 821.038872][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 821.050768][ T9] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 821.064229][ T9] usb 4-1: New USB device found, idVendor=18d1, idProduct=9400, bcdDevice= 0.00 [ 821.078758][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 821.365975][ T9] usb 4-1: config 0 descriptor?? [ 824.132071][ T9] stadia 0003:18D1:9400.001C: hidraw0: USB HID v0.00 Device [HID 18d1:9400] on usb-dummy_hcd.3-1/input0 [ 824.151902][ T9] stadia 0003:18D1:9400.001C: no inputs found [ 824.158258][ T9] stadia 0003:18D1:9400.001C: force feedback init failed [ 824.561528][ T9] usb 4-1: USB disconnect, device number 13 [ 826.357081][T11659] loop2: detected capacity change from 0 to 256 [ 826.463692][T11659] exfat: Deprecated parameter 'namecase' [ 826.590807][T11663] loop3: detected capacity change from 0 to 64 [ 826.808459][T11659] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 826.851599][T11663] Trying to free block not in datazone [ 828.175524][T11673] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2428'. [ 828.318321][T11677] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2428'. [ 828.631200][ T9] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 828.905865][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 828.917630][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 828.928231][ T9] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 828.941886][ T9] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 828.951564][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 829.383496][ T9] usb 5-1: config 0 descriptor?? [ 829.586345][T11686] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2433'. [ 829.951294][ T9] plantronics 0003:047F:FFFF.001D: unknown main item tag 0x0 [ 829.959040][ T9] plantronics 0003:047F:FFFF.001D: unknown main item tag 0x0 [ 829.967141][ T9] plantronics 0003:047F:FFFF.001D: unknown main item tag 0x5 [ 830.001505][ T9] plantronics 0003:047F:FFFF.001D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 830.162614][ T9] usb 5-1: USB disconnect, device number 17 [ 832.249857][ T30] audit: type=1326 audit(2000000157.320:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11703 comm="syz.5.2443" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf703d539 code=0x0 [ 832.308457][T11708] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2442'. [ 832.328731][T11708] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2442'. [ 835.295605][T11729] loop4: detected capacity change from 0 to 256 [ 835.724421][T11730] loop2: detected capacity change from 0 to 2048 [ 835.867494][T11730] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 835.891181][T11729] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xd22393c8, utbl_chksum : 0xe619d30d) [ 836.508515][T11738] loop5: detected capacity change from 0 to 1764 [ 838.732664][T11761] tipc: Started in network mode [ 838.739247][T11761] tipc: Node identity 2d000000000000000000000000000001, cluster identity 4711 [ 838.750431][T11761] tipc: Enabling of bearer rejected, failed to enable media [ 839.634298][T11766] vlan2: entered promiscuous mode [ 839.639634][T11766] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 840.036418][ T796] usb 6-1: new full-speed USB device number 11 using dummy_hcd [ 840.333998][ T796] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64 [ 840.351411][ T796] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 6 [ 840.378068][ T796] usb 6-1: New USB device found, idVendor=1b1c, idProduct=1c23, bcdDevice= 0.00 [ 840.398835][ T796] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 840.577389][ T796] usb 6-1: config 0 descriptor?? [ 840.602023][T11767] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 841.328724][ T796] corsair-psu 0003:1B1C:1C23.001E: unbalanced collection at end of report description [ 841.473259][ T796] corsair-psu 0003:1B1C:1C23.001E: probe with driver corsair-psu failed with error -22 [ 841.509378][T11779] loop1: detected capacity change from 0 to 256 [ 841.517128][ T796] usb 6-1: USB disconnect, device number 11 [ 841.671065][T11779] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 843.672842][T11796] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2482'. [ 843.882787][T11790] loop3: detected capacity change from 0 to 4096 [ 847.345905][T11828] ieee802154 phy0 wpan0: encryption failed: -22 [ 847.419922][T11827] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2497'. [ 849.299812][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 849.317563][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 850.786423][T11851] loop2: detected capacity change from 0 to 4096 [ 851.503334][T11851] ntfs3(loop2): ino=1a, mi_enum_attr [ 851.509008][T11851] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 854.839821][T11881] loop5: detected capacity change from 0 to 4096 [ 854.899028][T11881] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 854.959863][T11881] ntfs3(loop5): ino=3, mi_enum_attr [ 857.705100][T11918] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2533'. [ 858.967664][T11929] loop1: detected capacity change from 0 to 64 [ 859.514579][ T5820] Bluetooth: hci0: Opcode 0x0c1a failed: -110 [ 859.522217][ T5820] Bluetooth: hci0: command 0x0405 tx timeout [ 860.446338][T11940] loop1: detected capacity change from 0 to 128 [ 860.611754][T11940] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2544'. [ 860.621411][T11940] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2544'. [ 860.758449][T11943] loop4: detected capacity change from 0 to 256 [ 862.072304][T11951] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2549'. [ 862.152561][T11954] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2549'. [ 863.041905][T11961] loop5: detected capacity change from 0 to 512 [ 863.146009][T11961] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 863.358896][T11961] EXT4-fs error (device loop5): __ext4_iget:5426: inode #11: block 524312: comm syz.5.2553: invalid block [ 863.435608][T11961] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.2553: couldn't read orphan inode 11 (err -117) [ 863.538110][T11961] EXT4-fs (loop5): 1 truncate cleaned up [ 863.546631][T11961] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 864.462762][ T1897] EXT4-fs error (device loop5): ext4_validate_block_bitmap:432: comm kworker/u8:10: bg 0: block 5: invalid block bitmap [ 864.524318][ T1897] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 864.537428][ T1897] EXT4-fs (loop5): This should not happen!! Data will be lost [ 864.537428][ T1897] [ 864.547717][ T1897] EXT4-fs (loop5): Total free blocks count 0 [ 864.554495][ T1897] EXT4-fs (loop5): Free/Dirty block details [ 864.560739][ T1897] EXT4-fs (loop5): free_blocks=0 [ 864.565948][ T1897] EXT4-fs (loop5): dirty_blocks=165 [ 864.571583][ T1897] EXT4-fs (loop5): Block reservation details [ 864.577753][ T1897] EXT4-fs (loop5): i_reserved_data_blocks=165 [ 864.991128][ T12] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 164 with error 28 [ 866.566897][T11992] loop4: detected capacity change from 0 to 16 [ 866.586954][T11990] loop1: detected capacity change from 0 to 64 [ 866.695047][T11992] erofs (device loop4): mounted with root inode @ nid 36. [ 866.856879][T11992] netlink: 412 bytes leftover after parsing attributes in process `syz.4.2565'. [ 866.878251][T11990] hfs: request for non-existent node 3584 in B*Tree [ 866.885507][T11990] hfs: request for non-existent node 3584 in B*Tree [ 867.701231][ T12] hfs: request for non-existent node 1280 in B*Tree [ 867.708203][ T12] hfs: request for non-existent node 1280 in B*Tree [ 869.151264][T12007] loop2: detected capacity change from 0 to 1024 [ 869.844431][ T4014] hfsplus: b-tree write err: -5, ino 4 [ 871.563188][T12029] loop3: detected capacity change from 0 to 16 [ 871.632824][T12029] erofs (device loop3): mounted with root inode @ nid 36. [ 873.155229][T12043] loop5: detected capacity change from 0 to 512 [ 875.816545][T12065] loop4: detected capacity change from 0 to 128 [ 876.006228][T12068] loop2: detected capacity change from 0 to 64 [ 876.947797][T12074] loop5: detected capacity change from 0 to 256 [ 877.542851][T12074] syz.5.2605: attempt to access beyond end of device [ 877.542851][T12074] loop5: rw=8390659, sector=1056, nr_sectors = 31776 limit=256 [ 878.020838][ T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 878.219139][ T9] usb 4-1: Using ep0 maxpacket: 32 [ 878.287606][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 878.299305][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 878.314309][ T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 878.325260][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 878.549718][ T9] usb 4-1: config 0 descriptor?? [ 878.726021][ T5906] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 879.065148][ T5906] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 879.076693][ T5906] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 879.087494][ T5906] usb 2-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 879.097470][ T5906] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 879.194564][ T9] kone 0003:1E7D:2CED.001F: unknown main item tag 0x0 [ 879.202229][ T9] kone 0003:1E7D:2CED.001F: unknown main item tag 0x0 [ 879.209360][ T9] kone 0003:1E7D:2CED.001F: unknown main item tag 0x0 [ 879.216959][ T9] kone 0003:1E7D:2CED.001F: unknown main item tag 0x0 [ 879.224338][ T9] kone 0003:1E7D:2CED.001F: unknown main item tag 0x0 [ 879.363043][ T5906] usb 2-1: config 0 descriptor?? [ 879.598954][ T9] kone 0003:1E7D:2CED.001F: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.3-1/input0 [ 879.736555][ T9] usb 4-1: USB disconnect, device number 14 [ 879.943080][ T5906] hid-thrustmaster 0003:044F:B65D.0020: unbalanced collection at end of report description [ 880.012756][ T5906] hid-thrustmaster 0003:044F:B65D.0020: parse failed with error -22 [ 880.021502][ T5906] hid-thrustmaster 0003:044F:B65D.0020: probe with driver hid-thrustmaster failed with error -22 [ 880.251696][ T5906] usb 2-1: USB disconnect, device number 8 [ 881.172801][T12098] loop3: detected capacity change from 0 to 1024 [ 884.616800][T12122] loop5: detected capacity change from 0 to 4096 [ 884.654674][T12122] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 885.226293][T12122] ntfs3(loop5): ino=1e, "file1" ntfs_sync_inode failed, -22. [ 885.234228][T12122] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 885.544786][T12132] loop1: detected capacity change from 0 to 2048 [ 885.766115][T12136] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 886.631811][T12136] NILFS (loop1): vblocknr = 15 has abnormal lifetime: start cno (= 1407374883553282) > current cno (= 3) [ 886.643814][T12136] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=16) [ 886.699219][T12136] Remounting filesystem read-only [ 886.726086][ T5810] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 887.887421][T12154] loop4: detected capacity change from 0 to 256 [ 887.939349][T12154] exfat: Deprecated parameter 'utf8' [ 887.946864][T12154] exfat: Deprecated parameter 'namecase' [ 887.953595][T12154] exfat: Deprecated parameter 'namecase' [ 887.959572][T12154] exfat: Deprecated parameter 'utf8' [ 888.008083][T12153] loop5: detected capacity change from 0 to 256 [ 888.189108][T12154] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 888.203331][T12154] exFAT-fs (loop4): failed to test first cluster bit of root dir(5) [ 888.467931][T12153] FAT-fs (loop5): Directory bread(block 64) failed [ 888.474993][T12153] FAT-fs (loop5): Directory bread(block 65) failed [ 888.482567][T12153] FAT-fs (loop5): Directory bread(block 66) failed [ 888.489545][T12153] FAT-fs (loop5): Directory bread(block 67) failed [ 888.497052][T12153] FAT-fs (loop5): Directory bread(block 68) failed [ 888.504515][T12153] FAT-fs (loop5): Directory bread(block 69) failed [ 888.511671][T12153] FAT-fs (loop5): Directory bread(block 70) failed [ 888.518417][T12153] FAT-fs (loop5): Directory bread(block 71) failed [ 888.525522][T12153] FAT-fs (loop5): Directory bread(block 72) failed [ 888.532611][T12153] FAT-fs (loop5): Directory bread(block 73) failed [ 889.188715][T12160] loop2: detected capacity change from 0 to 512 [ 889.249679][T12160] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 889.497307][T12162] loop3: detected capacity change from 0 to 2048 [ 889.504653][T12160] EXT4-fs (loop2): 1 truncate cleaned up [ 889.506947][T12160] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 889.607529][T12162] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=18576, location=18576 [ 889.766101][T12166] pimreg3: entered allmulticast mode [ 889.820216][T12162] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 889.899241][ T5805] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 891.330990][T12176] loop1: detected capacity change from 0 to 256 [ 891.364796][T12177] loop4: detected capacity change from 0 to 512 [ 891.582607][T12177] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 891.596042][T12177] ext4 filesystem being mounted at /527/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 891.615453][T12176] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 891.984561][T12177] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 892.161568][T12177] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2 with error 28 [ 892.174708][T12177] EXT4-fs (loop4): This should not happen!! Data will be lost [ 892.174708][T12177] [ 892.184859][T12177] EXT4-fs (loop4): Total free blocks count 0 [ 892.191225][T12177] EXT4-fs (loop4): Free/Dirty block details [ 892.197337][T12177] EXT4-fs (loop4): free_blocks=65280 [ 892.203318][T12177] EXT4-fs (loop4): dirty_blocks=2 [ 892.208555][T12177] EXT4-fs (loop4): Block reservation details [ 892.215151][T12177] EXT4-fs (loop4): i_reserved_data_blocks=2 [ 892.797895][ T30] audit: type=1326 audit(2000000217.880:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12187 comm="syz.1.2658" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70ed539 code=0x0 [ 893.007284][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 894.086240][T12195] loop5: detected capacity change from 0 to 2048 [ 894.198326][T12199] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 894.420115][T12201] netlink: 'syz.3.2662': attribute type 2 has an invalid length. [ 895.677007][T12205] loop3: detected capacity change from 0 to 512 [ 895.679690][T12205] EXT4-fs: Ignoring removed oldalloc option [ 895.679820][T12205] EXT4-fs: Ignoring removed bh option [ 895.812518][T12205] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842c118, mo2=0002] [ 895.813381][T12205] System zones: 1-12 [ 895.844985][T12205] EXT4-fs error (device loop3): ext4_iget_extra_inode:5073: inode #15: comm syz.3.2666: corrupted in-inode xattr: e_value size too large [ 895.846547][T12205] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2666: couldn't read orphan inode 15 (err -117) [ 895.850685][T12205] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 896.626676][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 896.957806][T12213] loop2: detected capacity change from 0 to 4096 [ 897.037538][T12213] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 897.609446][T12213] ntfs3(loop2): ino=19, mi_enum_attr [ 897.861793][T12223] loop5: detected capacity change from 0 to 1024 [ 898.103457][T12223] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 898.424251][T12231] EXT4-fs warning (device loop5): empty_inline_dir:1759: bad inline directory (dir #12) - no `..' [ 899.448497][ T6137] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 899.616679][T12239] loop3: detected capacity change from 0 to 512 [ 899.769437][T12239] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 899.778171][T12239] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002] [ 899.869095][T12239] System zones: 0-1, 15-15, 18-18, 34-34 [ 899.887691][T12239] EXT4-fs (loop3): orphan cleanup on readonly fs [ 899.916409][T12239] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0 [ 899.942869][T12239] EXT4-fs warning (device loop3): ext4_enable_quotas:7221: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 899.989236][T12239] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 900.009716][T12239] EXT4-fs (loop3): 1 truncate cleaned up [ 900.029070][T12239] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 900.260891][T12239] fscrypt (loop3, inode 16): Error -61 getting encryption context [ 900.331430][T12239] fscrypt (loop3, inode 16): Error -61 getting encryption context [ 900.438566][T12246] bridge0: port 2(bridge_slave_1) entered disabled state [ 900.447476][T12246] bridge0: port 1(bridge_slave_0) entered disabled state [ 900.979438][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 902.048043][T12259] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2687'. [ 902.149881][T12255] loop3: detected capacity change from 0 to 1024 [ 902.529422][ T30] audit: type=1800 audit(2000000227.650:110): pid=12255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2685" name="bus" dev="loop3" ino=26 res=0 errno=0 [ 902.703672][T12262] netlink: 'syz.4.2688': attribute type 2 has an invalid length. [ 902.712339][T12262] netlink: 1252 bytes leftover after parsing attributes in process `syz.4.2688'. [ 903.213925][ T4194] hfsplus: b-tree write err: -5, ino 4 [ 905.021567][T12280] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2697'. [ 906.718476][T12283] loop3: detected capacity change from 0 to 8192 [ 906.913403][ T797] usb 6-1: new high-speed USB device number 12 using dummy_hcd [ 907.140077][ T797] usb 6-1: config 0 interface 0 has no altsetting 0 [ 907.148567][ T797] usb 6-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 907.158213][ T797] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 907.306042][ T797] usb 6-1: config 0 descriptor?? [ 907.875165][T11915] Bluetooth: hci2: unexpected event 0x06 length: 4 > 3 [ 907.965486][ T797] arvo 0003:1E7D:30D4.0021: unknown main item tag 0x0 [ 907.980223][ T797] arvo 0003:1E7D:30D4.0021: unknown main item tag 0x0 [ 907.987602][ T797] arvo 0003:1E7D:30D4.0021: unknown main item tag 0x0 [ 907.994839][ T797] arvo 0003:1E7D:30D4.0021: unknown main item tag 0x0 [ 908.002035][ T797] arvo 0003:1E7D:30D4.0021: unknown main item tag 0x0 [ 908.190495][ T797] arvo 0003:1E7D:30D4.0021: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.5-1/input0 [ 908.286023][ T797] usb 6-1: USB disconnect, device number 12 [ 909.379368][T12306] netlink: 36 bytes leftover after parsing attributes in process `syz.3.2707'. [ 909.665248][ T5820] Bluetooth: hci2: command 0x0406 tx timeout [ 909.909867][T11915] ------------[ cut here ]------------ [ 909.915981][T11915] WARNING: net/bluetooth/hci_conn.c:567 at hci_conn_timeout+0xad/0x530, CPU#0: kworker/u9:1/11915 [ 909.927201][T11915] Modules linked in: [ 909.931632][T11915] CPU: 0 UID: 0 PID: 11915 Comm: kworker/u9:1 Tainted: G W L syzkaller #0 PREEMPT(none) [ 909.943459][T11915] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 909.948830][T11915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 909.964297][T11915] Workqueue: hci2 hci_conn_timeout [ 909.969802][T11915] RIP: 0010:hci_conn_timeout+0xad/0x530 [ 909.977368][T11915] Code: 41 f7 d4 45 21 f4 74 27 45 85 f6 74 2f e8 ab 71 ea f2 e9 59 04 00 00 44 89 ff e8 5e 1c 91 f3 45 85 f6 79 bc e8 94 71 ea f2 90 <0f> 0b 90 eb 12 44 89 ff e8 46 1c 91 f3 45 85 f6 75 d1 e8 7c 71 ea [ 909.997621][T11915] RSP: 0018:ffff88807abf3b98 EFLAGS: 00010293 [ 910.004184][T11915] RAX: ffffffff8f0e92fc RBX: ffff88810c3c0b90 RCX: ffff88810c3c0000 [ 910.012559][T11915] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000 [ 910.020893][T11915] RBP: ffff88807abf3bf8 R08: ffffea000000000f R09: 0000000000000000 [ 910.029106][T11915] R10: ffff888237b10028 R11: ffffffff8f0e9250 R12: 0000000000000000 [ 910.037557][T11915] R13: ffff88804c2a79c0 R14: 00000000ffffffff R15: 0000000000000000 [ 910.045895][T11915] FS: 0000000000000000(0000) GS:ffff8881aacfb000(0000) knlGS:0000000000000000 [ 910.059981][T11915] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 910.069606][T11915] CR2: 00000000ffd4f87c CR3: 000000011685a000 CR4: 00000000003526f0 [ 910.078103][T11915] Call Trace: [ 910.081698][T11915] [ 910.084879][T11915] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 910.091154][T11915] ? __pfx_hci_conn_timeout+0x10/0x10 [ 910.096839][T11915] process_scheduled_works+0xb91/0x1d80 [ 910.102900][T11915] worker_thread+0xedf/0x1590 [ 910.107923][T11915] kthread+0xd5c/0xf00 [ 910.112423][T11915] ? __pfx_worker_thread+0x10/0x10 [ 910.117817][T11915] ? __pfx_kthread+0x10/0x10 [ 910.122894][T11915] ret_from_fork+0x208/0x710 [ 910.127888][T11915] ? __switch_to+0x53d/0x790 [ 910.132940][T11915] ? __pfx_kthread+0x10/0x10 [ 910.137800][T11915] ret_from_fork_asm+0x1a/0x30 [ 910.143044][T11915] [ 910.146231][T11915] ---[ end trace 0000000000000000 ]--- [ 910.342831][T12312] loop5: detected capacity change from 0 to 512 [ 910.735466][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 910.742335][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 910.816729][T12312] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.2711: bg 0: block 393: padding at end of block bitmap is not set [ 910.856415][T12312] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 910.961700][T12312] EXT4-fs (loop5): 2 truncates cleaned up [ 910.969898][T12312] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 911.539162][ T6137] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 912.225119][T11915] Bluetooth: hci2: command 0x0406 tx timeout [ 914.087258][T12341] loop3: detected capacity change from 0 to 256 [ 914.702502][T12341] FAT-fs (loop3): Directory bread(block 64) failed [ 914.709511][T12341] FAT-fs (loop3): Directory bread(block 65) failed [ 914.716796][T12341] FAT-fs (loop3): Directory bread(block 66) failed [ 914.723771][T12341] FAT-fs (loop3): Directory bread(block 67) failed [ 914.730991][T12341] FAT-fs (loop3): Directory bread(block 68) failed [ 914.737780][T12341] FAT-fs (loop3): Directory bread(block 69) failed [ 914.744887][T12341] FAT-fs (loop3): Directory bread(block 70) failed [ 914.751795][T12341] FAT-fs (loop3): Directory bread(block 71) failed [ 914.758738][T12341] FAT-fs (loop3): Directory bread(block 72) failed [ 914.771449][T12341] FAT-fs (loop3): Directory bread(block 73) failed [ 916.066275][T12354] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2732'. [ 916.453707][T12355] loop5: detected capacity change from 0 to 2048 [ 916.567364][T12355] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 916.738580][T12363] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 917.196494][T12365] loop1: detected capacity change from 0 to 128 [ 917.419851][T12365] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 917.556367][T12365] ext4 filesystem being mounted at /573/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 917.660952][T12358] loop2: detected capacity change from 0 to 4096 [ 917.684525][T12371] loop4: detected capacity change from 0 to 256 [ 917.718053][T12358] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 918.393643][ T5810] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 918.527793][T12371] FAT-fs (loop4): Directory bread(block 64) failed [ 918.535093][T12371] FAT-fs (loop4): Directory bread(block 65) failed [ 918.542501][T12371] FAT-fs (loop4): Directory bread(block 66) failed [ 918.549262][T12371] FAT-fs (loop4): Directory bread(block 67) failed [ 918.561933][T12371] FAT-fs (loop4): Directory bread(block 68) failed [ 918.568718][T12371] FAT-fs (loop4): Directory bread(block 69) failed [ 918.578050][T12371] FAT-fs (loop4): Directory bread(block 70) failed [ 918.585056][T12371] FAT-fs (loop4): Directory bread(block 71) failed [ 918.592283][T12371] FAT-fs (loop4): Directory bread(block 72) failed [ 918.599045][T12371] FAT-fs (loop4): Directory bread(block 73) failed [ 918.733045][T12358] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 918.807719][T12358] ntfs3(loop2): mft corrupted [ 918.813621][T12358] ntfs3(loop2): Failed to load $Extend (-22). [ 918.820097][T12358] ntfs3(loop2): Failed to initialize $Extend. [ 919.208494][T12358] ntfs3(loop2): ino=1e, mi_enum_attr [ 919.214442][T12358] ntfs3(loop2): ino=1e, mi_enum_attr [ 919.220650][T12358] ntfs3(loop2): ino=1e, "file1" mi_enum_attr [ 919.227008][T12358] ntfs3(loop2): ino=1e, "file1" mi_enum_attr [ 919.325911][T12358] ntfs3(loop2): ino=1e, "file1" mi_enum_attr [ 921.199448][T12395] binder: 12393:12395 unknown command 1768042286 [ 921.217709][T12395] binder: 12393:12395 ioctl c0306201 80000140 returned -22 [ 922.018975][T12403] ipvlan3: entered promiscuous mode [ 924.137016][T12419] loop4: detected capacity change from 0 to 512 [ 924.367110][T12419] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 924.539934][T12419] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.2758: bg 0: block 306: padding at end of block bitmap is not set [ 925.249148][ T5803] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 926.117466][T12435] netdevsim netdevsim2 netdevsim0: entered promiscuous mode [ 926.135239][T12435] macsec2: entered promiscuous mode [ 926.159544][T12435] macsec2: entered allmulticast mode [ 926.176423][T12435] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 926.331606][T12435] netdevsim netdevsim2 netdevsim0: left allmulticast mode [ 926.348351][T12435] netdevsim netdevsim2 netdevsim0: left promiscuous mode [ 927.342242][T12446] binder: 12442:12446 ioctl c018620c 80000100 returned -22 [ 927.509015][T12440] loop1: detected capacity change from 0 to 4096 [ 927.695818][T12440] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 928.195979][T12440] ntfs3(loop1): Inode r=19 is not in use! [ 928.202445][T12440] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 928.464501][T12440] ntfs3(loop1): ino=1b, mi_enum_attr [ 928.470799][T12440] ntfs3(loop1): ino=1b, mi_enum_attr [ 928.561500][T12452] ntfs3(loop1): ino=1d, mi_enum_attr [ 930.320976][T12465] sctp: [Deprecated]: syz.2.2779 (pid 12465) Use of struct sctp_assoc_value in delayed_ack socket option. [ 930.320976][T12465] Use struct sctp_sack_info instead [ 930.480664][T12465] sctp: [Deprecated]: syz.2.2779 (pid 12465) Use of struct sctp_assoc_value in delayed_ack socket option. [ 930.480664][T12465] Use struct sctp_sack_info instead [ 930.597447][T12469] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2781'. [ 931.493985][T12473] loop1: detected capacity change from 0 to 512 [ 931.543184][T12473] EXT4-fs: Ignoring removed bh option [ 931.594784][T12473] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 931.843684][T12473] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.2783: Invalid block bitmap block 0 in block_group 0 [ 931.918668][T12473] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem [ 931.973059][T12478] loop2: detected capacity change from 0 to 1024 [ 932.038391][T12473] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #11: comm syz.1.2783: attempt to clear invalid blocks 983261 len 1 [ 932.117113][T12473] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2783: Invalid inode table block 0 in block_group 0 [ 932.148982][T12473] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 932.257115][T12473] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem [ 932.336958][T12473] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2783: Invalid inode table block 0 in block_group 0 [ 932.426764][T12473] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6298: Corrupt filesystem [ 932.571864][T12473] EXT4-fs error (device loop1): ext4_truncate:4635: inode #11: comm syz.1.2783: mark_inode_dirty error [ 932.647854][T12473] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem [ 932.665681][T12473] EXT4-fs error (device loop1): __ext4_get_inode_loc:4830: comm syz.1.2783: Invalid inode table block 0 in block_group 0 [ 932.730251][T12473] EXT4-fs (loop1): 1 truncate cleaned up [ 932.740822][T12473] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 933.452845][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 934.348803][T12497] loop1: detected capacity change from 0 to 1024 [ 934.566998][T12497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 935.535340][T12509] netlink: 'syz.4.2798': attribute type 1 has an invalid length. [ 935.716602][T12513] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2799'. [ 935.944058][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 936.053775][T12515] loop5: detected capacity change from 0 to 1024 [ 937.018779][T12521] loop3: detected capacity change from 0 to 512 [ 937.028767][T12523] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2802'. [ 937.230072][T12521] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.2805: inode has both inline data and extents flags [ 937.306661][T12521] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2805: couldn't read orphan inode 15 (err -117) [ 937.335742][T12521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 937.689012][T12527] tmpfs: Cannot disable swap on remount [ 938.099471][ T5811] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 938.590657][T12532] loop1: detected capacity change from 0 to 2048 [ 938.792369][T12532] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 939.066012][T12540] loop3: detected capacity change from 0 to 256 [ 939.461075][T12540] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd22393c8, utbl_chksum : 0xe619d30d) [ 939.909921][T12545] netlink: 180 bytes leftover after parsing attributes in process `syz.5.2815'. [ 939.920004][T12545] xt_time: unknown flags 0xf4 [ 941.577275][ T5454] ===================================================== [ 941.584734][ T5454] BUG: KMSAN: kernel-infoleak in _copy_to_iter+0xef3/0x33f0 [ 941.597347][ T5454] _copy_to_iter+0xef3/0x33f0 [ 941.604125][ T5454] __skb_datagram_iter+0x196/0x12c0 [ 941.609667][ T5454] skb_copy_datagram_iter+0x5b/0x1e0 [ 941.615714][ T5454] netlink_recvmsg+0x4bb/0xfe0 [ 941.620972][ T5454] sock_recvmsg+0x2df/0x390 [ 941.625812][ T5454] ____sys_recvmsg+0x193/0x610 [ 941.631191][ T5454] ___sys_recvmsg+0x20b/0x850 [ 941.636134][ T5454] __x64_sys_recvmsg+0x20e/0x3d0 [ 941.641615][ T5454] x64_sys_call+0x38b7/0x3e70 [ 941.646634][ T5454] do_syscall_64+0xd3/0xf80 [ 941.651616][ T5454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 941.657734][ T5454] [ 941.660176][ T5454] Uninit was stored to memory at: [ 941.665887][ T5454] pskb_expand_head+0x310/0x15d0 [ 941.671241][ T5454] netlink_trim+0x3a3/0x450 [ 941.675977][ T5454] netlink_broadcast_filtered+0x80/0x28f0 [ 941.682130][ T5454] nlmsg_notify+0x15b/0x2f0 [ 941.686904][ T5454] rtnl_notify+0xba/0x100 [ 941.691675][ T5454] wireless_nlevent_process+0xfe/0x290 [ 941.702581][ T5454] process_scheduled_works+0xb91/0x1d80 [ 941.708427][ T5454] worker_thread+0xedf/0x1590 [ 941.715078][ T5454] kthread+0xd5c/0xf00 [ 941.719447][ T5454] ret_from_fork+0x208/0x710 [ 941.724912][ T5454] ret_from_fork_asm+0x1a/0x30 [ 941.729933][ T5454] [ 941.732499][ T5454] Uninit was stored to memory at: [ 941.738030][ T5454] wireless_send_event+0x652/0x1540 [ 941.743773][ T5454] ioctl_standard_iw_point+0x12b0/0x13f0 [ 941.749697][ T5454] compat_standard_call+0x188/0x4c0 [ 941.755526][ T5454] wext_ioctl_dispatch+0x192/0x7a0 [ 941.761016][ T5454] compat_wext_handle_ioctl+0x1a1/0x300 [ 941.766830][ T5454] compat_sock_ioctl+0x20c/0xff0 [ 941.772189][ T5454] __ia32_compat_sys_ioctl+0x7f9/0x1270 [ 941.777960][ T5454] ia32_sys_call+0x25d9/0x4340 [ 941.783161][ T5454] __do_fast_syscall_32+0x154/0x330 [ 941.788609][ T5454] do_fast_syscall_32+0x38/0x80 [ 941.793852][ T5454] do_SYSENTER_32+0x1f/0x30 [ 941.803890][ T5454] entry_SYSENTER_compat_after_hwframe+0x84/0x8e [ 941.812256][ T5454] [ 941.814714][ T5454] Local variable iwp created at: [ 941.819773][ T5454] compat_standard_call+0x4a/0x4c0 [ 941.825228][ T5454] wext_ioctl_dispatch+0x192/0x7a0 [ 941.830711][ T5454] [ 941.833138][ T5454] Bytes 60-63 of 64 are uninitialized [ 941.838645][ T5454] Memory access of size 64 starts at ffff888128a242c0 [ 941.845676][ T5454] Data copied to user address 00007ffebd176ab0 [ 941.852118][ T5454] [ 941.854584][ T5454] CPU: 0 UID: 101 PID: 5454 Comm: dhcpcd Tainted: G W L syzkaller #0 PREEMPT(none) [ 941.865621][ T5454] Tainted: [W]=WARN, [L]=SOFTLOCKUP [ 941.871218][ T5454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 941.881564][ T5454] ===================================================== [ 941.888624][ T5454] Disabling lock debugging due to kernel taint [ 941.895061][ T5454] Kernel panic - not syncing: kmsan.panic set ... [ 941.901654][ T5454] CPU: 0 UID: 101 PID: 5454 Comm: dhcpcd Tainted: G B W L syzkaller #0 PREEMPT(none) [ 941.912602][ T5454] Tainted: [B]=BAD_PAGE, [W]=WARN, [L]=SOFTLOCKUP [ 941.919166][ T5454] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 941.929376][ T5454] Call Trace: [ 941.932793][ T5454] [ 941.935843][ T5454] __dump_stack+0x26/0x30 [ 941.940394][ T5454] dump_stack_lvl+0x50/0x1c0 [ 941.945195][ T5454] ? dump_stack+0x12/0x25 [ 941.949745][ T5454] dump_stack+0x1e/0x25 [ 941.954105][ T5454] vpanic+0x435/0xd30 [ 941.958341][ T5454] panic+0x15d/0x160 [ 941.962527][ T5454] kmsan_report+0x31c/0x320 [ 941.967288][ T5454] ? kmsan_internal_check_memory+0x1e1/0x230 [ 941.973508][ T5454] ? kmsan_copy_to_user+0xf1/0x190 [ 941.978863][ T5454] ? _copy_to_iter+0xef3/0x33f0 [ 941.983912][ T5454] ? __skb_datagram_iter+0x196/0x12c0 [ 941.989521][ T5454] ? skb_copy_datagram_iter+0x5b/0x1e0 [ 941.995229][ T5454] ? netlink_recvmsg+0x4bb/0xfe0 [ 942.000418][ T5454] ? sock_recvmsg+0x2df/0x390 [ 942.005303][ T5454] ? ____sys_recvmsg+0x193/0x610 [ 942.010503][ T5454] ? ___sys_recvmsg+0x20b/0x850 [ 942.015720][ T5454] ? __x64_sys_recvmsg+0x20e/0x3d0 [ 942.021075][ T5454] ? x64_sys_call+0x38b7/0x3e70 [ 942.026173][ T5454] ? do_syscall_64+0xd3/0xf80 [ 942.031082][ T5454] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 942.037483][ T5454] ? finish_task_switch+0x1fe/0x8c0 [ 942.043040][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.048635][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.054771][ T5454] ? rb_erase+0x22d9/0x2750 [ 942.059509][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.064877][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.070254][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.075658][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.081756][ T5454] kmsan_internal_check_memory+0x1e1/0x230 [ 942.087851][ T5454] kmsan_copy_to_user+0xf1/0x190 [ 942.093473][ T5454] _copy_to_iter+0xef3/0x33f0 [ 942.098361][ T5454] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 942.104949][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.110406][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.116481][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.121845][ T5454] ? kmsan_internal_set_shadow_origin+0x7a/0x110 [ 942.128458][ T5454] __skb_datagram_iter+0x196/0x12c0 [ 942.133901][ T5454] ? __pfx_simple_copy_to_iter+0x10/0x10 [ 942.139842][ T5454] skb_copy_datagram_iter+0x5b/0x1e0 [ 942.145464][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.151716][ T5454] netlink_recvmsg+0x4bb/0xfe0 [ 942.156752][ T5454] ? aa_sock_msg_perm+0x284/0x2e0 [ 942.162006][ T5454] ? __pfx_netlink_recvmsg+0x10/0x10 [ 942.167543][ T5454] sock_recvmsg+0x2df/0x390 [ 942.172263][ T5454] ____sys_recvmsg+0x193/0x610 [ 942.177270][ T5454] ? __pfx_should_fail_ex+0x10/0x10 [ 942.182941][ T5454] ___sys_recvmsg+0x20b/0x850 [ 942.188012][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.194174][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.199549][ T5454] ? kmsan_get_shadow_origin_ptr+0x4a/0xb0 [ 942.205725][ T5454] __x64_sys_recvmsg+0x20e/0x3d0 [ 942.210951][ T5454] ? kmsan_get_metadata+0xfb/0x160 [ 942.216335][ T5454] x64_sys_call+0x38b7/0x3e70 [ 942.221251][ T5454] do_syscall_64+0xd3/0xf80 [ 942.225991][ T5454] ? clear_bhb_loop+0x40/0x90 [ 942.230887][ T5454] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 942.237168][ T5454] RIP: 0033:0x7f6fec6ee407 [ 942.241763][ T5454] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff [ 942.261764][ T5454] RSP: 002b:00007ffebd1769a0 EFLAGS: 00000202 ORIG_RAX: 000000000000002f [ 942.270437][ T5454] RAX: ffffffffffffffda RBX: 00007f6fec664740 RCX: 00007f6fec6ee407 [ 942.278589][ T5454] RDX: 0000000000000040 RSI: 00007ffebd176a20 RDI: 0000000000000009 [ 942.286728][ T5454] RBP: 0000564627cb6aa0 R08: 0000000000000000 R09: 0000000000000000 [ 942.294872][ T5454] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000009 [ 942.303074][ T5454] R13: 00007ffebd17ab80 R14: 0000000000000000 R15: 00007ffebd17ab70 [ 942.311294][ T5454] [ 942.315102][ T5454] Kernel Offset: disabled [ 942.319504][ T5454] Rebooting in 86400 seconds..