last executing test programs: 3.735611747s ago: executing program 0 (id=8141): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0xe8f, 0x12, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, "", [{{0x9, 0x4, 0x0, 0x6, 0x9, 0x3, 0x0, 0x3, 0x0, {0x9, 0x21, 0x4, 0xc, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0xc4, 0x8, 0xfe}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f0000000100)=ANY=[@ANYBLOB="2008280000002821f50ba381040000000000000000cb4fa0d921c45d0ea7da65c501ded3fcb992b1d43ee4a1824ab92d9b358c1ff3c08d08dce8a3c7a07f7d376f4dfa6d462fcae734f2dfb570c789113f4c6b0357aa2447fa7b6f70b2c40f16baacf75688feeb8ecf502109e9861580fd40d6"], 0x0, 0x0, 0x0, 0x0}, 0x0) 3.04463685s ago: executing program 1 (id=8149): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x90, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x20, "", [{{0x9, 0x4, 0x0, 0x0, 0x7, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x8, 0x0, 0x1, {0x22, 0x28}}, {{{0x9, 0x5, 0x81, 0x3, 0x40, 0x0, 0xf, 0xfe}}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="20092b000000bb22f70ba381030000000000277b000000cb4adca0560fb30d54f365c5b1d43e"], 0x0, 0x0, 0x0, 0x0}, 0x0) 1.699154184s ago: executing program 0 (id=8156): r0 = socket(0xa, 0x5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0xf1, @loopback, 0x19f49a9}], 0x1c) sendmsg$inet_sctp(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in6={0xa, 0x4e24, 0xff, @loopback, 0x5}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000100)="e6", 0xffe0}], 0x1, &(0x7f0000000140)=[@dstaddrv4={0x18, 0x84, 0x7, @local}, @dstaddrv6={0x20, 0x84, 0x8, @rand_addr=' \x01\x00'}, @dstaddrv6={0x20, 0x84, 0x8, @ipv4={'\x00', '\xff\xff', @private=0xa010100}}], 0x58, 0x4855}, 0x24000052) 1.50115569s ago: executing program 0 (id=8159): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x75, 0x109301) ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"}) ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000380)=@urb_type_bulk={0x3, {0x1, 0x1}, 0x0, 0x41, &(0x7f00000002c0)="c26b", 0x2, 0x10, 0xd21, 0xfffffffe, 0x5, 0x71ab, 0x0}) 1.250221169s ago: executing program 0 (id=8162): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x0, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0) ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0185879, &(0x7f0000000100)={@id={0x2, 0x0, @d}}) 1.223352759s ago: executing program 2 (id=8163): ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000040)) r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000000)={'ip6tnl0\x00', &(0x7f00000005c0)={'syztnl0\x00', 0x0, 0x0, 0x10, 0x0, 0x4, 0x42, @ipv4={'\x00', '\xff\xff', @loopback}, @loopback={0xfec0ffff00000000, 0xffff8881114a4aa8}, 0x10, 0x80, 0x5, 0x77f87502}}) 1.136320772s ago: executing program 2 (id=8164): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301) ioctl$USBDEVFS_CONTROL(r0, 0xc0105500, 0x0) 1.078891484s ago: executing program 0 (id=8165): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, [@call={0x85, 0x0, 0x0, 0xd0}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x6}, {}, {0x4}, {0x6, 0x0, 0xa}, {}, {}, {0x85, 0x0, 0x0, 0x33}}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000b80)={r1, 0x2000012, 0xe, 0x0, &(0x7f0000000280)="63ec33c9e9b98600000000000000", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xb}, 0x50) 1.041679526s ago: executing program 2 (id=8166): mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0) acct(&(0x7f0000000040)='./file0\x00') openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x103840, 0x0) 1.015011466s ago: executing program 1 (id=8167): r0 = socket$inet6(0xa, 0x80002, 0x0) setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0) setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f00000001c0)={0x29}, 0x8) 944.007449ms ago: executing program 0 (id=8168): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100000000004032150e0100000000000109022400010000c00009040000010300020009210000000122050009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f00000003c0)={0x2c, &(0x7f0000000040)={0x40, 0x6, 0x6, {0x6, 0x6, "b4516803"}}, 0x0, 0x0, 0x0, 0x0}, 0x0) 893.8075ms ago: executing program 1 (id=8169): r0 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x1b) write$binfmt_misc(r0, &(0x7f0000000dc0), 0x386) 862.634501ms ago: executing program 2 (id=8170): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x13, &(0x7f0000001cc0)=ANY=[@ANYBLOB="180000000600000000000000001000001801000000006c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fd000000850000000600000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x25}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 817.634902ms ago: executing program 3 (id=8171): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0) ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r0, 0xc4c85512, &(0x7f0000000780)={{0xb, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x4, 0xfffffffffffffffc, 0x40000000000, 0xffffffffffffffff, 0xffffffeffffffffe, 0x0, 0x4, 0x0, 0x0, 0x4, 0x2, 0x0, 0xfffffeffbfffffff, 0x0, 0x0, 0x0, 0x3, 0x80000000, 0x3, 0x0, 0x0, 0x4, 0xfffffffffffffffc, 0x6, 0x1, 0x0, 0x0, 0xfffffffffffffffd, 0x100200000, 0xb, 0x6, 0x0, 0x0, 0x5, 0x9, 0x0, 0x10000, 0x1000, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffdfffffffff, 0x9, 0x3, 0x0, 0x7, 0x10000, 0x7785, 0x0, 0x4, 0x2, 0x8, 0x0, 0xfffffffffffffffa, 0x9, 0x0, 0x0, 0x0, 0x80000002000, 0x10000000000000, 0x4, 0x0, 0x7, 0x0, 0x7ff, 0xb7b, 0xfffffffffffffffe, 0x9, 0x1000000000, 0x0, 0x80000000000000, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x800000000000, 0xfffffffffffffffd, 0x0, 0x2c5, 0x0, 0x100, 0x81, 0xfffffffffffffffd, 0xffffffff, 0x0, 0x0, 0x9, 0x100000000000, 0x4000000000, 0x3, 0x2, 0x0, 0x7, 0xc0c0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffeffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x20000000, 0x0, 0x80]}) 746.309945ms ago: executing program 1 (id=8172): syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000140)='./file1\x00', 0x4490, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0xfd, 0x2a7, &(0x7f0000000740)="$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") open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 720.765546ms ago: executing program 3 (id=8173): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0xc, 0x4, 0x4, 0x7, 0x0, r0}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, r1}, 0x38) 683.748077ms ago: executing program 2 (id=8174): syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x1010400, &(0x7f0000000080)={[{@uni_xlate}, {@shortname_mixed}, {@uni_xlateno}, {@fat=@dmask={'dmask', 0x3d, 0x401}}, {@uni_xlate}, {@uni_xlate}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@shortname_win95}, {@shortname_winnt}, {@shortname_lower}, {@utf8no}, {@utf8no}, {@shortname_lower}, {@utf8no}, {@numtail}, {@fat=@quiet}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'macromanian'}}]}, 0x1, 0x37b, &(0x7f0000000940)="$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") syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@stripe={'stripe', 0x3d, 0x3d}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x457, &(0x7f0000000bc0)="$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") statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x800, 0x0) 588.61342ms ago: executing program 1 (id=8175): r0 = socket$rds(0x15, 0x5, 0x0) bind$rds(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10) sendmsg$rds(r0, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1, 0x3}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, 0x0}}], 0x90}, 0x0) 565.600201ms ago: executing program 3 (id=8176): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x9801) unshare(0x2c020400) getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, 0x0, 0x0) 429.798975ms ago: executing program 1 (id=8177): mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) mremap(&(0x7f0000bfd000/0x400000)=nil, 0x400000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) mbind(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x3) 367.428518ms ago: executing program 3 (id=8178): syz_mount_image$romfs(&(0x7f0000000140), &(0x7f0000000280)='./file0\x00', 0x208408, &(0x7f0000000080)=ANY=[], 0x80, 0x168, &(0x7f00000002c0)="$eJzs2r9Kw0AcB/CfNFrp6OhUqFQHm6SJ1tmxuPkGpc21wYstiSDt5CZOgsI5+BKCT+AjdHTTxcGXiCQ5QkyLBinkhO9naL7wy59f7pqbruWPvTYLWkT7k7vTjy1/7NU79lGftVmPEl0iqkdhHoYPOi14S+vzkPQlJ5Rr5zM5NvaG4uSGudyxym4JAAAAAAAAAAAAAAAAAAAAAAAKatZkqI2Ed81c7rQz1aChnfU4d/ygpPZK16zLPVzEBH+MxsdeOOcq/nXFsR/Vze/X38uwOxL8PT++xoU3MYLprOV6vaEzdM4ty+6YB6Z5aBnxvYz8HZtPsieah8+mTqGU1jP7zV6L7DeT869tu+L2Mv+0YDqT869AWFOjjYKhQkQKtLH6sElEf7u8qyn2j/o3oUJKtJEJ6RKxsXRV0X5dd1RRW0+Og6rdeInWP70/5gNZjN+1SisaM/mk3NdT1osDwM++AgAA//8/aDZP") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x8880, 0x80) getdents64(r0, 0x0, 0x0) 167.909534ms ago: executing program 3 (id=8179): r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, 0x0, 0x0) getsockopt$netlink(r0, 0x10e, 0x9, &(0x7f0000001840)=""/42, &(0x7f0000000100)=0x2a) 78.484827ms ago: executing program 2 (id=8180): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0) mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x2000000, 0x10012, r0, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xf) 0s ago: executing program 3 (id=8181): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000300000a5c000000060a010400000000000000000a0000040900010073797a31000000000900020073797a3200000000300004802c0001800a0001006d6174636800c9211c0002800800024000000002080003000000000008000100736574"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x24044010) kernel console output (not intermixed with test programs): stem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 498.405061][T20739] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 498.440255][T20739] BTRFS info (device loop1): setting nodatacow, compression disabled [ 498.467770][T20739] BTRFS info (device loop1): ignoring data csums [ 498.486026][T20739] BTRFS info (device loop1): using default commit interval 30s [ 498.493987][T20739] BTRFS info (device loop1): turning on flush-on-commit [ 498.519758][T20739] BTRFS info (device loop1): turning off flush-on-commit [ 498.542266][T20739] BTRFS info (device loop1): disabling log replay at mount time [ 498.570697][T20739] BTRFS info (device loop1): using free space tree [ 498.578829][T20766] loop3: detected capacity change from 0 to 1024 [ 498.703521][ T42] hfsplus: b-tree write err: -5, ino 25 [ 498.722092][ T42] hfsplus: b-tree write err: -5, ino 4 [ 498.748866][ T42] hfsplus: b-tree write err: -5, ino 2 [ 498.787488][T20785] ieee802154 phy1 wpan1: encryption failed: -22 [ 498.960650][ T5771] BTRFS info (device loop1: state C): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 499.016298][ T1203] usb 3-1: new high-speed USB device number 38 using dummy_hcd [ 499.217702][ T1203] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 499.239593][ T1203] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 499.275999][ T1203] usb 3-1: config 220 has no interface number 2 [ 499.282374][ T1203] usb 3-1: config 220 interface 1 altsetting 5 bulk endpoint 0x82 has invalid maxpacket 56 [ 499.333831][ T1203] usb 3-1: config 220 interface 1 altsetting 5 endpoint 0x3 has invalid wMaxPacketSize 0 [ 499.363108][ T1203] usb 3-1: config 220 interface 1 altsetting 5 has 2 endpoint descriptors, different from the interface descriptor's value: 12 [ 499.392404][ T1203] usb 3-1: config 220 interface 0 has no altsetting 0 [ 499.410723][ T1203] usb 3-1: config 220 interface 76 has no altsetting 0 [ 499.426711][ T1203] usb 3-1: config 220 interface 1 has no altsetting 0 [ 499.451082][ T1203] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 499.465975][ T1203] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 499.474037][ T1203] usb 3-1: Product: syz [ 499.498846][ T1203] usb 3-1: Manufacturer: syz [ 499.503515][ T1203] usb 3-1: SerialNumber: syz [ 499.764633][ T1203] usb 3-1: selecting invalid altsetting 0 [ 499.783140][ T1203] usb 3-1: Found UVC 7.01 device syz (8086:0b07) [ 499.813105][T20814] loop3: detected capacity change from 0 to 4096 [ 499.819675][ T1203] usb 3-1: No valid video chain found. [ 499.824032][T20818] loop1: detected capacity change from 0 to 16 [ 499.841556][ T1203] usb 3-1: selecting invalid altsetting 0 [ 499.850616][T20818] erofs: (device loop1): mounted with root inode @ nid 36. [ 499.867023][T20814] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 499.880532][ T1203] usbtest: probe of 3-1:220.1 failed with error -22 [ 499.910576][T20818] syz.1.6822: attempt to access beyond end of device [ 499.910576][T20818] loop1: rw=0, sector=48, nr_sectors = 16 limit=16 [ 499.912097][ T1203] usb 3-1: USB disconnect, device number 38 [ 499.944823][T20820] netlink: 'syz.0.6824': attribute type 21 has an invalid length. [ 499.968988][T20820] netlink: 132 bytes leftover after parsing attributes in process `syz.0.6824'. [ 500.460198][T20834] loop0: detected capacity change from 0 to 256 [ 500.467807][T20834] exfat: Deprecated parameter 'utf8' [ 500.484821][T20834] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 500.690032][T20842] loop3: detected capacity change from 0 to 1024 [ 500.726269][T20842] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock [ 500.738616][ T28] audit: type=1326 audit(2000000266.100:6073): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20843 comm="syz.2.6840" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 500.760189][T20842] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869) [ 500.776037][ T28] audit: type=1326 audit(2000000266.100:6074): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20843 comm="syz.2.6840" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 500.782161][T20842] EXT4-fs (loop3): stripe (2) is not aligned with cluster size (16), stripe is disabled [ 500.802541][ T28] audit: type=1326 audit(2000000266.110:6075): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20843 comm="syz.2.6840" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 500.842543][ T28] audit: type=1326 audit(2000000266.110:6076): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20843 comm="syz.2.6840" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 500.871022][T20842] EXT4-fs error (device loop3): ext4_get_journal_inode:5820: inode #5: comm syz.3.6838: unexpected bad inode w/o EXT4_IGET_BAD [ 500.912112][ T28] audit: type=1326 audit(2000000266.120:6077): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 500.917186][T20842] EXT4-fs (loop3): no journal found [ 500.968367][T20842] EXT4-fs (loop3): can't get journal size [ 500.987030][T20842] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 500.994615][ T28] audit: type=1326 audit(2000000266.120:6078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 501.102551][ T28] audit: type=1326 audit(2000000266.120:6079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 501.137270][ T28] audit: type=1326 audit(2000000266.120:6080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 501.163214][ T28] audit: type=1326 audit(2000000266.120:6081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 501.163293][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 501.187791][ T28] audit: type=1326 audit(2000000266.120:6082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20845 comm="syz.1.6839" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7fc00000 [ 501.612290][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 501.620883][ T1280] aoe: packet could not be sent on ipvlan0. consider increasing tx_queue_len [ 501.644208][T20865] loop3: detected capacity change from 0 to 4096 [ 501.804466][T20865] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 501.979836][T20874] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6854'. [ 501.993564][T20874] netlink: 28 bytes leftover after parsing attributes in process `syz.0.6854'. [ 502.565514][T20875] loop2: detected capacity change from 0 to 32768 [ 503.059181][T20895] netlink: 'syz.2.6864': attribute type 10 has an invalid length. [ 503.089057][T20895] netlink: 212412 bytes leftover after parsing attributes in process `syz.2.6864'. [ 503.108921][T20898] xt_TPROXY: Can be used only with -p tcp or -p udp [ 503.149355][T20895] openvswitch: netlink: Flow key attr not present in new flow. [ 503.306837][T20903] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6868'. [ 503.876946][T20923] loop1: detected capacity change from 0 to 256 [ 503.898935][T20923] exfat: Deprecated parameter 'utf8' [ 503.936686][T20923] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 504.067497][ T5777] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 504.295283][ T5777] usb 4-1: Using ep0 maxpacket: 16 [ 504.334782][ T5777] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 504.366312][ T5777] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 504.374376][ T5777] usb 4-1: Product: syz [ 504.396234][ T5777] usb 4-1: Manufacturer: syz [ 504.410146][ T5777] usb 4-1: SerialNumber: syz [ 504.427226][ T5777] r8152-cfgselector 4-1: config 0 descriptor?? [ 504.583255][T20927] loop0: detected capacity change from 0 to 32768 [ 504.595570][T20927] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.6889 (20927) [ 504.615563][T20927] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 504.627548][T20927] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 504.645689][T20927] BTRFS info (device loop0): force zlib compression, level 3 [ 504.653777][T20927] BTRFS info (device loop0): turning on flush-on-commit [ 504.661267][T20927] BTRFS info (device loop0): max_inline at 4096 [ 504.669244][T20927] BTRFS info (device loop0): using free space tree [ 504.739583][T20927] BTRFS info (device loop0): enabling ssd optimizations [ 504.747117][T20927] BTRFS info (device loop0): auto enabling async discard [ 504.829436][ T5770] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 504.859768][ T5777] r8152-cfgselector 4-1: Unknown version 0x0000 [ 504.897478][ T5777] r8152-cfgselector 4-1: USB disconnect, device number 39 [ 504.994525][ T6478] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop0 scanned by udevd (6478) [ 505.057643][T20964] netlink: 44 bytes leftover after parsing attributes in process `syz.0.6888'. [ 505.564269][T20973] loop2: detected capacity change from 0 to 4096 [ 505.648447][T20973] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 505.700588][T20973] ntfs3: loop2: Failed to load $Extend (-22). [ 505.735908][T20973] ntfs3: loop2: Failed to initialize $Extend. [ 505.910117][T20990] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878) [ 505.925135][T20991] tmpfs: Bad value for 'mpol' [ 505.978671][T20990] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 506.299418][T21005] netlink: 'syz.1.6909': attribute type 3 has an invalid length. [ 506.299443][T21005] netlink: 'syz.1.6909': attribute type 1 has an invalid length. [ 506.299458][T21005] netlink: 216 bytes leftover after parsing attributes in process `syz.1.6909'. [ 506.299474][T21005] NCSI netlink: No device for ifindex 33022 [ 506.396767][T21007] IPv6: Can't replace route, no match found [ 506.606987][T21014] 8021q: adding VLAN 0 to HW filter on device bond5 [ 507.732371][ T5088] Bluetooth: hci2: unexpected event for opcode 0x0419 [ 508.264402][T21067] loop2: detected capacity change from 0 to 4096 [ 508.274921][T21067] __ntfs_error: 3805 callbacks suppressed [ 508.274937][T21067] ntfs: (device loop2): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 508.357626][T21067] ntfs: volume version 3.1. [ 508.388126][T21067] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 508.405852][T21067] ntfs: (device loop2): load_and_init_quota(): Failed to find inode number for $Quota. [ 508.426146][T21067] ntfs: (device loop2): load_system_files(): Failed to load $Quota. Mounting read-only. Run chkdsk. [ 508.446006][T21067] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 508.475898][T21067] ntfs: (device loop2): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl. [ 508.495981][T21067] ntfs: (device loop2): load_system_files(): Failed to load $UsnJrnl. Will not be able to remount read-write. Run chkdsk. [ 508.744645][T21068] loop1: detected capacity change from 0 to 32768 [ 508.790478][T21068] XFS (loop1): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 508.940871][T21068] XFS (loop1): Ending clean mount [ 509.072885][T21092] syz.0.6943: attempt to access beyond end of device [ 509.072885][T21092] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 509.114208][ T5771] XFS (loop1): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 509.694297][T21100] overlayfs: missing 'workdir' [ 509.801731][T21096] loop2: detected capacity change from 0 to 32768 [ 509.857479][T21096] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 509.887887][T21096] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 509.906462][T21096] BTRFS info (device loop2): using free space tree [ 509.981332][T21094] loop3: detected capacity change from 0 to 32768 [ 510.130060][T21096] BTRFS info (device loop2): enabling ssd optimizations [ 510.152558][T21096] BTRFS info (device loop2): auto enabling async discard [ 510.619282][ T5772] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 510.765521][ T5765] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by udevd (5765) [ 511.341661][T21142] loop3: detected capacity change from 0 to 256 [ 511.409532][T21142] FAT-fs (loop3): Directory bread(block 64) failed [ 511.427898][T21142] FAT-fs (loop3): Directory bread(block 65) failed [ 511.448046][T21142] FAT-fs (loop3): Directory bread(block 66) failed [ 511.454637][T21142] FAT-fs (loop3): Directory bread(block 67) failed [ 511.498424][T21142] FAT-fs (loop3): Directory bread(block 68) failed [ 511.551931][T21142] FAT-fs (loop3): Directory bread(block 69) failed [ 511.552075][T21142] FAT-fs (loop3): Directory bread(block 70) failed [ 511.552104][T21142] FAT-fs (loop3): Directory bread(block 71) failed [ 511.552194][T21142] FAT-fs (loop3): Directory bread(block 72) failed [ 511.552222][T21142] FAT-fs (loop3): Directory bread(block 73) failed [ 512.312226][T21160] loop0: detected capacity change from 0 to 512 [ 512.361097][T21160] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 512.397948][T21160] EXT4-fs (loop0): 1 truncate cleaned up [ 512.439417][T21160] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 512.550670][T21160] EXT4-fs error (device loop0): ext4_generic_delete_entry:2729: inode #2: block 13: comm syz.0.6973: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0 [ 512.616381][T21160] EXT4-fs (loop0): Remounting filesystem read-only [ 512.622959][T21160] EXT4-fs warning (device loop0): ext4_rename_delete:3778: inode #2: comm syz.0.6973: Deleting old file: nlink 4, error=-117 [ 512.652798][T21151] loop1: detected capacity change from 0 to 32768 [ 512.692662][T21151] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 512.726165][T21151] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 512.735306][T21151] BTRFS info (device loop1): using free space tree [ 512.775256][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 512.919200][T21151] BTRFS info (device loop1): enabling ssd optimizations [ 512.935896][T21151] BTRFS info (device loop1): auto enabling async discard [ 513.169857][ T5771] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 513.227360][T21193] loop3: detected capacity change from 0 to 256 [ 514.315656][T21213] loop2: detected capacity change from 0 to 4096 [ 514.344638][T21213] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 514.363078][T21199] loop0: detected capacity change from 0 to 32768 [ 514.371284][T21213] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 514.424396][T21213] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 514.459089][T21213] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 514.481164][T21213] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 514.489858][T21215] loop3: detected capacity change from 0 to 4096 [ 514.494426][T21213] ntfs: volume version 3.1. [ 514.528498][T21213] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 514.545949][T21215] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 514.576278][T21213] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 514.624268][T21213] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 514.665947][T21213] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 514.697919][T21213] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 514.794769][T21215] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 515.042234][T21209] loop1: detected capacity change from 0 to 40427 [ 515.099086][T21209] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 515.144185][T21209] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 515.189063][T21209] F2FS-fs (loop1): invalid crc value [ 515.210051][T21209] F2FS-fs (loop1): Found nat_bits in checkpoint [ 515.337942][T21209] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 515.345170][T21209] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 515.574253][T21223] loop3: detected capacity change from 0 to 32768 [ 515.592240][T21223] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.6995 (21223) [ 515.615607][T21223] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 515.626146][T21223] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 515.635084][T21223] BTRFS info (device loop3): using free space tree [ 515.708030][T21223] BTRFS info (device loop3): enabling ssd optimizations [ 515.715099][T21223] BTRFS info (device loop3): auto enabling async discard [ 515.859911][ T5773] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 515.924241][T21247] loop2: detected capacity change from 0 to 256 [ 516.051440][T21247] FAT-fs (loop2): Directory bread(block 64) failed [ 516.061677][T21245] loop0: detected capacity change from 0 to 4096 [ 516.076074][T21247] FAT-fs (loop2): Directory bread(block 65) failed [ 516.095944][T21247] FAT-fs (loop2): Directory bread(block 66) failed [ 516.117205][T21245] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 516.168607][T21247] FAT-fs (loop2): Directory bread(block 67) failed [ 516.201112][T21247] FAT-fs (loop2): Directory bread(block 68) failed [ 516.222831][T21247] FAT-fs (loop2): Directory bread(block 69) failed [ 516.230043][T21247] FAT-fs (loop2): Directory bread(block 70) failed [ 516.238379][T21247] FAT-fs (loop2): Directory bread(block 71) failed [ 516.245158][T21247] FAT-fs (loop2): Directory bread(block 72) failed [ 516.259998][T21245] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 516.273403][T21247] FAT-fs (loop2): Directory bread(block 73) failed [ 516.960576][T21266] loop3: detected capacity change from 0 to 512 [ 516.992614][T21266] EXT4-fs: Ignoring removed nobh option [ 517.018744][T21266] EXT4-fs: Ignoring removed mblk_io_submit option [ 517.040181][T21266] EXT4-fs (loop3): orphan cleanup on readonly fs [ 517.063056][T21266] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -13 [ 517.118183][T21266] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.7006: attempt to clear invalid blocks 2 len 1 [ 517.226073][T21266] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 517.252273][T21266] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.7006: invalid indirect mapped block 1819239214 (level 0) [ 517.286408][T21266] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.7006: invalid indirect mapped block 1819239214 (level 1) [ 517.320599][T21266] EXT4-fs (loop3): 1 truncate cleaned up [ 517.334518][T21266] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 517.453875][T21258] loop2: detected capacity change from 0 to 32768 [ 517.467201][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 517.487281][T21258] XFS: attr2 mount option is deprecated. [ 517.492997][T21258] XFS: attr2 mount option is deprecated. [ 517.582203][T21258] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 517.663765][T21258] XFS (loop2): Ending clean mount [ 517.686967][T21258] XFS (loop2): Quotacheck needed: Please wait. [ 517.756440][T21258] XFS (loop2): Quotacheck: Done. [ 517.869034][ T5772] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 518.243254][ T5777] usb 2-1: new full-speed USB device number 39 using dummy_hcd [ 518.443206][ T5777] usb 2-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 518.457866][ T5777] usb 2-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b [ 518.468170][ T5777] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 518.477684][ T5777] usb 2-1: Product: syz [ 518.482052][ T5777] usb 2-1: Manufacturer: syz [ 518.490427][ T5777] usb 2-1: SerialNumber: syz [ 518.527870][ T5777] usb 2-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state [ 518.529610][T21294] xt_CT: You must specify a L4 protocol and not use inversions on it [ 518.646181][ T27] usb 4-1: new low-speed USB device number 40 using dummy_hcd [ 518.787191][T21302] netlink: 'syz.0.7015': attribute type 2 has an invalid length. [ 518.859874][T21304] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7018'. [ 518.868654][ T27] usb 4-1: unable to get BOS descriptor or descriptor too short [ 518.885110][ T27] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 518.906311][ T27] usb 4-1: config 1 interface 0 altsetting 1 endpoint 0x8E has invalid wMaxPacketSize 0 [ 518.918353][ T27] usb 4-1: config 1 interface 0 has no altsetting 0 [ 518.928928][ T27] usb 4-1: string descriptor 0 read error: -22 [ 518.942895][ T27] usb 4-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40 [ 518.946746][ T5777] usb 2-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter) [ 518.962477][ T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 518.997728][ T5777] usb 2-1: USB disconnect, device number 39 [ 519.207556][ T6478] udevd[6478]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 519.211979][ T27] snd-usb-audio: probe of 4-1:1.0 failed with error -22 [ 519.427106][ T27] usb 4-1: USB disconnect, device number 40 [ 520.180947][T21309] loop0: detected capacity change from 0 to 4096 [ 520.251220][T21309] ntfs3: loop0: Failed to initialize $Extend/$Reparse. [ 521.021607][T21327] loop0: detected capacity change from 0 to 256 [ 521.028360][T21331] loop1: detected capacity change from 0 to 64 [ 521.041445][T21327] exfat: Deprecated parameter 'utf8' [ 521.048821][T21327] exfat: Deprecated parameter 'utf8' [ 521.059475][T21327] exfat: Deprecated parameter 'utf8' [ 521.099609][T21327] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 521.256219][ T27] usb 3-1: new low-speed USB device number 39 using dummy_hcd [ 521.301049][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 521.301063][ T28] audit: type=1326 audit(2000000286.680:9888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.357980][ T28] audit: type=1326 audit(2000000286.680:9889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.396801][ T28] audit: type=1326 audit(2000000286.720:9890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.421135][ T28] audit: type=1326 audit(2000000286.720:9891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.440024][ T5088] Bluetooth: hci3: unexpected event for opcode 0x0419 [ 521.445784][ C1] vkms_vblank_simulate: vblank timer overrun [ 521.470310][ T28] audit: type=1326 audit(2000000286.720:9892): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.494712][ C1] vkms_vblank_simulate: vblank timer overrun [ 521.505065][ T28] audit: type=1326 audit(2000000286.720:9893): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.529373][ C1] vkms_vblank_simulate: vblank timer overrun [ 521.543311][ T28] audit: type=1326 audit(2000000286.720:9894): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.578230][ T28] audit: type=1326 audit(2000000286.730:9895): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.604370][ T27] usb 3-1: unable to get BOS descriptor or descriptor too short [ 521.617748][ T28] audit: type=1326 audit(2000000286.730:9896): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21332 comm="syz.1.7040" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 521.643790][ T27] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 521.654055][ T1203] usb 1-1: new full-speed USB device number 55 using dummy_hcd [ 521.662841][ T27] usb 3-1: config 1 interface 0 altsetting 1 endpoint 0x8E has invalid wMaxPacketSize 0 [ 521.682949][ T27] usb 3-1: config 1 interface 0 has no altsetting 0 [ 521.707392][ T27] usb 3-1: string descriptor 0 read error: -22 [ 521.713772][ T27] usb 3-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40 [ 521.725917][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.858221][ T1203] usb 1-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 521.879183][ T1203] usb 1-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b [ 521.897217][ T1203] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 521.905314][ T1203] usb 1-1: Product: syz [ 521.924344][ T1203] usb 1-1: Manufacturer: syz [ 521.926212][ T5088] Bluetooth: hci2: unexpected event for opcode 0x0419 [ 521.931155][ T1203] usb 1-1: SerialNumber: syz [ 522.034574][ T1203] usb 1-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state [ 522.061025][ T27] snd-usb-audio: probe of 3-1:1.0 failed with error -22 [ 522.191607][T21343] netlink: 424 bytes leftover after parsing attributes in process `syz.1.7033'. [ 522.203111][T21343] netlink: 'syz.1.7033': attribute type 1 has an invalid length. [ 522.243282][ T27] usb 3-1: USB disconnect, device number 39 [ 522.381051][T21339] loop3: detected capacity change from 0 to 40427 [ 522.397522][T21339] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 522.411546][T21339] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 522.428793][ T1203] usb 1-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter) [ 522.441656][T21339] F2FS-fs (loop3): invalid crc value [ 522.473661][T21339] F2FS-fs (loop3): Found nat_bits in checkpoint [ 522.480305][ T1203] usb 1-1: USB disconnect, device number 55 [ 522.618602][T21339] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 522.635934][T21339] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 522.799389][ T80] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 522.827048][ T80] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 523.202555][T21369] netlink: 'syz.0.7046': attribute type 12 has an invalid length. [ 523.347726][T21371] loop0: detected capacity change from 0 to 64 [ 523.479140][ T5088] Bluetooth: hci0: unexpected event for opcode 0x0419 [ 523.965449][T21384] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7053'. [ 524.299978][T21394] loop0: detected capacity change from 0 to 256 [ 524.769146][T21386] loop2: detected capacity change from 0 to 32768 [ 524.839336][T21386] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 525.061473][T21386] XFS (loop2): Ending clean mount [ 525.176534][ T5772] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 525.211588][ T5088] Bluetooth: hci3: unexpected event for opcode 0x0419 [ 525.762112][T21434] loop1: detected capacity change from 0 to 512 [ 525.793081][T21434] EXT4-fs: Ignoring removed nobh option [ 525.801426][T21434] EXT4-fs: Ignoring removed mblk_io_submit option [ 525.847318][T21434] EXT4-fs (loop1): orphan cleanup on readonly fs [ 525.881984][T21434] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 525.953202][T21434] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.7073: attempt to clear invalid blocks 2 len 1 [ 525.976252][T21434] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 526.036012][T21434] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.7073: invalid indirect mapped block 1819239214 (level 0) [ 526.096397][T21434] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.7073: invalid indirect mapped block 1819239214 (level 1) [ 526.129532][T21434] EXT4-fs (loop1): 1 truncate cleaned up [ 526.150489][T21434] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 526.242672][T21453] loop2: detected capacity change from 0 to 512 [ 526.287147][T21453] EXT4-fs error (device loop2): ext4_orphan_get:1404: inode #15: comm syz.2.7082: inode has both inline data and extents flags [ 526.311976][T21453] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.7082: couldn't read orphan inode 15 (err -117) [ 526.327178][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.354945][T21453] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 526.467849][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 526.476657][T21459] loop1: detected capacity change from 0 to 64 [ 526.508184][T21459] MINIX-fs: mounting file system with errors, running fsck is recommended [ 526.910016][T21478] netlink: 132 bytes leftover after parsing attributes in process `syz.2.7092'. [ 527.030074][T21483] netlink: 'syz.1.7094': attribute type 4 has an invalid length. [ 527.593277][T21508] netlink: 388 bytes leftover after parsing attributes in process `syz.2.7115'. [ 528.035958][ T28] audit: type=1326 audit(2000000293.410:9897): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21527 comm="syz.1.7114" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 528.095825][ T28] audit: type=1326 audit(2000000293.410:9898): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21527 comm="syz.1.7114" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 528.132471][ T28] audit: type=1326 audit(2000000293.450:9899): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21527 comm="syz.1.7114" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 528.171186][ T28] audit: type=1326 audit(2000000293.450:9900): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21527 comm="syz.1.7114" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 528.201771][ T28] audit: type=1326 audit(2000000293.450:9901): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21527 comm="syz.1.7114" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd40059ce59 code=0x7ffc0000 [ 528.366540][T21533] loop2: detected capacity change from 0 to 32768 [ 530.948206][ T28] audit: type=1326 audit(2000000296.320:9902): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21584 comm="syz.2.7144" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 530.987354][T21579] loop1: detected capacity change from 0 to 4096 [ 530.995138][T21579] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 531.010341][ T28] audit: type=1326 audit(2000000296.320:9903): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21584 comm="syz.2.7144" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 531.050003][ T28] audit: type=1326 audit(2000000296.360:9904): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21584 comm="syz.2.7144" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 531.107935][ T28] audit: type=1326 audit(2000000296.360:9905): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21584 comm="syz.2.7144" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 531.143843][T21579] ntfs: volume version 3.1. [ 531.554769][T21602] CIFS: VFS: Malformed UNC in devname [ 531.706071][T21610] siw: device registration error -23 [ 532.239778][T21611] loop1: detected capacity change from 0 to 32768 [ 532.259088][T21611] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 532.385491][T21631] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7167'. [ 532.448800][ T6478] BTRFS error: device /dev/loop1 already registered with a higher generation, found 8 expect 9 [ 532.753693][T21642] loop1: detected capacity change from 0 to 2048 [ 532.772885][T21642] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 532.795089][ T6478] udevd[6478]: incorrect nilfs2 checksum on /dev/loop1 [ 532.861946][T21647] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 532.865509][T21648] loop2: detected capacity change from 0 to 8 [ 532.882308][ T6478] udevd[6478]: incorrect nilfs2 checksum on /dev/loop1 [ 533.066513][T21647] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 533.096743][T21647] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4) [ 533.146863][T21647] Remounting filesystem read-only [ 533.155936][ T80] NILFS (loop1): discard dirty page: offset=4096, ino=6 [ 533.163030][ T80] NILFS (loop1): discard dirty block: blocknr=39, size=1024 [ 533.176143][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.196077][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.204983][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.225907][ T80] NILFS (loop1): discard dirty page: offset=0, ino=12 [ 533.232763][ T80] NILFS (loop1): discard dirty block: blocknr=17, size=1024 [ 533.248600][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.258004][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.269604][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.279093][ T80] NILFS (loop1): discard dirty page: offset=0, ino=5 [ 533.286669][ T80] NILFS (loop1): discard dirty block: blocknr=41, size=1024 [ 533.294271][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.304880][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.337248][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.346863][ T80] NILFS (loop1): discard dirty page: offset=0, ino=3 [ 533.355492][ T80] NILFS (loop1): discard dirty block: blocknr=42, size=1024 [ 533.368772][ T80] NILFS (loop1): discard dirty block: blocknr=43, size=1024 [ 533.379874][ T80] NILFS (loop1): discard dirty block: blocknr=44, size=1024 [ 533.387393][ T1203] usb 1-1: new high-speed USB device number 56 using dummy_hcd [ 533.396864][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.406640][ T80] NILFS (loop1): discard dirty page: offset=131072, ino=3 [ 533.414065][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.423554][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.432807][ T80] NILFS (loop1): discard dirty block: blocknr=46, size=1024 [ 533.453793][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.475858][ T80] NILFS (loop1): discard dirty page: offset=196608, ino=3 [ 533.483037][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.497639][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.516980][ T80] NILFS (loop1): discard dirty block: blocknr=49, size=1024 [ 533.524487][ T80] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.536034][ T5771] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 533.545378][ T5771] NILFS (loop1): discard dirty page: offset=0, ino=6 [ 533.554942][ T5771] NILFS (loop1): discard dirty block: blocknr=35, size=1024 [ 533.567026][ T5771] NILFS (loop1): discard dirty block: blocknr=36, size=1024 [ 533.574362][ T5771] NILFS (loop1): discard dirty block: blocknr=37, size=1024 [ 533.583939][ T5771] NILFS (loop1): discard dirty block: blocknr=38, size=1024 [ 533.593233][ T5771] NILFS (loop1): discard dirty page: offset=0, ino=4 [ 533.600956][ T5771] NILFS (loop1): discard dirty block: blocknr=40, size=1024 [ 533.609599][ T5771] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.609964][ T1203] usb 1-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 533.618995][ T5771] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.628171][ T1203] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 533.641865][ T5771] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 533.656269][ T1203] usb 1-1: config 0 descriptor?? [ 533.884232][ T1203] usb 1-1: Cannot read MAC address [ 533.904085][ T1203] MOSCHIP usb-ethernet driver: probe of 1-1:0.0 failed with error -71 [ 533.938115][ T1203] usb 1-1: USB disconnect, device number 56 [ 533.979870][T21677] xt_limit: Overflow, try lower: 0/0 [ 534.186138][ T27] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 534.223176][T21687] loop1: detected capacity change from 0 to 2048 [ 534.239732][T21687] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found! [ 534.267807][T21687] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 534.376398][ T27] usb 4-1: Using ep0 maxpacket: 8 [ 534.385492][ T27] usb 4-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 534.395165][ T27] usb 4-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 534.403278][ T27] usb 4-1: Product: syz [ 534.407628][ T27] usb 4-1: Manufacturer: syz [ 534.413086][ T27] usb 4-1: SerialNumber: syz [ 534.420819][ T27] usb 4-1: config 0 descriptor?? [ 534.430374][ T27] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 534.837808][ T27] gspca_zc3xx: reg_r err -71 [ 534.842487][ T27] gspca_zc3xx: probe of 4-1:0.0 failed with error -71 [ 534.853206][ T27] usb 4-1: USB disconnect, device number 41 [ 535.423269][T21690] netlink: 14 bytes leftover after parsing attributes in process `syz.2.7197'. [ 536.242199][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 536.242214][ T28] audit: type=1326 audit(2000000301.620:9911): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21730 comm="syz.0.7218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 536.336023][ T28] audit: type=1326 audit(2000000301.620:9912): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21730 comm="syz.0.7218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 536.387964][ T28] audit: type=1326 audit(2000000301.660:9913): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21730 comm="syz.0.7218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 536.461645][ T28] audit: type=1326 audit(2000000301.660:9914): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21730 comm="syz.0.7218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 536.487625][ T28] audit: type=1326 audit(2000000301.660:9915): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21730 comm="syz.0.7218" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 537.015791][ T28] audit: type=1326 audit(2000000302.390:9916): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21760 comm="syz.0.7231" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 537.094239][ T28] audit: type=1326 audit(2000000302.390:9917): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21760 comm="syz.0.7231" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 537.174192][ T28] audit: type=1326 audit(2000000302.430:9918): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21760 comm="syz.0.7231" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 537.198710][ C0] vkms_vblank_simulate: vblank timer overrun [ 537.256912][ T28] audit: type=1326 audit(2000000302.430:9919): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21760 comm="syz.0.7231" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 537.281188][ C0] vkms_vblank_simulate: vblank timer overrun [ 537.319037][T21771] loop2: detected capacity change from 0 to 128 [ 537.350132][T21771] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 537.395543][T21771] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 537.413669][T21771] UDF-fs: error (device loop2): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 187 marked as free, partition length is 32) [ 537.779329][T21780] xt_CT: No such helper "snmp" [ 537.866414][T21757] loop1: detected capacity change from 0 to 32768 [ 537.883980][T21757] [ 537.883980][T21757] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 537.883980][T21757] [ 537.939505][T21757] ERROR: (device loop1): dbAlloc: the hint is outside the map [ 537.939505][T21757] [ 537.963947][T21787] loop3: detected capacity change from 0 to 1024 [ 537.994905][T21757] ERROR: (device loop1): remounting filesystem as read-only [ 538.022567][T21787] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5 [ 538.047854][T21787] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.7243: Failed to acquire dquot type 0 [ 538.060743][T21787] EXT4-fs error (device loop3): mb_free_blocks:1970: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 538.095375][T21787] EXT4-fs (loop3): 1 truncate cleaned up [ 538.136442][T21787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 538.241908][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 538.546467][T21800] 8021q: adding VLAN 0 to HW filter on device bond6 [ 538.789867][T21812] loop2: detected capacity change from 0 to 256 [ 538.797550][T21813] usb usb8: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 539.128147][T21827] loop3: detected capacity change from 0 to 256 [ 539.164657][T21827] FAT-fs (loop3): Directory bread(block 64) failed [ 539.171476][T21827] FAT-fs (loop3): Directory bread(block 65) failed [ 539.178433][T21827] FAT-fs (loop3): Directory bread(block 66) failed [ 539.185094][T21827] FAT-fs (loop3): Directory bread(block 67) failed [ 539.193026][T21827] FAT-fs (loop3): Directory bread(block 68) failed [ 539.200022][T21827] FAT-fs (loop3): Directory bread(block 69) failed [ 539.206942][T21827] FAT-fs (loop3): Directory bread(block 70) failed [ 539.213502][T21827] FAT-fs (loop3): Directory bread(block 71) failed [ 539.220416][T21827] FAT-fs (loop3): Directory bread(block 72) failed [ 539.229285][T21827] FAT-fs (loop3): Directory bread(block 73) failed [ 539.265946][ T5777] usb 2-1: new high-speed USB device number 40 using dummy_hcd [ 539.315868][ T9] usb 3-1: new high-speed USB device number 40 using dummy_hcd [ 539.465931][ T5777] usb 2-1: Using ep0 maxpacket: 16 [ 539.472913][ T5777] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 539.483205][ T5777] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 539.492262][ T5777] usb 2-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping [ 539.504531][ T5777] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 539.514141][ T5777] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 539.522387][ T5777] usb 2-1: Product: syz [ 539.526951][ T5777] usb 2-1: Manufacturer: syz [ 539.531703][ T5777] usb 2-1: SerialNumber: syz [ 539.538154][ T9] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 539.547343][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 539.555338][ T9] usb 3-1: Product: syz [ 539.560007][ T9] usb 3-1: Manufacturer: syz [ 539.572803][ T9] usb 3-1: SerialNumber: syz [ 539.579337][ T9] r8152-cfgselector 3-1: config 0 descriptor?? [ 539.770399][ T5777] usb 2-1: 0:2 : does not exist [ 539.788151][ T5777] usb 2-1: USB disconnect, device number 40 [ 539.797889][ T9] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 539.814529][ T42] usb 3-1: config 0 descriptor?? [ 539.845667][ T6478] udevd[6478]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 539.998275][ T42] usb 3-1: can't set config #0, error -71 [ 539.998336][ T9] usb 3-1: USB disconnect, device number 40 [ 540.684730][T21835] 8021q: adding VLAN 0 to HW filter on device bond3 [ 540.961488][T21847] libceph: resolve '0..' (ret=-3): failed [ 541.302005][T21862] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 542.106163][T21886] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7289'. [ 542.123503][T21874] loop0: detected capacity change from 0 to 32768 [ 542.345454][T21870] loop2: detected capacity change from 0 to 32768 [ 542.440192][T21870] JBD2: Ignoring recovery information on journal [ 542.618160][T21870] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 542.968626][T21910] loop3: detected capacity change from 0 to 512 [ 542.988573][T21910] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 543.007091][ T5772] ocfs2: Unmounting device (7,2) on (node local) [ 543.089713][T21910] FAT-fs (loop3): error, invalid access to FAT (entry 0x0fffff00) [ 543.105786][T21912] tmpfs: Bad value for 'nr_inodes' [ 543.659991][T21928] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7308'. [ 544.157537][T21949] cgroup: Invalid name [ 544.269049][T21954] netlink: 172 bytes leftover after parsing attributes in process `syz.1.7322'. [ 544.356082][ T9] usb 3-1: new high-speed USB device number 41 using dummy_hcd [ 544.578459][ T9] usb 3-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 544.618836][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 544.645383][ T9] usb 3-1: Product: syz [ 544.656416][ T9] usb 3-1: Manufacturer: syz [ 544.666690][ T9] usb 3-1: SerialNumber: syz [ 544.692283][ T9] usb 3-1: config 0 descriptor?? [ 544.706555][ T9] ch341 3-1:0.0: ch341-uart converter detected [ 544.724383][T21972] loop3: detected capacity change from 0 to 4096 [ 544.763638][T21972] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 544.784692][T21976] loop0: detected capacity change from 0 to 2048 [ 544.804852][T21976] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 544.880577][T21976] UDF-fs: bad mount option "ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿš@­LqE:†‹ á艞Õt}²0ü$‰" or missing value [ 544.928695][ T9] usb 3-1: failed to receive control message: -121 [ 544.935351][ T9] ch341-uart: probe of ttyUSB0 failed with error -121 [ 545.148665][ T9] usb 3-1: USB disconnect, device number 41 [ 545.158547][ T9] ch341 3-1:0.0: device disconnected [ 545.560538][T21997] loop1: detected capacity change from 0 to 512 [ 545.608458][T21997] __quota_error: 7 callbacks suppressed [ 545.608477][T21997] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 545.647186][T21997] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 545.681424][T21997] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.7343: Failed to acquire dquot type 1 [ 545.702178][T21997] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 545.714364][T21997] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 545.725053][T21997] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.7343: Failed to acquire dquot type 1 [ 545.744360][T21997] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.7343: bg 0: block 248: padding at end of block bitmap is not set [ 545.781864][T21997] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 545.804268][T21997] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 545.856085][T21997] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 545.882831][T21997] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.7343: Failed to acquire dquot type 1 [ 545.915984][T21997] EXT4-fs (loop1): 1 orphan inode deleted [ 545.937121][T21997] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 545.952858][T22013] loop3: detected capacity change from 0 to 1024 [ 545.976157][T21997] ext4 filesystem being mounted at /1889/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 546.049195][T21997] Quota error (device loop1): do_check_range: Getting block 1536 out of range 0-5 [ 546.069324][T22013] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 546.104622][T22013] hfsplus: xattr search failed [ 546.190245][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 546.257217][ T60] hfsplus: b-tree write err: -5, ino 25 [ 546.263749][ T60] hfsplus: b-tree write err: -5, ino 4 [ 546.284376][ T60] hfsplus: b-tree write err: -5, ino 2 [ 546.695323][T22040] netlink: 72 bytes leftover after parsing attributes in process `syz.1.7363'. [ 546.714408][T22042] netlink: 80 bytes leftover after parsing attributes in process `syz.3.7365'. [ 546.901924][ T5088] Bluetooth: hci3: unexpected event for opcode 0x2007 [ 547.630043][T22079] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 547.904918][T22063] loop1: detected capacity change from 0 to 32768 [ 547.987575][T22063] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 547.988717][T22095] loop0: detected capacity change from 0 to 1024 [ 548.069140][T22095] hfsplus: inconsistency in B*Tree (9,1,255,1,0) [ 548.120760][T22095] hfsplus: xattr search failed [ 548.238817][T22063] XFS (loop1): Ending clean mount [ 548.297219][ T60] hfsplus: b-tree write err: -5, ino 25 [ 548.303085][ T60] hfsplus: b-tree write err: -5, ino 4 [ 548.306220][T22109] bridge3: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 548.323606][ T60] hfsplus: b-tree write err: -5, ino 2 [ 548.419679][ T5771] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 548.474438][T22113] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7391'. [ 548.603991][T22115] loop3: detected capacity change from 0 to 512 [ 548.730200][T22120] ipt_ECN: cannot use operation on non-tcp rule [ 548.746193][T22115] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 548.804686][T22115] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 548.864193][T22115] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.7392: Failed to acquire dquot type 1 [ 548.946438][T22115] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 548.976187][T22115] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.7392: Failed to acquire dquot type 1 [ 549.047971][T22115] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.7392: bg 0: block 248: padding at end of block bitmap is not set [ 549.076930][T22115] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 549.091602][T22133] openvswitch: netlink: Missing key (keys=40, expected=200000) [ 549.102267][T22115] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.7392: Failed to acquire dquot type 1 [ 549.159387][T22115] EXT4-fs (loop3): 1 orphan inode deleted [ 549.180326][T22115] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 549.230943][T22115] ext4 filesystem being mounted at /1912/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 549.430665][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 549.519623][T22141] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 549.671250][T22131] loop2: detected capacity change from 0 to 32768 [ 549.720321][T22131] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 549.959378][T22131] XFS (loop2): Ending clean mount [ 550.243432][ T5772] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 550.296957][T22172] netlink: 161700 bytes leftover after parsing attributes in process `syz.3.7414'. [ 550.606269][T22156] loop1: detected capacity change from 0 to 32768 [ 550.787653][T22156] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 550.894501][T22156] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50. [ 550.944993][T22156] XFS (loop1): Tail block (0x29) overwrite detected. Updated to 0x30 [ 550.977103][T22201] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 551.018666][T22156] XFS (loop1): Ending clean mount [ 551.156023][T22156] XFS (loop1): Metadata corruption detected at xfs_dinode_verify+0x2e5/0x11d0, inode 0x1803 dinode [ 551.176346][T22156] XFS (loop1): Unmount and run xfs_repair [ 551.182232][T22156] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 551.225977][T22156] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 551.280270][T22156] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 551.305529][T22156] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 e2 bf 3d 4.Xh....4.Xh...= [ 551.324719][T22156] 00000030: 34 f7 58 68 a5 e2 bf 3d 00 00 00 00 00 00 00 20 4.Xh...=....... [ 551.341903][T22156] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 551.356874][T22156] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 ca e6 3d c1 ..............=. [ 551.372363][T22156] 00000060: ff ff ff ff 6e d0 e3 2d 00 00 00 00 00 00 00 04 ....n..-........ [ 551.382058][T22156] 00000070: 00 00 00 03 00 00 00 10 00 00 00 00 00 00 00 06 ................ [ 551.449011][ T5771] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 551.839072][T22224] loop0: detected capacity change from 0 to 2048 [ 551.903503][T22224] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 551.910837][T22226] loop2: detected capacity change from 0 to 2048 [ 551.922104][T22205] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 552.023720][T22226] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 552.061933][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 552.165118][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 552.165134][ T28] audit: type=1800 audit(2000000317.540:9925): pid=22226 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.7437" name="file1" dev="loop2" ino=1367 res=0 errno=0 [ 552.483417][T22249] i2c i2c-0: Invalid block write size 34 [ 552.806040][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 552.858706][T22257] loop0: detected capacity change from 0 to 4096 [ 552.880825][T22257] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 552.894136][T22263] loop2: detected capacity change from 0 to 8 [ 553.029174][T22263] SQUASHFS error: zlib decompression failed, data probably corrupt [ 553.056066][T22263] SQUASHFS error: Failed to read block 0x4de: -5 [ 553.062921][T22263] SQUASHFS error: zlib decompression failed, data probably corrupt [ 553.115984][T22263] SQUASHFS error: Failed to read block 0x4df: -5 [ 553.126096][ T5088] Bluetooth: hci0: command 0x0c1a tx timeout [ 553.144437][T22263] SQUASHFS error: zlib decompression failed, data probably corrupt [ 553.196464][T22263] SQUASHFS error: Failed to read block 0x4e0: -5 [ 553.236515][T22263] SQUASHFS error: zlib decompression failed, data probably corrupt [ 553.244522][T22263] SQUASHFS error: Failed to read block 0x4de: -5 [ 553.295845][ T28] audit: type=1800 audit(2000000318.670:9926): pid=22263 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7453" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 553.520973][T22274] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 553.835068][T22285] netlink: 'syz.2.7464': attribute type 21 has an invalid length. [ 553.853421][T22285] IPv6: NLM_F_CREATE should be specified when creating new route [ 553.863350][T22285] netlink: 'syz.2.7464': attribute type 1 has an invalid length. [ 554.078218][T22254] loop1: detected capacity change from 0 to 65536 [ 554.128127][T22254] XFS (loop1): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 554.255105][T22254] XFS (loop1): Ending clean mount [ 554.277899][T22254] XFS (loop1): Quotacheck needed: Please wait. [ 554.337979][ T60] XFS (loop1): Metadata corruption detected at xfs_dinode_verify+0x2e5/0x11d0, inode 0x25 dinode [ 554.393856][ T60] XFS (loop1): Unmount and run xfs_repair [ 554.421990][ T60] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 554.446804][T22313] loop0: detected capacity change from 0 to 16 [ 554.454167][T22313] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 554.461111][ T60] 00000000: 49 4e a1 ff 03 01 00 00 00 00 00 00 00 00 00 00 IN.............. [ 554.487072][ T60] 00000010: 00 00 00 01 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 554.505174][ T60] 00000020: 34 f7 58 68 7a bb 44 4d 34 f7 58 68 7a bb 44 4d 4.Xhz.DM4.Xhz.DM [ 554.549470][ T60] 00000030: 34 f7 58 68 7a bb 44 4d 00 00 00 00 00 00 00 27 4.Xhz.DM.......' [ 554.585395][ T60] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 554.616017][ T60] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 0c 44 49 b4 .............DI. [ 554.625056][ T60] 00000060: ff ff ff ff f1 fd ce d1 00 00 00 00 00 00 00 02 ................ [ 554.676947][ T60] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08 ................ [ 554.839188][T22325] loop2: detected capacity change from 0 to 64 [ 554.839508][T22254] XFS (loop1): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 554.986555][T22329] loop3: detected capacity change from 0 to 64 [ 555.032923][ T5771] XFS (loop1): Unmounting Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 555.154920][T22333] netlink: 'syz.2.7483': attribute type 5 has an invalid length. [ 555.203206][T22333] netlink: 'syz.2.7483': attribute type 17 has an invalid length. [ 556.546545][T22378] loop1: detected capacity change from 0 to 1024 [ 556.681695][T22384] netlink: 'syz.3.7509': attribute type 3 has an invalid length. [ 556.707605][ T5840] usb 1-1: new full-speed USB device number 57 using dummy_hcd [ 556.909187][ T5840] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 556.932369][ T5840] usb 1-1: config 179 has no interface number 0 [ 556.956052][ T5840] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10 [ 557.001826][ T5840] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 64 [ 557.027244][ T5840] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 557.057674][T22396] netlink: 52 bytes leftover after parsing attributes in process `syz.3.7515'. [ 557.072484][ T5840] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 64 [ 557.084767][ T5840] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 557.105362][ T28] audit: type=1326 audit(2000000322.480:9927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.124256][ T5840] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 557.183414][ T5840] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 557.188736][ T28] audit: type=1326 audit(2000000322.520:9928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.216456][T22376] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 557.230836][ T28] audit: type=1326 audit(2000000322.530:9929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.286191][T22376] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 557.359230][ T28] audit: type=1326 audit(2000000322.530:9930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.502335][ T28] audit: type=1326 audit(2000000322.530:9931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.538644][ T28] audit: type=1326 audit(2000000322.530:9932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.556640][ T9] usb 1-1: USB disconnect, device number 57 [ 557.569020][ C1] vkms_vblank_simulate: vblank timer overrun [ 557.583152][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 557.591789][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 557.612082][ T28] audit: type=1326 audit(2000000322.530:9933): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.639938][ C1] vkms_vblank_simulate: vblank timer overrun [ 557.699982][ T28] audit: type=1326 audit(2000000322.530:9934): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22397 comm="syz.2.7516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 557.998088][T22417] loop1: detected capacity change from 0 to 4096 [ 558.162837][T22424] trusted_key: encrypted_key: keylen parameter is missing [ 558.579000][T22432] netlink: 3 bytes leftover after parsing attributes in process `syz.3.7533'. [ 559.015840][ T28] audit: type=1326 audit(2000000324.390:9935): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22439 comm="syz.3.7537" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 559.084738][ T28] audit: type=1326 audit(2000000324.390:9936): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22439 comm="syz.3.7537" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 559.110608][T22422] loop2: detected capacity change from 0 to 32768 [ 559.170427][ T28] audit: type=1326 audit(2000000324.440:9937): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22439 comm="syz.3.7537" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 559.210818][T22422] (syz.2.7527,22422,1):ocfs2_check_set_options:1215 ERROR: Group quotas were requested, but this filesystem does not have the feature enabled. [ 559.248293][T22422] (syz.2.7527,22422,1):ocfs2_fill_super:1178 ERROR: status = -22 [ 559.762670][T22431] loop1: detected capacity change from 0 to 32768 [ 559.856055][T22431] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 559.956798][T22438] loop0: detected capacity change from 0 to 32768 [ 559.971376][T22431] XFS (loop1): Ending clean mount [ 559.993315][T22431] XFS (loop1): Quotacheck needed: Please wait. [ 560.082714][T22438] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 560.197966][T22471] netlink: 'syz.2.7543': attribute type 4 has an invalid length. [ 560.238586][T22431] XFS (loop1): Quotacheck: Done. [ 560.277635][T22471] netlink: 17 bytes leftover after parsing attributes in process `syz.2.7543'. [ 560.295861][T22438] XFS (loop0): Ending clean mount [ 560.347623][T22438] XFS (loop0): Quotacheck needed: Please wait. [ 560.662133][T22438] XFS (loop0): Quotacheck: Done. [ 560.705907][ T5771] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 560.885645][ T5770] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 561.281199][T22485] loop3: detected capacity change from 0 to 1024 [ 561.336032][T22485] EXT4-fs (loop3): stripe (4) is not aligned with cluster size (4096), stripe is disabled [ 561.496130][T22485] EXT4-fs error (device loop3): ext4_map_blocks:610: inode #3: block 2: comm syz.3.7552: lblock 2 mapped to illegal pblock 2 (length 1) [ 561.618273][T22485] EXT4-fs error (device loop3): ext4_map_blocks:610: inode #3: block 48: comm syz.3.7552: lblock 0 mapped to illegal pblock 48 (length 1) [ 561.698485][T22485] EXT4-fs error (device loop3): ext4_acquire_dquot:6953: comm syz.3.7552: Failed to acquire dquot type 0 [ 561.751767][T22485] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5939: Corrupt filesystem [ 561.827411][T22485] EXT4-fs error (device loop3): ext4_evict_inode:254: inode #11: comm syz.3.7552: mark_inode_dirty error [ 561.869153][T22485] EXT4-fs warning (device loop3): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 561.896433][T22485] EXT4-fs (loop3): 1 orphan inode deleted [ 561.918840][ T60] EXT4-fs error (device loop3): ext4_map_blocks:610: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1) [ 561.957140][T22485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 561.963215][ T60] EXT4-fs error (device loop3): ext4_release_dquot:6989: comm kworker/u4:4: Failed to release dquot type 0 [ 562.065260][T22485] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 562.106523][T22485] EXT4-fs error (device loop3): __ext4_get_inode_loc:4496: comm syz.3.7552: Invalid inode table block 1 in block_group 0 [ 562.132720][T22507] netlink: 'syz.0.7560': attribute type 39 has an invalid length. [ 562.160510][T22485] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5939: Corrupt filesystem [ 562.181886][T22485] EXT4-fs error (device loop3): ext4_quota_off:7237: inode #3: comm syz.3.7552: mark_inode_dirty error [ 562.387459][ T27] usb 2-1: new high-speed USB device number 41 using dummy_hcd [ 562.595902][ T27] usb 2-1: Using ep0 maxpacket: 8 [ 562.614115][ T27] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 562.639714][ T27] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 562.666993][ T27] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 562.690439][ T27] usb 2-1: Product: syz [ 562.694866][ T27] usb 2-1: Manufacturer: syz [ 562.725815][ T27] usb 2-1: SerialNumber: syz [ 562.816373][T22523] comedi comedi4: bad chanlist[0]=0xfffffffe chan=65534 range length=2 [ 562.986535][ T27] usb 2-1: Handspring Visor / Palm OS: No valid connect info available [ 563.017912][ T27] usb 2-1: Handspring Visor / Palm OS: port 0, is for HotSync use [ 563.052925][ T27] usb 2-1: Handspring Visor / Palm OS: port 211, is for unknown use [ 563.059678][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 563.073772][ T1280] aoe: packet could not be sent on ipvlan0. consider increasing tx_queue_len [ 563.081469][ T27] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2 [ 563.199767][ T27] usb 2-1: palm_os_3_probe - error -71 getting bytes available request [ 563.226342][ T27] visor 2-1:1.0: Handspring Visor / Palm OS converter detected [ 563.259611][ T27] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 563.306593][ T27] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 563.357071][T22535] IPv6: NLM_F_CREATE should be specified when creating new route [ 563.358297][ T27] usb 2-1: USB disconnect, device number 41 [ 563.432643][ T27] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 563.511814][ T27] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 563.539113][ T27] visor 2-1:1.0: device disconnected [ 563.650252][T22543] loop0: detected capacity change from 0 to 256 [ 563.733672][T22543] FAT-fs (loop0): Directory bread(block 64) failed [ 563.764061][T22543] FAT-fs (loop0): Directory bread(block 65) failed [ 563.783127][T22543] FAT-fs (loop0): Directory bread(block 66) failed [ 563.791718][T22543] FAT-fs (loop0): Directory bread(block 67) failed [ 563.829674][T22543] FAT-fs (loop0): Directory bread(block 68) failed [ 563.847913][T22543] FAT-fs (loop0): Directory bread(block 69) failed [ 563.876901][T22543] FAT-fs (loop0): Directory bread(block 70) failed [ 563.884220][T22543] FAT-fs (loop0): Directory bread(block 71) failed [ 563.903446][T22547] binder: 22546:22547 unknown command 1074553619 [ 563.917513][T22543] FAT-fs (loop0): Directory bread(block 72) failed [ 563.936868][T22547] binder: 22546:22547 ioctl c0306201 200000000640 returned -22 [ 563.939081][T22543] FAT-fs (loop0): Directory bread(block 73) failed [ 564.195132][T22551] ieee802154 phy1 wpan1: encryption failed: -22 [ 564.799374][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 564.799391][ T28] audit: type=1326 audit(2000000330.180:9940): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22575 comm="syz.0.7594" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 564.880250][ T28] audit: type=1326 audit(2000000330.180:9941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22575 comm="syz.0.7594" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 564.973547][ T28] audit: type=1326 audit(2000000330.180:9942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22575 comm="syz.0.7594" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 565.070730][ T28] audit: type=1326 audit(2000000330.190:9943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22575 comm="syz.0.7594" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdc4219ce59 code=0x7ffc0000 [ 565.203521][T22588] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7600'. [ 565.249708][T22588] A link change request failed with some changes committed already. Interface bond_slave_0 may have been left with an inconsistent configuration, please check. [ 565.456119][T22596] netlink: 'syz.2.7604': attribute type 30 has an invalid length. [ 565.574732][T22602] dlm: non-version read from control device 0 [ 565.921086][T22616] binder: 22614:22616 ioctl 400c620e ffffffffffffffff returned -14 [ 566.731322][T22647] loop0: detected capacity change from 0 to 1024 [ 566.979762][T22655] program syz.2.7633 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 567.255916][ T5811] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 567.397002][ T28] audit: type=1326 audit(2000000332.780:9944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.482505][ T28] audit: type=1326 audit(2000000332.780:9945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.536946][ T5811] usb 2-1: unable to get BOS descriptor or descriptor too short [ 567.561520][ T5811] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 567.589285][ T5811] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 567.601688][ T28] audit: type=1326 audit(2000000332.810:9946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.631464][ T28] audit: type=1326 audit(2000000332.820:9947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.662200][ T28] audit: type=1326 audit(2000000332.820:9948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.694559][ T5811] usb 2-1: string descriptor 0 read error: -22 [ 567.701698][ T5811] usb 2-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40 [ 567.712615][ T5811] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 567.721981][ T28] audit: type=1326 audit(2000000332.820:9949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22670 comm="syz.2.7642" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2639ce59 code=0x7ffc0000 [ 567.771013][ T5811] usb 2-1: selecting invalid altsetting 1 [ 567.778317][ T5840] usb 4-1: new high-speed USB device number 42 using dummy_hcd [ 567.798120][ T5811] usb 2-1: unit 3 not found! [ 567.975944][ T5840] usb 4-1: Using ep0 maxpacket: 8 [ 568.002145][ T5840] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 568.022291][ T5811] usb 2-1: unit 0 not found! [ 568.033938][ T5840] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 568.044669][T22686] raw_sendmsg: syz.0.7647 forgot to set AF_INET. Fix it! [ 568.049227][ T5840] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 568.082512][ T5840] usb 4-1: Product: syz [ 568.089849][ T5840] usb 4-1: Manufacturer: syz [ 568.095015][ T5840] usb 4-1: SerialNumber: syz [ 568.352365][ T5811] usb 2-1: USB disconnect, device number 42 [ 568.361058][ T5840] usb 4-1: Handspring Visor / Palm OS: No valid connect info available [ 568.373229][ T5840] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 568.391774][ T5840] usb 4-1: Handspring Visor / Palm OS: port 0, is for Generic use [ 568.423178][ T5840] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2 [ 568.541013][T22694] loop0: detected capacity change from 0 to 2048 [ 568.553834][T22694] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 568.577312][ T5840] usb 4-1: palm_os_3_probe - error -71 getting bytes available request [ 568.600127][ T5840] visor 4-1:1.0: Handspring Visor / Palm OS converter detected [ 568.643261][ T5840] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 568.654951][T22697] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 568.670758][ T5840] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 568.733316][ T5840] usb 4-1: USB disconnect, device number 42 [ 568.776703][ T5840] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 568.846580][ T5840] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 568.892342][ T5840] visor 4-1:1.0: device disconnected [ 568.928746][T22699] loop2: detected capacity change from 0 to 2048 [ 569.071724][ T5765] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 569.402630][T22708] netlink: 72 bytes leftover after parsing attributes in process `syz.1.7658'. [ 569.769361][T22721] loop0: detected capacity change from 0 to 256 [ 569.961175][T22725] netlink: 'syz.1.7667': attribute type 1 has an invalid length. [ 570.142028][T22731] loop1: detected capacity change from 0 to 256 [ 570.152563][T22731] exfat: Deprecated parameter 'namecase' [ 570.188310][T22731] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 570.266275][T22733] pim6reg: entered allmulticast mode [ 570.417634][T22735] loop0: detected capacity change from 0 to 512 [ 570.498724][T22735] EXT4-fs (loop0): 1 truncate cleaned up [ 570.518953][T22735] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 570.794686][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 570.991079][T22719] loop3: detected capacity change from 0 to 40427 [ 571.062749][T22719] F2FS-fs (loop3): Wrong segment_count / block_count (31 > 0) [ 571.101177][T22719] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 571.143024][T22719] F2FS-fs (loop3): invalid crc value [ 571.172218][T22753] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7680'. [ 571.190136][T22719] F2FS-fs (loop3): Found nat_bits in checkpoint [ 571.464619][T22719] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 571.483913][T22719] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 571.630581][T22768] loop1: detected capacity change from 0 to 256 [ 571.760734][ T5773] syz-executor: attempt to access beyond end of device [ 571.760734][ T5773] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 571.790603][T22772] netlink: 'syz.0.7688': attribute type 16 has an invalid length. [ 571.797173][T22770] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7687'. [ 571.856208][T22770] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7687'. [ 571.867214][ T5773] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 572.572303][T22793] ieee802154 phy1 wpan1: encryption failed: -22 [ 572.690221][T22797] loop0: detected capacity change from 0 to 64 [ 573.341013][T22817] loop2: detected capacity change from 0 to 16 [ 573.375220][T22817] erofs: (device loop2): mounted with root inode @ nid 36. [ 573.575401][T22825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7715'. [ 573.802057][T22835] loop0: detected capacity change from 0 to 256 [ 573.894462][T22835] FAT-fs (loop0): Directory bread(block 64) failed [ 573.913619][T22835] FAT-fs (loop0): Directory bread(block 65) failed [ 573.942082][T22835] FAT-fs (loop0): Directory bread(block 66) failed [ 573.969976][T22835] FAT-fs (loop0): Directory bread(block 67) failed [ 573.981169][T22835] FAT-fs (loop0): Directory bread(block 68) failed [ 573.993238][T22835] FAT-fs (loop0): Directory bread(block 69) failed [ 574.003046][T22835] FAT-fs (loop0): Directory bread(block 70) failed [ 574.014334][T22835] FAT-fs (loop0): Directory bread(block 71) failed [ 574.023030][T22835] FAT-fs (loop0): Directory bread(block 72) failed [ 574.033154][T22835] FAT-fs (loop0): Directory bread(block 73) failed [ 574.368540][T22847] loop1: detected capacity change from 0 to 1024 [ 574.576774][ T2928] hfsplus: b-tree write err: -5, ino 25 [ 574.583923][ T2928] hfsplus: b-tree write err: -5, ino 4 [ 574.629270][ T2928] hfsplus: b-tree write err: -5, ino 2 [ 574.734385][T22858] loop3: detected capacity change from 0 to 4096 [ 574.813867][T22858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 574.903835][T22871] netlink: 8752 bytes leftover after parsing attributes in process `syz.2.7736'. [ 574.991249][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 575.146078][ T8] usb 1-1: new high-speed USB device number 58 using dummy_hcd [ 575.167317][T22877] netlink: 20 bytes leftover after parsing attributes in process `syz.3.7737'. [ 575.361660][ T8] usb 1-1: config 0 has an invalid interface number: 50 but max is 0 [ 575.387939][ T8] usb 1-1: config 0 has no interface number 0 [ 575.412877][ T8] usb 1-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 575.451001][ T8] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc [ 575.470317][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 575.479145][ T8] usb 1-1: Product: syz [ 575.483403][ T8] usb 1-1: Manufacturer: syz [ 575.488695][ T8] usb 1-1: SerialNumber: syz [ 575.515573][ T8] usb 1-1: config 0 descriptor?? [ 575.551298][ T8] yurex 1-1:0.50: USB YUREX device now attached to Yurex #0 [ 575.724628][T22895] netlink: 3 bytes leftover after parsing attributes in process `syz.2.7748'. [ 575.978996][ T5840] usb 1-1: USB disconnect, device number 58 [ 576.007510][ T5840] yurex 1-1:0.50: USB YUREX #0 now disconnected [ 576.603943][T22934] loop1: detected capacity change from 0 to 16 [ 576.629336][T22934] erofs: (device loop1): mounted with root inode @ nid 36. [ 576.766763][ T5840] usb 3-1: new high-speed USB device number 42 using dummy_hcd [ 576.985815][ T5840] usb 3-1: Using ep0 maxpacket: 8 [ 577.019632][ T5840] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 577.069783][ T5840] usb 3-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e [ 577.085757][ T5840] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 577.093828][ T5840] usb 3-1: Product: syz [ 577.118824][ T5840] usb 3-1: Manufacturer: syz [ 577.123924][ T5840] usb 3-1: SerialNumber: syz [ 577.143074][ T5840] usb 3-1: config 0 descriptor?? [ 577.157878][ T5840] streamzap 3-1:0.0: streamzap_probe: endpoint doesn't match input device 0203 [ 577.275800][T22955] block device autoloading is deprecated and will be removed. [ 577.300306][T22955] syz.1.7778: attempt to access beyond end of device [ 577.300306][T22955] md0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=0 [ 577.400087][ T8] usb 3-1: USB disconnect, device number 42 [ 577.908769][T22981] syz.0.7791: attempt to access beyond end of device [ 577.908769][T22981] md0: rw=2048, sector=18446744073709551608, nr_sectors = 8 limit=0 [ 578.188667][T22993] openvswitch: netlink: Actions may not be safe on all matching packets [ 578.576225][ T5840] usb 2-1: new high-speed USB device number 43 using dummy_hcd [ 578.765922][ T5840] usb 2-1: Using ep0 maxpacket: 8 [ 578.783737][ T5840] usb 2-1: New USB device found, idVendor=10c4, idProduct=8244, bcdDevice=dc.00 [ 578.799163][ T5840] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 578.819094][ T5840] usb 2-1: Product: syz [ 578.825570][ T5840] usb 2-1: Manufacturer: syz [ 578.833896][ T5840] usb 2-1: SerialNumber: syz [ 578.850374][ T5840] usb 2-1: config 0 descriptor?? [ 578.874881][ T5840] radio-usb-si4713 2-1:0.0: Si4713 development board discovered: (10C4:8244) [ 578.956067][ T5811] usb 3-1: new high-speed USB device number 43 using dummy_hcd [ 579.176002][ T5811] usb 3-1: Using ep0 maxpacket: 16 [ 579.191043][ T5811] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 579.208368][ T5811] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 579.229132][ T5811] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 579.242668][ T5811] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 579.252842][ T5811] usb 3-1: Product: syz [ 579.268448][ T5811] usb 3-1: Manufacturer: syz [ 579.280609][ T5811] usb 3-1: SerialNumber: syz [ 579.301551][ T5840] radio-usb-si4713: probe of 2-1:0.0 failed with error -71 [ 579.320808][ T5840] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 579.343698][ T5840] usb 2-1: USB disconnect, device number 43 [ 579.421120][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 579.421136][ T28] audit: type=1326 audit(2000000344.800:9953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.458113][ T28] audit: type=1326 audit(2000000344.800:9954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.476489][T23027] loop0: detected capacity change from 0 to 32768 [ 579.482301][ C1] vkms_vblank_simulate: vblank timer overrun [ 579.520716][ T5811] usb 3-1: 0:2 : does not exist [ 579.533243][ T28] audit: type=1326 audit(2000000344.810:9955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.562643][ T5811] usb 3-1: 5:0: failed to get current value for ch 0 (-22) [ 579.566125][T23027] (syz.0.7814,23027,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 579.592279][T23027] (syz.0.7814,23027,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 579.600944][ T28] audit: type=1326 audit(2000000344.810:9956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.630261][ C1] vkms_vblank_simulate: vblank timer overrun [ 579.650442][ T5811] usb 3-1: USB disconnect, device number 43 [ 579.685894][ T28] audit: type=1326 audit(2000000344.820:9957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.708262][T23027] JBD2: Ignoring recovery information on journal [ 579.711120][ C1] vkms_vblank_simulate: vblank timer overrun [ 579.726238][ T6478] udevd[6478]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 579.790404][ T28] audit: type=1326 audit(2000000344.820:9958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.816182][ C1] vkms_vblank_simulate: vblank timer overrun [ 579.891070][ T28] audit: type=1326 audit(2000000344.820:9959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 579.906114][T23027] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 579.915272][ C1] vkms_vblank_simulate: vblank timer overrun [ 580.014077][ T28] audit: type=1326 audit(2000000344.820:9960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 580.104742][ T28] audit: type=1326 audit(2000000344.820:9961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23034 comm="syz.3.7818" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc8ec19ce59 code=0x7ffc0000 [ 580.130607][ C1] vkms_vblank_simulate: vblank timer overrun [ 580.222926][ T5770] ocfs2: Unmounting device (7,0) on (node local) [ 580.491120][T23051] loop1: detected capacity change from 0 to 4096 [ 580.557804][T23058] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7829'. [ 580.568856][T23058] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 580.577860][ T5811] usb 4-1: new high-speed USB device number 43 using dummy_hcd [ 580.785991][ T5811] usb 4-1: Using ep0 maxpacket: 8 [ 580.820568][ T5811] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 580.836463][T23064] netlink: 12 bytes leftover after parsing attributes in process `syz.0.7833'. [ 580.841137][ T5811] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 580.894068][ T5811] usb 4-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 580.911889][ T5811] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 580.955301][ T5811] usb 4-1: Product: syz [ 580.966986][ T5811] usb 4-1: Manufacturer: syz [ 580.971653][ T5811] usb 4-1: SerialNumber: syz [ 581.008231][ T5811] usb 4-1: config 0 descriptor?? [ 581.466584][T23086] loop2: detected capacity change from 0 to 4096 [ 581.510332][T23084] loop0: detected capacity change from 0 to 4096 [ 581.514243][T23086] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 581.526328][ T5811] usb 4-1: USB disconnect, device number 43 [ 581.663963][T23090] loop1: detected capacity change from 0 to 64 [ 581.674020][T23086] ntfs3: loop2: failed to convert "c46c" to iso8859-1 [ 582.215688][T23105] netdevsim netdevsim3: Direct firmware load for failed with error -2 [ 582.225382][T23105] netdevsim netdevsim3: Falling back to sysfs fallback for: [ 582.607599][T23115] loop2: detected capacity change from 0 to 4096 [ 582.888438][T23127] loop0: detected capacity change from 0 to 16 [ 582.913374][T23127] erofs: (device loop0): mounted with root inode @ nid 36. [ 583.126212][T23133] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709510581) [ 583.175866][T23133] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647 [ 583.388494][T23142] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.7869'. [ 583.906760][T23155] loop0: detected capacity change from 0 to 2048 [ 583.927793][T23157] loop1: detected capacity change from 0 to 512 [ 583.943974][T23161] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7879'. [ 583.950587][T23157] EXT4-fs: inline encryption not supported [ 583.965548][T23155] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 583.993832][T23157] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 584.018211][T23157] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 584.043520][T23157] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 584.082537][T23157] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 584.122662][T23157] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 584.176172][T23157] EXT4-fs (loop1): orphan cleanup on readonly fs [ 584.217890][T23157] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.7876: bg 0: block 34: padding at end of block bitmap is not set [ 584.327084][T23157] Quota error (device loop1): write_blk: dquota write failed [ 584.345931][T23157] EXT4-fs error (device loop1): ext4_acquire_dquot:6953: comm syz.1.7876: Failed to acquire dquot type 1 [ 584.372296][T23157] EXT4-fs (loop1): 1 truncate cleaned up [ 584.390101][T23157] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 584.417458][T23157] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 584.448785][T23159] loop3: detected capacity change from 0 to 32768 [ 584.976756][T23180] loop1: detected capacity change from 0 to 1024 [ 585.271050][T23164] loop2: detected capacity change from 0 to 32768 [ 585.409588][T23190] bridge6: entered promiscuous mode [ 585.416087][T23164] ERROR: (device loop2): dbFindCtl: Corrupt dmapctl page [ 585.416087][T23164] [ 585.446322][T23164] ERROR: (device loop2): remounting filesystem as read-only [ 585.455259][T23190] bridge6: entered allmulticast mode [ 585.467991][T23164] jfs_mkdir: dtInsert returned -EIO [ 585.473355][T23164] ERROR: (device loop2): jfs_mkdir: [ 585.473355][T23164] [ 586.135965][ T5811] usb 2-1: new high-speed USB device number 44 using dummy_hcd [ 586.351114][T23227] netlink: 'syz.2.7910': attribute type 16 has an invalid length. [ 586.378596][T23227] netlink: 156 bytes leftover after parsing attributes in process `syz.2.7910'. [ 586.386282][ T5811] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 586.419505][ T5811] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 586.431621][ T5811] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 586.450502][ T5811] usb 2-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 586.480378][ T5811] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 586.489324][ T5811] usb 2-1: Product: syz [ 586.493660][ T5811] usb 2-1: Manufacturer: syz [ 586.498742][ T5811] usb 2-1: SerialNumber: syz [ 586.506250][ T5811] usb 2-1: config 0 descriptor?? [ 586.559076][T23233] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7913'. [ 586.594085][T23233] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7913'. [ 586.757653][ T5811] usb 2-1: USB disconnect, device number 44 [ 586.879276][T23242] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7917'. [ 587.062391][T23230] loop0: detected capacity change from 0 to 32768 [ 587.118386][T23230] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 587.238404][T23230] XFS (loop0): Ending clean mount [ 587.238788][T23261] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7924'. [ 587.248901][T23230] XFS (loop0): Quotacheck needed: Please wait. [ 587.304052][T23263] netlink: 'syz.2.7923': attribute type 5 has an invalid length. [ 587.317478][ T8] XFS (loop0): Metadata CRC error detected at xfs_agfl_read_verify+0x18d/0x250, xfs_agfl block 0x3 [ 587.335217][ T8] XFS (loop0): Unmount and run xfs_repair [ 587.352501][ T8] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 587.369413][ T8] 00000000: 58 41 46 4c 00 00 00 00 d7 dc 42 4e 07 00 00 00 XAFL......BN.... [ 587.395987][ T8] 00000010: 9f 91 9c b7 20 0a 10 1d 00 00 00 00 00 00 00 00 .... ........... [ 587.418048][ T8] 00000020: e6 0a 0e bb ff ff ff ff 00 00 0b f0 00 00 0b f1 ................ [ 587.451765][ T8] 00000030: 00 00 0b f2 00 00 0b f3 00 00 0b f4 00 00 0b f5 ................ [ 587.468651][ T8] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 587.485425][ T8] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 587.501406][ T8] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 587.510751][ T8] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ................ [ 587.523459][ T2928] XFS (loop0): metadata I/O error in "xfs_alloc_read_agfl+0x21e/0x3d0" at daddr 0x3 len 1 error 74 [ 587.579704][T23265] loop1: detected capacity change from 0 to 4096 [ 587.582978][T23230] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 587.613955][T23230] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 587.735323][T23273] loop3: detected capacity change from 0 to 4096 [ 587.768642][T23273] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 587.962086][T23273] ntfs3: loop3: failed to convert "c46c" to cp850 [ 588.404889][T23288] loop3: detected capacity change from 0 to 128 [ 588.585952][T23296] netlink: 72 bytes leftover after parsing attributes in process `syz.0.7938'. [ 588.605947][T23296] netlink: 72 bytes leftover after parsing attributes in process `syz.0.7938'. [ 588.641472][T23294] loop2: detected capacity change from 0 to 4096 [ 588.655983][ C1] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured! [ 588.662645][T23294] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 588.748709][T23294] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 588.834394][T23300] bridge0: entered promiscuous mode [ 588.855040][T23303] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 589.276039][T23317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7947'. [ 589.446024][T23326] netlink: 1 bytes leftover after parsing attributes in process `syz.2.7951'. [ 589.626138][T23334] binder: 23331:23334 ioctl c0306201 200000000080 returned -22 [ 589.801994][T23343] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7959'. [ 589.820275][T23343] netlink: 'syz.3.7959': attribute type 13 has an invalid length. [ 589.829061][T23345] loop2: detected capacity change from 0 to 1024 [ 589.829633][T23343] netlink: 'syz.3.7959': attribute type 12 has an invalid length. [ 589.837157][T23345] EXT4-fs: Ignoring removed nomblk_io_submit option [ 589.895194][T23345] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 590.060715][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 590.283174][T23361] loop3: detected capacity change from 0 to 16 [ 590.327821][T23361] erofs: (device loop3): mounted with root inode @ nid 36. [ 590.482103][T23367] netlink: 'syz.0.7968': attribute type 27 has an invalid length. [ 590.642401][T23373] loop3: detected capacity change from 0 to 256 [ 590.652749][T23373] exfat: Deprecated parameter 'namecase' [ 590.709642][T23373] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 590.744100][T23356] loop1: detected capacity change from 0 to 32768 [ 590.835847][T23356] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 590.951168][T23356] XFS (loop1): Ending clean mount [ 590.965396][T23377] loop0: detected capacity change from 0 to 8192 [ 590.968661][T23356] XFS (loop1): Quotacheck needed: Please wait. [ 591.002717][T23377] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 591.019945][T23377] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 591.031201][T23377] REISERFS (device loop0): using ordered data mode [ 591.049565][T23377] reiserfs: using flush barriers [ 591.098402][T23377] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 591.122918][T23356] XFS (loop1): Quotacheck: Done. [ 591.135235][T23377] REISERFS (device loop0): checking transaction log (loop0) [ 591.233948][ T5771] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 591.441881][T23377] REISERFS (device loop0): Using tea hash to sort names [ 591.487626][T23377] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 591.556513][T23377] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 592.249526][T23420] loop1: detected capacity change from 0 to 512 [ 592.267331][T23420] EXT4-fs: Ignoring removed orlov option [ 592.283563][T23420] EXT4-fs: Ignoring removed mblk_io_submit option [ 592.313868][T23420] EXT4-fs: Ignoring removed mblk_io_submit option [ 592.325112][T23423] loop3: detected capacity change from 0 to 2048 [ 592.381705][T23423] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 592.393614][T23429] loop0: detected capacity change from 0 to 1024 [ 592.406595][T23420] EXT4-fs error (device loop1): ext4_iget_extra_inode:4739: inode #15: comm syz.1.7990: corrupted in-inode xattr: e_value size too large [ 592.425323][T23420] EXT4-fs error (device loop1): ext4_orphan_get:1409: comm syz.1.7990: couldn't read orphan inode 15 (err -117) [ 592.437485][T23423] ext4 filesystem being mounted at /2071/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 592.453633][T23420] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 592.691390][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 592.693955][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 593.030970][T23424] loop2: detected capacity change from 0 to 32768 [ 593.121436][T23424] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 593.223921][T23454] loop3: detected capacity change from 0 to 4096 [ 593.246113][T23454] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 593.282627][T23454] NILFS (loop3): mounting unchecked fs [ 593.353596][T23424] XFS (loop2): Ending clean mount [ 593.374233][T23454] NILFS (loop3): recovery complete [ 593.384153][ T6478] udevd[6478]: incorrect nilfs2 checksum on /dev/loop3 [ 593.402894][T23459] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 593.600118][ T5772] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 593.809180][T23464] loop3: detected capacity change from 0 to 1764 [ 594.358199][ T5840] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 594.376754][T23482] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 594.436681][T23482] rock: corrupted directory entry. extent=458780 out of volume (nzones=41) [ 594.456944][T23482] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 594.468817][T23484] comedi comedi3: pcmda12: I/O port conflict (0x100,16) [ 594.672933][T23493] exfat: Deprecated parameter 'utf8' [ 594.718160][T23493] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x47dfe6af, utbl_chksum : 0xe619d30d) [ 594.797092][ T5840] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 595.068418][T23508] __nla_validate_parse: 2 callbacks suppressed [ 595.068473][T23508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.8026'. [ 595.217139][T23516] Bluetooth: MGMT ver 1.22 [ 595.350446][T23521] netlink: 'syz.0.8032': attribute type 1 has an invalid length. [ 595.451641][T23525] set_capacity_and_notify: 3 callbacks suppressed [ 595.451657][T23525] loop3: detected capacity change from 0 to 512 [ 595.454151][T23526] loop0: detected capacity change from 0 to 512 [ 595.486788][T23525] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 595.504264][T23526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 595.516017][T23525] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=42c028, mo2=0002] [ 595.529345][T23525] EXT4-fs (loop3): orphan cleanup on readonly fs [ 595.545107][T23526] ext4 filesystem being mounted at /1902/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 595.567337][T23525] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4059: comm syz.3.8034: Allocating blocks 41-42 which overlap fs metadata [ 595.596248][ T5840] usb 2-1: new high-speed USB device number 45 using dummy_hcd [ 595.617377][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 595.623836][T23525] EXT4-fs (loop3): Remounting filesystem read-only [ 595.635679][T23525] __quota_error: 1 callbacks suppressed [ 595.645188][T23525] Quota error (device loop3): write_blk: dquota write failed [ 595.653463][T23525] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 595.665950][T23525] EXT4-fs (loop3): 1 truncate cleaned up [ 595.706613][T23525] EXT4-fs (loop3): pa ffff888078b73658: logic 1, phys. 41, len 23 [ 595.725446][T23525] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 595.758539][T23533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8035'. [ 595.801406][ T5840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 595.830360][ T5840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 595.840984][ T5840] usb 2-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 595.841726][ T5773] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 595.850557][ T5840] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 595.861098][ T5840] usb 2-1: config 0 descriptor?? [ 596.042611][T23538] loop0: detected capacity change from 0 to 1024 [ 596.343794][ T5840] razer 0003:1532:010E.0002: unknown main item tag 0x5 [ 596.547943][ T5840] razer 0003:1532:010E.0002: failed to enable macro keys: -71 [ 596.604017][ T5840] razer 0003:1532:010E.0002: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.1-1/input0 [ 596.645302][ T5840] usb 2-1: USB disconnect, device number 45 [ 596.829761][T23563] fido_id[23563]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 596.927847][T23570] loop2: detected capacity change from 0 to 8 [ 597.081723][T23572] comedi comedi3: rti800: I/O port conflict (0x100,16) [ 597.203783][T23576] loop2: detected capacity change from 0 to 2048 [ 597.310004][T23576] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a840c018, mo2=0002] [ 597.344664][T23576] System zones: 0-4 [ 597.390199][T23576] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 597.460296][T23576] ext4 filesystem being mounted at /2017/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 597.559122][T23576] fs-verity: sha256 using implementation "sha256-avx2" [ 597.569959][T23576] fs-verity (loop2, inode 18): fs-verity keyring is empty, rejecting signed file! [ 597.610805][T23594] loop0: detected capacity change from 0 to 512 [ 597.629099][T23594] EXT4-fs: Ignoring removed i_version option [ 597.640375][T23594] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 597.674959][T23594] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.8062: invalid indirect mapped block 4294967295 (level 1) [ 597.700128][ T5772] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 597.710947][T23594] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.8062: invalid indirect mapped block 4294967295 (level 1) [ 597.722901][T23595] loop3: detected capacity change from 0 to 2048 [ 597.746102][T23594] EXT4-fs (loop0): 2 truncates cleaned up [ 597.757115][T23594] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 597.771903][T23595] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 597.832241][T23599] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 597.892823][ T5770] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 598.300229][T23615] loop1: detected capacity change from 0 to 256 [ 598.581036][T23628] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8076'. [ 598.595937][T23628] netlink: 28 bytes leftover after parsing attributes in process `syz.1.8076'. [ 598.789019][T23633] loop0: detected capacity change from 0 to 4096 [ 598.818093][T23633] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 598.876363][T23633] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 598.925289][T23633] ntfs: volume version 3.1. [ 599.121375][T23647] loop3: detected capacity change from 0 to 128 [ 599.157743][T23647] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 599.208615][T23647] hpfs: filesystem error: improperly stopped [ 599.235135][T23647] hpfs: You really don't want any checks? You are crazy... [ 599.266255][ T8] usb 2-1: new high-speed USB device number 46 using dummy_hcd [ 599.279858][T23649] overlay: Unknown parameter '\yzkaller' [ 599.288275][T23647] hpfs: hpfs_map_sector(): read error [ 599.293892][T23647] hpfs: code page support is disabled [ 599.326046][T23647] hpfs: hpfs_map_4sectors(): unaligned read [ 599.337180][T23647] hpfs: hpfs_map_4sectors(): unaligned read [ 599.350626][T23647] hpfs: filesystem error: unable to find root dir [ 599.491249][ T8] usb 2-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 599.505159][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 599.546948][ T8] usb 2-1: config 0 descriptor?? [ 599.633974][T23661] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8094'. [ 599.656908][T23661] netlink: 'syz.0.8094': attribute type 4 has an invalid length. [ 599.798942][T23668] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 599.993516][ T8] hackrf 2-1:0.0: Board ID: 00 [ 599.999316][ T8] hackrf 2-1:0.0: Firmware version: —U ÄÞÊÏÖý(Ejfÿ_÷Aoîâ’ [ 600.012209][ T8] hackrf 2-1:0.0: Registered as swradio24 [ 600.026103][ T8] videodev: could not get a free minor [ 600.035808][ T8] hackrf 2-1:0.0: Failed to register as video device (-23) [ 600.078482][ T8] hackrf: probe of 2-1:0.0 failed with error -23 [ 600.146003][ T5777] usb 1-1: new high-speed USB device number 59 using dummy_hcd [ 600.247877][ T9] usb 2-1: USB disconnect, device number 46 [ 600.266825][T23681] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8103'. [ 600.353823][ T5777] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 600.365842][ T5777] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 600.395765][ T5777] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 600.415128][ T5777] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 600.435562][ T5777] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 600.449562][ T5777] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 600.458115][ T5777] usb 1-1: Product: syz [ 600.462320][ T5777] usb 1-1: Manufacturer: syz [ 600.479585][ T5777] cdc_wdm 1-1:1.0: skipping garbage [ 600.484864][ T5777] cdc_wdm 1-1:1.0: skipping garbage [ 600.516217][ T5777] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 600.527230][ T5777] cdc_wdm 1-1:1.0: Unknown control protocol [ 600.533604][T23689] netlink: 68 bytes leftover after parsing attributes in process `syz.3.8107'. [ 600.547127][T23689] tipc: Enabling of bearer rejected, media not registered [ 600.604090][T23691] bridge_slave_0: invalid flags given to default FDB implementation [ 600.856000][T23699] set_capacity_and_notify: 1 callbacks suppressed [ 600.856017][T23699] loop1: detected capacity change from 0 to 256 [ 600.891752][T23699] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d) [ 601.470895][T23716] loop1: detected capacity change from 0 to 1024 [ 601.555932][ T5777] usb 4-1: new full-speed USB device number 44 using dummy_hcd [ 601.589728][ T60] hfsplus: b-tree write err: -5, ino 25 [ 601.595870][ T60] hfsplus: b-tree write err: -5, ino 4 [ 601.601874][ T60] hfsplus: b-tree write err: -5, ino 2 [ 601.737879][T23724] tipc: Started in network mode [ 601.742948][T23724] tipc: Node identity bbbbbb01, cluster identity 4711 [ 601.762224][T23724] tipc: Enabled bearer , priority 10 [ 601.770812][ T5777] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 601.805857][ T5777] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 601.840309][ T5777] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40 [ 601.850189][ T5777] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 601.859626][ T5777] usb 4-1: SerialNumber: syz [ 601.879460][ T5777] cdc_ether: probe of 4-1:1.0 failed with error -22 [ 601.908497][ T5777] usb-storage 4-1:1.0: USB Mass Storage device detected [ 601.928919][ T5777] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000 [ 601.954254][ T5777] scsi host1: usb-storage 4-1:1.0 [ 602.099476][T23737] loop1: detected capacity change from 0 to 512 [ 602.143498][T23737] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 602.158380][T23737] ext4 filesystem being mounted at /2052/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 602.258578][T23740] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters [ 602.290132][T23737] EXT4-fs: Remounting file system with no journal so ignoring journalled data option [ 602.303514][T23737] EXT4-fs: Cannot change journaled quota options when quota turned on [ 602.350843][ T5771] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 602.351564][T23744] loop2: detected capacity change from 0 to 128 [ 602.394349][T23744] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 602.411959][T23744] ext4 filesystem being mounted at /2041/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 602.472314][T23744] EXT4-fs warning (device loop2): ext4_dirblock_csum_verify:406: inode #2: comm syz.2.8131: No space for directory leaf checksum. Please run e2fsck -D. [ 602.490546][T23744] EXT4-fs error (device loop2): htree_dirblock_to_tree:1083: inode #2: comm syz.2.8131: Directory block failed checksum [ 602.521900][T23747] loop1: detected capacity change from 0 to 4096 [ 602.555334][T23748] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 602.592179][ T5772] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 602.868870][ T9] tipc: Node number set to 3149642497 [ 602.876911][ T5777] usb 1-1: USB disconnect, device number 59 [ 603.188954][ T5811] usb 4-1: USB disconnect, device number 44 [ 603.420274][T23774] loop2: detected capacity change from 0 to 64 [ 603.516631][ T5777] usb 1-1: new high-speed USB device number 60 using dummy_hcd [ 603.529150][T23776] loop1: detected capacity change from 0 to 4096 [ 603.583089][T23778] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8146'. [ 603.599421][T23778] netlink: 12 bytes leftover after parsing attributes in process `syz.2.8146'. [ 603.623587][T23778] netlink: 'syz.2.8146': attribute type 6 has an invalid length. [ 603.656254][T23779] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 603.705930][ T5777] usb 1-1: Using ep0 maxpacket: 8 [ 603.722756][ T5777] usb 1-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 196, changing to 11 [ 603.756137][ T5777] usb 1-1: config 0 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 603.790899][ T5777] usb 1-1: config 0 interface 0 has no altsetting 0 [ 603.811000][ T5777] usb 1-1: New USB device found, idVendor=0e8f, idProduct=0012, bcdDevice= 0.00 [ 603.835078][ T5777] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 603.872060][ T5777] usb 1-1: config 0 descriptor?? [ 604.006559][ C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 604.046013][ T5811] usb 3-1: new high-speed USB device number 44 using dummy_hcd [ 604.069316][T23789] loop3: detected capacity change from 0 to 1024 [ 604.185835][ T8] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 604.237294][ T5811] usb 3-1: Using ep0 maxpacket: 8 [ 604.260746][ T5811] usb 3-1: config 179 has an invalid interface number: 65 but max is 0 [ 604.278889][ T5811] usb 3-1: config 179 has no interface number 0 [ 604.286225][ T5811] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 604.301030][ T5811] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 604.312808][ T5811] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 604.335899][ T5811] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0 [ 604.343751][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x2 [ 604.359033][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.360515][ T5811] usb 3-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 604.369622][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.383508][ T5811] usb 3-1: config 179 interface 65 has no altsetting 0 [ 604.387953][ T8] usb 2-1: Using ep0 maxpacket: 8 [ 604.395203][ T5811] usb 3-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 604.400808][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.414778][ T5811] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 604.436181][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 604.449673][ T5811] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input27 [ 604.455966][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.468209][ T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 7 [ 604.515845][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.523239][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.530878][ T8] usb 2-1: New USB device found, idVendor=056a, idProduct=0090, bcdDevice= 0.00 [ 604.543839][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 604.553202][ T5777] greenasia 0003:0E8F:0012.0003: unknown main item tag 0x0 [ 604.576913][ T5777] greenasia 0003:0E8F:0012.0003: unknown global tag 0xc [ 604.585868][ T8] usb 2-1: config 0 descriptor?? [ 604.603618][ T5088] Bluetooth: hci3: unexpected event for opcode 0x0804 [ 604.613164][ T5777] greenasia 0003:0E8F:0012.0003: item 0 0 1 12 parsing failed [ 604.634057][ T5777] greenasia 0003:0E8F:0012.0003: parse failed [ 604.640569][ T5777] greenasia: probe of 0003:0E8F:0012.0003 failed with error -22 [ 604.683930][ T5777] usb 1-1: USB disconnect, device number 60 [ 604.809746][ T5811] usb 3-1: USB disconnect, device number 44 [ 604.809827][ C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 604.840068][ T5811] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19 [ 605.018331][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.025264][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.033622][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.041968][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.049361][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.056633][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.063566][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.071155][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.080129][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.087183][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.094422][ T8] wacom 0003:056A:0090.0004: unknown main item tag 0x0 [ 605.118118][ T8] wacom 0003:056A:0090.0004: hidraw0: USB HID v0.08 Device [HID 056a:0090] on usb-dummy_hcd.1-1/input0 [ 605.321977][ T5811] usb 2-1: USB disconnect, device number 47 [ 605.393239][T23806] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(6) [ 605.401787][T23806] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 605.418977][T23806] vhci_hcd vhci_hcd.0: Device attached [ 605.434849][T23804] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 605.441506][T23804] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 605.479092][T23804] vhci_hcd vhci_hcd.0: Device attached [ 605.493657][T23807] vhci_hcd: connection closed [ 605.502520][T23805] vhci_hcd: connection closed [ 605.513691][ T60] vhci_hcd: stop threads [ 605.528816][ T60] vhci_hcd: release socket [ 605.533812][ T60] vhci_hcd: disconnect device [ 605.536693][T23811] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 605.540663][ T60] vhci_hcd: stop threads [ 605.554527][ T60] vhci_hcd: release socket [ 605.564815][ T60] vhci_hcd: disconnect device [ 605.654098][T23817] loop0: detected capacity change from 0 to 256 [ 605.722750][T23817] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 606.205373][T23838] loop1: detected capacity change from 0 to 64 [ 606.255873][ T5840] usb 1-1: new high-speed USB device number 61 using dummy_hcd [ 606.293341][T23842] loop2: detected capacity change from 0 to 256 [ 606.370068][T23842] FAT-fs (loop2): Directory bread(block 64) failed [ 606.383115][T23842] FAT-fs (loop2): Directory bread(block 65) failed [ 606.415115][T23842] FAT-fs (loop2): Directory bread(block 66) failed [ 606.433970][T23842] FAT-fs (loop2): Directory bread(block 67) failed [ 606.449453][T23842] FAT-fs (loop2): Directory bread(block 68) failed [ 606.465861][T23842] FAT-fs (loop2): Directory bread(block 69) failed [ 606.471039][ T5840] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 606.472567][T23842] FAT-fs (loop2): Directory bread(block 70) failed [ 606.510443][ T5840] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 606.523318][ T5840] usb 1-1: New USB device found, idVendor=1532, idProduct=010e, bcdDevice= 0.00 [ 606.536630][T23842] FAT-fs (loop2): Directory bread(block 71) failed [ 606.543352][T23842] FAT-fs (loop2): Directory bread(block 72) failed [ 606.550437][ T5840] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 606.556714][T23842] FAT-fs (loop2): Directory bread(block 73) failed [ 606.577972][ T5840] usb 1-1: config 0 descriptor?? [ 606.624805][T23850] loop3: detected capacity change from 0 to 24 [ 606.959549][T23856] [ 606.961938][T23856] ====================================================== [ 606.968967][T23856] WARNING: possible circular locking dependency detected [ 606.976020][T23856] syzkaller #0 Not tainted [ 606.980457][T23856] ------------------------------------------------------ [ 606.987503][T23856] syz.3.8181/23856 is trying to acquire lock: [ 606.993591][T23856] ffffffff976a3458 (nfnl_subsys_ipset){+.+.}-{3:3}, at: ip_set_nfnl_get_byindex+0x67/0x230 [ 607.003776][T23856] [ 607.003776][T23856] but task is already holding lock: [ 607.010808][ T5840] razer 0003:1532:010E.0005: unknown main item tag 0x5 [ 607.011224][T23856] ffff888025bf66b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x3b/0x100 [ 607.028513][T23856] [ 607.028513][T23856] which lock already depends on the new lock. [ 607.028513][T23856] [ 607.038933][T23856] [ 607.038933][T23856] the existing dependency chain (in reverse order) is: [ 607.047946][T23856] [ 607.047946][T23856] -> #2 (&nft_net->commit_mutex){+.+.}-{3:3}: [ 607.056317][T23856] __mutex_lock+0x136/0xcc0 [ 607.061490][T23856] nf_tables_dumpreset_obj+0x72/0xa0 [ 607.067323][T23856] netlink_dump+0x747/0xe50 [ 607.072497][T23856] __netlink_dump_start+0x5f1/0x810 [ 607.078218][T23856] nft_netlink_dump_start_rcu+0xdb/0x1a0 [ 607.084384][T23856] nf_tables_getobj_reset+0x1e1/0x630 [ 607.090275][T23856] nfnetlink_rcv_msg+0x8a4/0x12b0 [ 607.096206][T23856] netlink_rcv_skb+0x241/0x4d0 [ 607.101488][T23856] nfnetlink_rcv+0x2c9/0x24a0 [ 607.106707][T23856] netlink_unicast+0x751/0x8d0 [ 607.112022][T23856] netlink_sendmsg+0x8d0/0xbf0 [ 607.117302][T23856] ____sys_sendmsg+0x5ba/0x960 [ 607.122688][T23856] ___sys_sendmsg+0x2a6/0x360 [ 607.127884][T23856] __se_sys_sendmsg+0x1c2/0x2b0 [ 607.133252][T23856] do_syscall_64+0x55/0xb0 [ 607.138279][T23856] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 607.144776][T23856] [ 607.144776][T23856] -> #1 (nlk_cb_mutex-NETFILTER){+.+.}-{3:3}: [ 607.153039][T23856] __mutex_lock+0x136/0xcc0 [ 607.158069][T23856] __netlink_dump_start+0xf4/0x810 [ 607.163703][T23856] ip_set_dump+0x15c/0x1f0 [ 607.168642][T23856] nfnetlink_rcv_msg+0xbf0/0x12b0 [ 607.174209][T23856] netlink_rcv_skb+0x241/0x4d0 [ 607.179539][T23856] nfnetlink_rcv+0x2c9/0x24a0 [ 607.184743][T23856] netlink_unicast+0x751/0x8d0 [ 607.190027][T23856] netlink_sendmsg+0x8d0/0xbf0 [ 607.195310][T23856] ____sys_sendmsg+0x5ba/0x960 [ 607.200590][T23856] ___sys_sendmsg+0x2a6/0x360 [ 607.205784][T23856] __se_sys_sendmsg+0x1c2/0x2b0 [ 607.211160][T23856] do_syscall_64+0x55/0xb0 [ 607.216107][T23856] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 607.222871][T23856] [ 607.222871][T23856] -> #0 (nfnl_subsys_ipset){+.+.}-{3:3}: [ 607.230706][T23856] __lock_acquire+0x2df1/0x7d40 [ 607.236147][T23856] lock_acquire+0x19e/0x420 [ 607.241188][T23856] __mutex_lock+0x136/0xcc0 [ 607.246212][T23856] ip_set_nfnl_get_byindex+0x67/0x230 [ 607.252135][T23856] set_match_v1_checkentry+0x71/0x230 [ 607.258046][T23856] xt_check_match+0x4ea/0xc50 [ 607.263340][T23856] __nft_match_init+0x67a/0x8d0 [ 607.268783][T23856] nf_tables_newrule+0x176c/0x2880 [ 607.274525][T23856] nfnetlink_rcv+0x113e/0x24a0 [ 607.279810][T23856] netlink_unicast+0x751/0x8d0 [ 607.285532][T23856] netlink_sendmsg+0x8d0/0xbf0 [ 607.290816][T23856] ____sys_sendmsg+0x5ba/0x960 [ 607.296148][T23856] ___sys_sendmsg+0x2a6/0x360 [ 607.301353][T23856] __se_sys_sendmsg+0x1c2/0x2b0 [ 607.306729][T23856] do_syscall_64+0x55/0xb0 [ 607.311676][T23856] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 607.318104][T23856] [ 607.318104][T23856] other info that might help us debug this: [ 607.318104][T23856] [ 607.328328][T23856] Chain exists of: [ 607.328328][T23856] nfnl_subsys_ipset --> nlk_cb_mutex-NETFILTER --> &nft_net->commit_mutex [ 607.328328][T23856] [ 607.342770][T23856] Possible unsafe locking scenario: [ 607.342770][T23856] [ 607.350230][T23856] CPU0 CPU1 [ 607.355603][T23856] ---- ---- [ 607.360960][T23856] lock(&nft_net->commit_mutex); [ 607.365986][T23856] lock(nlk_cb_mutex-NETFILTER); [ 607.373531][T23856] lock(&nft_net->commit_mutex); [ 607.381193][T23856] lock(nfnl_subsys_ipset); [ 607.386066][T23856] [ 607.386066][T23856] *** DEADLOCK *** [ 607.386066][T23856] [ 607.394228][T23856] 1 lock held by syz.3.8181/23856: [ 607.399336][T23856] #0: ffff888025bf66b8 (&nft_net->commit_mutex){+.+.}-{3:3}, at: nf_tables_valid_genid+0x3b/0x100 [ 607.410234][T23856] [ 607.410234][T23856] stack backtrace: [ 607.416131][T23856] CPU: 0 PID: 23856 Comm: syz.3.8181 Not tainted syzkaller #0 [ 607.423589][T23856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 607.433688][T23856] Call Trace: [ 607.437057][T23856] [ 607.440087][T23856] dump_stack_lvl+0x18c/0x250 [ 607.444915][T23856] ? load_image+0x420/0x420 [ 607.449688][T23856] ? show_regs_print_info+0x20/0x20 [ 607.455034][T23856] ? print_circular_bug+0x12b/0x1a0 [ 607.460241][T23856] check_noncircular+0x2fc/0x400 [ 607.465250][T23856] ? print_deadlock_bug+0x5d0/0x5d0 [ 607.470480][T23856] ? lockdep_lock+0xf5/0x230 [ 607.475075][T23856] ? _find_first_zero_bit+0xd3/0x100 [ 607.480408][T23856] __lock_acquire+0x2df1/0x7d40 [ 607.485267][T23856] ? mark_lock+0x94/0x320 [ 607.489607][T23856] ? verify_lock_unused+0x140/0x140 [ 607.494809][T23856] ? __lock_acquire+0x1273/0x7d40 [ 607.499890][T23856] lock_acquire+0x19e/0x420 [ 607.504398][T23856] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 607.510046][T23856] ? __might_sleep+0xe0/0xe0 [ 607.514675][T23856] ? read_lock_is_recursive+0x20/0x20 [ 607.520058][T23856] __mutex_lock+0x136/0xcc0 [ 607.524565][T23856] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 607.530112][T23856] ? ip_set_nfnl_get_byindex+0x67/0x230 [ 607.535697][T23856] ? ip_set_pernet+0x23/0x230 [ 607.540463][T23856] ? mutex_lock_nested+0x20/0x20 [ 607.545405][T23856] ? ip_set_pernet+0x23/0x230 [ 607.550081][T23856] ? ip_set_pernet+0x23/0x230 [ 607.554762][T23856] ip_set_nfnl_get_byindex+0x67/0x230 [ 607.560145][T23856] set_match_v1_checkentry+0x71/0x230 [ 607.565517][T23856] xt_check_match+0x4ea/0xc50 [ 607.570198][T23856] ? xt_check_proc_name+0x270/0x270 [ 607.575407][T23856] ? __stack_depot_save+0x1f/0x630 [ 607.580548][T23856] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 607.586534][T23856] __nft_match_init+0x67a/0x8d0 [ 607.591389][T23856] ? ___sys_sendmsg+0x2a6/0x360 [ 607.596242][T23856] ? nft_match_large_dump+0x50/0x50 [ 607.601539][T23856] ? nf_tables_newrule+0x150e/0x2880 [ 607.606845][T23856] ? rcu_is_watching+0x15/0xb0 [ 607.611610][T23856] ? nf_tables_newrule+0x150e/0x2880 [ 607.616913][T23856] ? __kmalloc+0xe2/0x230 [ 607.621379][T23856] nf_tables_newrule+0x176c/0x2880 [ 607.626583][T23856] ? nf_tables_delchain+0x1060/0x1060 [ 607.632047][T23856] ? __lock_acquire+0x7d40/0x7d40 [ 607.637073][T23856] ? mutex_unlock+0x10/0x10 [ 607.641592][T23856] ? __nla_parse+0x40/0x50 [ 607.646020][T23856] nfnetlink_rcv+0x113e/0x24a0 [ 607.650812][T23856] ? nfnetlink_net_exit_batch+0xa0/0xa0 [ 607.656593][T23856] ? __lock_acquire+0x7d40/0x7d40 [ 607.661642][T23856] ? netlink_deliver_tap+0x2e/0x1b0 [ 607.666855][T23856] netlink_unicast+0x751/0x8d0 [ 607.671631][T23856] netlink_sendmsg+0x8d0/0xbf0 [ 607.676402][T23856] ? netlink_getsockopt+0x590/0x590 [ 607.681600][T23856] ? aa_sock_msg_perm+0x94/0x150 [ 607.686587][T23856] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 607.691894][T23856] ? security_socket_sendmsg+0x80/0xa0 [ 607.697359][T23856] ? netlink_getsockopt+0x590/0x590 [ 607.702557][T23856] ____sys_sendmsg+0x5ba/0x960 [ 607.707328][T23856] ? __asan_memset+0x22/0x40 [ 607.711949][T23856] ? __sys_sendmsg_sock+0x30/0x30 [ 607.716972][T23856] ? __import_iovec+0x5f2/0x850 [ 607.721838][T23856] ? import_iovec+0x73/0xa0 [ 607.726359][T23856] ___sys_sendmsg+0x2a6/0x360 [ 607.731052][T23856] ? __sys_sendmsg+0x2a0/0x2a0 [ 607.735845][T23856] __se_sys_sendmsg+0x1c2/0x2b0 [ 607.740706][T23856] ? __x64_sys_sendmsg+0x80/0x80 [ 607.745750][T23856] ? lockdep_hardirqs_on+0x98/0x150 [ 607.750961][T23856] do_syscall_64+0x55/0xb0 [ 607.755379][T23856] ? clear_bhb_loop+0x40/0x90 [ 607.760089][T23856] ? clear_bhb_loop+0x40/0x90 [ 607.764762][T23856] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 607.770667][T23856] RIP: 0033:0x7fc8ec19ce59 [ 607.775191][T23856] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 607.794861][T23856] RSP: 002b:00007fc8ea3f6028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 607.803355][T23856] RAX: ffffffffffffffda RBX: 00007fc8ec415fa0 RCX: 00007fc8ec19ce59 [ 607.811329][T23856] RDX: 0000000024044010 RSI: 0000200000000100 RDI: 0000000000000003 [ 607.819304][T23856] RBP: 00007fc8ec232d6f R08: 0000000000000000 R09: 0000000000000000 [ 607.827275][T23856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 607.835255][T23856] R13: 00007fc8ec416038 R14: 00007fc8ec415fa0 R15: 00007ffe55458898 [ 607.843357][T23856] [ 607.871533][ T5840] razer 0003:1532:010E.0005: failed to enable macro keys: -71 [ 607.913451][T23856] Cannot find set identified by id 0 to match [ 607.913726][ T5840] razer 0003:1532:010E.0005: hidraw0: USB HID v0.00 Device [HID 1532:010e] on usb-dummy_hcd.0-1/input0 [ 607.939389][ T5840] usb 1-1: USB disconnect, device number 61 [ 608.032752][T23858] fido_id[23858]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory