last executing test programs: 2.54358725s ago: executing program 1 (id=3922): close(0xffffffffffffffff) syz_usb_connect(0x2, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x141, 0x20, 0x17, 0xbe, 0x20, 0x93a, 0x50f, 0xd97a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x33, 0x2, 0x0, 0xf3, 0xa, 0x6a}}]}}]}}, 0x0) 1.229550606s ago: executing program 2 (id=3947): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)=@getlink={0x34, 0x12, 0x201, 0x70bd28, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, 0x408, 0x20000}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000004}, 0x8000) 1.071595489s ago: executing program 2 (id=3950): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x202) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_INFO(r0, 0x40bc5311, &(0x7f0000000100)={0x80, 0x0, 'client1\x00', 0xffffffff80000004, '\x00', "e46dff60d99f0000002a7f00", 0xffffffff}) 1.00771891s ago: executing program 4 (id=3951): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]}) pwritev(0xffffffffffffffff, 0x0, 0x0, 0x1c0000, 0x4ce0) 947.379831ms ago: executing program 2 (id=3952): r0 = socket$pppoe(0x18, 0x1, 0x0) connect$pppoe(r0, &(0x7f0000000040)={0x18, 0x0, {0x3, @random="bb7fb37b9489", 'bond0\x00'}}, 0x1e) 940.771982ms ago: executing program 3 (id=3953): r0 = syz_io_uring_setup(0x315b, &(0x7f0000000080)={0x0, 0xc7ca, 0x42, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100), &(0x7f0000000000)) io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x2000000, 0x0) 866.801093ms ago: executing program 4 (id=3954): r0 = socket$inet6(0xa, 0x3, 0x7) setsockopt$inet6_int(r0, 0x29, 0x7, &(0x7f0000000280)=0x8007fff, 0x4) 823.071864ms ago: executing program 0 (id=3955): r0 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r0, 0xc0045540, &(0x7f0000000080)=0xffffffff) 822.589874ms ago: executing program 4 (id=3956): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0) ioctl$BLKZEROOUT(r0, 0x127f, &(0x7f0000000100)={0x0, 0xa00}) 789.671765ms ago: executing program 2 (id=3957): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0xfffffffe, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x6c, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @remote}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {0x2}, 0x70bd2c, 0x3500, 0x2, 0x4, 0x0, 0x50}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "210466d38547aa140db9a200000000c538c7cb7a"}}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e24, @in6=@dev={0xfe, 0x80, '\x00', 0x2e}}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0) 771.573345ms ago: executing program 3 (id=3958): r0 = socket(0x10, 0x803, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x28}, 0x1, 0x0, 0x0, 0x20008040}, 0x24001000) 770.237975ms ago: executing program 0 (id=3959): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x58, 0x2, 0x6, 0x5, 0x7, 0x0, {0x2, 0x0, 0x5}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x0}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0x11, 0x3, 'hash:net,net\x00'}]}, 0x58}, 0x1, 0x0, 0x0, 0x4}, 0x8404) 627.977018ms ago: executing program 2 (id=3960): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) process_madvise(0xffffffffffffffff, 0x0, 0x0, 0xc, 0x0) 620.435598ms ago: executing program 4 (id=3961): r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x3, 0x0) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000200)={0x40000000, 0x102, "7e06c75cc91fffe302954aafb5df0ef2b737f0ad75a6d1ecfc8c4d8c74ab1574", 0x4000000001, 0x8000000000000000, 0x7, 0x700000000, 0x7, 0xfffffff7, 0x1, 0xa, [0xffffffff, 0x1, 0x8, 0x7ff]}) 619.059488ms ago: executing program 1 (id=3962): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000002000010000000000000000000200000000000000000000de070004"], 0x24}}, 0x0) 596.984469ms ago: executing program 3 (id=3963): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB="0a000000d2cf00003d36000002"], 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000180), 0x3, r0}, 0x38) 596.471159ms ago: executing program 0 (id=3964): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0) 465.195381ms ago: executing program 4 (id=3965): r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x76, 0x101b81) ioctl$USBDEVFS_SETINTERFACE(r0, 0x41045508, 0x0) 431.052891ms ago: executing program 1 (id=3966): r0 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000002040)={0x9, @pix_mp={0x5, 0xf82, 0x31364d59, 0x0, 0x9, [{0x4, 0x6}, {0x38ab, 0x8}, {0x15, 0x7316}, {0x1, 0xd}, {0x7914, 0xc}, {0x31ee, 0x10000003}, {0x9, 0x100}, {0x4, 0x715}], 0x1, 0x0, 0x8, 0x3, 0x2}}) 430.908891ms ago: executing program 3 (id=3967): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003240)=ANY=[@ANYBLOB="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"], 0x1124}}, 0x0) 430.487921ms ago: executing program 0 (id=3968): r0 = socket$inet(0x2, 0x2, 0x1) sendmsg$inet(r0, &(0x7f00000005c0)={&(0x7f0000000400)={0x2, 0x0, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000080)='\b\x00', 0x2}, {&(0x7f0000000100)="5c5c73f77add4a", 0x7}], 0x2, &(0x7f0000000440)=[@ip_retopts={{0x10}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x2}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @remote, @private=0xa010100}}}], 0x48}, 0x24008004) 420.718761ms ago: executing program 2 (id=3969): r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0) write$rfkill(r0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, 0x8) 334.695633ms ago: executing program 1 (id=3970): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]}) sysfs$2(0x2, 0x4, &(0x7f0000002480)=""/192) 330.897724ms ago: executing program 4 (id=3971): syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file1\x00', 0x2000c12, &(0x7f0000000400)={[{@map_normal}, {@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@map_off}, {@map_normal}, {@nocompress}, {@map_off}, {@check_strict}, {@mode={'mode', 0x3d, 0x8001}}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@unhide}, {@overriderock}, {@showassoc}, {@overriderock}, {@iocharset={'iocharset', 0x3d, 'cp862'}}, {@overriderock}]}, 0x3, 0x9f1, &(0x7f0000001b40)="$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") mount$9p_fd(0x0, &(0x7f0000000100)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x0, 0x0) 300.114834ms ago: executing program 0 (id=3972): close(0xffffffffffffffff) close(0xffffffffffffffff) 262.675315ms ago: executing program 3 (id=3973): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x1, 0xffffffffffffffff, &(0x7f00000003c0)=0x89) 203.958286ms ago: executing program 1 (id=3974): r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x805}, 0x40) 131.468708ms ago: executing program 0 (id=3975): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @gre={{0x8}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_IGNORE_DF={0x5, 0x13, 0xff}]}}}]}, 0x3c}}, 0x0) 74.143508ms ago: executing program 3 (id=3976): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0) 0s ago: executing program 1 (id=3977): r0 = socket$inet(0x2, 0x1, 0x0) getsockopt$inet_opts(r0, 0x0, 0x4, 0x0, &(0x7f0000000040)=0xffffff27) kernel console output (not intermixed with test programs): 024 [ 179.373150][ T8135] __quota_error: 32 callbacks suppressed [ 179.373171][ T8135] Quota error (device loop3): find_tree_dqentry: Getting block too big (64 >= 6) [ 179.437454][ T8135] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 179.457242][ T4173] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 179.480018][ T8135] EXT4-fs error (device loop3): ext4_acquire_dquot:6209: comm syz.3.1782: Failed to acquire dquot type 0 [ 179.533587][ T8135] EXT4-fs error (device loop3): mb_free_blocks:1860: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 179.573404][ T8135] EXT4-fs error (device loop3): ext4_do_update_inode:5204: inode #13: comm syz.3.1782: corrupted inode contents [ 179.606489][ T8135] EXT4-fs error (device loop3): ext4_dirty_inode:6040: inode #13: comm syz.3.1782: mark_inode_dirty error [ 179.642329][ T8135] EXT4-fs error (device loop3): ext4_do_update_inode:5204: inode #13: comm syz.3.1782: corrupted inode contents [ 179.707413][ T4173] usb 1-1: Using ep0 maxpacket: 16 [ 179.742881][ T8135] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #13: comm syz.3.1782: mark_inode_dirty error [ 179.793112][ T8135] EXT4-fs error (device loop3): ext4_do_update_inode:5204: inode #13: comm syz.3.1782: corrupted inode contents [ 179.827397][ T4173] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 179.861747][ T4173] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 179.887671][ T8135] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 179.903917][ T8135] EXT4-fs error (device loop3): ext4_do_update_inode:5204: inode #13: comm syz.3.1782: corrupted inode contents [ 179.907714][ T4173] usb 1-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 179.935045][ T8135] EXT4-fs error (device loop3): ext4_truncate:4273: inode #13: comm syz.3.1782: mark_inode_dirty error [ 179.973881][ T8135] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 179.992049][ T4173] usb 1-1: config 0 interface 0 has no altsetting 0 [ 180.012723][ T8135] EXT4-fs (loop3): 1 truncate cleaned up [ 180.019524][ T8135] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 180.105373][ T8135] Quota error (device loop3): find_tree_dqentry: Getting block too big (64 >= 6) [ 180.114197][ T8149] loop1: detected capacity change from 0 to 32768 [ 180.118008][ T8135] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0 [ 180.135863][ T8135] EXT4-fs error (device loop3): ext4_acquire_dquot:6209: comm syz.3.1782: Failed to acquire dquot type 0 [ 180.167610][ T4173] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 180.179098][ T4173] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.189270][ T4173] usb 1-1: Product: syz [ 180.223764][ T8168] loop4: detected capacity change from 0 to 1024 [ 180.234743][ T4173] usb 1-1: Manufacturer: syz [ 180.251133][ T8149] find_entry called with index >= next_index [ 180.259994][ T4173] usb 1-1: SerialNumber: syz [ 180.262720][ T8149] find_entry called with index >= next_index [ 180.268282][ T4173] usb 1-1: config 0 descriptor?? [ 180.318471][ T8149] find_entry called with index >= next_index [ 180.342534][ T8168] Quota error (device loop4): find_tree_dqentry: Getting block too big (64 >= 6) [ 180.382963][ T8169] loop2: detected capacity change from 0 to 4096 [ 180.399185][ T8168] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 180.410948][ T8168] EXT4-fs error (device loop4): ext4_acquire_dquot:6209: comm syz.4.1808: Failed to acquire dquot type 0 [ 180.435272][ T8169] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 180.444226][ T8168] EXT4-fs error (device loop4): mb_free_blocks:1860: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt. [ 180.475923][ T8168] EXT4-fs error (device loop4): ext4_do_update_inode:5204: inode #13: comm syz.4.1808: corrupted inode contents [ 180.518099][ T8168] EXT4-fs error (device loop4): ext4_dirty_inode:6040: inode #13: comm syz.4.1808: mark_inode_dirty error [ 180.558374][ T8168] EXT4-fs error (device loop4): ext4_do_update_inode:5204: inode #13: comm syz.4.1808: corrupted inode contents [ 180.598805][ T8168] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #13: comm syz.4.1808: mark_inode_dirty error [ 180.633837][ T8168] EXT4-fs error (device loop4): ext4_do_update_inode:5204: inode #13: comm syz.4.1808: corrupted inode contents [ 180.681182][ T8168] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem [ 180.718255][ T8168] EXT4-fs error (device loop4): ext4_do_update_inode:5204: inode #13: comm syz.4.1808: corrupted inode contents [ 180.753086][ T4266] usb 1-1: USB disconnect, device number 10 [ 180.777851][ T8168] EXT4-fs error (device loop4): ext4_truncate:4273: inode #13: comm syz.4.1808: mark_inode_dirty error [ 180.847269][ T8168] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem [ 180.914067][ T8168] EXT4-fs (loop4): 1 truncate cleaned up [ 180.924810][ T8168] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 181.036218][ T8189] loop1: detected capacity change from 0 to 64 [ 181.053826][ T8168] Quota error (device loop4): find_tree_dqentry: Getting block too big (64 >= 6) [ 181.055599][ T8191] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1806'. [ 181.112157][ T8168] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0 [ 181.162755][ T8168] EXT4-fs error (device loop4): ext4_acquire_dquot:6209: comm syz.4.1808: Failed to acquire dquot type 0 [ 181.545454][ T8210] validate_nla: 144 callbacks suppressed [ 181.545471][ T8210] netlink: 'syz.3.1817': attribute type 3 has an invalid length. [ 181.602968][ T8210] netlink: 'syz.3.1817': attribute type 3 has an invalid length. [ 181.615086][ T8206] loop1: detected capacity change from 0 to 4096 [ 181.706571][ T8206] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 181.795610][ T8225] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1824'. [ 181.913668][ T4249] usb 3-1: new full-speed USB device number 10 using dummy_hcd [ 181.916032][ T8227] loop4: detected capacity change from 0 to 2048 [ 182.075104][ T8227] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 182.276248][ T8241] netlink: 'syz.4.1834': attribute type 3 has an invalid length. [ 182.318527][ T8241] netlink: 'syz.4.1834': attribute type 3 has an invalid length. [ 182.328730][ T4249] usb 3-1: config index 0 descriptor too short (expected 35577, got 27) [ 182.354956][ T4249] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 182.404685][ T4249] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 182.433661][ T4249] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 182.453242][ T4249] usb 3-1: config 1 has no interface number 0 [ 182.465898][ T4249] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 182.496089][ T4249] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.544220][ T8223] loop3: detected capacity change from 0 to 32768 [ 182.613475][ T8223] diRead: diIAGRead returned -5 [ 182.621646][ T4249] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found [ 182.628716][ T8223] jfs_lookup: iget failed on inum 196612 [ 182.846666][ T4249] snd_usb_pod 3-1:1.1: endpoint not available, using fallback values [ 182.855530][ T8259] loop3: detected capacity change from 0 to 64 [ 182.877489][ T4249] snd_usb_pod 3-1:1.1: invalid control EP [ 182.900402][ T4249] snd_usb_pod 3-1:1.1: cannot start listening: -22 [ 182.921303][ T4249] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected [ 182.965866][ T4249] snd_usb_pod: probe of 3-1:1.1 failed with error -22 [ 183.085504][ T4249] usb 3-1: USB disconnect, device number 10 [ 183.171267][ T8245] loop0: detected capacity change from 0 to 32768 [ 183.284935][ T8245] find_entry called with index >= next_index [ 183.299705][ T8245] find_entry called with index >= next_index [ 183.336367][ T8245] find_entry called with index >= next_index [ 183.591979][ T8281] netlink: 'syz.0.1847': attribute type 3 has an invalid length. [ 183.617431][ T8281] netlink: 'syz.0.1847': attribute type 3 has an invalid length. [ 183.787845][ T8290] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 183.849828][ T8295] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1855'. [ 183.921905][ T8258] loop1: detected capacity change from 0 to 32768 [ 184.018864][ T8258] diRead: diIAGRead returned -5 [ 184.023952][ T8258] jfs_lookup: iget failed on inum 196612 [ 184.426510][ T8317] loop0: detected capacity change from 0 to 2048 [ 184.493916][ T8317] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 184.521648][ T8323] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 184.604773][ T8325] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1873'. [ 184.720612][ T8329] loop2: detected capacity change from 0 to 16 [ 184.841859][ T8329] erofs: (device loop2): mounted with root inode @ nid 36. [ 185.047351][ T4266] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 185.108744][ T8300] loop3: detected capacity change from 0 to 32768 [ 185.181699][ T8300] find_entry called with index >= next_index [ 185.211899][ T8300] find_entry called with index >= next_index [ 185.231996][ T8300] find_entry called with index >= next_index [ 185.287438][ T4266] usb 5-1: Using ep0 maxpacket: 16 [ 185.355271][ T8351] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter' [ 185.411004][ T4266] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 185.421114][ T8353] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1887'. [ 185.486137][ T4266] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 185.512055][ T4266] usb 5-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 185.550531][ T4266] usb 5-1: config 0 interface 0 has no altsetting 0 [ 185.600926][ T8359] loop1: detected capacity change from 0 to 16 [ 185.660454][ T8361] loop2: detected capacity change from 0 to 64 [ 185.693736][ T8359] erofs: (device loop1): mounted with root inode @ nid 36. [ 185.732916][ T4266] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 185.758086][ T4266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.782661][ T4266] usb 5-1: Product: syz [ 185.806698][ T4266] usb 5-1: Manufacturer: syz [ 185.819459][ T8335] loop0: detected capacity change from 0 to 32768 [ 185.832204][ T4266] usb 5-1: SerialNumber: syz [ 185.839435][ T8365] loop3: detected capacity change from 0 to 1024 [ 185.898298][ T4266] usb 5-1: config 0 descriptor?? [ 185.947871][ T8365] hfsplus: found bad thread record in catalog [ 186.028150][ T8335] diRead: diIAGRead returned -5 [ 186.033261][ T8335] jfs_lookup: iget failed on inum 196612 [ 186.040182][ T9] hfsplus: b-tree write err: -5, ino 4 [ 186.348751][ T8385] loop2: detected capacity change from 0 to 64 [ 186.425046][ T4266] usb 5-1: USB disconnect, device number 9 [ 186.546241][ T8389] loop3: detected capacity change from 0 to 16 [ 186.595741][ T8381] loop0: detected capacity change from 0 to 8192 [ 186.622262][ T8389] erofs: (device loop3): mounted with root inode @ nid 36. [ 186.692107][ T8381] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 186.707581][ T8381] REISERFS (device loop0): using ordered data mode [ 186.751761][ T8381] reiserfs: using flush barriers [ 186.808278][ T8381] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 186.830884][ T8381] REISERFS (device loop0): checking transaction log (loop0) [ 186.970583][ T8401] loop2: detected capacity change from 0 to 1024 [ 187.053247][ T8404] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 187.141508][ T8410] loop1: detected capacity change from 0 to 64 [ 187.155851][ T8401] hfsplus: found bad thread record in catalog [ 187.226232][ T4278] hfsplus: b-tree write err: -5, ino 4 [ 187.238935][ T8410] attempt to access beyond end of device [ 187.238935][ T8410] loop1: rw=0, want=65536, limit=64 [ 187.255384][ T8414] bond0: option arp_validate: invalid value (18446744073491447809) [ 187.255644][ T4310] bond0: (slave bond_slave_0): interface is now down [ 187.282058][ T8381] REISERFS (device loop0): Using tea hash to sort names [ 187.295286][ T8410] Buffer I/O error on dev loop1, logical block 32767, async page read [ 187.313261][ T8381] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 187.316381][ T4310] bond0: (slave bond_slave_1): interface is now down [ 187.341373][ T8410] attempt to access beyond end of device [ 187.341373][ T8410] loop1: rw=0, want=65536, limit=64 [ 187.394833][ T8410] Buffer I/O error on dev loop1, logical block 32767, async page read [ 187.457361][ T4310] bond0: now running without any active interface! [ 187.563922][ T8422] loop4: detected capacity change from 0 to 16 [ 187.632450][ T8419] loop3: detected capacity change from 0 to 4096 [ 187.654585][ T8422] erofs: (device loop4): mounted with root inode @ nid 36. [ 187.785988][ T8426] loop2: detected capacity change from 0 to 2048 [ 187.880745][ T8426] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=26504, location=26504 [ 187.966779][ T8426] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 188.022798][ T8432] loop1: detected capacity change from 0 to 64 [ 188.189466][ T8436] loop3: detected capacity change from 0 to 164 [ 188.326931][ T8442] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 188.460080][ T8447] xt_recent: hitcount (16385) is larger than allowed maximum (255) [ 188.496162][ T8450] bond0: option arp_validate: invalid value (18446744073491447809) [ 188.496265][ T144] bond0: (slave bond_slave_0): interface is now down [ 188.529466][ T8452] loop2: detected capacity change from 0 to 64 [ 188.563473][ T144] bond0: (slave bond_slave_1): interface is now down [ 188.614061][ T144] bond0: now running without any active interface! [ 188.663277][ T8452] attempt to access beyond end of device [ 188.663277][ T8452] loop2: rw=0, want=65536, limit=64 [ 188.695222][ T8452] Buffer I/O error on dev loop2, logical block 32767, async page read [ 188.725216][ T8452] attempt to access beyond end of device [ 188.725216][ T8452] loop2: rw=0, want=65536, limit=64 [ 188.763193][ T8452] Buffer I/O error on dev loop2, logical block 32767, async page read [ 188.812993][ T8462] loop3: detected capacity change from 0 to 2048 [ 188.865984][ T8458] loop1: detected capacity change from 0 to 4096 [ 188.889161][ T8462] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=26504, location=26504 [ 188.936451][ T8462] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 188.985096][ T8457] loop4: detected capacity change from 0 to 8192 [ 189.090916][ T8457] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 189.152799][ T8457] REISERFS (device loop4): using ordered data mode [ 189.160428][ T8457] reiserfs: using flush barriers [ 189.235941][ T8457] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 189.306956][ T8457] REISERFS (device loop4): checking transaction log (loop4) [ 189.422792][ T8483] bond0: option arp_validate: invalid value (18446744073491447809) [ 189.434583][ T4321] bond0: (slave bond_slave_0): interface is now down [ 189.485517][ T4321] bond0: (slave bond_slave_1): interface is now down [ 189.548986][ T4321] bond0: now running without any active interface! [ 189.637021][ T8457] REISERFS (device loop4): Using tea hash to sort names [ 189.656339][ T8457] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 189.658710][ T8485] loop3: detected capacity change from 0 to 4096 [ 189.688475][ T8485] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 189.730944][ T8485] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 189.787647][ T8485] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 189.817208][ T8485] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 189.853591][ T8485] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 189.913706][ T8485] ntfs: volume version 3.1. [ 189.933156][ T8485] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 189.985529][ T8485] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 190.027972][ T8485] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 190.071908][ T8485] ntfs: (device loop3): ntfs_read_locked_index_inode(): $INDEX_ROOT attribute is corrupt. [ 190.135917][ T8485] ntfs: (device loop3): ntfs_read_locked_index_inode(): Failed with error code -5 while reading index inode (mft_no 0x18, name_len 2. [ 190.176404][ T8464] loop0: detected capacity change from 0 to 40427 [ 190.209746][ T8497] loop4: detected capacity change from 0 to 64 [ 190.262709][ T8464] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 190.309026][ T8464] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 190.311405][ T8501] loop2: detected capacity change from 0 to 164 [ 190.338340][ T8497] attempt to access beyond end of device [ 190.338340][ T8497] loop4: rw=0, want=65536, limit=64 [ 190.397549][ T8497] Buffer I/O error on dev loop4, logical block 32767, async page read [ 190.457741][ T8497] attempt to access beyond end of device [ 190.457741][ T8497] loop4: rw=0, want=65536, limit=64 [ 190.472586][ T8464] F2FS-fs (loop0): Found nat_bits in checkpoint [ 190.576407][ T8512] loop1: detected capacity change from 0 to 256 [ 190.602009][ T8497] Buffer I/O error on dev loop4, logical block 32767, async page read [ 190.685714][ T8464] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 190.693590][ T8464] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 190.708255][ T8512] exfat: Deprecated parameter 'utf8' [ 190.755739][ T8512] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 191.264763][ T8544] loop4: detected capacity change from 0 to 16 [ 191.353250][ T8544] cramfs: Error -3 while decompressing! [ 191.415456][ T8544] cramfs: ffffffff961ef068(27)->ffff888068049000(4096) [ 191.445933][ T8544] cramfs: Error -3 while decompressing! [ 191.473223][ T8544] cramfs: ffffffff961ef083(16)->ffff8880590e6000(4096) [ 191.498803][ T8544] cramfs: Error -3 while decompressing! [ 191.522652][ T8544] cramfs: ffffffff961ef068(27)->ffff888068049000(4096) [ 191.749434][ T8557] loop4: detected capacity change from 0 to 256 [ 191.818264][ T8557] exfat: Deprecated parameter 'utf8' [ 191.827710][ T8559] sctp: [Deprecated]: syz.1.1987 (pid 8559) Use of int in maxseg socket option. [ 191.827710][ T8559] Use struct sctp_assoc_value instead [ 191.864157][ T8557] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 192.011489][ T8561] xt_hashlimit: max too large, truncated to 1048576 [ 192.507294][ T8585] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1997'. [ 192.582351][ T8547] loop2: detected capacity change from 0 to 40427 [ 192.705469][ T8594] xt_hashlimit: max too large, truncated to 1048576 [ 192.720052][ T8547] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 192.737951][ T8547] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 192.789190][ T8547] F2FS-fs (loop2): Found nat_bits in checkpoint [ 192.897991][ T8547] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 192.905174][ T8547] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 193.239478][ T8619] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2012'. [ 193.256990][ T8576] loop3: detected capacity change from 0 to 32768 [ 193.357852][ T8576] (syz.3.1993,8576,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 193.371776][ T8625] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2026'. [ 193.424485][ T8576] (syz.3.1993,8576,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 193.476897][ T8576] JBD2: Ignoring recovery information on journal [ 193.547392][ T8632] xt_hashlimit: max too large, truncated to 1048576 [ 193.585086][ T8576] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 193.775951][ T4182] ocfs2: Unmounting device (7,3) on (node local) [ 193.893511][ T8638] loop1: detected capacity change from 0 to 4096 [ 193.987161][ T8638] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 194.433895][ T8666] netlink: 'syz.2.2033': attribute type 3 has an invalid length. [ 194.487274][ T8666] netlink: 201372 bytes leftover after parsing attributes in process `syz.2.2033'. [ 194.844072][ T8681] loop2: detected capacity change from 0 to 4096 [ 194.922849][ T8681] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 195.093911][ T8703] netlink: 'syz.4.2054': attribute type 3 has an invalid length. [ 195.193654][ T8703] netlink: 201372 bytes leftover after parsing attributes in process `syz.4.2054'. [ 195.318120][ T8711] raw_sendmsg: syz.1.2057 forgot to set AF_INET. Fix it! [ 195.677281][ T4173] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 195.692429][ T8686] loop0: detected capacity change from 0 to 32768 [ 195.803401][ T8686] ERROR: (device loop0): dbAlloc: the hint is outside the map [ 195.803401][ T8686] [ 195.828037][ T8686] ialloc: diAlloc returned -5! [ 195.891124][ T8740] netlink: 'syz.3.2069': attribute type 3 has an invalid length. [ 195.907851][ T8740] netlink: 201372 bytes leftover after parsing attributes in process `syz.3.2069'. [ 196.047559][ T4173] usb 3-1: config index 0 descriptor too short (expected 65207, got 72) [ 196.077441][ T4266] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 196.207492][ T4173] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 196.224178][ T4173] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 196.256957][ T4173] usb 3-1: Product: syz [ 196.267281][ T4173] usb 3-1: Manufacturer: syz [ 196.271955][ T4173] usb 3-1: SerialNumber: syz [ 196.312358][ T8757] loop1: detected capacity change from 0 to 16 [ 196.337233][ T4266] usb 5-1: Using ep0 maxpacket: 8 [ 196.369821][ T8757] erofs: (device loop1): mounted with root inode @ nid 36. [ 196.388804][ T4173] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 196.457395][ T4266] usb 5-1: config 13 has an invalid interface number: 77 but max is 0 [ 196.474633][ T4266] usb 5-1: config 13 has no interface number 0 [ 196.507397][ T4266] usb 5-1: config 13 interface 77 has no altsetting 0 [ 196.523809][ T8765] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2082'. [ 196.620871][ T8767] Unknown options in mask 5 [ 196.635894][ T8769] loop1: detected capacity change from 0 to 128 [ 196.698139][ T4266] usb 5-1: New USB device found, idVendor=06cd, idProduct=010b, bcdDevice=10.8f [ 196.724744][ T8769] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 196.747922][ T8769] hpfs: filesystem error: improperly stopped [ 196.754021][ T8769] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 196.763268][ T4266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 196.796966][ T4266] usb 5-1: Product: syz [ 196.806344][ T4266] usb 5-1: Manufacturer: syz [ 196.809316][ T8769] hpfs: You really don't want any checks? You are crazy... [ 196.816527][ T4266] usb 5-1: SerialNumber: syz [ 196.850995][ T8769] hpfs: hpfs_map_sector(): read error [ 196.858630][ T8769] hpfs: code page support is disabled [ 196.865173][ T8769] hpfs: hpfs_map_4sectors(): unaligned read [ 196.872575][ T8769] hpfs: hpfs_map_4sectors(): unaligned read [ 196.880226][ T8769] hpfs: filesystem error: unable to find root dir [ 197.067345][ T4173] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 197.168404][ T4266] keyspan 5-1:13.77: Keyspan - (without firmware) converter detected [ 197.192755][ T4266] usb 5-1: USB disconnect, device number 10 [ 197.209892][ T4266] keyspan 5-1:13.77: device disconnected [ 197.373034][ T8803] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount. [ 197.400545][ T8803] CIFS mount error: No usable UNC path provided in device string! [ 197.400545][ T8803] [ 197.425997][ T8803] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 197.475395][ T4266] usb 3-1: USB disconnect, device number 11 [ 197.549224][ T8813] netlink: 22 bytes leftover after parsing attributes in process `syz.0.2105'. [ 197.754488][ T8824] netlink: 'syz.3.2112': attribute type 1 has an invalid length. [ 197.813107][ T8824] netlink: 'syz.3.2112': attribute type 1 has an invalid length. [ 197.872759][ T8833] loop4: detected capacity change from 0 to 256 [ 197.906593][ T8835] loop3: detected capacity change from 0 to 8 [ 197.916348][ T8837] netlink: 'syz.1.2117': attribute type 2 has an invalid length. [ 197.958401][ T8835] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 197.972452][ T8833] FAT-fs (loop4): Directory bread(block 64) failed [ 198.009162][ T8833] FAT-fs (loop4): Directory bread(block 65) failed [ 198.015846][ T8833] FAT-fs (loop4): Directory bread(block 66) failed [ 198.044361][ T8835] cramfs: Error -3 while decompressing! [ 198.061237][ T8833] FAT-fs (loop4): Directory bread(block 67) failed [ 198.069706][ T8835] cramfs: ffffffff961ef068(26)->ffff888068b78000(4096) [ 198.087551][ T8835] cramfs: Error -3 while decompressing! [ 198.097691][ T8833] FAT-fs (loop4): Directory bread(block 68) failed [ 198.117273][ T4173] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 198.133036][ T8835] cramfs: ffffffff961ef082(26)->ffff8880592d6000(4096) [ 198.141375][ T4173] ath9k_htc: Failed to initialize the device [ 198.151524][ T8833] FAT-fs (loop4): Directory bread(block 69) failed [ 198.166608][ T8835] cramfs: Error -3 while decompressing! [ 198.176881][ T4266] usb 3-1: ath9k_htc: USB layer deinitialized [ 198.186737][ T8833] FAT-fs (loop4): Directory bread(block 70) failed [ 198.199134][ T8835] cramfs: ffffffff961ef09c(16)->ffff888071a69000(4096) [ 198.217801][ T8835] cramfs: Error -3 while decompressing! [ 198.223584][ T8833] FAT-fs (loop4): Directory bread(block 71) failed [ 198.246737][ T8847] loop1: detected capacity change from 0 to 2048 [ 198.253693][ T8835] cramfs: ffffffff961ef068(26)->ffff888068b78000(4096) [ 198.254715][ T8833] FAT-fs (loop4): Directory bread(block 72) failed [ 198.298206][ T8833] FAT-fs (loop4): Directory bread(block 73) failed [ 198.318972][ T8853] loop2: detected capacity change from 0 to 64 [ 198.383290][ T8847] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 198.507410][ T26] kauditd_printk_skb: 5 callbacks suppressed [ 198.507430][ T26] audit: type=1800 audit(1757612282.970:5): pid=8833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2116" name="file2" dev="loop4" ino=1048619 res=0 errno=0 [ 198.566984][ T8861] netlink: 'syz.3.2131': attribute type 3 has an invalid length. [ 198.631003][ T8855] loop0: detected capacity change from 0 to 4096 [ 198.707303][ T8866] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2134'. [ 198.723024][ T8855] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 198.828646][ T8855] ntfs3: loop0: failed to convert "c46c" to koi8-ru [ 198.934255][ T8878] loop4: detected capacity change from 0 to 2048 [ 198.989980][ T8881] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks [ 199.042432][ T8887] loop0: detected capacity change from 0 to 64 [ 199.052308][ T8888] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 199.126193][ T8878] NILFS error (device loop4): nilfs_dotdot: directory #12 missing '..' [ 199.213748][ T8878] Remounting filesystem read-only [ 199.485821][ T8913] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead [ 199.532529][ T8913] xt_CT: You must specify a L4 protocol and not use inversions on it [ 199.585107][ T8918] loop4: detected capacity change from 0 to 2048 [ 199.637395][ T4249] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 199.657983][ T8924] loop2: detected capacity change from 0 to 1024 [ 199.682513][ T8918] EXT4-fs (loop4): Mount option "nouser_xattr" will be removed by 3.5 [ 199.682513][ T8918] Contact linux-ext4@vger.kernel.org if you think we should keep it. [ 199.682513][ T8918] [ 199.711997][ T8918] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 199.743373][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 199.749805][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 199.814820][ T8918] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,resuid=0x0000000000000000,block_validity,min_batch_time=0x0000000000000007,nobarrier,nouser_xattr,dioread_nolock,. Quota mode: writeback. [ 199.851522][ T144] hfsplus: b-tree write err: -5, ino 4 [ 200.047382][ T4249] usb 1-1: config 0 has an invalid interface number: 83 but max is 0 [ 200.074454][ T4249] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 200.113725][ T4249] usb 1-1: config 0 has no interface number 0 [ 200.137487][ T4249] usb 1-1: New USB device found, idVendor=0b48, idProduct=2003, bcdDevice=39.61 [ 200.169500][ T4249] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.208291][ T4249] usb 1-1: config 0 descriptor?? [ 200.279449][ T4249] ttusbir 1-1:0.83: cannot find expected altsetting [ 200.315000][ T8961] loop1: detected capacity change from 0 to 8 [ 200.521471][ T21] usb 1-1: USB disconnect, device number 11 [ 200.549994][ T8974] netlink: 56 bytes leftover after parsing attributes in process `syz.2.2184'. [ 201.771774][ T9024] [U] v3f"S/4:XTzWtlW= [ 201.798029][ T4266] Bluetooth: hci1: command 0x0406 tx timeout [ 201.807482][ T4266] Bluetooth: hci3: command 0x0406 tx timeout [ 201.817196][ T4911] Bluetooth: hci0: command 0x0406 tx timeout [ 201.822264][ T9024] [U] J"e:" [ 201.833589][ T4266] Bluetooth: hci2: command 0x0406 tx timeout [ 201.846974][ T4266] Bluetooth: hci4: command 0x0406 tx timeout [ 202.127807][ T9038] loop3: detected capacity change from 0 to 64 [ 202.287283][ T4266] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 202.349790][ T8986] loop1: detected capacity change from 0 to 32768 [ 202.475210][ T8986] __jfs_setxattr: xattr_size = 82, new_size = 12061 [ 202.547283][ T4266] usb 1-1: Using ep0 maxpacket: 8 [ 202.697234][ T4266] usb 1-1: config 0 has an invalid interface number: 31 but max is 0 [ 202.705555][ T4266] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 202.753922][ T4266] usb 1-1: config 0 has no interface number 0 [ 202.784071][ T9058] loop2: detected capacity change from 0 to 736 [ 202.917352][ T4266] usb 1-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 202.929874][ T9063] device syz_tun entered promiscuous mode [ 202.936800][ T4266] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 202.967301][ T4266] usb 1-1: Product: syz [ 202.971542][ T4266] usb 1-1: Manufacturer: syz [ 202.976280][ T4266] usb 1-1: SerialNumber: syz [ 203.025267][ T4266] usb 1-1: config 0 descriptor?? [ 203.156929][ T9072] device vlan0 entered promiscuous mode [ 203.269450][ T9078] loop3: detected capacity change from 0 to 64 [ 203.307487][ T4266] usb 1-1: Found UVC 0.04 device syz (046d:08c3) [ 203.330564][ T9078] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 203.341390][ T4266] usb 1-1: No valid video chain found. [ 203.351248][ T9080] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 203.380047][ T9082] loop1: detected capacity change from 0 to 16 [ 203.420444][ T9078] minix_free_inode: bit 4 already cleared [ 203.497519][ T9082] erofs: (device loop1): mounted with root inode @ nid 36. [ 203.520042][ T4266] usb 1-1: USB disconnect, device number 12 [ 203.521382][ T9084] loop2: detected capacity change from 0 to 1024 [ 203.654589][ T9084] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 203.743003][ T9084] ext4 filesystem being mounted at /480/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 203.784708][ T9097] loop4: detected capacity change from 0 to 64 [ 203.901232][ T9088] loop3: detected capacity change from 0 to 8192 [ 203.928325][ T9100] tc_dump_action: action bad kind [ 204.017591][ T9088] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 204.048087][ T9097] attempt to access beyond end of device [ 204.048087][ T9097] loop4: rw=0, want=130, limit=64 [ 204.118787][ T9088] REISERFS (device loop3): using ordered data mode [ 204.125530][ T9088] reiserfs: using flush barriers [ 204.148740][ T9097] Trying to free block not in datazone [ 204.163803][ T9097] Trying to free block not in datazone [ 204.176689][ T9097] Trying to free block not in datazone [ 204.189063][ T9088] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 204.246770][ T9097] Trying to free block not in datazone [ 204.298085][ T9097] Trying to free block not in datazone [ 204.347815][ T9112] sctp: [Deprecated]: syz.0.2250 (pid 9112) Use of struct sctp_assoc_value in delayed_ack socket option. [ 204.347815][ T9112] Use struct sctp_sack_info instead [ 204.366258][ T9088] REISERFS (device loop3): checking transaction log (loop3) [ 204.375089][ T9097] Trying to free block not in datazone [ 204.410272][ T9097] minix_free_block (loop4:6): bit already cleared [ 204.417820][ T9116] loop2: detected capacity change from 0 to 256 [ 204.425803][ T9088] REISERFS (device loop3): Using r5 hash to sort names [ 204.472590][ T9088] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 204.539033][ T9116] FAT-fs (loop2): Directory bread(block 64) failed [ 204.566394][ T9116] FAT-fs (loop2): Directory bread(block 65) failed [ 204.596730][ T9116] FAT-fs (loop2): Directory bread(block 66) failed [ 204.647195][ T9116] FAT-fs (loop2): Directory bread(block 67) failed [ 204.679826][ T9116] FAT-fs (loop2): Directory bread(block 68) failed [ 204.717871][ T9116] FAT-fs (loop2): Directory bread(block 69) failed [ 204.747608][ T9116] FAT-fs (loop2): Directory bread(block 70) failed [ 204.777323][ T9116] FAT-fs (loop2): Directory bread(block 71) failed [ 204.797033][ T9116] FAT-fs (loop2): Directory bread(block 72) failed [ 204.833342][ T9116] FAT-fs (loop2): Directory bread(block 73) failed [ 204.997955][ T9130] netlink: 'syz.4.2260': attribute type 9 has an invalid length. [ 205.707378][ T9167] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2278'. [ 205.846872][ T9175] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744073709551615) [ 205.877510][ T9175] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647 [ 206.384157][ T9192] loop4: detected capacity change from 0 to 2048 [ 206.582857][ T9216] xt_TCPMSS: Only works on TCP SYN packets [ 206.672552][ T9192] EXT4-fs (loop4): mounted filesystem without journal. Opts: lazytime,usrjquota=,errors=remount-ro,bsdgroups,auto_da_alloc,jqfmt=vfsv1,nouid32,journal_dev=0x0000000000000007,grpjquota=,bsddf,. Quota mode: none. [ 206.744044][ T9221] loop3: detected capacity change from 0 to 8 [ 206.819848][ T9192] afs: Unexpected value for 'dyn' [ 206.885022][ T9221] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 206.900333][ T9229] loop0: detected capacity change from 0 to 16 [ 206.929737][ T9228] netlink: 'syz.2.2306': attribute type 32 has an invalid length. [ 206.952426][ T9221] cramfs: Error -3 while decompressing! [ 206.977838][ T9221] cramfs: ffffffff961eb082(26)->ffff88804dcee000(4096) [ 206.985596][ T9231] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2308'. [ 207.019334][ T6443] udevd[6443]: incorrect cramfs checksum on /dev/loop3 [ 207.027217][ T9221] cramfs: Error -3 while decompressing! [ 207.048554][ T9229] erofs: (device loop0): mounted with root inode @ nid 36. [ 207.059371][ T9221] cramfs: ffffffff961eb09c(16)->ffff88804dc88000(4096) [ 207.080492][ T9229] erofs: (device loop0): z_erofs_readahead: readahead error at page 1 @ nid 89 [ 207.091554][ T9233] loop2: detected capacity change from 0 to 256 [ 207.098237][ T9221] cramfs: Error -3 while decompressing! [ 207.135022][ T9221] cramfs: ffffffff961eb082(26)->ffff88804dcee000(4096) [ 207.135088][ T9229] erofs: (device loop0): z_erofs_readahead: readahead error at page 0 @ nid 89 [ 207.146507][ T26] audit: type=1800 audit(1757612291.610:6): pid=9221 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2302" name="file2" dev="loop3" ino=348 res=0 errno=0 [ 207.171119][ C1] vkms_vblank_simulate: vblank timer overrun [ 207.393061][ T9235] loop1: detected capacity change from 0 to 4096 [ 207.466274][ T9241] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2309'. [ 207.496150][ T9235] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 207.590994][ T9245] loop2: detected capacity change from 0 to 256 [ 207.616946][ T9235] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 207.687302][ T4249] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 207.937225][ T4249] usb 1-1: Using ep0 maxpacket: 32 [ 208.087531][ T4249] usb 1-1: config 0 has an invalid interface number: 66 but max is 0 [ 208.095935][ T4249] usb 1-1: config 0 has no interface number 0 [ 208.163607][ T9263] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2323'. [ 208.217343][ T9263] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2323'. [ 208.317410][ T4249] usb 1-1: New USB device found, idVendor=0979, idProduct=0227, bcdDevice=3d.a2 [ 208.334537][ T4249] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 208.384875][ T4249] usb 1-1: Product: syz [ 208.406361][ T4249] usb 1-1: Manufacturer: syz [ 208.427051][ T4249] usb 1-1: SerialNumber: syz [ 208.458813][ T4249] usb 1-1: config 0 descriptor?? [ 208.529389][ T4249] gspca_main: jl2005bcd-2.14.0 probing 0979:0227 [ 208.548027][ T4249] command write [95] error -22 [ 208.605519][ T9276] netlink: 9 bytes leftover after parsing attributes in process `syz.2.2330'. [ 208.741875][ T21] usb 1-1: USB disconnect, device number 13 [ 208.983976][ T9291] loop2: detected capacity change from 0 to 64 [ 209.073252][ T9295] loop1: detected capacity change from 0 to 256 [ 209.112271][ T9293] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 209.148061][ T9295] exfat: Deprecated parameter 'namecase' [ 209.156690][ T9295] exfat: Deprecated parameter 'namecase' [ 209.215695][ T9295] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d) [ 209.360355][ T9303] loop3: detected capacity change from 0 to 256 [ 209.495264][ T9308] ptrace attach of "./syz-executor exec"[4187] was attempted by "./syz-executor exec"[9308] [ 209.543973][ T9303] FAT-fs (loop3): Directory bread(block 64) failed [ 209.577979][ T9303] FAT-fs (loop3): Directory bread(block 65) failed [ 209.584715][ T9303] FAT-fs (loop3): Directory bread(block 66) failed [ 209.627314][ T9303] FAT-fs (loop3): Directory bread(block 67) failed [ 209.634017][ T9303] FAT-fs (loop3): Directory bread(block 68) failed [ 209.689917][ T9303] FAT-fs (loop3): Directory bread(block 69) failed [ 209.696598][ T9303] FAT-fs (loop3): Directory bread(block 70) failed [ 209.753049][ T9303] FAT-fs (loop3): Directory bread(block 71) failed [ 209.798129][ T9303] FAT-fs (loop3): Directory bread(block 72) failed [ 209.804943][ T9303] FAT-fs (loop3): Directory bread(block 73) failed [ 210.091462][ T9337] netlink: 160 bytes leftover after parsing attributes in process `syz.4.2358'. [ 210.118846][ T26] audit: type=1800 audit(1757612294.590:7): pid=9303 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2343" name="file2" dev="loop3" ino=1048623 res=0 errno=0 [ 210.139674][ C1] vkms_vblank_simulate: vblank timer overrun [ 210.690428][ T9361] loop3: detected capacity change from 0 to 256 [ 210.918647][ T9370] device netdevsim0 entered promiscuous mode [ 211.155656][ T9384] netlink: 'syz.2.2383': attribute type 1 has an invalid length. [ 211.203893][ T9384] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2383'. [ 211.246329][ T9385] loop4: detected capacity change from 0 to 2048 [ 211.417892][ T9383] loop3: detected capacity change from 0 to 4096 [ 211.443018][ T9385] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 211.460960][ T9383] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 211.522486][ T4294] udevd[4294]: incorrect nilfs2 checksum on /dev/loop4 [ 211.545124][ T9385] NILFS (loop4): mounting unchecked fs [ 211.635660][ T9383] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 211.673966][ T4294] udevd[4294]: incorrect nilfs2 checksum on /dev/loop4 [ 211.716317][ T9385] NILFS (loop4): recovery complete [ 211.815860][ T9401] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 212.047533][ T9410] loop3: detected capacity change from 0 to 16 [ 212.158898][ T9410] erofs: (device loop3): mounted with root inode @ nid 36. [ 212.191306][ T9410] erofs: (device loop3): z_erofs_readahead: readahead error at page 1 @ nid 89 [ 212.231140][ T9410] erofs: (device loop3): z_erofs_readahead: readahead error at page 0 @ nid 89 [ 212.260934][ T26] audit: type=1800 audit(1757612296.730:8): pid=9410 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2395" name="file3" dev="loop3" ino=89 res=0 errno=0 [ 212.265090][ T9419] loop4: detected capacity change from 0 to 256 [ 212.483300][ T9416] loop0: detected capacity change from 0 to 8192 [ 212.523020][ T9419] FAT-fs (loop4): Directory bread(block 64) failed [ 212.553183][ T9419] FAT-fs (loop4): Directory bread(block 65) failed [ 212.572652][ T9419] FAT-fs (loop4): Directory bread(block 66) failed [ 212.590060][ T9416] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 212.651767][ T9419] FAT-fs (loop4): Directory bread(block 67) failed [ 212.663536][ T9432] loop2: detected capacity change from 0 to 4096 [ 212.670890][ T9416] REISERFS (device loop0): using ordered data mode [ 212.677783][ T9416] reiserfs: using flush barriers [ 212.684223][ T9419] FAT-fs (loop4): Directory bread(block 68) failed [ 212.692044][ T9419] FAT-fs (loop4): Directory bread(block 69) failed [ 212.695797][ T9416] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 212.700832][ T9419] FAT-fs (loop4): Directory bread(block 70) failed [ 212.722392][ T9419] FAT-fs (loop4): Directory bread(block 71) failed [ 212.726543][ T9432] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 212.729133][ T9419] FAT-fs (loop4): Directory bread(block 72) failed [ 212.744833][ T9419] FAT-fs (loop4): Directory bread(block 73) failed [ 212.760150][ T9416] REISERFS (device loop0): checking transaction log (loop0) [ 212.822403][ T9429] loop1: detected capacity change from 0 to 8192 [ 212.882206][ T9432] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 212.895923][ T9429] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 212.938546][ T9429] REISERFS (device loop1): using ordered data mode [ 212.951884][ T9429] reiserfs: using flush barriers [ 213.014678][ T9429] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 213.067604][ T9429] REISERFS (device loop1): checking transaction log (loop1) [ 213.111446][ T9429] REISERFS (device loop1): Using r5 hash to sort names [ 213.153092][ T9429] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 213.175849][ T9416] REISERFS (device loop0): Using tea hash to sort names [ 213.231984][ T9416] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 213.327404][ T21] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 213.337314][ T9416] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 213.577292][ T21] usb 4-1: Using ep0 maxpacket: 16 [ 213.583962][ T9443] loop2: detected capacity change from 0 to 128 [ 213.653930][ T9443] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 213.727727][ T9443] hpfs: filesystem error: improperly stopped [ 213.733797][ T9443] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 213.789398][ T9443] hpfs: You really don't want any checks? You are crazy... [ 213.827474][ T9443] hpfs: hpfs_map_sector(): read error [ 213.857922][ T21] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 213.874898][ T9449] netlink: 'syz.1.2412': attribute type 10 has an invalid length. [ 213.887187][ T9443] hpfs: code page support is disabled [ 213.892756][ T9443] hpfs: hpfs_map_4sectors(): unaligned read [ 213.901885][ T21] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 213.908586][ T9449] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2412'. [ 213.920484][ T21] usb 4-1: Product: syz [ 213.930648][ T21] usb 4-1: Manufacturer: syz [ 213.938810][ T21] usb 4-1: SerialNumber: syz [ 213.948984][ T9443] hpfs: hpfs_map_4sectors(): unaligned read [ 213.960834][ T21] r8152-cfgselector 4-1: config 0 descriptor?? [ 213.970184][ T9443] hpfs: filesystem error: unable to find root dir [ 214.108410][ T9449] team0: Port device geneve0 added [ 214.135094][ T9451] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2413'. [ 214.177477][ T9439] loop4: detected capacity change from 0 to 32768 [ 214.246782][ T9439] (syz.4.2407,9439,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 214.309746][ T9439] (syz.4.2407,9439,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 214.430574][ T9439] JBD2: Ignoring recovery information on journal [ 214.467329][ T21] r8152-cfgselector 4-1: Unknown version 0x0000 [ 214.474082][ T21] r8152-cfgselector 4-1: bad CDC descriptors [ 214.497260][ T21] r8152-cfgselector 4-1: Unknown version 0x0000 [ 214.512788][ T21] r8152-cfgselector 4-1: USB disconnect, device number 12 [ 214.636923][ T9439] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 214.652426][ T9466] loop2: detected capacity change from 0 to 8192 [ 214.719824][ T9466] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 214.779541][ T9466] REISERFS (device loop2): using ordered data mode [ 214.827531][ T9466] reiserfs: using flush barriers [ 214.897423][ T9466] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 214.931847][ T9466] REISERFS (device loop2): checking transaction log (loop2) [ 214.951691][ T4195] ocfs2: Unmounting device (7,4) on (node local) [ 215.020436][ T9466] REISERFS (device loop2): Using r5 hash to sort names [ 215.036412][ T9466] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 215.810303][ T9508] netlink: 'syz.1.2441': attribute type 1 has an invalid length. [ 215.861652][ T9508] netlink: 224 bytes leftover after parsing attributes in process `syz.1.2441'. [ 215.909685][ T9508] block nbd0: not configured, cannot reconfigure [ 216.039574][ T9518] bond0: option xmit_hash_policy: invalid value (8) [ 216.246982][ T9533] ipt_CLUSTERIP: ipt_CLUSTERIP is deprecated and it will removed soon, use xt_cluster instead [ 216.337237][ T9533] xt_CT: You must specify a L4 protocol and not use inversions on it [ 216.793388][ T9562] loop0: detected capacity change from 0 to 8 [ 216.980429][ T4242] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 217.417470][ T4242] usb 4-1: New USB device found, idVendor=0471, idProduct=0329, bcdDevice=db.da [ 217.426606][ T4242] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 217.493199][ T4242] usb 4-1: config 0 descriptor?? [ 217.556399][ T4242] pwc: Philips SPC 900NC USB webcam detected. [ 217.767365][ T4242] pwc: Failed to set LED on/off time (-71) [ 217.797356][ T4242] pwc: send_video_command error -71 [ 217.823203][ T4242] pwc: Failed to set video mode VGA@30 fps; return code = -71 [ 217.850531][ T4242] Philips webcam: probe of 4-1:0.0 failed with error -71 [ 217.880901][ T4242] usb 4-1: USB disconnect, device number 13 [ 218.398476][ T9634] dlm: non-version read from control device 8192 [ 218.748419][ T9659] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2506'. [ 218.925880][ T9667] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 219.022925][ T9670] loop3: detected capacity change from 0 to 736 [ 219.366147][ T9683] loop4: detected capacity change from 0 to 256 [ 219.397000][ T9681] loop0: detected capacity change from 0 to 4096 [ 219.405415][ T9683] exfat: Deprecated parameter 'utf8' [ 219.452945][ T9683] exfat: Deprecated parameter 'utf8' [ 219.473830][ T9683] exfat: Deprecated parameter 'utf8' [ 219.558287][ T9683] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d) [ 219.577970][ T9690] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 219.594108][ T9692] loop2: detected capacity change from 0 to 16 [ 219.615916][ T9681] NILFS (loop0): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 219.668732][ T9681] NILFS error (device loop0): nilfs_bmap_truncate: broken bmap (inode number=12) [ 219.713641][ T9681] Remounting filesystem read-only [ 219.747446][ T9681] NILFS (loop0): error -5 truncating bmap (ino=12) [ 219.759918][ T9692] erofs: (device loop2): mounted with root inode @ nid 36. [ 219.870354][ T9698] [U] v3f"S/4:XTzWtlW= [ 219.876513][ T9698] [U] J"e:" [ 219.943448][ T4189] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 220.273003][ T9702] loop1: detected capacity change from 0 to 4096 [ 220.316016][ T9716] netlink: 'syz.0.2537': attribute type 32 has an invalid length. [ 220.390580][ T9716] netlink: 40 bytes leftover after parsing attributes in process `syz.0.2537'. [ 220.445204][ T9722] netlink: 64985 bytes leftover after parsing attributes in process `syz.3.2540'. [ 220.467365][ T9702] ntfs: volume version 3.1. [ 220.623728][ T9726] loop0: detected capacity change from 0 to 136 [ 220.780359][ T9726] iso9660: Corrupted directory entry in block 2 of inode 1472 [ 221.270126][ T9756] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2556'. [ 221.452862][ T9769] xt_l2tp: missing protocol rule (udp|l2tpip) [ 221.635273][ T9768] loop3: detected capacity change from 0 to 4096 [ 221.731326][ T9768] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 221.874863][ T9768] ntfs3: loop3: ino=5, "/" directory corrupted [ 221.894424][ T9768] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 221.923196][ T9787] tmpfs: Bad value for 'mpol' [ 222.093549][ T4182] ntfs3: loop3: ntfs_sync_fs r=1a failed, -22. [ 222.118421][ T4182] ntfs3: loop3: ntfs_evict_inode r=1a failed, -22. [ 222.147281][ T9800] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2579'. [ 222.249643][ T9804] netlink: 428 bytes leftover after parsing attributes in process `syz.0.2581'. [ 222.349940][ T9812] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2880) [ 222.392226][ T9812] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 222.695432][ T9828] loop4: detected capacity change from 0 to 16 [ 222.816247][ T9832] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2593'. [ 222.817766][ T9828] erofs: (device loop4): mounted with root inode @ nid 36. [ 223.080879][ T9849] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING [ 223.479864][ T9874] netlink: 68 bytes leftover after parsing attributes in process `syz.1.2615'. [ 223.936625][ T9901] tmpfs: Bad value for 'mpol' [ 224.839759][ T9949] device netdevsim0 entered promiscuous mode [ 224.886596][ T9949] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 225.213928][ T9959] ptrace attach of "./syz-executor exec"[4195] was attempted by "./syz-executor exec"[9959] [ 225.664108][ T9980] loop1: detected capacity change from 0 to 64 [ 225.726780][ T9936] loop0: detected capacity change from 0 to 32768 [ 225.781233][ T9936] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.2640 (9936) [ 225.886948][ T9936] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 225.918820][ T9936] BTRFS info (device loop0): force zlib compression, level 3 [ 226.023265][ T9936] BTRFS info (device loop0): force clearing of disk cache [ 226.038192][ T9936] BTRFS info (device loop0): setting nodatasum [ 226.072613][ T9936] BTRFS info (device loop0): setting nodatacow [ 226.099628][ T9936] BTRFS info (device loop0): enabling disk space caching [ 226.132947][ T9936] BTRFS info (device loop0): disk space caching is enabled [ 226.148591][ T9998] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2668'. [ 226.167220][ T9936] BTRFS info (device loop0): has skinny extents [ 226.187347][ T9998] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2668'. [ 226.206736][ T9998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2668'. [ 226.218622][ T9998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2668'. [ 226.417863][T10019] kAFS: Can only specify source 'none' with -o dyn [ 226.446049][T10026] netlink: 'syz.1.2673': attribute type 1 has an invalid length. [ 226.480565][T10028] loop3: detected capacity change from 0 to 512 [ 226.507976][T10026] netlink: 200 bytes leftover after parsing attributes in process `syz.1.2673'. [ 226.590546][ T9936] BTRFS info (device loop0): enabling ssd optimizations [ 226.668564][T10039] loop2: detected capacity change from 0 to 128 [ 226.700045][T10028] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 226.757588][T10028] ext4 filesystem being mounted at /519/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 227.696715][T10075] netlink: 'syz.0.2681': attribute type 2 has an invalid length. [ 227.767606][T10075] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.2681'. [ 228.420446][T10109] loop0: detected capacity change from 0 to 8 [ 228.468026][T10109] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 228.503960][T10109] cramfs: bad data blocksize 3221485570 [ 228.505681][ T6443] udevd[6443]: incorrect cramfs checksum on /dev/loop0 [ 228.557907][T10109] cramfs: bad data blocksize 3221485570 [ 228.566038][ T26] audit: type=1800 audit(1757612313.030:9): pid=10109 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2711" name="file2" dev="loop0" ino=348 res=0 errno=0 [ 228.666912][ T6443] udevd[6443]: incorrect cramfs checksum on /dev/loop0 [ 228.744865][ T6443] udevd[6443]: incorrect cramfs checksum on /dev/loop0 [ 229.021102][T10078] loop1: detected capacity change from 0 to 32768 [ 229.245706][T10078] XFS (loop1): Mounting V5 Filesystem [ 229.327945][T10148] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2726'. [ 229.349256][T10148] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2726'. [ 229.425709][T10078] XFS (loop1): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 229.497476][ T4266] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 229.545865][T10078] XFS (loop1): Starting recovery (logdev: internal) [ 229.632534][T10078] XFS (loop1): Ending recovery (logdev: internal) [ 229.676062][T10163] loop0: detected capacity change from 0 to 256 [ 229.679507][T10161] loop2: detected capacity change from 0 to 512 [ 229.786062][T10163] FAT-fs (loop0): Directory bread(block 64) failed [ 229.807304][T10163] FAT-fs (loop0): Directory bread(block 65) failed [ 229.807729][ T4183] XFS (loop1): Unmounting Filesystem [ 229.846011][T10163] FAT-fs (loop0): Directory bread(block 66) failed [ 229.866744][ T4266] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 229.878579][T10161] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,grpquota,. Quota mode: writeback. [ 229.882051][T10163] FAT-fs (loop0): Directory bread(block 67) failed [ 229.898259][T10167] loop3: detected capacity change from 0 to 4096 [ 229.902600][ T4266] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0xA has an invalid bInterval 0, changing to 7 [ 229.917081][T10163] FAT-fs (loop0): Directory bread(block 68) failed [ 229.922422][T10161] ext4 filesystem being mounted at /578/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 229.933973][T10163] FAT-fs (loop0): Directory bread(block 69) failed [ 229.955857][T10163] FAT-fs (loop0): Directory bread(block 70) failed [ 229.972172][T10167] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 230.001898][T10163] FAT-fs (loop0): Directory bread(block 71) failed [ 230.037644][T10167] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096) [ 230.050468][T10163] FAT-fs (loop0): Directory bread(block 72) failed [ 230.057052][T10163] FAT-fs (loop0): Directory bread(block 73) failed [ 230.069647][T10161] EXT4-fs error (device loop2): ext4_empty_dir:3139: inode #12: comm syz.2.2731: Directory hole found for htree leaf block 0 [ 230.160283][ T4294] udevd[4294]: incorrect nilfs2 checksum on /dev/loop3 [ 230.181988][T10161] EXT4-fs (loop2): Remounting filesystem read-only [ 230.201007][ T4266] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 230.221477][ T4266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 230.265564][ T4266] usb 5-1: Product: syz [ 230.280927][ T4266] usb 5-1: Manufacturer: syz [ 230.296167][T10170] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 230.317186][ T4266] usb 5-1: SerialNumber: syz [ 230.349060][ T4266] usb 5-1: config 0 descriptor?? [ 230.364126][T10167] attempt to access beyond end of device [ 230.364126][T10167] loop3: rw=0, want=8246337208512, limit=4096 [ 230.441963][ T4266] usb 5-1: 0:0 : invalid sync pipe. is_playback 1, ep 0a, bSynchAddress 07 [ 230.444957][T10167] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=0) [ 230.899738][T10053] usb 5-1: USB disconnect, device number 11 [ 231.145032][T10196] SET target dimension over the limit! [ 231.323526][ T4228] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 231.356221][T10203] loop1: detected capacity change from 0 to 1024 [ 231.433581][T10207] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2753'. [ 231.727391][ T4228] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 231.748210][ T4228] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 231.779318][ T4228] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.855875][ T4228] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 231.883101][T10230] netlink: 'syz.3.2764': attribute type 1 has an invalid length. [ 231.935325][T10230] netlink: 'syz.3.2764': attribute type 2 has an invalid length. [ 231.970262][T10230] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2764'. [ 232.295964][T10253] loop2: detected capacity change from 0 to 512 [ 232.450679][T10253] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 232.500287][T10253] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.2774: bad orphan inode 15 [ 232.594867][T10253] ext4_test_bit(bit=14, block=4) = 1 [ 232.606131][T10253] is_bad_inode(inode)=0 [ 232.620232][T10253] NEXT_ORPHAN(inode)=0 [ 232.630355][T10253] max_ino=32 [ 232.633621][T10253] i_nlink=1 [ 232.647287][T10253] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,usrjquota=,acl,noload,data_err=ignore,usrjquota="init_itable=0x0000000000000601,init_itable=0x0000000000000101,noblock_validity,,errors=continue. Quota mode: writeback. [ 232.748185][T10253] EXT4-fs error (device loop2): ext4_append:79: inode #2: comm syz.2.2774: Logical block already allocated [ 232.862753][T10268] loop4: detected capacity change from 0 to 1024 [ 232.960701][T10268] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nodioread_nolock,,errors=continue. Quota mode: writeback. [ 232.987747][ T4228] stv0680 1-1:4.0: STV(e): camera ping failed!! [ 233.039098][T10268] ext4 filesystem being mounted at /542/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 233.108603][T10264] loop3: detected capacity change from 0 to 32768 [ 233.159252][T10268] EXT4-fs error (device loop4): ext4_xattr_block_list:719: inode #15: comm syz.4.2782: corrupted xattr block 128 [ 233.207312][ T4228] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 233.258005][ T4228] stv0680 1-1:4.0: last error: 22, command = 0x78 [ 233.310849][ T4228] usb 1-1: USB disconnect, device number 14 [ 233.472730][T10285] loop1: detected capacity change from 0 to 8 [ 233.508195][T10289] netlink: 129384 bytes leftover after parsing attributes in process `syz.4.2789'. [ 233.674582][T10285] SQUASHFS error: lzo decompression failed, data probably corrupt [ 233.726535][T10285] SQUASHFS error: Failed to read block 0x1dd: -5 [ 233.786062][T10285] SQUASHFS error: Unable to read metadata cache entry [1db] [ 233.849483][T10285] SQUASHFS error: Unable to read inode 0xa7 [ 234.463436][T10328] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 234.590264][T10333] vivid-000: disconnect [ 234.647157][T10332] vivid-000: reconnect [ 234.746397][T10342] comedi comedi0: das16m1: I/O port conflict (0x3,16) [ 235.327365][ T4228] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 235.347219][ T1346] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 235.377490][T10376] loop0: detected capacity change from 0 to 2048 [ 235.429347][T10376] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 235.597258][ T1346] usb 2-1: Using ep0 maxpacket: 8 [ 235.737699][ T4228] usb 5-1: config index 0 descriptor too short (expected 23569, got 27) [ 235.750719][ T4228] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 235.857900][ T4228] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0 [ 235.874636][ T4228] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0 [ 235.907289][ T1346] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0069, bcdDevice=6e.55 [ 235.928674][T10400] loop2: detected capacity change from 0 to 16 [ 235.936464][ T1346] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 235.954352][ T4228] usb 5-1: Manufacturer: syz [ 235.968135][ T4228] usb 5-1: config 0 descriptor?? [ 235.974650][ T1346] usb 2-1: Product: syz [ 235.979376][ T1346] usb 2-1: Manufacturer: syz [ 235.987367][ T1346] usb 2-1: SerialNumber: syz [ 236.024293][ T1346] usb 2-1: config 0 descriptor?? [ 236.031493][ T4228] igorplugusb 5-1:0.0: endpoint incorrect [ 236.050512][T10400] erofs: (device loop2): mounted with root inode @ nid 36. [ 236.106505][T10400] erofs: (device loop2): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36 [ 236.235074][ T7] usb 5-1: USB disconnect, device number 12 [ 236.274865][T10412] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2849'. [ 236.338315][ T1346] usb 2-1: dvb_usb_v2: usb_bulk_msg() failed=-22 [ 236.359265][ T1346] dvb_usb_af9015: probe of 2-1:0.0 failed with error -22 [ 236.396079][ T1346] usb 2-1: USB disconnect, device number 10 [ 236.759831][T10431] program syz.2.2860 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 236.972554][T10434] loop3: detected capacity change from 0 to 4096 [ 237.026939][T10434] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 237.094714][T10446] loop2: detected capacity change from 0 to 512 [ 237.203793][T10446] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock [ 237.206821][T10434] ntfs3: loop3: failed to convert "c46c" to macgreek [ 237.247811][T10446] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock [ 237.305401][T10446] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock [ 237.358517][T10454] netlink: 36 bytes leftover after parsing attributes in process `syz.0.2871'. [ 237.383189][T10446] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 237.406654][T10446] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e040e01c, mo2=0000] [ 237.461009][T10446] EXT4-fs (loop2): failed to initialize system zone (-117) [ 237.512276][T10446] EXT4-fs (loop2): mount failed [ 237.640884][T10466] loop0: detected capacity change from 0 to 1024 [ 237.695242][T10469] netlink: 4568 bytes leftover after parsing attributes in process `syz.4.2877'. [ 237.786351][T10466] EXT4-fs (loop0): Ignoring removed nobh option [ 237.813826][T10466] EXT4-fs (loop0): inline encryption not supported [ 237.840187][T10466] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 237.884767][T10476] binder: 10475:10476 ioctl c018620b 0 returned -14 [ 237.978205][T10466] EXT4-fs (loop0): mounted filesystem without journal. Opts: data_err=abort,nojournal_checksum,barrier=0x0000000000000002,init_itable=0x0000000000000001,data_err=ignore,lazytime,data_err=ignore,journal_dev=0x0000000000000800,nobh,inlinecrypt,data_err=ignore,dioread_nolock,,errors=continue. Quota mode: none. [ 237.999961][T10487] loop4: detected capacity change from 0 to 256 [ 238.433554][T10509] loop1: detected capacity change from 0 to 512 [ 238.442835][T10512] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2896'. [ 238.542761][T10509] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option [ 238.567943][T10509] EXT4-fs (loop1): Ignoring removed bh option [ 238.623416][T10509] EXT4-fs error (device loop1): mb_free_blocks:1860: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt. [ 238.725824][T10509] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #11: comm syz.1.2895: corrupted inode contents [ 238.826523][T10509] EXT4-fs error (device loop1): ext4_dirty_inode:6040: inode #11: comm syz.1.2895: mark_inode_dirty error [ 238.853608][T10533] loop2: detected capacity change from 0 to 128 [ 238.888529][T10509] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.2895: invalid indirect mapped block 1 (level 1) [ 238.924428][T10509] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #11: comm syz.1.2895: corrupted inode contents [ 238.975551][T10509] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem [ 239.013278][T10509] EXT4-fs error (device loop1): ext4_do_update_inode:5204: inode #11: comm syz.1.2895: corrupted inode contents [ 239.059483][T10539] loop0: detected capacity change from 0 to 256 [ 239.066621][T10509] EXT4-fs error (device loop1): ext4_truncate:4273: inode #11: comm syz.1.2895: mark_inode_dirty error [ 239.090346][T10541] loop3: detected capacity change from 0 to 256 [ 239.105017][T10509] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem [ 239.127352][T10509] EXT4-fs (loop1): 1 truncate cleaned up [ 239.133059][T10509] EXT4-fs (loop1): mounted filesystem without journal. Opts: nomblk_io_submit,bh,,errors=continue. Quota mode: none. [ 239.299631][T10509] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 13: comm syz.1.2895: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0 [ 239.591577][T10551] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2916'. [ 239.644300][T10545] loop2: detected capacity change from 0 to 4096 [ 239.668762][T10553] netlink: 132 bytes leftover after parsing attributes in process `syz.1.2915'. [ 239.713883][T10555] loop0: detected capacity change from 0 to 64 [ 239.737012][T10545] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 239.757356][ T4266] usb 4-1: new full-speed USB device number 14 using dummy_hcd [ 239.806290][T10557] loop1: detected capacity change from 0 to 256 [ 239.857571][T10545] ntfs3: loop2: failed to convert "c46c" to cp864 [ 239.923705][T10557] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 239.968950][T10557] attempt to access beyond end of device [ 239.968950][T10557] loop1: rw=524288, want=408, limit=256 [ 240.075538][T10557] attempt to access beyond end of device [ 240.075538][T10557] loop1: rw=524288, want=664, limit=256 [ 240.130923][ T4266] usb 4-1: config index 0 descriptor too short (expected 156, got 27) [ 240.158718][ T4266] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 240.177617][T10557] attempt to access beyond end of device [ 240.177617][T10557] loop1: rw=0, want=288, limit=256 [ 240.186613][ T4266] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 240.214853][ T4266] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 240.250798][ T4266] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 240.294762][ T26] audit: type=1800 audit(1757612324.760:10): pid=10557 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2918" name="file1" dev="loop1" ino=1048633 res=0 errno=0 [ 240.354088][ T4266] usb 4-1: config 0 interface 0 has no altsetting 0 [ 240.517677][ T4266] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 240.539780][T10568] loop1: detected capacity change from 0 to 64 [ 240.542550][ T4266] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 240.583935][T10518] loop4: detected capacity change from 0 to 65536 [ 240.602591][ T4266] usb 4-1: Product: syz [ 240.646520][ T4266] usb 4-1: Manufacturer: syz [ 240.690971][ T4266] usb 4-1: SerialNumber: syz [ 240.740586][ T4266] usb 4-1: config 0 descriptor?? [ 240.797491][T10549] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 240.824364][ T4266] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 240.843191][T10518] XFS (loop4): Mounting V5 Filesystem [ 240.851779][ T4266] ldusb 4-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 241.030381][T10589] netlink: 332 bytes leftover after parsing attributes in process `syz.1.2928'. [ 241.056336][T10518] XFS (loop4): Ending clean mount [ 241.190258][ T4173] usb 4-1: USB disconnect, device number 14 [ 241.245695][ T4173] ldusb 4-1:0.0: LD USB Device #0 now disconnected [ 241.332772][ T4195] XFS (loop4): Unmounting Filesystem [ 241.416107][T10600] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard [ 241.449140][T10600] exFAT-fs (nullb0): invalid boot record signature [ 241.463916][T10600] exFAT-fs (nullb0): failed to read boot sector [ 241.478762][T10600] exFAT-fs (nullb0): failed to recognize exfat type [ 242.373972][T10644] loop3: detected capacity change from 0 to 64 [ 242.485469][T10642] loop0: detected capacity change from 0 to 4096 [ 242.561126][T10651] loop2: detected capacity change from 0 to 64 [ 242.598415][T10652] xt_CT: You must specify a L4 protocol and not use inversions on it [ 242.600479][T10642] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 242.698287][T10651] MINIX-fs: mounting file system with errors, running fsck is recommended [ 242.750734][T10642] ntfs3: loop0: failed to convert "c46c" to macgreek [ 242.853961][T10660] MTD: Couldn't look up './file0': -15 [ 242.968863][T10667] loop3: detected capacity change from 0 to 16 [ 243.022804][T10667] erofs: (device loop3): mounted with root inode @ nid 36. [ 243.372234][T10691] device bridge2 entered promiscuous mode [ 243.471288][T10700] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2980'. [ 243.500892][T10697] loop0: detected capacity change from 0 to 1024 [ 243.572686][T10697] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 243.659601][T10697] EXT4-fs (loop0): mounted filesystem without journal. Opts: noquota,resuid=0x0000000000000000,data=ordered,nodiscard,dioread_nolock,noblock_validity,data_err=abort,data_err=abort,,errors=continue. Quota mode: writeback. [ 243.712235][T10697] EXT4-fs error (device loop0): __ext4_new_inode:1076: comm syz.0.2979: reserved inode found cleared - inode=1 [ 243.914654][T10722] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2989'. [ 244.238735][T10735] loop4: detected capacity change from 0 to 2048 [ 244.382301][T10735] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 244.466057][T10748] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 244.513716][T10751] loop2: detected capacity change from 0 to 1024 [ 244.628085][T10053] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 244.665175][T10757] syz.3.3006 uses old SIOCAX25GETINFO [ 244.887355][T10053] usb 2-1: Using ep0 maxpacket: 16 [ 244.917392][ T4173] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 245.007590][T10053] usb 2-1: config 0 has an invalid interface number: 1 but max is 0 [ 245.038544][T10053] usb 2-1: config 0 has no interface number 0 [ 245.113433][T10773] xt_addrtype: output interface limitation not valid in PREROUTING and INPUT [ 245.113508][T10772] netlink: 152 bytes leftover after parsing attributes in process `syz.3.3012'. [ 245.158007][ T4173] usb 3-1: Using ep0 maxpacket: 16 [ 245.209533][T10053] usb 2-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d [ 245.246190][T10053] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 245.261314][T10053] usb 2-1: Product: syz [ 245.273346][T10053] usb 2-1: Manufacturer: syz [ 245.288778][T10053] usb 2-1: SerialNumber: syz [ 245.297772][ T4173] usb 3-1: config 0 has an invalid descriptor of length 141, skipping remainder of the config [ 245.319080][T10053] usb 2-1: config 0 descriptor?? [ 245.327483][ T4173] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 33216, setting to 1024 [ 245.369828][ T4173] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 1024 [ 245.417203][ T4173] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 245.527467][ T4173] usb 3-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 245.543541][ T4173] usb 3-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 245.567616][ T4173] usb 3-1: Manufacturer: syz [ 245.590116][ T4173] usb 3-1: config 0 descriptor?? [ 245.623548][ T23] usb 2-1: USB disconnect, device number 11 [ 245.630121][T10751] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 245.717636][ T1346] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 245.883603][T10053] usb 3-1: USB disconnect, device number 12 [ 245.898726][T10806] loop3: detected capacity change from 0 to 256 [ 245.976817][T10806] FAT-fs (loop3): Directory bread(block 64) failed [ 245.987208][ T1346] usb 1-1: Using ep0 maxpacket: 16 [ 245.990362][T10806] FAT-fs (loop3): Directory bread(block 65) failed [ 245.999719][T10806] FAT-fs (loop3): Directory bread(block 66) failed [ 246.003840][T10809] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3032'. [ 246.006373][T10806] FAT-fs (loop3): Directory bread(block 67) failed [ 246.022201][T10806] FAT-fs (loop3): Directory bread(block 68) failed [ 246.029466][T10806] FAT-fs (loop3): Directory bread(block 69) failed [ 246.036304][T10806] FAT-fs (loop3): Directory bread(block 70) failed [ 246.043647][T10806] FAT-fs (loop3): Directory bread(block 71) failed [ 246.052881][T10806] FAT-fs (loop3): Directory bread(block 72) failed [ 246.065763][T10806] FAT-fs (loop3): Directory bread(block 73) failed [ 246.117289][ T1346] usb 1-1: config 1 has an invalid descriptor of length 60, skipping remainder of the config [ 246.137137][ T1346] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 246.268879][ T1346] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= f.89 [ 246.288385][ T1346] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 246.296554][ T1346] usb 1-1: SerialNumber: syz [ 246.311913][T10819] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3037'. [ 246.370407][ T1346] usb 1-1: 0:2 : does not exist [ 246.429535][T10823] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 246.617585][ T1346] usb 1-1: USB disconnect, device number 15 [ 247.228496][ T23] usb 3-1: new high-speed USB device number 13 using dummy_hcd [ 247.452040][T10889] loop1: detected capacity change from 0 to 256 [ 247.480133][ T23] usb 3-1: Using ep0 maxpacket: 16 [ 247.551075][T10889] FAT-fs (loop1): Directory bread(block 64) failed [ 247.575935][T10889] FAT-fs (loop1): Directory bread(block 65) failed [ 247.600340][T10889] FAT-fs (loop1): Directory bread(block 66) failed [ 247.653485][T10889] FAT-fs (loop1): Directory bread(block 67) failed [ 247.677362][T10889] FAT-fs (loop1): Directory bread(block 68) failed [ 247.702147][T10889] FAT-fs (loop1): Directory bread(block 69) failed [ 247.745107][T10889] FAT-fs (loop1): Directory bread(block 70) failed [ 247.763740][T10889] FAT-fs (loop1): Directory bread(block 71) failed [ 247.776745][ T23] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 247.791780][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 247.800542][T10889] FAT-fs (loop1): Directory bread(block 72) failed [ 247.806055][T10900] loop4: detected capacity change from 0 to 1764 [ 247.814017][ T23] usb 3-1: Product: syz [ 247.818845][T10889] FAT-fs (loop1): Directory bread(block 73) failed [ 247.825652][ T23] usb 3-1: Manufacturer: syz [ 247.843263][ T23] usb 3-1: SerialNumber: syz [ 247.852546][T10904] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3079'. [ 247.876703][ T23] r8152-cfgselector 3-1: config 0 descriptor?? [ 247.911633][T10900] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet. [ 247.958662][T10900] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 247.976063][T10908] xt_CT: You must specify a L4 protocol and not use inversions on it [ 248.120775][T10914] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3084'. [ 248.177348][ T23] r8152-cfgselector 3-1: Unknown version 0x0000 [ 248.235980][T10914] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3084'. [ 248.392228][ T23] r8152-cfgselector 3-1: Unknown version 0x0000 [ 248.410198][ T23] r8152-cfgselector 3-1: bad CDC descriptors [ 248.444564][T10930] IPVS: length: 34 != 8 [ 248.451043][ T23] r8152-cfgselector 3-1: Unknown version 0x0000 [ 248.468952][ T23] r8152-cfgselector 3-1: USB disconnect, device number 13 [ 248.703853][T10940] netlink: 'syz.0.3097': attribute type 21 has an invalid length. [ 248.714880][T10940] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3097'. [ 248.760597][T10940] netlink: 'syz.0.3097': attribute type 6 has an invalid length. [ 248.769323][T10940] netlink: 3 bytes leftover after parsing attributes in process `syz.0.3097'. [ 248.817407][T10053] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 248.876753][T10944] loop1: detected capacity change from 0 to 2048 [ 248.933463][T10944] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 248.973863][ T6443] udevd[6443]: incorrect nilfs2 checksum on /dev/loop1 [ 249.023324][T10950] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 249.057878][T10944] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=104, inode=16, rec_len=24, name_len=128 [ 249.074593][T10053] usb 4-1: Using ep0 maxpacket: 32 [ 249.139347][T10919] loop4: detected capacity change from 0 to 40427 [ 249.153567][T10944] Remounting filesystem read-only [ 249.197419][T10053] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 249.245482][T10919] F2FS-fs (loop4): invalid crc value [ 249.267556][T10919] F2FS-fs (loop4): Found nat_bits in checkpoint [ 249.272083][T10053] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xE3, skipping [ 249.314337][T10053] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 249.369504][T10053] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0 [ 249.413543][T10053] usb 4-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 249.427271][ T1346] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 249.440965][T10919] F2FS-fs (loop4): Start checkpoint disabled! [ 249.489489][T10919] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 249.517382][ T7] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 249.575919][T10968] loop1: detected capacity change from 0 to 1024 [ 249.607406][T10053] usb 4-1: New USB device found, idVendor=072f, idProduct=2200, bcdDevice=3f.bf [ 249.623672][T10053] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 249.659927][T10053] usb 4-1: Product: syz [ 249.684608][T10053] usb 4-1: Manufacturer: syz [ 249.697390][T10053] usb 4-1: SerialNumber: syz [ 249.711338][T10053] usb 4-1: config 0 descriptor?? [ 249.726566][ T4278] hfsplus: b-tree write err: -5, ino 4 [ 249.732806][T10934] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 249.749101][T10053] pn533_usb 4-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint [ 249.798299][ T7] usb 1-1: Using ep0 maxpacket: 16 [ 249.837854][ T1346] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 249.858974][ T1346] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 249.885641][ T1346] usb 3-1: config 0 descriptor?? [ 249.917891][ T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 249.948637][ T1346] cp210x 3-1:0.0: cp210x converter detected [ 249.988497][T10053] usb 4-1: USB disconnect, device number 15 [ 250.132197][ T7] usb 1-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55 [ 250.164989][ T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 250.186417][ T7] usb 1-1: Product: syz [ 250.191366][T10983] xt_l2tp: v2 sid > 0xffff: 262144 [ 250.191365][ T7] usb 1-1: Manufacturer: syz [ 250.191386][ T7] usb 1-1: SerialNumber: syz [ 250.228973][ T7] usb 1-1: config 0 descriptor?? [ 250.352551][ T7] usb 1-1: Warning: ath10k USB support is incomplete, don't expect anything to work! [ 250.369123][ T1346] usb 3-1: cp210x converter now attached to ttyUSB0 [ 250.402755][ T1346] usb 3-1: USB disconnect, device number 14 [ 250.477053][ T1346] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 250.505176][T10984] loop1: detected capacity change from 0 to 32768 [ 250.523797][ T1346] cp210x 3-1:0.0: device disconnected [ 250.528393][T10053] usb 1-1: USB disconnect, device number 16 [ 250.551379][ T4227] usb 1-1: Failed to submit usb control message: -71 [ 250.589789][ T4227] usb 1-1: unable to send the bmi data to the device: -71 [ 250.618810][T10984] ea_get: invalid extended attribute [ 250.623563][ T4227] usb 1-1: unable to get target info from device [ 250.646791][T10984] ffff88805eb3b170: 04 00 00 00 .... [ 250.654854][ T4227] usb 1-1: could not get target info (-71) [ 250.669123][ T4227] usb 1-1: could not probe fw (-71) [ 250.791737][T11001] Zero length message leads to an empty skb [ 250.976310][T11005] loop3: detected capacity change from 0 to 256 [ 251.293326][T10053] usb 3-1: new high-speed USB device number 15 using dummy_hcd [ 251.333262][T11021] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3136'. [ 251.604911][T10997] loop4: detected capacity change from 0 to 32768 [ 251.619903][T10997] XFS: attr2 mount option is deprecated. [ 251.676525][T11040] netlink: 'syz.1.3142': attribute type 3 has an invalid length. [ 251.725071][T11040] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3142'. [ 251.759734][T11044] netlink: 'syz.0.3144': attribute type 1 has an invalid length. [ 251.772836][T10997] XFS (loop4): Mounting V5 Filesystem [ 251.785022][T11044] netlink: 212908 bytes leftover after parsing attributes in process `syz.0.3144'. [ 251.827418][T10053] usb 3-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 251.842883][T10053] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 251.861425][T11051] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3146'. [ 251.870480][T10053] usb 3-1: Product: syz [ 251.874801][T10053] usb 3-1: Manufacturer: syz [ 251.895047][T10053] usb 3-1: SerialNumber: syz [ 251.902001][T10053] usb 3-1: config 0 descriptor?? [ 251.940701][T10997] XFS (loop4): Ending clean mount [ 251.950769][T10997] XFS (loop4): Quotacheck needed: Please wait. [ 251.964314][T10053] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 252.037652][T10997] XFS (loop4): Quotacheck: Done. [ 252.132784][ T4195] XFS (loop4): Unmounting Filesystem [ 252.200309][ T4173] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 252.397330][T10053] gspca_sq905c: sq905c_read: usb_control_msg failed (-71) [ 252.404697][T10053] sq905c 3-1:0.0: Reading version command failed [ 252.424942][T10053] sq905c: probe of 3-1:0.0 failed with error -71 [ 252.454409][T10053] usb 3-1: USB disconnect, device number 15 [ 252.460726][ T4173] usb 2-1: Using ep0 maxpacket: 8 [ 252.577478][ T4173] usb 2-1: config 0 has an invalid interface number: 31 but max is 0 [ 252.585828][ T4173] usb 2-1: config 0 has no interface number 0 [ 252.767378][ T4173] usb 2-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16 [ 252.793200][ T4173] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 252.811700][ T4173] usb 2-1: Product: syz [ 252.826150][ T4173] usb 2-1: Manufacturer: syz [ 252.836326][ T4173] usb 2-1: SerialNumber: syz [ 252.848544][ T4173] usb 2-1: config 0 descriptor?? [ 252.947595][T11089] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3165'. [ 253.020945][ T26] audit: type=1326 audit(1757612337.490:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11090 comm="syz.4.3166" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5579a67ba9 code=0x0 [ 253.137403][ T4173] usb 2-1: Found UVC 0.04 device syz (046d:08c3) [ 253.143907][ T4173] usb 2-1: No valid video chain found. [ 253.144584][T11071] loop3: detected capacity change from 0 to 32768 [ 253.181338][ T4173] usb 2-1: USB disconnect, device number 12 [ 253.275552][T11103] loop0: detected capacity change from 0 to 256 [ 253.601811][T11123] device ip6gre1 entered promiscuous mode [ 253.682072][T11127] netlink: 20 bytes leftover after parsing attributes in process `syz.0.3185'. [ 253.732736][T11131] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3186'. [ 253.857726][T11135] x_tables: duplicate underflow at hook 1 [ 254.033028][T11148] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3194'. [ 254.147233][ T4242] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 254.382391][T11160] loop3: detected capacity change from 0 to 4096 [ 254.397193][ T4242] usb 1-1: Using ep0 maxpacket: 32 [ 254.450947][T11160] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 254.594602][T11160] ntfs3: loop3: failed to convert "c46c" to cp874 [ 254.717427][ T4242] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 254.737613][ T4242] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 254.767183][ T4242] usb 1-1: Product: syz [ 254.771456][ T4242] usb 1-1: Manufacturer: syz [ 254.782315][ T4242] usb 1-1: SerialNumber: syz [ 254.818742][ T4242] usb 1-1: config 0 descriptor?? [ 254.998315][ T4173] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 255.033196][T11175] device geneve3 entered promiscuous mode [ 255.048847][T11161] loop4: detected capacity change from 0 to 32768 [ 255.095606][T11161] ea_get: extended attribute size too large: 2617245744 > INT_MAX [ 255.181470][T11167] loop1: detected capacity change from 0 to 32768 [ 255.266243][T11181] loop2: detected capacity change from 0 to 256 [ 255.327706][ T4242] airspy 1-1:0.0: usb_control_msg() failed -71 request 0a [ 255.334905][ T4242] airspy 1-1:0.0: Could not detect board [ 255.369119][ T4242] airspy: probe of 1-1:0.0 failed with error -71 [ 255.369904][ T4173] usb 4-1: config 0 has no interfaces? [ 255.406339][ T4242] usb 1-1: USB disconnect, device number 17 [ 255.587525][ T4173] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 255.599769][T11185] loop4: detected capacity change from 0 to 1764 [ 255.617172][ T4173] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 255.634663][ T4173] usb 4-1: Product: syz [ 255.645067][T11187] loop2: detected capacity change from 0 to 164 [ 255.645998][ T4173] usb 4-1: Manufacturer: syz [ 255.667858][ T4173] usb 4-1: SerialNumber: syz [ 255.700968][ T4173] r8152-cfgselector 4-1: config 0 descriptor?? [ 255.904643][T11195] comedi comedi0: Minor 3 could not be opened [ 255.997761][ T4173] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 256.112858][T11209] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3224'. [ 256.130816][ T4266] usb 3-1: new full-speed USB device number 16 using dummy_hcd [ 256.201572][ T7] usb 4-1: USB disconnect, device number 16 [ 256.517495][ T4266] usb 3-1: config index 0 descriptor too short (expected 156, got 27) [ 256.525839][ T4266] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 256.558004][ T4266] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 256.558044][ T4266] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 256.558073][ T4266] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 256.558102][ T4266] usb 3-1: config 0 interface 0 has no altsetting 0 [ 256.592955][T11239] netlink: 'syz.1.3240': attribute type 1 has an invalid length. [ 256.592977][T11239] netlink: 'syz.1.3240': attribute type 2 has an invalid length. [ 256.592990][T11239] netlink: 'syz.1.3240': attribute type 2 has an invalid length. [ 256.593004][T11239] netlink: 'syz.1.3240': attribute type 2 has an invalid length. [ 256.593018][T11239] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3240'. [ 256.597441][ T4242] usb 1-1: new low-speed USB device number 18 using dummy_hcd [ 256.649227][T11242] x_tables: unsorted entry at hook 2 [ 256.705644][T11244] netlink: 292 bytes leftover after parsing attributes in process `syz.1.3242'. [ 256.722312][ T4266] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 256.753724][ T4266] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 256.753761][ T4266] usb 3-1: Product: syz [ 256.753778][ T4266] usb 3-1: Manufacturer: syz [ 256.753794][ T4266] usb 3-1: SerialNumber: syz [ 256.756287][ T4266] usb 3-1: config 0 descriptor?? [ 256.768236][T11194] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 256.788910][ T4266] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 256.790185][ T4266] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 256.875503][T11248] vim2m vim2m.0: Fourcc format (0x42474752) invalid. [ 257.031412][ T7] usb 3-1: USB disconnect, device number 16 [ 257.057353][ T4242] usb 1-1: unable to get BOS descriptor or descriptor too short [ 257.067206][ T7] ldusb 3-1:0.0: LD USB Device #0 now disconnected [ 257.137391][ T4242] usb 1-1: config 64 has an invalid interface number: 227 but max is 0 [ 257.171070][ T4242] usb 1-1: config 64 has no interface number 0 [ 257.197388][ T4242] usb 1-1: config 64 interface 227 altsetting 9 endpoint 0x4 is Bulk; changing to Interrupt [ 257.228247][ T4242] usb 1-1: config 64 interface 227 altsetting 9 endpoint 0xC has an invalid bInterval 226, changing to 4 [ 257.273686][ T4242] usb 1-1: config 64 interface 227 altsetting 9 endpoint 0xC has invalid maxpacket 512, setting to 0 [ 257.303475][ T4242] usb 1-1: config 64 interface 227 has no altsetting 0 [ 257.459229][T11277] xt_ipcomp: unknown flags 12 [ 257.634395][ T4242] usb 1-1: string descriptor 0 read error: -22 [ 257.648291][ T4242] usb 1-1: New USB device found, idVendor=04e8, idProduct=ff30, bcdDevice=cc.bf [ 257.673938][ T4242] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 257.717779][T11219] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 257.739305][ T4242] imon_raw 1-1:64.227: IR endpoint missing [ 257.906139][T11296] vim2m vim2m.0: Fourcc format (0x56595559) invalid. [ 257.977548][ T4266] usb 1-1: USB disconnect, device number 18 [ 258.086475][T11269] loop1: detected capacity change from 0 to 40427 [ 258.211330][T11269] F2FS-fs (loop1): invalid crc value [ 258.249539][T11269] F2FS-fs (loop1): Found nat_bits in checkpoint [ 258.351558][T11310] loop2: detected capacity change from 0 to 4096 [ 258.402563][T11269] F2FS-fs (loop1): Start checkpoint disabled! [ 258.414690][T11269] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 258.526251][T11310] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 258.574526][T11310] ntfs3: loop2: Failed to load $Extend. [ 258.915143][T11340] cgroup: none used incorrectly [ 259.565594][T11360] loop1: detected capacity change from 0 to 8192 [ 259.653596][T11377] loop2: detected capacity change from 0 to 16 [ 259.711358][T11377] erofs: (device loop2): mounted with root inode @ nid 36. [ 259.734042][T11360] FAT-fs (loop1): error, invalid access to FAT (entry 0x0000ff00) [ 259.770532][T11377] erofs: (device loop2): z_erofs_readahead: readahead error at page 2 @ nid 89 [ 259.771813][T11360] FAT-fs (loop1): Filesystem has been set read-only [ 259.827310][T11377] erofs: (device loop2): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 89 [ 259.881088][T11377] erofs: (device loop2): z_erofs_readahead: readahead error at page 1 @ nid 89 [ 259.911219][T11377] erofs: (device loop2): z_erofs_extent_lookback: invalid lookback distance 0 @ nid 89 [ 259.957728][T11377] erofs: (device loop2): z_erofs_readpage: failed to read, err [-117] [ 259.986631][ T26] audit: type=1800 audit(1757612344.450:12): pid=11377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3307" name="file3" dev="loop2" ino=89 res=0 errno=0 [ 260.081818][T11343] loop0: detected capacity change from 0 to 32768 [ 260.224684][T11343] XFS (loop0): Mounting V5 Filesystem [ 260.335730][T11404] loop3: detected capacity change from 0 to 1024 [ 260.413342][T11343] XFS (loop0): Ending clean mount [ 260.613780][T11414] loop4: detected capacity change from 0 to 256 [ 260.780214][ T4189] XFS (loop0): Unmounting Filesystem [ 260.856610][T11414] autofs4:pid:11414:autofs_fill_super: called with bogus options [ 261.123409][ T4227] hfsplus: b-tree write err: -5, ino 4 [ 261.171889][ T1432] ieee802154 phy0 wpan0: encryption failed: -22 [ 261.178590][ T1432] ieee802154 phy1 wpan1: encryption failed: -22 [ 261.282250][T11427] loop4: detected capacity change from 0 to 16 [ 261.301690][T11427] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 261.360034][T11427] erofs: DAX unsupported by block device. Turning off DAX. [ 261.387380][T11427] erofs: (device loop4): mounted with root inode @ nid 36. [ 261.482610][T11434] loop1: detected capacity change from 0 to 64 [ 261.604012][T11443] netlink: 3 bytes leftover after parsing attributes in process `syz.2.3336'. [ 261.615785][T11440] [U]  [ 261.654248][T11443] 0X: renamed from caif0 [ 261.719779][T11443] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 261.803709][T11451] netlink: 'syz.1.3338': attribute type 12 has an invalid length. [ 261.917487][T11458] device bond0 entered promiscuous mode [ 261.939662][T11458] device bond_slave_0 entered promiscuous mode [ 261.967209][T11458] device bond_slave_1 entered promiscuous mode [ 262.142012][T11469] IPv6: sit1: Disabled Multicast RS [ 262.501771][T11491] loop3: detected capacity change from 0 to 128 [ 262.616115][T11491] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 262.667376][T11491] hpfs: filesystem error: improperly stopped [ 262.683809][T11491] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 262.718467][T11491] hpfs: You really don't want any checks? You are crazy... [ 262.726296][T11491] hpfs: hpfs_map_sector(): read error [ 262.788043][T11491] hpfs: code page support is disabled [ 262.801766][T11491] hpfs: hpfs_map_4sectors(): unaligned read [ 262.823709][T11491] hpfs: hpfs_map_4sectors(): unaligned read [ 262.841790][T11491] hpfs: filesystem error: unable to find root dir [ 262.919042][T11517] usb usb9: usbfs: process 11517 (syz.2.3372) did not claim interface 0 before use [ 263.386753][T11543] loop2: detected capacity change from 0 to 4096 [ 263.485330][T11543] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 263.577298][T11543] ntfs: volume version 3.1. [ 263.583878][T11562] netlink: 'syz.4.3394': attribute type 3 has an invalid length. [ 263.617789][T11562] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3394'. [ 263.932571][T11580] loop3: detected capacity change from 0 to 1764 [ 264.027015][T11550] loop1: detected capacity change from 0 to 32768 [ 264.130764][T11550] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 264.159045][T11584] loop2: detected capacity change from 0 to 4096 [ 264.204199][T11550] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 264.255177][T11584] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 264.310334][T11589] loop4: detected capacity change from 0 to 4096 [ 264.485561][T11584] ntfs3: Cannot use different iocharset when remounting! [ 264.708884][ T4183] ocfs2: Unmounting device (7,1) on (node local) [ 264.967390][T11616] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3420'. [ 265.084801][T11622] usb usb9: usbfs: process 11622 (syz.4.3423) did not claim interface 0 before use [ 265.232820][T11632] loop1: detected capacity change from 0 to 128 [ 265.334166][T11632] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 265.378370][T11632] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 265.500928][T11646] loop2: detected capacity change from 0 to 256 [ 265.595023][T11648] tc_dump_action: action bad kind [ 265.849749][T11656] loop3: detected capacity change from 0 to 1024 [ 265.892112][T11664] loop4: detected capacity change from 0 to 1024 [ 265.955222][T11663] loop1: detected capacity change from 0 to 4096 [ 265.981840][T11664] EXT4-fs (loop4): Ignoring removed oldalloc option [ 266.001487][T11656] hfsplus: bad catalog entry used to create inode [ 266.015354][T11666] loop0: detected capacity change from 0 to 1024 [ 266.017864][T11664] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 266.057236][T11663] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 266.134418][T11664] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,auto_da_alloc=0x0000000000000002,barrier=0x0000000000000002,usrquota,data_err=ignore,mb_optimize_scan=0x0000000000000001,oldalloc,barrier=0x0000000000000000,noload,user_xattr,abort,dioread_nolock,,errors=continue. Quota mode: writeback. [ 266.140347][ T154] hfsplus: b-tree write err: -5, ino 4 [ 266.163405][ C0] vkms_vblank_simulate: vblank timer overrun [ 266.267813][T11664] EXT4-fs error (device loop4): ext4_remount:6035: comm syz.4.3442: Abort forced by user [ 266.362713][T11674] netlink: 'syz.3.3448': attribute type 4 has an invalid length. [ 266.398440][T11664] EXT4-fs (loop4): re-mounted. Opts: (null). Quota mode: writeback. [ 266.427914][T11674] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.3448'. [ 266.651093][T11688] loop1: detected capacity change from 0 to 64 [ 267.075730][ T26] audit: type=1326 audit(1757612351.540:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11710 comm="syz.3.3468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f39fe1ba9 code=0x7ffc0000 [ 267.098024][ C0] vkms_vblank_simulate: vblank timer overrun [ 267.179610][ T26] audit: type=1326 audit(1757612351.560:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11710 comm="syz.3.3468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5f39fe1ba9 code=0x7ffc0000 [ 267.287050][ T26] audit: type=1326 audit(1757612351.560:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11710 comm="syz.3.3468" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5f39fe1ba9 code=0x7ffc0000 [ 267.482800][T11734] loop2: detected capacity change from 0 to 256 [ 267.571734][T11734] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 267.915278][T11755] netlink: 'syz.2.3486': attribute type 21 has an invalid length. [ 267.995466][T11697] loop4: detected capacity change from 0 to 32768 [ 268.045150][T11761] loop1: detected capacity change from 0 to 1024 [ 268.134144][T11761] EXT4-fs (loop1): #clusters per group too big: 24576 [ 268.200163][T11697] XFS (loop4): Mounting V5 Filesystem [ 268.365677][T11759] loop0: detected capacity change from 0 to 40427 [ 268.429002][T11759] F2FS-fs (loop0): invalid crc value [ 268.434487][T11759] F2FS-fs (loop0): Ignore s_resuid=60929, s_resgid=0 w/o reserve_root [ 268.488544][T11759] F2FS-fs (loop0): Found nat_bits in checkpoint [ 268.510996][T11697] XFS (loop4): Ending clean mount [ 268.626068][ T4195] XFS (loop4): Unmounting Filesystem [ 268.643955][T11759] F2FS-fs (loop0): Cannot turn on quotas: -2 on 0 [ 268.717225][T11759] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 269.299440][T11785] loop3: detected capacity change from 0 to 32768 [ 269.407497][T11805] loop4: detected capacity change from 0 to 128 [ 269.448478][T11785] JBD2: Ignoring recovery information on journal [ 269.523234][T11805] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 269.537190][T11794] loop2: detected capacity change from 0 to 32768 [ 269.636343][ T26] audit: type=1800 audit(1757612354.100:16): pid=11805 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.3500" name="file2" dev="loop4" ino=1048643 res=0 errno=0 [ 269.664507][T11785] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 269.682698][T11794] XFS (loop2): Mounting V5 Filesystem [ 269.994050][ T4182] ocfs2: Unmounting device (7,3) on (node local) [ 270.032517][T11794] XFS (loop2): Ending clean mount [ 270.093263][T11840] loop0: detected capacity change from 0 to 64 [ 270.108543][ T4187] XFS (loop2): Unmounting Filesystem [ 270.437526][T11850] netlink: 152 bytes leftover after parsing attributes in process `syz.0.3523'. [ 270.612625][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.662684][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.696965][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.716498][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.778753][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.807395][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.841250][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.882231][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.920210][T11861] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3529'. [ 270.948235][T11876] netlink: 'syz.1.3536': attribute type 2 has an invalid length. [ 270.956118][T11876] netlink: 'syz.1.3536': attribute type 8 has an invalid length. [ 271.183444][T11894] affs: No valid root block on device nbd4 [ 271.387525][T11904] loop4: detected capacity change from 0 to 512 [ 271.444265][T11904] EXT4-fs (loop4): orphan cleanup on readonly fs [ 271.460965][T11904] Quota error (device loop4): v2_read_file_info: Free block number too big (0 >= 0). [ 271.477550][T11904] EXT4-fs warning (device loop4): ext4_enable_quotas:6461: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 271.518317][T11904] EXT4-fs (loop4): Cannot turn on quotas: error -117 [ 271.548766][T11904] EXT4-fs error (device loop4): ext4_ext_check_inode:501: inode #13: comm syz.4.3550: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 271.583770][T11904] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.3550: couldn't read orphan inode 13 (err -117) [ 271.637611][T11904] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 271.893596][T11926] loop2: detected capacity change from 0 to 4096 [ 272.006145][T11926] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 272.115119][T11926] ntfs3: loop2: failed to convert "c46c" to cp852 [ 272.563634][T11963] cifs: Unknown parameter 'no'aN[Gzob,er;%j [ 272.563634][T11963] z,@qJ#"h/.W1ȱnNC"C׈E)8+' [ 272.837917][T11935] loop4: detected capacity change from 0 to 32768 [ 272.986391][T11935] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 273.088692][T11935] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 273.249587][ T4195] ocfs2: Unmounting device (7,4) on (node local) [ 273.468433][T12013] loop4: detected capacity change from 0 to 2364 [ 273.827362][ T4228] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 273.963025][T12039] loop0: detected capacity change from 0 to 4096 [ 274.076350][T12039] ntfs: (device loop0): check_mft_mirror(): Incomplete multi sector transfer detected in mft record 2. [ 274.137281][ T4228] usb 5-1: Using ep0 maxpacket: 32 [ 274.157486][T12039] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 274.266287][T12039] ntfs: volume version 3.1. [ 274.267391][ T4228] usb 5-1: config 0 has an invalid interface number: 250 but max is 1 [ 274.287592][T12039] ntfs: (device loop0): map_mft_record_page(): Mft record 0x2 is corrupt. Run chkdsk. [ 274.315888][ T4228] usb 5-1: config 0 has no interface number 1 [ 274.337308][ T4228] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 274.344131][T12039] ntfs: (device loop0): map_mft_record(): Failed with error code 5. [ 274.379402][T12039] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x2 as bad. Run chkdsk. [ 274.431338][T12039] ntfs: (device loop0): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 274.530020][T12067] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 274.557464][ T4228] usb 5-1: New USB device found, idVendor=0408, idProduct=3090, bcdDevice=a6.3f [ 274.570754][ T4228] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 274.577846][T12039] ntfs: (device loop0): ntfs_read_locked_inode(): Index block size (0) < NTFS_BLOCK_SIZE (512) is not supported. Sorry. [ 274.584069][ T4228] usb 5-1: Product: syz [ 274.617304][T12039] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -95. Marking corrupt inode 0x40 as bad. Run chkdsk. [ 274.621328][ T4228] usb 5-1: Manufacturer: syz [ 274.663135][ T4228] usb 5-1: SerialNumber: syz [ 274.681390][T12067] device batadv_slave_0 entered promiscuous mode [ 274.702499][ T4228] usb 5-1: config 0 descriptor?? [ 274.729100][T12067] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 274.869395][T12077] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 274.997474][ T4228] usb 5-1: Found UVC 0.00 device syz (0408:3090) [ 275.004345][ T4228] usb 5-1: No valid video chain found. [ 275.042597][ T4228] usb 5-1: USB disconnect, device number 13 [ 275.230987][T12061] loop2: detected capacity change from 0 to 32768 [ 275.288668][T12061] (syz.2.3625,12061,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 275.310324][T12095] netlink: 'syz.0.3642': attribute type 49 has an invalid length. [ 275.359601][T12061] (syz.2.3625,12061,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 275.513452][T12061] JBD2: Ignoring recovery information on journal [ 275.690229][T12061] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 275.945957][ T4187] ocfs2: Unmounting device (7,2) on (node local) [ 275.987375][T12132] No such timeout policy "syz1" [ 276.127475][T12139] loop4: detected capacity change from 0 to 128 [ 276.254747][T12139] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 276.277564][T12139] ext4 filesystem being mounted at /693/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 276.325836][T12155] __nla_validate_parse: 53 callbacks suppressed [ 276.325856][T12155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3661'. [ 276.345469][T12139] EXT4-fs warning (device loop4): verify_group_input:147: Cannot add at group 1029 (only 1 groups) [ 276.494635][T12163] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3673'. [ 276.548547][T12167] loop2: detected capacity change from 0 to 8 [ 276.644310][ T26] audit: type=1800 audit(1757612361.110:17): pid=12167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.3675" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 276.764082][T12166] loop0: detected capacity change from 0 to 4096 [ 277.317499][ T4235] usb 4-1: new full-speed USB device number 17 using dummy_hcd [ 277.350482][T12185] loop4: detected capacity change from 0 to 8192 [ 277.426257][T12193] loop2: detected capacity change from 0 to 4096 [ 277.470714][T12185] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 277.485196][T12185] REISERFS (device loop4): using ordered data mode [ 277.502045][T12185] reiserfs: using flush barriers [ 277.511781][T12185] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 277.648343][T12185] REISERFS (device loop4): checking transaction log (loop4) [ 277.694360][T12193] ntfs: volume version 3.1. [ 277.699420][ T4235] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 10 [ 277.731303][ T4235] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0 [ 277.946450][T12185] REISERFS (device loop4): Using tea hash to sort names [ 277.967664][ T4235] usb 4-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=33.f9 [ 277.970987][T12185] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2) [ 277.978894][T12210] device netdevsim0 entered promiscuous mode [ 278.004917][ T4235] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 278.028391][ T4235] usb 4-1: Product: syz [ 278.032629][ T4235] usb 4-1: Manufacturer: syz [ 278.056048][T12210] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3697'. [ 278.067362][T12185] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 278.092095][ T4235] usb 4-1: SerialNumber: syz [ 278.102907][T12210] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 278.133028][ T4235] usb 4-1: config 0 descriptor?? [ 278.185407][ T4235] input: KB Gear Tablet as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input12 [ 278.364260][T12222] loop0: detected capacity change from 0 to 164 [ 278.436220][ T4242] usb 4-1: USB disconnect, device number 17 [ 278.597417][T12230] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3707'. [ 278.767871][T12232] loop2: detected capacity change from 0 to 4096 [ 278.830288][T12232] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found [ 278.876741][T12232] UDF-fs: Scanning with blocksize 512 failed [ 278.939304][T12232] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 278.961763][T12245] netlink: 'syz.0.3715': attribute type 16 has an invalid length. [ 279.054387][T12232] UDF-fs: error (device loop2): udf_fiiter_advance_blk: extent after position 0 not allocated in directory (ino 1328) [ 279.070255][T12250] binder: 12247:12250 ioctl c00c6211 200000001940 returned -22 [ 279.117344][T12232] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1328) has too big (2088) entry at pos 0 [ 279.234246][T12257] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3720'. [ 279.434014][T12272] loop0: detected capacity change from 0 to 256 [ 279.470955][T12274] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3729'. [ 279.496931][T12274] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3729'. [ 279.567348][T12272] FAT-fs (loop0): Directory bread(block 64) failed [ 279.603784][T12272] FAT-fs (loop0): Directory bread(block 65) failed [ 279.632234][T12282] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3733'. [ 279.633625][T12272] FAT-fs (loop0): Directory bread(block 66) failed [ 279.669676][T12272] FAT-fs (loop0): Directory bread(block 67) failed [ 279.686851][T12272] FAT-fs (loop0): Directory bread(block 68) failed [ 279.696662][T12272] FAT-fs (loop0): Directory bread(block 69) failed [ 279.717061][T12272] FAT-fs (loop0): Directory bread(block 70) failed [ 279.726174][T12272] FAT-fs (loop0): Directory bread(block 71) failed [ 279.753584][T12272] FAT-fs (loop0): Directory bread(block 72) failed [ 279.786513][T12272] FAT-fs (loop0): Directory bread(block 73) failed [ 280.135594][T12316] netlink: 'syz.0.3748': attribute type 1 has an invalid length. [ 280.135747][T12317] loop3: detected capacity change from 0 to 164 [ 280.162170][T12304] loop1: detected capacity change from 0 to 4096 [ 280.205705][T12320] loop4: detected capacity change from 0 to 512 [ 280.429867][T12320] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback. [ 280.467339][T12320] ext4 filesystem being mounted at /709/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 280.520267][T12339] libceph: resolve '. [ 280.520267][T12339] #)|.fǝa2sow?'%ЏKAqfCzeSb3L)HyoǤYMhE$ [ 280.520267][T12339] ' (ret=-3): failed [ 280.580780][T12344] mmap: syz.3.3763 (12344) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. [ 280.596263][T12346] netlink: 40 bytes leftover after parsing attributes in process `syz.1.3759'. [ 280.895584][T12363] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3768'. [ 280.916483][T12361] loop1: detected capacity change from 0 to 2048 [ 281.008207][T12361] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 281.065721][T12369] fuse: blksize only supported for fuseblk [ 281.239655][T12375] usb usb8: usbfs: process 12375 (syz.4.3778) did not claim interface 0 before use [ 281.521088][T12390] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3784'. [ 282.007605][T12404] cifs: Unknown parameter 'no'aN[Gzob,er;%j [ 282.007605][T12404] z,@qJ#"h/.W1ȱnNC"C<+`#k' [ 282.150246][T12401] loop1: detected capacity change from 0 to 4096 [ 282.302116][T12418] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 282.327815][T12401] NILFS error (device loop1): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 282.374458][T12401] Remounting filesystem read-only [ 282.680953][T12424] loop4: detected capacity change from 0 to 4096 [ 283.259529][T12408] loop0: detected capacity change from 0 to 32768 [ 283.356147][T12449] afs: Unknown parameter 'fowner' [ 283.421113][T12452] ALSA: mixer_oss: invalid OSS volume 'u' [ 283.429157][T12408] XFS (loop0): Mounting V5 Filesystem [ 283.604817][T12431] loop1: detected capacity change from 0 to 32768 [ 283.658416][T12408] XFS (loop0): Ending clean mount [ 283.685477][T12408] XFS (loop0): Quotacheck needed: Please wait. [ 283.725008][T12468] loop2: detected capacity change from 0 to 256 [ 283.761572][T12408] XFS (loop0): Quotacheck: Done. [ 283.775297][T12408] XFS (loop0): Unmounting Filesystem [ 284.012988][T12468] FAT-fs (loop2): Directory bread(block 64) failed [ 284.013031][T12468] FAT-fs (loop2): Directory bread(block 65) failed [ 284.013116][T12468] FAT-fs (loop2): Directory bread(block 66) failed [ 284.013151][T12468] FAT-fs (loop2): Directory bread(block 67) failed [ 284.013223][T12468] FAT-fs (loop2): Directory bread(block 68) failed [ 284.013255][T12468] FAT-fs (loop2): Directory bread(block 69) failed [ 284.013321][T12468] FAT-fs (loop2): Directory bread(block 70) failed [ 284.013353][T12468] FAT-fs (loop2): Directory bread(block 71) failed [ 284.013419][T12468] FAT-fs (loop2): Directory bread(block 72) failed [ 284.013450][T12468] FAT-fs (loop2): Directory bread(block 73) failed [ 284.577936][T12481] loop3: detected capacity change from 0 to 4096 [ 284.589655][T12485] kAFS: unable to lookup cell '' [ 284.645682][T12489] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3825'. [ 284.658600][T12481] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 284.743829][T12481] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 284.781325][T12481] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 284.841252][T12481] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 284.919254][T12481] ntfs: volume version 3.1. [ 285.064590][ T156] ntfs: (device loop3): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry. [ 285.158196][ T156] ntfs: (device loop3): ntfs_write_block(): Writing beyond initialized size is not supported yet. Sorry. [ 285.195984][ T4182] ntfs: (device loop3): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 285.464796][T12520] kAFS: unable to lookup cell '/,' [ 285.602047][T12528] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3844'. [ 285.617274][T12526] loop4: detected capacity change from 0 to 1024 [ 285.632240][T12528] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3844'. [ 286.298696][T12564] loop4: detected capacity change from 0 to 8 [ 286.383309][T12567] loop3: detected capacity change from 0 to 164 [ 286.457030][T12564] SQUASHFS error: Failed to read block 0x738: -5 [ 286.464115][T12564] SQUASHFS error: Unable to read metadata cache entry [736] [ 286.494876][T12572] i2c i2c-0: Invalid block write size 253 [ 286.575585][T12567] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 287.006852][T12587] mip6: mip6_rthdr_init_state: state's mode is not 2: 0 [ 287.153122][T12599] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 287.199581][T12602] netlink: 'syz.1.3881': attribute type 10 has an invalid length. [ 287.259627][T12602] device veth1_macvtap left promiscuous mode [ 287.337682][T12602] bridge0: port 3(macsec0) entered blocking state [ 287.362094][T12602] bridge0: port 3(macsec0) entered disabled state [ 287.385983][T12602] device macsec0 entered promiscuous mode [ 287.726004][T12614] loop2: detected capacity change from 0 to 4096 [ 287.886823][T12614] EXT4-fs (loop2): Test dummy encryption mode enabled [ 287.952576][T12622] loop4: detected capacity change from 0 to 4096 [ 288.049631][T12622] ntfs: (device loop4): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 288.107320][T12614] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 288.158795][T12622] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute. deltaxcn = 0x1, max_cluster = 0x0 [ 288.267168][T12622] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 288.279319][T12614] System zones: 0-5 [ 288.294614][T12614] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000004,acl,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback. [ 288.340384][T12622] ntfs: volume version 3.1. [ 288.434727][T12609] loop3: detected capacity change from 0 to 32768 [ 288.609422][T12651] RDS: rds_bind could not find a transport for ae0c:91e3:ccfb:11d2:0:5efe:150.125.240.108, load rds_tcp or rds_rdma? [ 288.670786][T12609] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 288.915501][ T4182] ocfs2: Unmounting device (7,3) on (node local) [ 288.993178][T12662] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3910'. [ 289.497430][T12682] xt_TPROXY: Can be used only with -p tcp or -p udp [ 289.542692][T12688] loop0: detected capacity change from 0 to 1024 [ 289.601118][T12694] netlink: 24 bytes leftover after parsing attributes in process `syz.3.3923'. [ 289.721959][T12688] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,data_err=ignore,,errors=continue. Quota mode: writeback. [ 289.837328][ T4235] usb 2-1: new full-speed USB device number 13 using dummy_hcd [ 290.197694][ T4235] usb 2-1: config 0 has an invalid interface number: 51 but max is 0 [ 290.206176][ T4235] usb 2-1: config 0 has no interface number 0 [ 290.240784][ T4235] usb 2-1: config 0 interface 51 has no altsetting 0 [ 290.283242][T12712] loop4: detected capacity change from 0 to 4096 [ 290.373805][T12712] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 290.417481][ T4235] usb 2-1: New USB device found, idVendor=093a, idProduct=050f, bcdDevice=d9.7a [ 290.458027][ T4235] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 290.466078][ T4235] usb 2-1: Product: syz [ 290.483704][T12712] ntfs3: loop4: ntfs_set_state r=3 failed, -22. [ 290.512149][ T4235] usb 2-1: Manufacturer: syz [ 290.538546][ T4235] usb 2-1: SerialNumber: syz [ 290.564143][ T4235] usb 2-1: config 0 descriptor?? [ 290.610981][ T4278] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22. [ 290.619776][ T4235] gspca_main: mars-2.14.0 probing 093a:050f [ 290.642309][ T4195] ntfs3: loop4: ntfs_set_state r=3 failed, -22. [ 290.659613][ T4195] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 290.705258][ T4195] ntfs3: loop4: ntfs_set_state r=3 failed, -22. [ 290.775589][ T9] ntfs3: loop4: ntfs3_write_inode r=3 failed, -22. [ 290.795729][ T4195] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 290.813485][ T4195] ntfs3: loop4: ntfs_evict_inode r=3 failed, -22. [ 290.883512][ T4235] usb 2-1: USB disconnect, device number 13 [ 290.947001][T12745] netlink: 'syz.3.3948': attribute type 1 has an invalid length. [ 290.977173][T12745] netlink: 220 bytes leftover after parsing attributes in process `syz.3.3948'. [ 291.482044][T12772] netlink: 'syz.1.3962': attribute type 4 has an invalid length. [ 291.858722][T12794] loop4: detected capacity change from 0 to 1764 [ 291.945737][T12794] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 292.011065][T12790] [ 292.013461][T12790] ====================================================== [ 292.020498][T12790] WARNING: possible circular locking dependency detected [ 292.027546][T12790] syzkaller #0 Not tainted [ 292.031977][T12790] ------------------------------------------------------ [ 292.039017][T12790] syz.2.3969/12790 is trying to acquire lock: [ 292.045104][T12790] ffff8880780b8b98 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}, at: __flush_work+0xc1/0x1b0 [ 292.055771][T12790] [ 292.055771][T12790] but task is already holding lock: [ 292.063149][T12790] ffff8880780b8ff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x5f/0x1030 [ 292.072516][T12790] [ 292.072516][T12790] which lock already depends on the new lock. [ 292.072516][T12790] [ 292.082939][T12790] [ 292.082939][T12790] the existing dependency chain (in reverse order) is: [ 292.091972][T12790] [ 292.091972][T12790] -> #3 (&hdev->req_lock){+.+.}-{3:3}: [ 292.100470][T12790] __mutex_lock_common+0x1eb/0x2390 [ 292.106229][T12790] mutex_lock_nested+0x17/0x20 [ 292.111551][T12790] hci_dev_do_close+0x5f/0x1030 [ 292.117046][T12790] hci_rfkill_set_block+0x10a/0x190 [ 292.122845][T12790] rfkill_set_block+0x1c6/0x420 [ 292.128249][T12790] rfkill_fop_write+0x458/0x560 [ 292.133741][T12790] vfs_write+0x300/0xd00 [ 292.138542][T12790] ksys_write+0x14d/0x250 [ 292.143415][T12790] do_syscall_64+0x4c/0xa0 [ 292.148384][T12790] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 292.154830][T12790] [ 292.154830][T12790] -> #2 (rfkill_global_mutex){+.+.}-{3:3}: [ 292.162854][T12790] __mutex_lock_common+0x1eb/0x2390 [ 292.168610][T12790] mutex_lock_nested+0x17/0x20 [ 292.173929][T12790] rfkill_register+0x33/0x8a0 [ 292.179202][T12790] hci_register_dev+0x452/0x970 [ 292.184613][T12790] vhci_create_device+0x32c/0x5c0 [ 292.190194][T12790] vhci_write+0x391/0x450 [ 292.195078][T12790] vfs_write+0x712/0xd00 [ 292.200228][T12790] ksys_write+0x14d/0x250 [ 292.205115][T12790] do_syscall_64+0x4c/0xa0 [ 292.210096][T12790] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 292.216547][T12790] [ 292.216547][T12790] -> #1 (&data->open_mutex){+.+.}-{3:3}: [ 292.224549][T12790] __mutex_lock_common+0x1eb/0x2390 [ 292.230405][T12790] mutex_lock_nested+0x17/0x20 [ 292.235823][T12790] vhci_send_frame+0x88/0x100 [ 292.241050][T12790] hci_send_frame+0x1a9/0x2e0 [ 292.246270][T12790] hci_tx_work+0x9f9/0x1710 [ 292.251470][T12790] process_one_work+0x863/0x1000 [ 292.256978][T12790] worker_thread+0xaa8/0x12a0 [ 292.262244][T12790] kthread+0x436/0x520 [ 292.266860][T12790] ret_from_fork+0x1f/0x30 [ 292.271830][T12790] [ 292.271830][T12790] -> #0 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 292.281074][T12790] __lock_acquire+0x2c33/0x7c60 [ 292.286486][T12790] lock_acquire+0x197/0x3f0 [ 292.291545][T12790] __flush_work+0xdd/0x1b0 [ 292.296501][T12790] hci_dev_do_close+0x1e7/0x1030 [ 292.301975][T12790] hci_rfkill_set_block+0x10a/0x190 [ 292.307730][T12790] rfkill_set_block+0x1c6/0x420 [ 292.313177][T12790] rfkill_fop_write+0x458/0x560 [ 292.318575][T12790] vfs_write+0x300/0xd00 [ 292.323400][T12790] ksys_write+0x14d/0x250 [ 292.328269][T12790] do_syscall_64+0x4c/0xa0 [ 292.333240][T12790] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 292.339684][T12790] [ 292.339684][T12790] other info that might help us debug this: [ 292.339684][T12790] [ 292.349932][T12790] Chain exists of: [ 292.349932][T12790] (work_completion)(&hdev->tx_work) --> rfkill_global_mutex --> &hdev->req_lock [ 292.349932][T12790] [ 292.364916][T12790] Possible unsafe locking scenario: [ 292.364916][T12790] [ 292.372391][T12790] CPU0 CPU1 [ 292.377774][T12790] ---- ---- [ 292.383157][T12790] lock(&hdev->req_lock); [ 292.387610][T12790] lock(rfkill_global_mutex); [ 292.394976][T12790] lock(&hdev->req_lock); [ 292.402032][T12790] lock((work_completion)(&hdev->tx_work)); [ 292.408039][T12790] [ 292.408039][T12790] *** DEADLOCK *** [ 292.408039][T12790] [ 292.416202][T12790] 2 locks held by syz.2.3969/12790: [ 292.421417][T12790] #0: ffffffff8d4c0468 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0x19e/0x560 [ 292.431554][T12790] #1: ffff8880780b8ff0 (&hdev->req_lock){+.+.}-{3:3}, at: hci_dev_do_close+0x5f/0x1030 [ 292.441439][T12790] [ 292.441439][T12790] stack backtrace: [ 292.447349][T12790] CPU: 0 PID: 12790 Comm: syz.2.3969 Not tainted syzkaller #0 [ 292.454839][T12790] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 292.464931][T12790] Call Trace: [ 292.468238][T12790] [ 292.471186][T12790] dump_stack_lvl+0x168/0x230 [ 292.475885][T12790] ? load_image+0x3b0/0x3b0 [ 292.480413][T12790] ? show_regs_print_info+0x20/0x20 [ 292.485644][T12790] ? print_circular_bug+0x12b/0x1a0 [ 292.490874][T12790] check_noncircular+0x274/0x310 [ 292.495838][T12790] ? add_chain_block+0x940/0x940 [ 292.500802][T12790] ? lockdep_lock+0xdc/0x1e0 [ 292.505435][T12790] ? mark_lock+0x94/0x320 [ 292.509799][T12790] __lock_acquire+0x2c33/0x7c60 [ 292.514687][T12790] ? lockdep_unlock+0x134/0x2d0 [ 292.519578][T12790] ? lockdep_lock+0x1e0/0x1e0 [ 292.524286][T12790] ? mark_lock+0x94/0x320 [ 292.528648][T12790] ? verify_lock_unused+0x140/0x140 [ 292.533880][T12790] ? __lock_acquire+0x12d9/0x7c60 [ 292.538944][T12790] lock_acquire+0x197/0x3f0 [ 292.543470][T12790] ? __flush_work+0xc1/0x1b0 [ 292.548087][T12790] ? __mutex_trylock_common+0x14f/0x250 [ 292.553681][T12790] ? read_lock_is_recursive+0x10/0x10 [ 292.559086][T12790] ? lock_chain_count+0x20/0x20 [ 292.564090][T12790] ? mark_lock+0x94/0x320 [ 292.564128][T12790] __flush_work+0xdd/0x1b0 [ 292.564149][T12790] ? __flush_work+0xc1/0x1b0 [ 292.564168][T12790] ? flush_work+0x20/0x20 [ 292.564189][T12790] ? hci_leds_update_powered+0x148/0x160 [ 292.564216][T12790] ? rcu_lock_release+0x5/0x20 [ 292.564240][T12790] ? __lock_acquire+0x7c60/0x7c60 [ 292.564269][T12790] hci_dev_do_close+0x1e7/0x1030 [ 292.564291][T12790] ? _raw_spin_unlock+0x40/0x40 [ 292.564315][T12790] hci_rfkill_set_block+0x10a/0x190 [ 292.564340][T12790] ? rcu_lock_release+0x20/0x20 [ 292.564373][T12790] rfkill_set_block+0x1c6/0x420 [ 292.564398][T12790] rfkill_fop_write+0x458/0x560 [ 292.564421][T12790] ? rfkill_fop_read+0x4b0/0x4b0 [ 292.564443][T12790] ? common_file_perm+0xc0/0x1c0 [ 292.564465][T12790] ? fsnotify_perm+0x5d/0x560 [ 292.564487][T12790] ? security_file_permission+0x75/0xa0 [ 292.564508][T12790] ? rfkill_fop_read+0x4b0/0x4b0 [ 292.564530][T12790] vfs_write+0x300/0xd00 [ 292.564553][T12790] ? file_end_write+0x250/0x250 [ 292.564576][T12790] ? __fget_files+0x40f/0x480 [ 292.564599][T12790] ? __fdget_pos+0x1e2/0x370 [ 292.564616][T12790] ? ksys_write+0x71/0x250 [ 292.564635][T12790] ksys_write+0x14d/0x250 [ 292.564655][T12790] ? __ia32_sys_read+0x80/0x80 [ 292.564676][T12790] ? lockdep_hardirqs_on+0x94/0x140 [ 292.564700][T12790] do_syscall_64+0x4c/0xa0 [ 292.564717][T12790] ? clear_bhb_loop+0x30/0x80 [ 292.564736][T12790] ? clear_bhb_loop+0x30/0x80 [ 292.564756][T12790] entry_SYSCALL_64_after_hwframe+0x66/0xd0 [ 292.564789][T12790] RIP: 0033:0x7fc63eb86ba9 [ 292.564809][T12790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 292.564828][T12790] RSP: 002b:00007fc63cdee038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 292.564850][T12790] RAX: ffffffffffffffda RBX: 00007fc63edcdfa0 RCX: 00007fc63eb86ba9 [ 292.564866][T12790] RDX: 0000000000000008 RSI: 0000200000000080 RDI: 0000000000000003 [ 292.564878][T12790] RBP: 00007fc63ec09e19 R08: 0000000000000000 R09: 0000000000000000 [ 292.564891][T12790] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 292.564903][T12790] R13: 00007fc63edce038 R14: 00007fc63edcdfa0 R15: 00007ffed0bc38b8 [ 292.564926][T12790] [ 292.564983][ C0] vkms_vblank_simulate: vblank timer overrun [ 292.569490][T12819] usb usb8: usbfs: process 12819 (syz.0.3983) did not claim interface 0 before use