last executing test programs: 3.331805971s ago: executing program 0 (id=2523): r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2) ioctl$VIDIOC_G_EXT_CTRLS(r0, 0xc0205647, &(0x7f00000000c0)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f907, 0x0, '\x00', @value=0x2}}) 3.14935751s ago: executing program 0 (id=2526): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x16b601, 0x0) write$sequencer(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="9208e00d080101009207b00709000c00ff09"], 0x28) 2.902033634s ago: executing program 0 (id=2531): r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000180)='/sys/power/wakeup_count', 0x141a82, 0x4) write$FUSE_STATX(r0, &(0x7f0000000500)={0x130, 0x0, 0x0, {0x3, 0x4, 0x0, '\x00', {0x7ff, 0x668, 0x1, 0x2, 0x0, 0x0, 0xa000, '\x00', 0x7fffffff, 0x7, 0xfffffffffffffffa, 0x9a00000, {0x7ff, 0x6}, {0x1, 0x6e}, {0x6, 0x5}, {0x2, 0x10}, 0x336, 0x7fffffff, 0xf96a, 0x2}}}, 0x130) 2.681987155s ago: executing program 0 (id=2535): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000940), 0x100, 0x0) ioctl$TIOCGPTPEER(r0, 0x5441, 0x3) 2.470169916s ago: executing program 0 (id=2539): syz_mount_image$squashfs(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0)={[{}]}, 0x1, 0x232, &(0x7f0000000000)="$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") syz_usb_connect(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006325a640402000207265970000010902240001000000000904000002214c6a0009050702000000da000905"], 0x0) 2.060564947s ago: executing program 2 (id=2544): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="500000001000370400"/20, @ANYRES32=0x0, @ANYBLOB="8b04040000000000300012800b00010065727370616e000020000280040012000500090008000000050016000200000005001700a4"], 0x50}, 0x1, 0x0, 0x0, 0x800}, 0x40000) 1.916026101s ago: executing program 3 (id=2545): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TIOCSIG(r0, 0x40045436, 0x3) 1.868494226s ago: executing program 2 (id=2546): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xc, &(0x7f0000000780)=ANY=[@ANYBLOB="18000000040000000000000000000000850000007b00000018010000756c6c2500000000002020207b1af8ff00000000bfa10000000000000701000002ffffffb702000008000000b703000007030000850000001700000095"], &(0x7f0000000040)='GPL\x00', 0xc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="c1188e19b95d02ff4284860186dd", 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.864906146s ago: executing program 1 (id=2547): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) prctl$PR_GET_NAME(0x10, &(0x7f0000000140)=""/11) 1.769703425s ago: executing program 3 (id=2548): r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2) ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x10000}) 1.678870404s ago: executing program 1 (id=2549): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_ringparam={0x27}}) 1.678146904s ago: executing program 2 (id=2550): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000140)={0x0, @in6={{0xa, 0x4e22, 0x454, @mcast1, 0x4}}, 0x7c24, 0x7f}, 0x90) 1.583705893s ago: executing program 2 (id=2551): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x38, 0x1403, 0x1, 0x0, 0x25dfdbfb, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'vxcan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x200c08a5}, 0x8000) 1.583623063s ago: executing program 3 (id=2552): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240100003b0007010000000000000000047c0000040000000c00018006000600800a000000010280f9"], 0x124}}, 0xc000) 1.555912326s ago: executing program 1 (id=2553): r0 = gettid() process_vm_writev(r0, &(0x7f0000000040)=[{&(0x7f0000000400)=""/175, 0xaf}], 0x1, &(0x7f0000003b40)=[{&(0x7f0000000680)=""/94, 0x5e}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9, 0x0) 1.377735554s ago: executing program 1 (id=2554): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000140)=@base={0x1, 0xb, 0xcc, 0xe8}, 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={&(0x7f0000000380)="c1b0", 0x0, 0x0, 0x0, 0x1, r0}, 0x38) 1.305343301s ago: executing program 3 (id=2555): munmap(&(0x7f0000800000/0x800000)=nil, 0x800000) mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4) 993.793032ms ago: executing program 1 (id=2556): syz_mount_image$hfs(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x0, &(0x7f0000000000)={[{}, {@type={'type', 0x3d, "5ed07ee6"}}, {@iocharset={'iocharset', 0x3d, 'cp865'}}, {@codepage={'codepage', 0x3d, 'iso8859-15'}}]}, 0x2, 0x342, &(0x7f0000000100)="$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") syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000001080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x21408, 0x0, 0x3, 0x0, &(0x7f0000006380)) 993.654482ms ago: executing program 2 (id=2557): r0 = syz_open_dev$sndpcmc(&(0x7f0000000300), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_TTSTAMP(r0, 0x40044103, &(0x7f0000000000)) 799.971301ms ago: executing program 3 (id=2558): semop(0x0, &(0x7f00000002c0)=[{0x0, 0xff}, {0x0, 0x202}, {}], 0x3) semop(0x0, &(0x7f0000000380)=[{0x0, 0x7d12}], 0x1) 334.857437ms ago: executing program 2 (id=2559): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12}, 0x48) bpf$BPF_PROG_QUERY(0x10, &(0x7f00000003c0)={@map=r0, 0x7, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) 272.058392ms ago: executing program 1 (id=2560): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$VIDIOC_S_STD(r0, 0x40085618, &(0x7f00000001c0)=0x1700) 216.461988ms ago: executing program 0 (id=2561): r0 = syz_io_uring_setup(0x34b3, &(0x7f0000000500)={0x0, 0x0, 0x30c0, 0x2, 0x2c1}, &(0x7f0000000100), &(0x7f00000000c0)) io_uring_register$IORING_REGISTER_ENABLE_RINGS(r0, 0xc, 0x0, 0x0) 0s ago: executing program 3 (id=2562): r0 = syz_init_net_socket$ax25(0x3, 0x3, 0x0) setsockopt$ax25_int(r0, 0x101, 0x2, &(0x7f0000000040)=0x1ff, 0x4) kernel console output (not intermixed with test programs): h-speed USB device number 8 using dummy_hcd [ 203.173677][ T7897] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 203.202351][ T7897] (syz.3.888,7897,0):ocfs2_mknod:502 ERROR: status = -2 [ 203.210559][ T7897] (syz.3.888,7897,0):ocfs2_create:676 ERROR: status = -2 [ 203.318427][ T5782] usb 1-1: Using ep0 maxpacket: 8 [ 203.320109][ T5790] (syz-executor,5790,1):ocfs2_inode_is_valid_to_delete:852 ERROR: Skipping delete of root inode. [ 203.335249][ T5782] usb 1-1: config 0 has an invalid interface number: 52 but max is 0 [ 203.348060][ T5782] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 203.375841][ T5782] usb 1-1: config 0 has no interface number 0 [ 203.395650][ T5790] ocfs2: Unmounting device (7,3) on (node local) [ 203.407204][ T5782] usb 1-1: config 0 interface 52 has no altsetting 0 [ 203.457845][ T5782] usb 1-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 203.475492][ T5782] usb 1-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 203.508406][ T5782] usb 1-1: Manufacturer: syz [ 203.528607][ T5782] usb 1-1: config 0 descriptor?? [ 203.547477][ T5782] hub 1-1:0.52: bad descriptor, ignoring hub [ 203.554729][ T7925] loop2: detected capacity change from 0 to 4096 [ 203.566529][ T7929] netlink: 12 bytes leftover after parsing attributes in process `syz.3.901'. [ 203.575862][ T5782] hub: probe of 1-1:0.52 failed with error -5 [ 203.593068][ T7929] netlink: 60 bytes leftover after parsing attributes in process `syz.3.901'. [ 203.605501][ T7925] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 203.643267][ T7925] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 203.670848][ T7929] netlink: 12 bytes leftover after parsing attributes in process `syz.3.901'. [ 203.703166][ T7929] netlink: 60 bytes leftover after parsing attributes in process `syz.3.901'. [ 203.715746][ T7929] netlink: 104 bytes leftover after parsing attributes in process `syz.3.901'. [ 203.727300][ T7925] ntfs: (device loop2): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 203.764322][ T7925] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 203.788221][ T7925] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 203.791848][ T7931] netlink: 197276 bytes leftover after parsing attributes in process `syz.1.904'. [ 203.803832][ T7925] ntfs: volume version 3.1. [ 203.845139][ T7925] ntfs: (device loop2): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 203.869234][ T7925] ntfs: (device loop2): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 203.925804][ T7925] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 203.958180][ T7925] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 203.991621][ T7925] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 204.110200][ T785] usb 1-1: USB disconnect, device number 8 [ 204.520889][ T7947] loop3: detected capacity change from 0 to 256 [ 204.535873][ T7947] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d) [ 204.964957][ T7961] comedi comedi4: bad chanlist[0]=0x00001001 chan=4097 range length=2 [ 205.617100][ T7979] loop0: detected capacity change from 0 to 4096 [ 205.756601][ T7991] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 206.077744][ T7996] loop3: detected capacity change from 0 to 256 [ 206.180430][ T7996] FAT-fs (loop3): Directory bread(block 64) failed [ 206.220571][ T7996] FAT-fs (loop3): Directory bread(block 65) failed [ 206.227558][ T7996] FAT-fs (loop3): Directory bread(block 66) failed [ 206.278794][ T7997] loop1: detected capacity change from 0 to 4096 [ 206.287842][ T7996] FAT-fs (loop3): Directory bread(block 67) failed [ 206.318553][ T7996] FAT-fs (loop3): Directory bread(block 68) failed [ 206.325439][ T7996] FAT-fs (loop3): Directory bread(block 69) failed [ 206.360660][ T7996] FAT-fs (loop3): Directory bread(block 70) failed [ 206.368975][ T7997] ntfs: volume version 3.1. [ 206.392320][ T7996] FAT-fs (loop3): Directory bread(block 71) failed [ 206.418261][ T7996] FAT-fs (loop3): Directory bread(block 72) failed [ 206.445542][ T7996] FAT-fs (loop3): Directory bread(block 73) failed [ 206.932556][ T8014] ieee802154 phy0 wpan0: encryption failed: -22 [ 207.025639][ T8012] Process accounting resumed [ 207.146965][ T8018] loop0: detected capacity change from 0 to 256 [ 207.279186][ T8022] loop1: detected capacity change from 0 to 8 [ 207.383866][ T8022] SQUASHFS error: Failed to read block 0x6de: -5 [ 207.415646][ T8022] SQUASHFS error: Unable to read metadata cache entry [6dc] [ 207.463525][ T8022] SQUASHFS error: Failed to read block 0x63a: -5 [ 207.464215][ T7998] loop2: detected capacity change from 0 to 32768 [ 207.487129][ T8022] SQUASHFS error: Unable to read metadata cache entry [638] [ 207.522204][ T7998] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 207.542057][ T7998] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 207.585573][ T8029] xt_hashlimit: Unknown mode mask E2, kernel too old? [ 207.586464][ T8022] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 207.760146][ T7998] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms [ 207.777485][ T8024] loop3: detected capacity change from 0 to 4096 [ 207.802726][ T5782] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 207.812876][ T5782] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 207.830938][ T8024] ntfs: volume version 3.1. [ 208.044316][ T5782] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 231ms [ 208.085682][ T5782] gfs2: fsid=syz:syz.0: jid=0: Done [ 208.109282][ T7998] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 208.408347][ T8045] netlink: 'syz.3.960': attribute type 21 has an invalid length. [ 208.461151][ T8045] netlink: 164 bytes leftover after parsing attributes in process `syz.3.960'. [ 208.763332][ T8057] netlink: 12 bytes leftover after parsing attributes in process `syz.2.966'. [ 209.002904][ T8060] loop1: detected capacity change from 0 to 256 [ 209.382086][ T8068] netlink: 8 bytes leftover after parsing attributes in process `syz.2.971'. [ 209.537051][ T8048] loop0: detected capacity change from 0 to 32768 [ 209.629037][ T8048] XFS (loop0): Mounting V5 Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 209.838178][ T27] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 209.943082][ T8056] loop3: detected capacity change from 0 to 32768 [ 209.975531][ T8056] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 210.009310][ T8048] XFS (loop0): Starting recovery (logdev: internal) [ 210.030873][ T27] usb 2-1: config index 0 descriptor too short (expected 3133, got 61) [ 210.040306][ T27] usb 2-1: config 0 has an invalid interface number: 156 but max is 1 [ 210.062942][ T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 210.087682][ T27] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 210.105547][ T8048] XFS (loop0): Ending recovery (logdev: internal) [ 210.114434][ T27] usb 2-1: config 0 has no interface number 0 [ 210.142935][ T27] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 210.182788][ T27] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 210.203584][ T8056] XFS (loop3): Ending clean mount [ 210.222851][ T27] usb 2-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 210.239523][ T8056] XFS (loop3): Quotacheck needed: Please wait. [ 210.248908][ T27] usb 2-1: config 0 interface 156 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 210.296728][ T27] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 210.307089][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.359440][ T27] usb 2-1: config 0 descriptor?? [ 210.376241][ T27] gspca_main: spca561-2.14.0 probing abcd:cdee [ 210.524221][ T8056] XFS (loop3): Quotacheck: Done. [ 210.588201][ T27] spca561: probe of 2-1:0.156 failed with error -22 [ 210.597167][ T27] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 210.616776][ T5797] XFS (loop0): Unmounting Filesystem 9f91832a-3b79-45c3-9d6d-ed0bc7357fe4 [ 210.656167][ T27] usb 2-1: MIDIStreaming interface descriptor not found [ 210.902039][ T27] usb 2-1: USB disconnect, device number 4 [ 211.001343][ T5790] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 211.745620][ T8114] netlink: 'syz.2.985': attribute type 63 has an invalid length. [ 211.773254][ T8114] netlink: 5 bytes leftover after parsing attributes in process `syz.2.985'. [ 212.032266][ T8126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.991'. [ 212.056186][ T8126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.991'. [ 212.356640][ T5792] Bluetooth: hci1: command 0x0406 tx timeout [ 212.363836][ T5794] Bluetooth: hci3: command 0x0406 tx timeout [ 212.364818][ T5799] Bluetooth: hci0: command 0x0406 tx timeout [ 212.374971][ T5794] Bluetooth: hci2: command 0x0406 tx timeout [ 212.587774][ T8142] Cannot find add_set index 2 as target [ 213.388426][ T5782] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 213.580713][ T5782] usb 2-1: config 0 has no interfaces? [ 213.586572][ T5782] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 213.611206][ T5782] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 213.650888][ T5782] usb 2-1: config 0 descriptor?? [ 213.752610][ T8186] netlink: 'syz.0.1019': attribute type 2 has an invalid length. [ 213.817629][ T8188] virtiofs: Unknown parameter 'always' [ 213.891641][ T5840] usb 2-1: USB disconnect, device number 5 [ 213.902359][ T8190] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1021'. [ 213.978699][ T27] usb 4-1: new full-speed USB device number 6 using dummy_hcd [ 213.998197][ T23] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 214.043300][ T8194] loop0: detected capacity change from 0 to 256 [ 214.054364][ T8194] exfat: Deprecated parameter 'namecase' [ 214.061188][ T8194] exfat: Deprecated parameter 'utf8' [ 214.094401][ T8194] exFAT-fs (loop0): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 214.183251][ T27] usb 4-1: config 0 has an invalid interface number: 20 but max is 0 [ 214.201354][ T27] usb 4-1: config 0 has no interface number 0 [ 214.210023][ T23] usb 3-1: config 0 has no interfaces? [ 214.215728][ T27] usb 4-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 214.230872][ T23] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 214.241329][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.252437][ T27] usb 4-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 214.262442][ T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 214.271578][ T23] usb 3-1: Product: syz [ 214.277625][ T23] usb 3-1: Manufacturer: syz [ 214.283380][ T27] usb 4-1: Product: syz [ 214.287796][ T23] usb 3-1: SerialNumber: syz [ 214.292738][ T27] usb 4-1: Manufacturer: syz [ 214.297391][ T27] usb 4-1: SerialNumber: syz [ 214.305204][ T23] r8152-cfgselector 3-1: config 0 descriptor?? [ 214.322800][ T27] usb 4-1: config 0 descriptor?? [ 214.329511][ T8182] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 214.347415][ T27] usb-storage 4-1:0.20: USB Mass Storage device detected [ 214.371742][ T27] usb-storage 4-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 214.490870][ T8202] netlink: 2 bytes leftover after parsing attributes in process `syz.0.1026'. [ 214.530617][ T23] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 214.566148][ T27] scsi host1: usb-storage 4-1:0.20 [ 214.590245][ T2994] usb 3-1: config 0 descriptor?? [ 214.796204][ T23] usb 3-1: USB disconnect, device number 8 [ 214.807425][ T2994] usb 3-1: can't set config #0, error -71 [ 214.842070][ T8214] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1030'. [ 214.850742][ T8] usb 4-1: USB disconnect, device number 6 [ 214.904145][ T8214] geneve2: entered promiscuous mode [ 215.044064][ T28] kauditd_printk_skb: 28 callbacks suppressed [ 215.044079][ T28] audit: type=1326 audit(1761103563.236:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 215.054498][ T8216] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1033'. [ 215.113155][ T28] audit: type=1326 audit(1761103563.276:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 215.168341][ T28] audit: type=1326 audit(1761103563.286:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 215.218211][ T28] audit: type=1326 audit(1761103563.286:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 215.272523][ T28] audit: type=1326 audit(1761103563.286:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8217 comm="syz.1.1032" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 215.727036][ T8234] netlink: 160 bytes leftover after parsing attributes in process `syz.1.1041'. [ 216.399190][ T8254] loop0: detected capacity change from 0 to 4096 [ 216.437059][ T8254] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 216.705263][ T8264] loop3: detected capacity change from 0 to 64 [ 216.829979][ T8264] syz.3.1052: attempt to access beyond end of device [ 216.829979][ T8264] loop3: rw=0, sector=268435468, nr_sectors = 2 limit=64 [ 216.872222][ T8264] Buffer I/O error on dev loop3, logical block 134217734, async page read [ 217.495699][ T8284] loop1: detected capacity change from 0 to 256 [ 217.692097][ T8284] FAT-fs (loop1): Directory bread(block 64) failed [ 217.748264][ T8284] FAT-fs (loop1): Directory bread(block 65) failed [ 217.756492][ T8284] FAT-fs (loop1): Directory bread(block 66) failed [ 217.815475][ T8284] FAT-fs (loop1): Directory bread(block 67) failed [ 217.845772][ T8284] FAT-fs (loop1): Directory bread(block 68) failed [ 217.873924][ T8284] FAT-fs (loop1): Directory bread(block 69) failed [ 217.887961][ T8284] FAT-fs (loop1): Directory bread(block 70) failed [ 217.903730][ T8284] FAT-fs (loop1): Directory bread(block 71) failed [ 217.936758][ T8284] FAT-fs (loop1): Directory bread(block 72) failed [ 217.967031][ T8284] FAT-fs (loop1): Directory bread(block 73) failed [ 218.274460][ T8272] loop2: detected capacity change from 0 to 40427 [ 218.297275][ T8272] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 218.339666][ T8272] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 218.340723][ T8272] F2FS-fs (loop2): build fault injection attr: rate: 18446, type: 0x7ffff [ 218.363455][ T8272] F2FS-fs (loop2): invalid crc value [ 218.396127][ T8272] F2FS-fs (loop2): Found nat_bits in checkpoint [ 218.580335][ T8272] F2FS-fs (loop2): Start checkpoint disabled! [ 218.602795][ T8272] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 218.614810][ T8272] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 219.006393][ T48] kworker/u4:3: attempt to access beyond end of device [ 219.006393][ T48] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 219.063955][ T48] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 219.078789][ T48] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 219.241983][ T8323] loop0: detected capacity change from 0 to 256 [ 219.319493][ T8323] FAT-fs (loop0): Directory bread(block 64) failed [ 219.347042][ T8323] FAT-fs (loop0): Directory bread(block 65) failed [ 219.380167][ T8323] FAT-fs (loop0): Directory bread(block 66) failed [ 219.389111][ T8323] FAT-fs (loop0): Directory bread(block 67) failed [ 219.396356][ T8323] FAT-fs (loop0): Directory bread(block 68) failed [ 219.412214][ T8323] FAT-fs (loop0): Directory bread(block 69) failed [ 219.451979][ T8323] FAT-fs (loop0): Directory bread(block 70) failed [ 219.477563][ T8323] FAT-fs (loop0): Directory bread(block 71) failed [ 219.494370][ T8327] loop1: detected capacity change from 0 to 64 [ 219.518657][ T8323] FAT-fs (loop0): Directory bread(block 72) failed [ 219.557342][ T8323] FAT-fs (loop0): Directory bread(block 73) failed [ 219.576872][ T8327] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 219.622861][ T8327] hfs: filesystem is marked locked, mounting read-only. [ 220.578310][ T8356] xt_CONNSECMARK: invalid mode: 66 [ 220.705352][ T8361] loop1: detected capacity change from 0 to 512 [ 220.770877][ T8361] EXT4-fs (loop1): orphan cleanup on readonly fs [ 220.792834][ T8359] loop3: detected capacity change from 0 to 4096 [ 220.802485][ T8359] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 220.834346][ T8361] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2249: inode #15: comm syz.1.1100: corrupted in-inode xattr: invalid size in ea xattr [ 220.876812][ T8366] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1102'. [ 220.887020][ T8361] EXT4-fs (loop1): Remounting filesystem read-only [ 220.895936][ T8361] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 220.951859][ T8359] ntfs: volume version 3.1. [ 220.968555][ T5801] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 221.471891][ T28] audit: type=1326 audit(1761103569.666:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.2.1110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 221.547147][ T28] audit: type=1326 audit(1761103569.666:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.2.1110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 221.638165][ T28] audit: type=1326 audit(1761103569.716:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.2.1110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 221.696699][ T8386] vivid-006: disconnect [ 221.716968][ T28] audit: type=1326 audit(1761103569.716:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.2.1110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 221.719128][ T8385] vivid-006: reconnect [ 221.765861][ T8390] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1114'. [ 221.797119][ T28] audit: type=1326 audit(1761103569.716:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8380 comm="syz.2.1110" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 221.821703][ T8390] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1114'. [ 221.977073][ T8395] loop3: detected capacity change from 0 to 64 [ 222.288297][ T8402] ERROR: device name not specified. [ 222.515355][ T8378] loop1: detected capacity change from 0 to 32768 [ 222.568672][ T8378] (syz.1.1109,8378,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 222.610703][ T8378] (syz.1.1109,8378,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 222.697280][ T8412] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.1125'. [ 222.751269][ T8378] (syz.1.1109,8378,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC. [ 222.865121][ T8378] JBD2: Ignoring recovery information on journal [ 223.014313][ T8378] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 223.244377][ T8378] (syz.1.1109,8378,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC. [ 223.438316][ T8378] (syz.1.1109,8378,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb68296ec, computed 0xec517776. Applying ECC. [ 223.508619][ T8378] (syz.1.1109,8378,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xb68296ec, computed 0xccb4c126 [ 223.529782][ T8378] (syz.1.1109,8378,0):ocfs2_search_chain:1761 ERROR: status = -5 [ 223.558252][ T8378] (syz.1.1109,8378,0):ocfs2_search_chain:1871 ERROR: status = -5 [ 223.567484][ T8378] (syz.1.1109,8378,0):ocfs2_claim_suballoc_bits:1965 ERROR: status = -5 [ 223.572542][ T8433] loop2: detected capacity change from 0 to 1024 [ 223.587846][ T8378] (syz.1.1109,8378,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -5 [ 223.601314][ T8378] (syz.1.1109,8378,0):__ocfs2_claim_clusters:2355 ERROR: status = -5 [ 223.618506][ T8378] (syz.1.1109,8378,0):__ocfs2_claim_clusters:2363 ERROR: status = -5 [ 223.633844][ T8435] loop0: detected capacity change from 0 to 512 [ 223.640846][ T8378] (syz.1.1109,8378,0):ocfs2_local_alloc_new_window:1203 ERROR: status = -5 [ 223.666352][ T8378] (syz.1.1109,8378,0):ocfs2_local_alloc_new_window:1228 ERROR: status = -5 [ 223.684761][ T8378] (syz.1.1109,8378,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -5 [ 223.699660][ T8378] (syz.1.1109,8378,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -5 [ 223.719584][ T8435] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 223.736032][ T8378] (syz.1.1109,8378,0):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -5 [ 223.739226][ T8433] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 223.746415][ T8378] (syz.1.1109,8378,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -5 [ 223.767797][ T8378] (syz.1.1109,8378,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -5 [ 223.779570][ T8378] (syz.1.1109,8378,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -5 [ 223.789058][ T8378] (syz.1.1109,8378,0):ocfs2_expand_inline_dir:2858 ERROR: status = -5 [ 223.798213][ T8378] (syz.1.1109,8378,0):ocfs2_extend_dir:3205 ERROR: status = -5 [ 223.807299][ T8378] (syz.1.1109,8378,0):ocfs2_prepare_dir_for_insert:4326 ERROR: status = -5 [ 223.818064][ T8378] (syz.1.1109,8378,0):ocfs2_mknod:298 ERROR: status = -5 [ 223.826232][ T8378] (syz.1.1109,8378,0):ocfs2_mknod:502 ERROR: status = -5 [ 223.828739][ T8435] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 223.844453][ T8440] netlink: 'syz.3.1136': attribute type 10 has an invalid length. [ 223.857944][ T8378] syz.1.1109 (8378) used greatest stack depth: 18640 bytes left [ 223.885858][ T5801] ocfs2: Unmounting device (7,1) on (node local) [ 223.933469][ T8435] EXT4-fs (loop0): 1 truncate cleaned up [ 223.977952][ T8435] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.996079][ T8440] team0: Port device geneve1 added [ 224.073379][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.112955][ T8435] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #2: block 13: comm syz.0.1135: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1 [ 224.302203][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 225.111888][ T8447] loop2: detected capacity change from 0 to 32768 [ 225.261813][ T8447] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 225.469436][ T8488] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0) [ 225.483156][ T8447] XFS (loop2): Ending clean mount [ 225.533096][ T8447] XFS (loop2): Quotacheck needed: Please wait. [ 225.769903][ T8447] XFS (loop2): Quotacheck: Done. [ 225.948344][ T8499] loop3: detected capacity change from 0 to 2048 [ 226.014333][ T8499] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 226.052440][ T8499] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 226.271478][ T5793] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 226.562638][ T8513] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 226.582887][ T8517] loop0: detected capacity change from 0 to 256 [ 226.738168][ T8519] netlink: 'syz.1.1172': attribute type 46 has an invalid length. [ 226.750997][ T8517] FAT-fs (loop0): Directory bread(block 64) failed [ 226.775375][ T8517] FAT-fs (loop0): Directory bread(block 65) failed [ 226.808312][ T8517] FAT-fs (loop0): Directory bread(block 66) failed [ 226.815653][ T8517] FAT-fs (loop0): Directory bread(block 67) failed [ 226.886619][ T8521] loop3: detected capacity change from 0 to 256 [ 226.897754][ T8517] FAT-fs (loop0): Directory bread(block 68) failed [ 226.938751][ T8517] FAT-fs (loop0): Directory bread(block 69) failed [ 226.947417][ T8521] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 226.959986][ T8517] FAT-fs (loop0): Directory bread(block 70) failed [ 226.972818][ T8517] FAT-fs (loop0): Directory bread(block 71) failed [ 226.984217][ T8517] FAT-fs (loop0): Directory bread(block 72) failed [ 226.993241][ T8517] FAT-fs (loop0): Directory bread(block 73) failed [ 227.275895][ T8524] loop1: detected capacity change from 0 to 8192 [ 227.429905][ T8530] netlink: 'syz.2.1176': attribute type 10 has an invalid length. [ 227.506750][ T8530] team0: Port device geneve1 added [ 228.555151][ T8561] loop2: detected capacity change from 0 to 4096 [ 228.775549][ T8561] ntfs3: loop2: ino=5, "/" directory corrupted [ 228.812875][ T8561] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 229.092693][ T8582] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1204'. [ 229.122908][ T8582] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1204'. [ 229.180694][ T8586] loop0: detected capacity change from 0 to 1024 [ 229.345188][ T48] hfsplus: b-tree write err: -5, ino 4 [ 229.700202][ T8594] loop1: detected capacity change from 0 to 4096 [ 229.747902][ T8594] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 231.183076][ T28] audit: type=1326 audit(1761103579.376:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.2.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 231.210308][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.258307][ T28] audit: type=1326 audit(1761103579.376:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.2.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 231.340551][ T28] audit: type=1326 audit(1761103579.376:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.2.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 231.365986][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.366383][ T8647] loop0: detected capacity change from 0 to 164 [ 231.444762][ T8647] isofs: Unable to find the ".." directory for NFS. [ 231.487505][ T28] audit: type=1326 audit(1761103579.376:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.2.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 231.511855][ C0] vkms_vblank_simulate: vblank timer overrun [ 231.582565][ T28] audit: type=1326 audit(1761103579.376:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.2.1229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fab25d8efc9 code=0x7ffc0000 [ 231.707309][ T8655] netlink: 'syz.2.1234': attribute type 1 has an invalid length. [ 232.016150][ T8663] loop0: detected capacity change from 0 to 1024 [ 232.140765][ T8667] loop2: detected capacity change from 0 to 256 [ 233.333471][ T8] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 233.420806][ T8707] loop0: detected capacity change from 0 to 2048 [ 233.509372][ T8708] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 233.538259][ T8] usb 4-1: Using ep0 maxpacket: 16 [ 233.543779][ T8712] netlink: 'syz.2.1261': attribute type 2 has an invalid length. [ 233.570240][ T8707] NILFS (loop0): bad btree root (ino=16): level = 164, flags = 0x1, nchildren = 1 [ 233.583081][ T8] usb 4-1: config 0 has an invalid interface number: 145 but max is 0 [ 233.623124][ T8] usb 4-1: config 0 has no interface number 0 [ 233.635314][ T8] usb 4-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25 [ 233.654731][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 233.683000][ T8] usb 4-1: Product: syz [ 233.687355][ T8] usb 4-1: Manufacturer: syz [ 233.738308][ T8] usb 4-1: SerialNumber: syz [ 233.755501][ T8] usb 4-1: config 0 descriptor?? [ 233.788687][ T8] hub 4-1:0.145: bad descriptor, ignoring hub [ 233.811653][ T8] hub: probe of 4-1:0.145 failed with error -5 [ 233.842027][ T8] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.145/input/input10 [ 234.240272][ T27] usb 4-1: USB disconnect, device number 7 [ 234.442964][ T8729] smb3: Unexpected value for 'rdma' [ 234.605895][ T8720] loop1: detected capacity change from 0 to 32768 [ 236.212456][ T8786] loop2: detected capacity change from 0 to 256 [ 236.263836][ T8786] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 236.439914][ T8791] loop1: detected capacity change from 0 to 736 [ 236.825049][ T8801] loop2: detected capacity change from 0 to 256 [ 236.953401][ T8806] Driver unsupported XDP return value 0 on prog (id 57) dev N/A, expect packet loss! [ 237.094212][ T8809] loop1: detected capacity change from 0 to 256 [ 237.140240][ T8809] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d) [ 237.218302][ T8813] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1311'. [ 238.409571][ T8857] netlink: 'syz.1.1334': attribute type 1 has an invalid length. [ 238.535149][ T28] audit: type=1326 audit(1761103586.726:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.0.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 238.613072][ T28] audit: type=1326 audit(1761103586.766:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.0.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 238.693611][ T28] audit: type=1326 audit(1761103586.776:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.0.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=220 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 238.808091][ T28] audit: type=1326 audit(1761103586.776:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.0.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 238.899294][ T28] audit: type=1326 audit(1761103586.776:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8862 comm="syz.0.1337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 238.950085][ T8873] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1342'. [ 238.951032][ T8871] loop0: detected capacity change from 0 to 1024 [ 239.069909][ T8877] loop2: detected capacity change from 0 to 256 [ 239.086479][ T8871] hfsplus: hfsplus: Invalid key length: 29235 [ 239.197092][ T8880] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 239.233136][ T8880] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 239.434864][ T8886] comedi comedi1: adq12b: a I/O base address must be specified [ 239.448142][ T785] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 239.630717][ T785] usb 2-1: Using ep0 maxpacket: 8 [ 239.661095][ T785] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 239.691003][ T785] usb 2-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b [ 239.712088][ T785] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 239.736601][ T785] usb 2-1: Product: syz [ 239.746750][ T785] usb 2-1: Manufacturer: syz [ 239.758477][ T785] usb 2-1: SerialNumber: syz [ 239.784597][ T785] usb 2-1: config 0 descriptor?? [ 239.791673][ T28] audit: type=1400 audit(1761103587.976:143): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=8894 comm="syz.2.1353" [ 239.815397][ T785] gspca_main: stk014-2.14.0 probing 05e1:0893 [ 239.843864][ T785] usb 2-1: selecting invalid altsetting 1 [ 240.085198][ T8905] netdevsim netdevsim3 netdevsim0: entered promiscuous mode [ 240.133107][ T8905] netdevsim netdevsim3 netdevsim0: left allmulticast mode [ 240.179815][ T8905] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 240.222248][ T8909] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org. [ 240.276878][ T785] usb 2-1: USB disconnect, device number 6 [ 240.411897][ T8912] loop0: detected capacity change from 0 to 256 [ 240.470030][ T8914] loop3: detected capacity change from 0 to 1024 [ 240.485212][ T8914] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 240.503176][ T8912] FAT-fs (loop0): Directory bread(block 64) failed [ 240.522932][ T8912] FAT-fs (loop0): Directory bread(block 65) failed [ 240.544024][ T8912] FAT-fs (loop0): Directory bread(block 66) failed [ 240.558180][ T8912] FAT-fs (loop0): Directory bread(block 67) failed [ 240.566024][ T8914] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 240.575991][ T8912] FAT-fs (loop0): Directory bread(block 68) failed [ 240.587963][ T8912] FAT-fs (loop0): Directory bread(block 69) failed [ 240.595215][ T8912] FAT-fs (loop0): Directory bread(block 70) failed [ 240.611886][ T8912] FAT-fs (loop0): Directory bread(block 71) failed [ 240.619179][ T8912] FAT-fs (loop0): Directory bread(block 72) failed [ 240.626083][ T8912] FAT-fs (loop0): Directory bread(block 73) failed [ 240.660490][ T8914] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 240.859779][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 241.226699][ T8935] netlink: 'syz.2.1371': attribute type 1 has an invalid length. [ 241.234373][ T8927] loop1: detected capacity change from 0 to 4096 [ 241.264138][ T8935] netlink: 244 bytes leftover after parsing attributes in process `syz.2.1371'. [ 241.269851][ T8927] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 241.722398][ T8946] xt_l2tp: v2 sid > 0xffff: 4294901760 [ 242.549245][ T8942] loop2: detected capacity change from 0 to 32768 [ 242.578376][ T8942] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.1373 (8942) [ 242.657607][ T8942] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 242.699305][ T8942] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 242.749742][ T8942] BTRFS info (device loop2): turning on flush-on-commit [ 242.757022][ T8942] BTRFS info (device loop2): turning off barriers [ 242.808230][ T8942] BTRFS info (device loop2): turning on sync discard [ 242.815299][ T8942] BTRFS info (device loop2): using free space tree [ 243.170549][ T5793] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 243.251094][ T8966] loop3: detected capacity change from 0 to 32768 [ 243.285442][ T9000] xt_TPROXY: Can be used only with -p tcp or -p udp [ 243.344068][ T8966] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 243.404686][ T9008] netlink: 'syz.1.1395': attribute type 1 has an invalid length. [ 243.413139][ T9008] netlink: 244 bytes leftover after parsing attributes in process `syz.1.1395'. [ 243.444955][ T9008] NCSI netlink: No device for ifindex 0 [ 243.589735][ T8966] XFS (loop3): Ending clean mount [ 243.900077][ T5790] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 244.067100][ T9022] netlink: 'syz.2.1401': attribute type 1 has an invalid length. [ 244.533071][ T9013] loop0: detected capacity change from 0 to 32768 [ 244.571115][ T9031] comedi comedi0: pcmda12: I/O port conflict (0x7,16) [ 245.040042][ T9039] netlink: 'syz.0.1408': attribute type 1 has an invalid length. [ 245.049633][ T9039] netlink: 244 bytes leftover after parsing attributes in process `syz.0.1408'. [ 245.236419][ T9045] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1410'. [ 245.429753][ T9037] loop3: detected capacity change from 0 to 32768 [ 245.446413][ T9047] netdevsim netdevsim0 netdevsim0: entered promiscuous mode [ 245.463350][ T9037] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop3 scanned by syz.3.1407 (9037) [ 245.497483][ T9047] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 245.533378][ T9037] BTRFS info (device loop3): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 245.578359][ T9037] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 245.608371][ T9037] BTRFS info (device loop3): using free space tree [ 245.821484][ T9070] loop0: detected capacity change from 0 to 164 [ 245.842490][ T9070] Unable to read rock-ridge attributes [ 245.850308][ T9037] BTRFS info (device loop3): enabling ssd optimizations [ 245.858670][ T9037] BTRFS info (device loop3): auto enabling async discard [ 245.893850][ T9075] loop1: detected capacity change from 0 to 64 [ 246.330002][ T9082] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1421'. [ 246.348669][ T5790] BTRFS info (device loop3): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 247.288772][ T9110] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 247.317284][ T9107] loop3: detected capacity change from 0 to 4096 [ 247.520311][ T9107] ntfs3: loop3: ino=5, "/" directory corrupted [ 247.817327][ T9117] IPv6: Can't replace route, no match found [ 248.254048][ T9132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1445'. [ 248.264017][ T9132] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1445'. [ 248.270674][ T9103] loop0: detected capacity change from 0 to 32768 [ 248.299465][ T9103] XFS: noikeep mount option is deprecated. [ 248.353568][ T9103] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 248.502669][ T9143] loop1: detected capacity change from 0 to 1024 [ 248.521132][ T9143] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 248.552576][ T9145] IPv6: Can't replace route, no match found [ 248.657570][ T9143] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 248.696906][ T9103] XFS (loop0): Ending clean mount [ 248.726652][ T9103] XFS (loop0): Quotacheck needed: Please wait. [ 248.795384][ T9143] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters [ 248.898770][ T9103] XFS (loop0): Quotacheck: Done. [ 248.933044][ T5801] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 249.147293][ T5797] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 249.158263][ T8] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 249.222776][ T9163] netlink: 'syz.2.1455': attribute type 15 has an invalid length. [ 249.231738][ T9163] netlink: 666 bytes leftover after parsing attributes in process `syz.2.1455'. [ 249.353730][ T8] usb 4-1: Using ep0 maxpacket: 32 [ 249.380449][ T8] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 249.404252][ T8] usb 4-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0 [ 249.438242][ T8] usb 4-1: config 0 interface 0 has no altsetting 0 [ 249.479294][ T8] usb 4-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 249.494182][ T8] usb 4-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3 [ 249.514847][ T8] usb 4-1: Product: syz [ 249.520010][ T8] usb 4-1: Manufacturer: syz [ 249.529265][ T8] usb 4-1: SerialNumber: syz [ 249.547808][ T8] usb 4-1: config 0 descriptor?? [ 249.830490][ T9176] netlink: 'syz.0.1460': attribute type 21 has an invalid length. [ 249.839571][ T9176] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1460'. [ 249.992055][ T8] gs_usb 4-1:0.0: Couldn't get device config: (err=-71) [ 250.003620][ T8] gs_usb: probe of 4-1:0.0 failed with error -71 [ 250.046005][ T8] usb 4-1: USB disconnect, device number 8 [ 250.160103][ T9184] netlink: 'syz.0.1464': attribute type 1 has an invalid length. [ 250.180078][ T9184] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1464'. [ 251.252520][ T9216] loop0: detected capacity change from 0 to 4096 [ 251.330282][ T9216] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 251.368551][ T9225] loop1: detected capacity change from 0 to 256 [ 251.499203][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 251.823237][ T9212] orangefs_mount: mount request failed with -4 [ 251.913934][ T9231] loop1: detected capacity change from 0 to 4096 [ 251.958611][ T9231] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 252.075208][ T9231] ntfs3: loop1: MFT: r=18, expect seq=1 instead of 0! [ 252.103497][ T9231] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 252.144044][ T9231] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 252.343133][ T9247] loop0: detected capacity change from 0 to 256 [ 252.461374][ T9247] FAT-fs (loop0): Directory bread(block 64) failed [ 252.488409][ T9247] FAT-fs (loop0): Directory bread(block 65) failed [ 252.496347][ T9247] FAT-fs (loop0): Directory bread(block 66) failed [ 252.531766][ T9247] FAT-fs (loop0): Directory bread(block 67) failed [ 252.548700][ T9247] FAT-fs (loop0): Directory bread(block 68) failed [ 252.570119][ T9247] FAT-fs (loop0): Directory bread(block 69) failed [ 252.577129][ T9247] FAT-fs (loop0): Directory bread(block 70) failed [ 252.628510][ T9247] FAT-fs (loop0): Directory bread(block 71) failed [ 252.650659][ T9247] FAT-fs (loop0): Directory bread(block 72) failed [ 252.657434][ T9247] FAT-fs (loop0): Directory bread(block 73) failed [ 252.897504][ T9260] loop3: detected capacity change from 0 to 64 [ 253.278930][ T9270] nvme_fabrics: unknown parameter or missing value 'Y' in ctrl creation request [ 253.737107][ T9289] loop0: detected capacity change from 0 to 1024 [ 253.785700][ T9289] EXT4-fs: Ignoring removed orlov option [ 253.905200][ T9289] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 253.952484][ T9289] ext4 filesystem being mounted at /389/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 254.077363][ T5797] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 254.927091][ T9336] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 255.252556][ T9345] loop0: detected capacity change from 0 to 256 [ 255.322978][ T9347] loop2: detected capacity change from 0 to 256 [ 255.355936][ T9347] exfat: Deprecated parameter 'utf8' [ 255.370021][ T9345] FAT-fs (loop0): Directory bread(block 64) failed [ 255.387878][ T9347] exfat: Deprecated parameter 'utf8' [ 255.402434][ T9345] FAT-fs (loop0): Directory bread(block 65) failed [ 255.432069][ T9345] FAT-fs (loop0): Directory bread(block 66) failed [ 255.459768][ T9345] FAT-fs (loop0): Directory bread(block 67) failed [ 255.467204][ T9347] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 255.479359][ T9345] FAT-fs (loop0): Directory bread(block 68) failed [ 255.508327][ T9345] FAT-fs (loop0): Directory bread(block 69) failed [ 255.524670][ T9345] FAT-fs (loop0): Directory bread(block 70) failed [ 255.537658][ T9347] exFAT-fs (loop2): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5) [ 255.552090][ T9345] FAT-fs (loop0): Directory bread(block 71) failed [ 255.565243][ T9345] FAT-fs (loop0): Directory bread(block 72) failed [ 255.579324][ T9345] FAT-fs (loop0): Directory bread(block 73) failed [ 255.937315][ T9359] loop1: detected capacity change from 0 to 256 [ 256.353148][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 256.365684][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 256.482974][ T9375] loop1: detected capacity change from 0 to 256 [ 256.572141][ T9375] FAT-fs (loop1): Directory bread(block 64) failed [ 256.591323][ T9375] FAT-fs (loop1): Directory bread(block 65) failed [ 256.618355][ T9375] FAT-fs (loop1): Directory bread(block 66) failed [ 256.625304][ T9375] FAT-fs (loop1): Directory bread(block 67) failed [ 256.680115][ T9375] FAT-fs (loop1): Directory bread(block 68) failed [ 256.713808][ T9375] FAT-fs (loop1): Directory bread(block 69) failed [ 256.753987][ T9375] FAT-fs (loop1): Directory bread(block 70) failed [ 256.777877][ T9375] FAT-fs (loop1): Directory bread(block 71) failed [ 256.804155][ T9375] FAT-fs (loop1): Directory bread(block 72) failed [ 256.823916][ T9375] FAT-fs (loop1): Directory bread(block 73) failed [ 256.937727][ T9388] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1559'. [ 257.211809][ T9395] loop3: detected capacity change from 0 to 64 [ 257.784993][ T9408] loop1: detected capacity change from 0 to 4096 [ 257.848384][ T9415] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1572'. [ 257.878687][ T9408] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 257.885402][ T9408] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 258.122123][ T2888] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 258.162531][ T5801] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 258.175026][ T9421] netlink: 'syz.0.1575': attribute type 1 has an invalid length. [ 258.192275][ T5801] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 258.206894][ T9421] netlink: 232 bytes leftover after parsing attributes in process `syz.0.1575'. [ 258.208223][ T5801] ntfs3: loop1: ino=3, ntfs_set_state failed, -22. [ 258.258097][ T48] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22. [ 259.540864][ T9471] loop0: detected capacity change from 0 to 1764 [ 259.628250][ T9471] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 259.886291][ T9481] loop0: detected capacity change from 0 to 1024 [ 259.930983][ T9481] hfsplus: write access to a journaled filesystem is not supported, use the force option at your own risk, mounting read-only. [ 260.381853][ T9493] loop0: detected capacity change from 0 to 4096 [ 260.475593][ T9500] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1614'. [ 260.489663][ T9500] netlink: 440 bytes leftover after parsing attributes in process `syz.1.1614'. [ 260.501073][ T9493] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 260.512655][ T9493] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 260.738297][ T998] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 260.749998][ T5797] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 260.768281][ T5797] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 260.794756][ T5797] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 260.819538][ T998] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 261.243713][ T9519] tmpfs: Bad value for 'nr_inodes' [ 261.345376][ T9524] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 261.711132][ T9534] loop3: detected capacity change from 0 to 4096 [ 261.738750][ T9534] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 263.501143][ T23] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 263.666651][ T9604] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1666'. [ 263.691228][ T9604] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1666'. [ 263.711164][ T23] usb 4-1: Using ep0 maxpacket: 8 [ 263.724373][ T23] usb 4-1: config 0 has an invalid interface number: 52 but max is 0 [ 263.735723][ T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 263.758985][ T23] usb 4-1: config 0 has no interface number 0 [ 263.765310][ T23] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 263.791792][ T23] usb 4-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0 [ 263.807417][ T23] usb 4-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 263.833412][ T23] usb 4-1: config 0 interface 52 has no altsetting 0 [ 263.874943][ T23] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00 [ 263.900867][ T23] usb 4-1: New USB device strings: Mfr=0, Product=234, SerialNumber=34 [ 263.927163][ T23] usb 4-1: Product: syz [ 263.945633][ T23] usb 4-1: SerialNumber: syz [ 263.960141][ T23] usb 4-1: config 0 descriptor?? [ 263.995639][ T9612] syz.0.1670 uses obsolete (PF_INET,SOCK_PACKET) [ 264.205549][ T23] synaptics_usb 4-1:0.52: synusb_open - usb_submit_urb failed, error: -90 [ 264.247538][ T23] synaptics_usb: probe of 4-1:0.52 failed with error -5 [ 264.449172][ T2127] usb 4-1: USB disconnect, device number 9 [ 264.507749][ T9628] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1678'. [ 265.042200][ T9646] ip6erspan0: entered promiscuous mode [ 265.097069][ T9651] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1689'. [ 265.145215][ T9651] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 265.269221][ T9655] loop1: detected capacity change from 0 to 128 [ 265.315917][ T9655] VFS: Found a Xenix FS (block size = 1024) on device loop1 [ 265.372989][ T9653] loop3: detected capacity change from 0 to 4096 [ 265.398792][ T9653] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 265.574977][ T9653] ntfs3: loop3: failed to convert "c46c" to cp857 [ 265.746750][ T9665] netlink: 148 bytes leftover after parsing attributes in process `syz.0.1696'. [ 265.766008][ T5801] sysv_free_block: flc_count > flc_size [ 265.784026][ T9665] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check. [ 265.798485][ T5801] sysv_free_block: flc_count > flc_size [ 265.821392][ T5801] sysv_free_block: flc_count > flc_size [ 265.827645][ T5801] sysv_free_block: flc_count > flc_size [ 265.861801][ T5801] sysv_free_block: flc_count > flc_size [ 265.884700][ T5801] sysv_free_block: flc_count > flc_size [ 265.902011][ T5801] sysv_free_block: flc_count > flc_size [ 265.928388][ T5801] sysv_free_block: flc_count > flc_size [ 265.934304][ T5801] sysv_free_block: flc_count > flc_size [ 265.966780][ T5801] sysv_free_block: flc_count > flc_size [ 265.986481][ T5801] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 267.448143][ T785] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 267.638161][ T785] usb 2-1: Using ep0 maxpacket: 8 [ 267.659737][ T785] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 267.688726][ T785] usb 2-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 267.725496][ T785] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.755146][ T785] usb 2-1: config 0 descriptor?? [ 267.820313][ T785] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 268.214169][ T785] gspca_vc032x: reg_w err -71 [ 268.238344][ T785] vc032x: probe of 2-1:0.0 failed with error -71 [ 268.276417][ T785] usb 2-1: USB disconnect, device number 7 [ 268.861505][ T9762] loop3: detected capacity change from 0 to 512 [ 268.987044][ T9762] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated! [ 269.040512][ T9762] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota [ 269.089394][ T9762] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1743: Failed to acquire dquot type 0 [ 269.168048][ T9762] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1743: bg 0: block 64: padding at end of block bitmap is not set [ 269.210259][ T9762] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6637: Corrupt filesystem [ 269.255391][ T9762] EXT4-fs (loop3): 1 truncate cleaned up [ 269.274720][ T9762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 269.318342][ T9762] ext4 filesystem being mounted at /425/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 269.479912][ T9758] loop2: detected capacity change from 0 to 32768 [ 269.523208][ T9758] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.1741 (9758) [ 269.528764][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 269.625247][ T9758] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 269.648989][ T9758] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 269.700855][ T9758] BTRFS info (device loop2): using free space tree [ 269.886737][ T9786] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1748'. [ 269.938374][ T9784] loop3: detected capacity change from 0 to 512 [ 270.000618][ T9758] BTRFS info (device loop2): enabling ssd optimizations [ 270.055274][ T9764] loop0: detected capacity change from 0 to 32768 [ 270.059166][ T9758] BTRFS info (device loop2): auto enabling async discard [ 270.119351][ T9764] (syz.0.1744,9764,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 270.154443][ T9764] (syz.0.1744,9764,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 270.175263][ T9784] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 270.194103][ T9784] ext4 filesystem being mounted at /426/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 270.249634][ T9758] BTRFS error (device loop2): balance: invalid convert data profile raid1c4 [ 270.306829][ T9784] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0 [ 270.350358][ T9764] (syz.0.1744,9764,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x729e4f9c, computed 0x295f958d. Applying ECC. [ 270.369122][ T9784] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 64512 [ 270.474299][ T9764] JBD2: Ignoring recovery information on journal [ 270.512438][ T9784] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1747: Failed to acquire dquot type 0 [ 270.512695][ T5793] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 270.637554][ T9764] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 270.745432][ T9764] (syz.0.1744,9764,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x729e4f9c, computed 0x295f958d. Applying ECC. [ 270.789886][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 271.082461][ T9764] (syz.0.1744,9764,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xa1ff4175. Applying ECC. [ 271.140446][ T9764] (syz.0.1744,9764,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0xfd02ac81 [ 271.198404][ T9764] (syz.0.1744,9764,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5 [ 271.207884][ T9764] (syz.0.1744,9764,0):ocfs2_quota_read:201 ERROR: status = -5 [ 271.289226][ T9764] Quota error (device loop0): find_block_dqentry: Can't read quota tree block 6 [ 271.329644][ T9764] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 271.385671][ T9764] (syz.0.1744,9764,0):ocfs2_acquire_dquot:878 ERROR: status = -5 [ 271.417112][ T9764] (syz.0.1744,9764,0):ocfs2_mknod:314 ERROR: status = -5 [ 271.459905][ T9764] (syz.0.1744,9764,0):ocfs2_mknod:502 ERROR: status = -5 [ 271.467619][ T9764] (syz.0.1744,9764,0):ocfs2_create:676 ERROR: status = -5 [ 271.720616][ T5797] ocfs2: Unmounting device (7,0) on (node local) [ 272.339460][ T9837] loop1: detected capacity change from 0 to 256 [ 272.422463][ T9837] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 272.477464][ T9843] loop0: detected capacity change from 0 to 2048 [ 272.521522][ T9843] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 273.578282][ T9870] netlink: 10 bytes leftover after parsing attributes in process `syz.1.1783'. [ 273.616058][ T9872] ptrace attach of "./syz-executor exec"[5790] was attempted by "./syz-executor exec"[9872] [ 274.298231][ T9900] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1799'. [ 274.494535][ T9906] loop0: detected capacity change from 0 to 64 [ 274.524124][ T9896] loop3: detected capacity change from 0 to 8192 [ 274.928188][ T2127] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 274.973273][ T9917] loop0: detected capacity change from 0 to 256 [ 274.984041][ T9918] loop3: detected capacity change from 0 to 64 [ 275.018973][ T8] usb 2-1: new full-speed USB device number 8 using dummy_hcd [ 275.050949][ T9918] Bad inode number on dev loop3: 6 is out of range [ 275.120267][ T2127] usb 3-1: config 0 has an invalid interface number: 64 but max is 0 [ 275.130425][ T2127] usb 3-1: config 0 has an invalid descriptor of length 48, skipping remainder of the config [ 275.158113][ T2127] usb 3-1: config 0 has no interface number 0 [ 275.176043][ T2127] usb 3-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 275.187529][ T2127] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 275.192757][ T9917] FAT-fs (loop0): Directory bread(block 64) failed [ 275.198684][ T2127] usb 3-1: Product: syz [ 275.206735][ T2127] usb 3-1: Manufacturer: syz [ 275.217250][ T2127] usb 3-1: SerialNumber: syz [ 275.224741][ T9917] FAT-fs (loop0): Directory bread(block 65) failed [ 275.235574][ T2127] usb 3-1: config 0 descriptor?? [ 275.241548][ T9917] FAT-fs (loop0): Directory bread(block 66) failed [ 275.258321][ T8] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 275.279646][ T9917] FAT-fs (loop0): Directory bread(block 67) failed [ 275.286478][ T9917] FAT-fs (loop0): Directory bread(block 68) failed [ 275.298212][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 275.315664][ T9917] FAT-fs (loop0): Directory bread(block 69) failed [ 275.325175][ T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 275.335622][ T9917] FAT-fs (loop0): Directory bread(block 70) failed [ 275.348414][ T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 275.367362][ T9917] FAT-fs (loop0): Directory bread(block 71) failed [ 275.374541][ T9917] FAT-fs (loop0): Directory bread(block 72) failed [ 275.382118][ T8] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9 [ 275.398433][ T9917] FAT-fs (loop0): Directory bread(block 73) failed [ 275.408719][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.420734][ T8] usb 2-1: config 0 descriptor?? [ 275.443983][ T8] gspca_main: spca561-2.14.0 probing abcd:cdee [ 275.638725][ T8] spca561: probe of 2-1:0.0 failed with error -22 [ 275.646628][ T8] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 275.672063][ T8] usb 2-1: MIDIStreaming interface descriptor not found [ 275.703296][ T2127] usb 3-1: Found UVC 0.00 device syz (046d:0823) [ 275.725730][ T2127] usb 3-1: No valid video chain found. [ 275.750284][ T2127] usb 3-1: USB disconnect, device number 9 [ 275.797790][ T9926] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1812'. [ 275.931196][ T5900] udevd[5900]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 275.952128][ T8] snd-usb-audio: probe of 2-1:0.0 failed with error -12 [ 275.981962][ T8] usb 2-1: USB disconnect, device number 8 [ 276.118550][ T5840] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 276.308307][ T5840] usb 1-1: Using ep0 maxpacket: 16 [ 276.322108][ T5840] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 276.349183][ T5840] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 276.383893][ T5840] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 276.432408][ T5840] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 276.457085][ T5840] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 276.497405][ T5840] usb 1-1: config 1 interface 0 has no altsetting 0 [ 276.499464][ T9939] netdevsim netdevsim3 netdevsim0: left promiscuous mode [ 276.514602][ T5840] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 276.559219][ T5840] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.619012][ T5840] ums-sddr09 1-1:1.0: USB Mass Storage device detected [ 276.623779][ T9945] loop2: detected capacity change from 0 to 256 [ 276.733123][ T9945] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 276.873855][ T5840] scsi host1: usb-storage 1-1:1.0 [ 276.975102][ T9956] openvswitch: netlink: Geneve opt len 3 is not a multiple of 4. [ 277.140744][ T785] usb 1-1: USB disconnect, device number 9 [ 277.304309][ T9966] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1830'. [ 277.350122][ T9964] loop1: detected capacity change from 0 to 4096 [ 277.388847][ T9964] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 277.530611][ T9964] ntfs: volume version 3.1. [ 278.573662][ T9975] loop2: detected capacity change from 0 to 32768 [ 278.611794][ T9975] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.1835 (9975) [ 278.661694][ T9975] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 278.674409][ T9975] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 278.688537][ T9975] BTRFS info (device loop2): setting nodatacow, compression disabled [ 278.703744][ T9975] BTRFS info (device loop2): max_inline at 0 [ 278.715668][ T9975] BTRFS info (device loop2): enabling disk space caching [ 278.732355][ T9975] BTRFS info (device loop2): turning off barriers [ 278.743217][ T9975] BTRFS info (device loop2): turning on flush-on-commit [ 278.755858][ T9975] BTRFS info (device loop2): doing ref verification [ 278.763873][ T9975] BTRFS info (device loop2): force clearing of disk cache [ 278.771778][ T9975] BTRFS info (device loop2): enabling ssd optimizations [ 278.779442][ T5827] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 278.798797][ T9975] BTRFS info (device loop2): max_inline at 4096 [ 278.805369][ T9975] BTRFS info (device loop2): disk space caching is enabled [ 278.910105][ T9975] BTRFS info (device loop2): auto enabling async discard [ 278.960591][ T9975] BTRFS info (device loop2): rebuilding free space tree [ 278.968739][ T5840] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 279.006567][ T5827] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 279.044919][ T5827] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.054418][ T9975] BTRFS info (device loop2): disabling free space tree [ 279.068979][ T9975] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 279.086991][ T5827] usb 1-1: Product: syz [ 279.093219][ T5827] usb 1-1: Manufacturer: syz [ 279.103201][ T5827] usb 1-1: SerialNumber: syz [ 279.115344][ T9975] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 279.138119][ T5827] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 279.168544][ T5840] usb 4-1: Using ep0 maxpacket: 16 [ 279.191602][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 97, changing to 7 [ 279.205042][ T785] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 279.229759][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 24929, setting to 1024 [ 279.261037][ T5840] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 279.281532][ T5840] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 279.321234][ T5840] usb 4-1: Product: syz [ 279.325765][ T5840] usb 4-1: Manufacturer: syz [ 279.341333][ T5840] usb 4-1: SerialNumber: syz [ 279.362383][ T5840] usb 4-1: config 0 descriptor?? [ 279.382773][ T5840] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 279.408266][ T5840] em28xx 4-1:0.0: DVB interface 0 found: isoc [ 279.448875][ T9975] BTRFS info (device loop2: state M): max_inline at 0 [ 279.468335][ T9975] BTRFS info (device loop2: state M): doing ref verification [ 279.488146][ T9975] BTRFS info (device loop2: state M): force clearing of disk cache [ 279.497392][ T9975] BTRFS info (device loop2: state M): max_inline at 4096 [ 279.635948][ T5793] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 279.661354][ T5840] em28xx 4-1:0.0: unknown em28xx chip ID (0) [ 279.756817][ T8] usb 1-1: USB disconnect, device number 10 [ 279.823563][ T5840] em28xx 4-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 279.858485][ T5840] em28xx 4-1:0.0: board has no eeprom [ 279.958573][ T5840] em28xx 4-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 279.982414][ T5840] em28xx 4-1:0.0: dvb set to isoc mode. [ 280.000137][ T2127] em28xx 4-1:0.0: Binding DVB extension [ 280.022597][ T5840] usb 4-1: USB disconnect, device number 10 [ 280.079013][ T5840] em28xx 4-1:0.0: Disconnecting em28xx [ 280.279879][ T785] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 280.307836][ T2127] em28xx 4-1:0.0: Registering input extension [ 280.313519][ T785] ath9k_htc: Failed to initialize the device [ 280.350481][ T5840] em28xx 4-1:0.0: Closing input extension [ 280.369490][T10037] batadv0: entered promiscuous mode [ 280.388488][ T8] usb 1-1: ath9k_htc: USB layer deinitialized [ 280.471845][ T5840] em28xx 4-1:0.0: Freeing device [ 280.818250][ T2127] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 281.041923][ T2127] usb 2-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=5e.ad [ 281.088406][ T2127] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 281.129808][ T2127] usb 2-1: config 0 descriptor?? [ 281.338857][T10067] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 281.347286][T10067] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 281.370840][T10068] loop2: detected capacity change from 0 to 512 [ 281.393977][T10068] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 281.404092][ T2127] snd-usb-hiface: probe of 2-1:0.0 failed with error -22 [ 281.446701][T10068] EXT4-fs (loop2): 1 orphan inode deleted [ 281.458174][T10068] EXT4-fs (loop2): 1 truncate cleaned up [ 281.465540][T10068] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.573818][T10068] EXT4-fs error (device loop2): ext4_search_dir:1549: inode #2: block 13: comm syz.2.1871: bad entry in directory: inode out of bounds - offset=44, inode=1292, rec_len=16, size=1024 fake=0 [ 281.592837][ C0] vkms_vblank_simulate: vblank timer overrun [ 281.610129][ T8] usb 2-1: USB disconnect, device number 9 [ 281.635028][T10068] EXT4-fs (loop2): Remounting filesystem read-only [ 281.727134][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.128923][T10090] batadv0: entered promiscuous mode [ 282.214404][T10094] bridge_slave_0: left allmulticast mode [ 282.251845][T10094] bridge_slave_0: left promiscuous mode [ 282.277815][T10094] bridge0: port 1(bridge_slave_0) entered disabled state [ 282.326625][T10094] bridge_slave_1: left allmulticast mode [ 282.332730][T10094] bridge_slave_1: left promiscuous mode [ 282.349486][T10094] bridge0: port 2(bridge_slave_1) entered disabled state [ 282.405355][T10094] bond0: (slave bond_slave_0): Releasing backup interface [ 282.482970][T10094] bond0: (slave bond_slave_1): Releasing backup interface [ 282.680386][T10094] team0: Port device team_slave_0 removed [ 282.724061][T10094] team0: Port device team_slave_1 removed [ 282.739688][T10094] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 282.747584][T10094] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 282.770340][T10094] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 282.779335][T10094] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 282.823444][T10107] loop3: detected capacity change from 0 to 4096 [ 283.530236][T10127] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1899'. [ 283.538793][T10122] loop1: detected capacity change from 0 to 4096 [ 283.652766][T10129] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1900'. [ 283.684481][T10129] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1900'. [ 283.753907][T10122] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 283.774062][T10122] ntfs3: loop1: Failed to load $Extend (-22). [ 283.794729][T10131] bridge_slave_0: left allmulticast mode [ 283.819007][T10122] ntfs3: loop1: Failed to initialize $Extend. [ 283.833774][T10131] bridge_slave_0: left promiscuous mode [ 283.879497][T10131] bridge0: port 1(bridge_slave_0) entered disabled state [ 283.921392][T10131] bridge_slave_1: left allmulticast mode [ 283.927788][T10131] bridge_slave_1: left promiscuous mode [ 283.963002][T10131] bridge0: port 2(bridge_slave_1) entered disabled state [ 284.001968][T10131] bond0: (slave bond_slave_0): Releasing backup interface [ 284.045055][T10131] bond0: (slave bond_slave_1): Releasing backup interface [ 284.126947][T10131] team0: Port device team_slave_0 removed [ 284.208349][T10131] team0: Port device team_slave_1 removed [ 284.233772][T10131] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 284.246174][T10131] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 284.281909][T10131] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 284.299039][T10131] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 284.354166][ T28] audit: type=1326 audit(1761103632.536:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10143 comm="syz.1.1907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 284.417917][ T28] audit: type=1326 audit(1761103632.546:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10143 comm="syz.1.1907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 284.483378][T10131] team0: Port device geneve1 removed [ 284.495789][ T28] audit: type=1326 audit(1761103632.556:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10143 comm="syz.1.1907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=234 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 284.551246][ T28] audit: type=1326 audit(1761103632.556:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10143 comm="syz.1.1907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 284.576422][ C0] vkms_vblank_simulate: vblank timer overrun [ 284.612867][T10135] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 284.658078][ T28] audit: type=1326 audit(1761103632.556:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10143 comm="syz.1.1907" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f19a958efc9 code=0x7ffc0000 [ 284.685287][ C0] vkms_vblank_simulate: vblank timer overrun [ 284.859104][T10153] netlink: 'syz.2.1912': attribute type 5 has an invalid length. [ 284.960020][T10155] loop0: detected capacity change from 0 to 1024 [ 284.989071][T10155] EXT4-fs: Ignoring removed bh option [ 285.018110][T10155] EXT4-fs: inline encryption not supported [ 285.043744][T10155] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 285.054760][T10155] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 285.056828][T10158] loop2: detected capacity change from 0 to 512 [ 285.072357][T10159] loop1: detected capacity change from 0 to 256 [ 285.128975][T10158] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 285.129168][T10159] exfat: Deprecated parameter 'namecase' [ 285.169147][T10159] exfat: Deprecated parameter 'utf8' [ 285.175112][T10159] exfat: Deprecated parameter 'namecase' [ 285.181909][T10159] exfat: Deprecated parameter 'utf8' [ 285.206131][T10155] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #3: block 2: comm syz.0.1913: lblock 2 mapped to illegal pblock 2 (length 1) [ 285.229202][T10155] EXT4-fs (loop0): Remounting filesystem read-only [ 285.238487][T10155] Quota error (device loop0): qtree_write_dquot: dquota write failed [ 285.251213][T10158] EXT4-fs (loop2): 1 truncate cleaned up [ 285.275561][T10155] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 285.320555][T10158] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.328170][T10155] EXT4-fs (loop0): 1 orphan inode deleted [ 285.357754][T10159] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 285.366070][T10155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 285.455745][T10155] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.539598][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 285.985501][T10180] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 286.757484][T10174] loop3: detected capacity change from 0 to 32768 [ 286.815624][T10178] syz.2.1923 (10178): drop_caches: 2 [ 286.880539][T10174] ERROR: (device loop3): dtSearch: DT_GETPAGE: dtree page corrupt [ 286.880539][T10174] [ 286.929765][T10174] ERROR: (device loop3): remounting filesystem as read-only [ 286.986442][T10174] jfs_lookup: dtSearch returned -5 [ 287.412042][T10204] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 287.459010][T10208] batadv0: left promiscuous mode [ 288.203711][T10230] loop1: detected capacity change from 0 to 4096 [ 288.222401][T10230] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 288.378750][T10230] ntfs3: loop1: failed to convert "c46c" to euc-jp [ 288.708954][T10248] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 288.737449][T10248] overlayfs: missing 'lowerdir' [ 288.779137][T10252] netlink: 'syz.3.1960': attribute type 1 has an invalid length. [ 288.958293][T10257] program syz.1.1963 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 289.072036][T10262] loop2: detected capacity change from 0 to 8 [ 289.213145][T10266] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1967'. [ 289.270318][T10266] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1967'. [ 289.501592][T10275] loop0: detected capacity change from 0 to 64 [ 289.704361][T10282] loop1: detected capacity change from 0 to 256 [ 289.747511][T10282] exfat: Deprecated parameter 'namecase' [ 289.791407][T10282] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 289.839955][T10282] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 290.045331][T10290] loop0: detected capacity change from 0 to 64 [ 290.056610][T10292] loop3: detected capacity change from 0 to 256 [ 290.130272][T10290] Trying to free block not in datazone [ 290.280890][T10292] FAT-fs (loop3): Directory bread(block 64) failed [ 290.287763][T10292] FAT-fs (loop3): Directory bread(block 65) failed [ 290.308344][T10292] FAT-fs (loop3): Directory bread(block 66) failed [ 290.315472][T10292] FAT-fs (loop3): Directory bread(block 67) failed [ 290.343921][T10292] FAT-fs (loop3): Directory bread(block 68) failed [ 290.363921][T10292] FAT-fs (loop3): Directory bread(block 69) failed [ 290.408656][T10292] FAT-fs (loop3): Directory bread(block 70) failed [ 290.415354][T10292] FAT-fs (loop3): Directory bread(block 71) failed [ 290.449419][T10292] FAT-fs (loop3): Directory bread(block 72) failed [ 290.456257][T10292] FAT-fs (loop3): Directory bread(block 73) failed [ 290.882896][T10286] loop2: detected capacity change from 0 to 32768 [ 290.898490][T10286] (syz.2.1977,10286,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 290.933595][T10286] (syz.2.1977,10286,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 291.047622][T10310] netlink: 'syz.0.1988': attribute type 2 has an invalid length. [ 291.070131][T10286] JBD2: Ignoring recovery information on journal [ 291.179941][T10286] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 291.334822][T10318] syz.3.1992: attempt to access beyond end of device [ 291.334822][T10318] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0 [ 291.622965][ T5793] ocfs2: Unmounting device (7,2) on (node local) [ 292.348557][T10349] tmpfs: Group quota inode hardlimit too large. [ 292.357100][T10351] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2006'. [ 292.523402][T10356] loop2: detected capacity change from 0 to 512 [ 292.576855][T10356] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84ec018, mo2=0002] [ 292.598575][T10356] System zones: 0-2, 18-18, 34-34 [ 292.617363][T10356] EXT4-fs (loop2): orphan cleanup on readonly fs [ 292.689585][T10356] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.2009: bg 0: block 248: padding at end of block bitmap is not set [ 292.728407][ T28] audit: type=1326 audit(1761103640.896:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.3.2012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 292.788624][T10356] Quota error (device loop2): write_blk: dquota write failed [ 292.823770][T10365] loop1: detected capacity change from 0 to 256 [ 292.828243][T10356] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 292.848342][ T28] audit: type=1326 audit(1761103640.906:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.3.2012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 292.927169][T10365] FAT-fs (loop1): Directory bread(block 64) failed [ 292.933030][T10356] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.2009: Failed to acquire dquot type 1 [ 292.954457][T10365] FAT-fs (loop1): Directory bread(block 65) failed [ 292.967153][ T28] audit: type=1326 audit(1761103640.906:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.3.2012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 292.988948][T10365] FAT-fs (loop1): Directory bread(block 66) failed [ 293.014266][ T28] audit: type=1326 audit(1761103640.906:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.3.2012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 293.024539][T10365] FAT-fs (loop1): Directory bread(block 67) failed [ 293.042594][ T28] audit: type=1326 audit(1761103640.906:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10362 comm="syz.3.2012" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 293.082662][T10365] FAT-fs (loop1): Directory bread(block 68) failed [ 293.092136][T10356] EXT4-fs (loop2): 1 orphan inode deleted [ 293.100321][T10365] FAT-fs (loop1): Directory bread(block 69) failed [ 293.116920][ T42] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-5 [ 293.131675][T10365] FAT-fs (loop1): Directory bread(block 70) failed [ 293.141503][T10365] FAT-fs (loop1): Directory bread(block 71) failed [ 293.157624][ T42] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:2: Failed to release dquot type 1 [ 293.173943][T10365] FAT-fs (loop1): Directory bread(block 72) failed [ 293.185916][T10365] FAT-fs (loop1): Directory bread(block 73) failed [ 293.195896][T10356] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 293.278322][ T23] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 293.338931][T10356] EXT4-fs error (device loop2): ext4_lookup:1862: inode #2: comm syz.2.2009: deleted inode referenced: 12 [ 293.468295][ T23] usb 1-1: Using ep0 maxpacket: 16 [ 293.484370][ T23] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 293.514377][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 293.522136][ T23] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 293.551320][ T23] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 293.561737][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 293.588134][ T23] usb 1-1: Product: syz [ 293.592401][ T23] usb 1-1: Manufacturer: syz [ 293.617936][ T23] usb 1-1: SerialNumber: syz [ 293.759580][T10382] vim2m vim2m.0: Fourcc format (0x47425247) invalid. [ 293.889724][ T23] usb 1-1: cannot find UAC_HEADER [ 293.952803][ T23] snd-usb-audio: probe of 1-1:1.0 failed with error -22 [ 293.967083][ T23] usb 1-1: USB disconnect, device number 11 [ 294.016275][ T5900] udevd[5900]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 294.086549][T10390] xt_hashlimit: max too large, truncated to 1048576 [ 294.094641][T10390] No such timeout policy "syz1" [ 294.319997][T10396] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 294.341075][T10396] overlayfs: missing 'lowerdir' [ 294.798376][T10414] ip6gre1: entered allmulticast mode [ 295.060536][T10424] netlink: 'syz.2.2044': attribute type 1 has an invalid length. [ 295.079358][T10424] netlink: 228 bytes leftover after parsing attributes in process `syz.2.2044'. [ 295.335209][T10435] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2048'. [ 295.396167][T10438] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2050'. [ 295.438562][T10438] openvswitch: netlink: Missing key (keys=40, expected=100) [ 295.844983][T10452] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2057'. [ 296.129590][T10464] comedi comedi0: dt2814: I/O port conflict (0x5,2) [ 296.866662][T10485] delete_channel: no stack [ 297.287551][T10472] loop1: detected capacity change from 0 to 32768 [ 297.326876][T10472] (syz.1.2067,10472,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 297.368523][T10472] (syz.1.2067,10472,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 297.495192][T10472] JBD2: Ignoring recovery information on journal [ 297.558694][T10499] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (2878) [ 297.598177][T10499] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 297.693937][T10472] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 297.928517][T10508] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2084'. [ 297.968360][T10508] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2084'. [ 298.077255][ T5801] ocfs2: Unmounting device (7,1) on (node local) [ 298.406518][T10522] loop2: detected capacity change from 0 to 4096 [ 298.493250][T10525] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 298.523062][T10522] NILFS error (device loop2): nilfs_check_page: size of directory #2 is not a multiple of chunk size [ 298.557566][T10522] Remounting filesystem read-only [ 298.679963][T10529] loop1: detected capacity change from 0 to 256 [ 298.720161][T10529] FAT-fs (loop1): Directory bread(block 64) failed [ 298.748498][T10529] FAT-fs (loop1): Directory bread(block 65) failed [ 298.760294][T10529] FAT-fs (loop1): Directory bread(block 66) failed [ 298.786527][T10529] FAT-fs (loop1): Directory bread(block 67) failed [ 298.810198][T10529] FAT-fs (loop1): Directory bread(block 68) failed [ 298.830108][T10529] FAT-fs (loop1): Directory bread(block 69) failed [ 298.855807][T10529] FAT-fs (loop1): Directory bread(block 70) failed [ 298.889615][T10529] FAT-fs (loop1): Directory bread(block 71) failed [ 298.910759][T10529] FAT-fs (loop1): Directory bread(block 72) failed [ 298.938703][T10529] FAT-fs (loop1): Directory bread(block 73) failed [ 299.376200][T10546] netlink: 'syz.2.2102': attribute type 21 has an invalid length. [ 299.427841][ T28] audit: type=1400 audit(1761103647.606:154): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=10544 comm="syz.0.2103" [ 299.692598][T10557] netlink: 'syz.3.2108': attribute type 1 has an invalid length. [ 299.901419][T10563] bridge0: port 3(bond0) entered blocking state [ 299.923992][T10563] bridge0: port 3(bond0) entered disabled state [ 299.944441][T10563] bond0: entered allmulticast mode [ 299.954340][T10563] bond_slave_0: entered allmulticast mode [ 299.978136][T10563] bond_slave_1: entered allmulticast mode [ 299.986650][T10563] bond0: entered promiscuous mode [ 300.052268][T10563] bond_slave_0: entered promiscuous mode [ 300.088481][T10563] bond_slave_1: entered promiscuous mode [ 300.097185][T10563] bridge0: port 3(bond0) entered blocking state [ 300.103966][T10563] bridge0: port 3(bond0) entered forwarding state [ 300.268609][T10571] overlayfs: disabling nfs_export due to verity=require [ 300.338558][T10571] overlayfs: conflicting options: userxattr,verity=require [ 300.368960][T10575] netlink: 'syz.1.2117': attribute type 30 has an invalid length. [ 300.404198][T10575] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2117'. [ 300.419555][T10575] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 300.430683][T10575] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 301.639708][T10585] loop2: detected capacity change from 0 to 32768 [ 301.739689][T10585] jfs_strtoUCS: char2uni returned -22. [ 301.746230][T10585] charset = cp936, char = 0xd4 [ 301.789510][T10619] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2139'. [ 302.057509][T10627] netlink: 44 bytes leftover after parsing attributes in process `syz.0.2142'. [ 302.097249][T10627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2142'. [ 302.128675][T10627] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2142'. [ 302.518458][ T2127] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 302.656240][T10639] netlink: 'syz.3.2149': attribute type 21 has an invalid length. [ 302.736398][ T2127] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 302.748778][T10623] loop2: detected capacity change from 0 to 32768 [ 302.767252][ T2127] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 302.788191][ T2127] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 302.819701][ T2127] usb 2-1: New USB device found, idVendor=0bfd, idProduct=010c, bcdDevice=2d.16 [ 302.833684][T10623] ea_get: invalid extended attribute [ 302.849160][ T2127] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 302.868945][ T2127] usb 2-1: Product: syz [ 302.882090][ T2127] usb 2-1: Manufacturer: syz [ 302.901071][ T2127] usb 2-1: SerialNumber: syz [ 302.923771][ T2127] usb 2-1: config 0 descriptor?? [ 302.960004][ T2127] kvaser_usb 2-1:0.0: Cannot get usb endpoint(s) [ 303.126090][T10648] netlink: 'syz.3.2154': attribute type 5 has an invalid length. [ 303.145933][T10648] ip6erspan0: entered allmulticast mode [ 303.223050][ T2127] usb 2-1: USB disconnect, device number 10 [ 303.236704][T10651] loop2: detected capacity change from 0 to 2048 [ 303.333274][T10653] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 303.366100][T10655] loop0: detected capacity change from 0 to 8 [ 303.399736][T10655] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 303.432972][ T5900] udevd[5900]: incorrect cramfs checksum on /dev/loop0 [ 303.482563][T10655] cramfs: Error -5 while decompressing! [ 303.520098][T10655] cramfs: ffffffff96fdc348(26)->ffff88806cce2000(4096) [ 303.545155][ T5900] udevd[5900]: incorrect cramfs checksum on /dev/loop0 [ 303.570826][T10655] cramfs: Error -3 while decompressing! [ 303.598704][T10655] cramfs: ffffffff96fdc362(26)->ffff88807725b000(4096) [ 303.605729][T10655] cramfs: Error -3 while decompressing! [ 303.621435][T10655] cramfs: ffffffff96fdc37c(16)->ffff88807725c000(4096) [ 303.650289][T10655] cramfs: Error -5 while decompressing! [ 303.669329][T10655] cramfs: ffffffff96fdc348(26)->ffff88806cce2000(4096) [ 303.695980][ T28] audit: type=1800 audit(1761103651.886:155): pid=10655 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2156" name="file2" dev="loop0" ino=348 res=0 errno=0 [ 304.251724][T10678] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1 [ 304.288440][T10678] ip6gretap1: entered allmulticast mode [ 304.316415][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2168'. [ 304.319506][T10683] tmpfs: Bad value for 'mpol' [ 304.332132][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2168'. [ 304.347739][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2168'. [ 304.361681][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2168'. [ 304.388290][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2168'. [ 305.207902][T10707] loop2: detected capacity change from 0 to 512 [ 305.388275][T10707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 305.429605][T10707] ext4 filesystem being mounted at /513/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 305.558693][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 305.905319][T10697] loop0: detected capacity change from 0 to 32768 [ 305.999105][T10731] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 306.036839][T10697] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 306.127609][T10697] (syz.0.2175,10697,0):ocfs2_mknod:502 ERROR: status = -2 [ 306.142189][T10697] (syz.0.2175,10697,0):ocfs2_mkdir:659 ERROR: status = -2 [ 306.279370][ T5797] (syz-executor,5797,0):ocfs2_inode_is_valid_to_delete:852 ERROR: Skipping delete of root inode. [ 306.320891][ T5797] ocfs2: Unmounting device (7,0) on (node local) [ 306.489020][T10746] --map-set only usable from mangle table [ 306.713987][T10750] loop3: detected capacity change from 0 to 1764 [ 306.812743][T10750] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 307.002418][T10764] netlink: 'syz.3.2204': attribute type 13 has an invalid length. [ 307.045160][T10764] gretap0: refused to change device tx_queue_len [ 307.063948][T10764] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 307.100532][ T23] usb 3-1: new full-speed USB device number 10 using dummy_hcd [ 307.290379][ T23] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 307.312268][ T23] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 42769, setting to 64 [ 307.352943][ T23] usb 3-1: config 0 interface 0 has no altsetting 0 [ 307.380724][ T23] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 307.404697][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 307.428094][ T23] usb 3-1: Product: syz [ 307.438892][T10772] vlan0: entered promiscuous mode [ 307.454086][ T23] usb 3-1: Manufacturer: syz [ 307.474373][ T23] usb 3-1: SerialNumber: syz [ 307.498308][ T23] usb 3-1: config 0 descriptor?? [ 307.523128][ T23] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 found [ 307.732485][ T23] snd_usb_toneport 3-1:0.0: Line 6 TonePort UX2 now disconnected [ 307.753012][ T23] snd_usb_toneport: probe of 3-1:0.0 failed with error -22 [ 307.880821][T10783] __nla_validate_parse: 46 callbacks suppressed [ 307.880840][T10783] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2215'. [ 308.051514][ T23] usb 3-1: USB disconnect, device number 10 [ 308.934658][T10815] netlink: 10 bytes leftover after parsing attributes in process `syz.1.2230'. [ 309.366166][T10828] netlink: 22 bytes leftover after parsing attributes in process `syz.0.2236'. [ 309.563174][ T28] audit: type=1400 audit(1761103657.756:156): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=10835 comm="syz.0.2241" [ 309.605879][T10838] loop3: detected capacity change from 0 to 512 [ 309.629941][T10838] EXT4-fs: Ignoring removed i_version option [ 309.664027][T10838] EXT4-fs: Ignoring removed mblk_io_submit option [ 309.691502][T10838] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.2240: inode #13: comm syz.3.2240: iget: illegal inode # [ 309.744133][T10843] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2244'. [ 309.755221][T10838] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.2240: couldn't read orphan inode 13 (err -117) [ 309.820082][T10838] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 309.916092][T10849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2246'. [ 310.014738][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 310.082882][T10853] netlink: 'syz.0.2249': attribute type 1 has an invalid length. [ 310.352165][T10861] loop1: detected capacity change from 0 to 256 [ 310.383138][T10863] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2252'. [ 310.503950][T10861] FAT-fs (loop1): Directory bread(block 64) failed [ 310.530502][T10861] FAT-fs (loop1): Directory bread(block 65) failed [ 310.537850][T10861] FAT-fs (loop1): Directory bread(block 66) failed [ 310.568428][T10861] FAT-fs (loop1): Directory bread(block 67) failed [ 310.575486][T10861] FAT-fs (loop1): Directory bread(block 68) failed [ 310.638828][T10861] FAT-fs (loop1): Directory bread(block 69) failed [ 310.656410][T10861] FAT-fs (loop1): Directory bread(block 70) failed [ 310.686742][T10861] FAT-fs (loop1): Directory bread(block 71) failed [ 310.709230][T10861] FAT-fs (loop1): Directory bread(block 72) failed [ 310.716599][T10861] FAT-fs (loop1): Directory bread(block 73) failed [ 311.234811][T10888] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2265'. [ 311.388444][ T5795] Bluetooth: hci3: command 0x0406 tx timeout [ 311.388607][T10890] netlink: 'syz.0.2266': attribute type 5 has an invalid length. [ 311.431705][ T28] audit: type=1326 audit(1761103659.626:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.3.2268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 311.477578][ T28] audit: type=1326 audit(1761103659.656:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.3.2268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 311.510253][ T28] audit: type=1326 audit(1761103659.686:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.3.2268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 311.599226][ T28] audit: type=1326 audit(1761103659.686:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.3.2268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 311.669050][ T28] audit: type=1326 audit(1761103659.686:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10891 comm="syz.3.2268" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03edf8efc9 code=0x7ffc0000 [ 311.742940][T10903] CIFS: VFS: Malformed UNC in devname [ 312.490736][T10930] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 312.904082][T10940] loop1: detected capacity change from 0 to 4096 [ 312.935450][T10940] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 313.130263][T10950] netlink: 'syz.0.2296': attribute type 1 has an invalid length. [ 313.456412][T10962] loop3: detected capacity change from 0 to 256 [ 313.672830][T10966] loop2: detected capacity change from 0 to 16 [ 313.690583][T10966] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk [ 313.726634][T10966] erofs: (device loop2): mounted with root inode @ nid 36. [ 313.818118][ T23] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 314.010087][ T23] usb 4-1: config 0 has an invalid interface number: 64 but max is 0 [ 314.025184][ T23] usb 4-1: config 0 has an invalid descriptor of length 47, skipping remainder of the config [ 314.059737][ T23] usb 4-1: config 0 has no interface number 0 [ 314.080734][ T23] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48 [ 314.098419][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 314.128783][ T23] usb 4-1: Product: syz [ 314.132820][T10980] loop0: detected capacity change from 0 to 256 [ 314.133020][ T23] usb 4-1: Manufacturer: syz [ 314.172169][ T23] usb 4-1: SerialNumber: syz [ 314.187018][ T23] usb 4-1: config 0 descriptor?? [ 314.241905][T10982] netlink: 'syz.1.2312': attribute type 21 has an invalid length. [ 314.483676][ T23] usb 4-1: USB disconnect, device number 11 [ 314.705087][T10999] loop2: detected capacity change from 0 to 256 [ 314.781445][T10999] FAT-fs (loop2): Directory bread(block 64) failed [ 314.810452][T10999] FAT-fs (loop2): Directory bread(block 65) failed [ 314.817541][T10999] FAT-fs (loop2): Directory bread(block 66) failed [ 314.856776][T10999] FAT-fs (loop2): Directory bread(block 67) failed [ 314.885888][T10999] FAT-fs (loop2): Directory bread(block 68) failed [ 314.907517][T10999] FAT-fs (loop2): Directory bread(block 69) failed [ 314.928275][T10999] FAT-fs (loop2): Directory bread(block 70) failed [ 314.935870][T10999] FAT-fs (loop2): Directory bread(block 71) failed [ 314.954254][T10999] FAT-fs (loop2): Directory bread(block 72) failed [ 314.965879][T10999] FAT-fs (loop2): Directory bread(block 73) failed [ 316.173783][T11041] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 316.360291][T11044] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.2341'. [ 316.426442][T11047] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2343'. [ 316.465576][T11027] loop1: detected capacity change from 0 to 32768 [ 316.920377][ T28] audit: type=1326 audit(1761103665.116:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 317.002075][ T28] audit: type=1326 audit(1761103665.116:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 317.081579][ T28] audit: type=1326 audit(1761103665.136:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11056 comm="syz.0.2346" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7ff3b5f8efc9 code=0x7ffc0000 [ 317.447469][T11075] netlink: 'syz.2.2356': attribute type 3 has an invalid length. [ 317.795788][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.802543][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.886683][T11088] netlink: 'syz.2.2361': attribute type 1 has an invalid length. [ 317.905752][T11087] netlink: 115 bytes leftover after parsing attributes in process `syz.0.2362'. [ 318.102538][T11091] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 318.257069][T11073] loop1: detected capacity change from 0 to 32768 [ 318.325410][T11096] Cannot find add_set index 2 as target [ 318.399164][T11073] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 318.663776][ T5801] ocfs2: Unmounting device (7,1) on (node local) [ 319.594207][T11134] ALSA: mixer_oss: invalid OSS volume ';ʸgԊ8\>Pxi9 h~)V' [ 319.608460][T11134] ALSA: mixer_oss: invalid OSS volume '*bbX-]OF{T0pc' [ 319.648125][T11134] ALSA: mixer_oss: invalid OSS volume 'gI"4-Z' [ 319.655850][T11134] ALSA: mixer_oss: invalid OSS volume 'eQCȡ*qpAڜe T|K' [ 319.695655][T11104] loop2: detected capacity change from 0 to 32768 [ 319.702346][T11134] ALSA: mixer_oss: invalid OSS volume ':az]qeXfb]݆B.' [ 319.721353][T11134] ALSA: mixer_oss: invalid OSS volume 'j|q⩃˚[w3^.ג' [ 319.750706][T11134] ALSA: mixer_oss: invalid OSS volume '"P޸ۜo[8>7|YMepq' [ 319.755073][T11137] (null): rxe_set_mtu: Set mtu to 256 [ 319.792322][T11137] vxcan1 speed is unknown, defaulting to 1000 [ 319.801375][T11134] ALSA: mixer_oss: invalid OSS volume 'wI׷#t\W,bP=&e' [ 319.805931][T11137] vxcan1 speed is unknown, defaulting to 1000 [ 319.818565][T11104] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 319.824989][T11137] vxcan1 speed is unknown, defaulting to 1000 [ 319.842610][T11134] ALSA: mixer_oss: invalid OSS volume ']za-!)ϻvCYps' [ 319.862039][T11144] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2386'. [ 319.898983][T11134] ALSA: mixer_oss: invalid OSS volume 'LE]Dxt݂OY3fk$T "' [ 319.955529][T11134] ALSA: mixer_oss: invalid OSS volume '[' [ 319.993989][T11134] ALSA: mixer_oss: invalid OSS volume '3A14IN+|\' [ 320.014913][T11137] infiniband syz2: set active [ 320.023669][ T5840] vxcan1 speed is unknown, defaulting to 1000 [ 320.032822][T11137] infiniband syz2: added vxcan1 [ 320.043696][T11134] ALSA: mixer_oss: invalid OSS volume '$ [ 334.852961][ T23] dump_stack_lvl+0x16c/0x230 [ 334.857755][ T23] ? __lock_acquire+0x7c80/0x7c80 [ 334.863249][ T23] ? show_regs_print_info+0x20/0x20 [ 334.868999][ T23] ? load_image+0x3b0/0x3b0 [ 334.873896][ T23] ? __virt_addr_valid+0x469/0x540 [ 334.879236][ T23] print_report+0xac/0x220 [ 334.883706][ T23] ? __lock_acquire+0xff/0x7c80 [ 334.888717][ T23] kasan_report+0x117/0x150 [ 334.893370][ T23] ? __lock_acquire+0xff/0x7c80 [ 334.898329][ T23] __lock_acquire+0xff/0x7c80 [ 334.903208][ T23] ? mark_lock+0x94/0x320 [ 334.907849][ T23] ? __lock_acquire+0x1334/0x7c80 [ 334.913269][ T23] ? mark_lock+0x94/0x320 [ 334.917911][ T23] ? look_up_lock_class+0x75/0x140 [ 334.923733][ T23] ? verify_lock_unused+0x140/0x140 [ 334.929646][ T23] ? register_lock_class+0xb5/0x890 [ 334.935025][ T23] ? is_dynamic_key+0x260/0x260 [ 334.940175][ T23] ? mark_lock+0x94/0x320 [ 334.944738][ T23] ? __lock_acquire+0x1334/0x7c80 [ 334.950234][ T23] lock_acquire+0x197/0x410 [ 334.955152][ T23] ? smscore_getbuffer+0xa9/0x440 [ 334.960400][ T23] ? read_lock_is_recursive+0x20/0x20 [ 334.965896][ T23] _raw_spin_lock_irqsave+0xa8/0xf0 [ 334.971147][ T23] ? smscore_getbuffer+0xa9/0x440 [ 334.976627][ T23] ? _raw_spin_lock+0x40/0x40 [ 334.981604][ T23] smscore_getbuffer+0xa9/0x440 [ 334.986930][ T23] ? smscore_onresponse+0xf10/0xf10 [ 334.992236][ T23] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 334.998497][ T23] ? read_lock_is_recursive+0x20/0x20 [ 335.004003][ T23] do_submit_urb+0x98/0x360 [ 335.009007][ T23] ? process_scheduled_works+0x957/0x15b0 [ 335.014895][ T23] ? process_scheduled_works+0x957/0x15b0 [ 335.021129][ T23] process_scheduled_works+0xa45/0x15b0 [ 335.026970][ T23] ? assign_work+0x400/0x400 [ 335.031769][ T23] ? assign_work+0x39e/0x400 [ 335.036423][ T23] worker_thread+0xa55/0xfc0 [ 335.041928][ T23] kthread+0x2fa/0x390 [ 335.046006][ T23] ? pr_cont_work+0x560/0x560 [ 335.050702][ T23] ? kthread_blkcg+0xd0/0xd0 [ 335.055407][ T23] ret_from_fork+0x48/0x80 [ 335.059843][ T23] ? kthread_blkcg+0xd0/0xd0 [ 335.064479][ T23] ret_from_fork_asm+0x11/0x20 [ 335.069295][ T23] [ 335.072323][ T23] [ 335.074723][ T23] Allocated by task 27: [ 335.079264][ T23] kasan_set_track+0x4e/0x70 [ 335.083981][ T23] __kasan_kmalloc+0x8f/0xa0 [ 335.088597][ T23] smscore_register_device+0x63/0x10f0 [ 335.094608][ T23] smsusb_probe+0x1362/0x1da0 [ 335.099659][ T23] usb_probe_interface+0x5a4/0xb00 [ 335.105081][ T23] really_probe+0x25b/0xb40 [ 335.109802][ T23] __driver_probe_device+0x18c/0x330 [ 335.115483][ T23] driver_probe_device+0x4f/0x420 [ 335.120653][ T23] __device_attach_driver+0x2ca/0x520 [ 335.126506][ T23] bus_for_each_drv+0x24b/0x2d0 [ 335.131518][ T23] __device_attach+0x2b5/0x400 [ 335.136316][ T23] bus_probe_device+0x180/0x260 [ 335.141298][ T23] device_add+0x85b/0xc20 [ 335.145773][ T23] usb_set_configuration+0x1a79/0x20c0 [ 335.151602][ T23] usb_generic_driver_probe+0x8d/0x150 [ 335.157204][ T23] usb_probe_device+0x13d/0x280 [ 335.162246][ T23] really_probe+0x25b/0xb40 [ 335.167042][ T23] __driver_probe_device+0x18c/0x330 [ 335.173219][ T23] driver_probe_device+0x4f/0x420 [ 335.178902][ T23] __device_attach_driver+0x2ca/0x520 [ 335.184501][ T23] bus_for_each_drv+0x24b/0x2d0 [ 335.189456][ T23] __device_attach+0x2b5/0x400 [ 335.194409][ T23] bus_probe_device+0x180/0x260 [ 335.199350][ T23] device_add+0x85b/0xc20 [ 335.203735][ T23] usb_new_device+0xa31/0x1630 [ 335.208634][ T23] hub_event+0x2962/0x49c0 [ 335.213329][ T23] process_scheduled_works+0xa45/0x15b0 [ 335.219119][ T23] worker_thread+0xa55/0xfc0 [ 335.224124][ T23] kthread+0x2fa/0x390 [ 335.228325][ T23] ret_from_fork+0x48/0x80 [ 335.232961][ T23] ret_from_fork_asm+0x11/0x20 [ 335.238016][ T23] [ 335.240440][ T23] Freed by task 27: [ 335.244354][ T23] kasan_set_track+0x4e/0x70 [ 335.249188][ T23] kasan_save_free_info+0x2e/0x50 [ 335.254485][ T23] ____kasan_slab_free+0x126/0x1e0 [ 335.260057][ T23] slab_free_freelist_hook+0x130/0x1b0 [ 335.265905][ T23] __kmem_cache_free+0xba/0x1f0 [ 335.270870][ T23] smscore_unregister_device+0x603/0x6e0 [ 335.276860][ T23] smsusb_term_device+0x18f/0x220 [ 335.281931][ T23] smsusb_probe+0x1708/0x1da0 [ 335.286746][ T23] usb_probe_interface+0x5a4/0xb00 [ 335.292077][ T23] really_probe+0x25b/0xb40 [ 335.296734][ T23] __driver_probe_device+0x18c/0x330 [ 335.302054][ T23] driver_probe_device+0x4f/0x420 [ 335.307287][ T23] __device_attach_driver+0x2ca/0x520 [ 335.312980][ T23] bus_for_each_drv+0x24b/0x2d0 [ 335.317952][ T23] __device_attach+0x2b5/0x400 [ 335.322876][ T23] bus_probe_device+0x180/0x260 [ 335.328025][ T23] device_add+0x85b/0xc20 [ 335.332503][ T23] usb_set_configuration+0x1a79/0x20c0 [ 335.338073][ T23] usb_generic_driver_probe+0x8d/0x150 [ 335.343725][ T23] usb_probe_device+0x13d/0x280 [ 335.348856][ T23] really_probe+0x25b/0xb40 [ 335.353447][ T23] __driver_probe_device+0x18c/0x330 [ 335.359098][ T23] driver_probe_device+0x4f/0x420 [ 335.364772][ T23] __device_attach_driver+0x2ca/0x520 [ 335.370272][ T23] bus_for_each_drv+0x24b/0x2d0 [ 335.375281][ T23] __device_attach+0x2b5/0x400 [ 335.380421][ T23] bus_probe_device+0x180/0x260 [ 335.385487][ T23] device_add+0x85b/0xc20 [ 335.389850][ T23] usb_new_device+0xa31/0x1630 [ 335.394833][ T23] hub_event+0x2962/0x49c0 [ 335.399368][ T23] process_scheduled_works+0xa45/0x15b0 [ 335.405122][ T23] worker_thread+0xa55/0xfc0 [ 335.409919][ T23] kthread+0x2fa/0x390 [ 335.414148][ T23] ret_from_fork+0x48/0x80 [ 335.418952][ T23] ret_from_fork_asm+0x11/0x20 [ 335.423736][ T23] [ 335.426069][ T23] The buggy address belongs to the object at ffff88802689b000 [ 335.426069][ T23] which belongs to the cache kmalloc-2k of size 2048 [ 335.440706][ T23] The buggy address is located 152 bytes inside of [ 335.440706][ T23] freed 2048-byte region [ffff88802689b000, ffff88802689b800) [ 335.454693][ T23] [ 335.457026][ T23] The buggy address belongs to the physical page: [ 335.463686][ T23] page:ffffea00009a2600 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x26898 [ 335.473957][ T23] head:ffffea00009a2600 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 335.483183][ T23] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 335.491983][ T23] page_type: 0xffffffff() [ 335.496591][ T23] raw: 00fff00000000840 ffff888017842000 dead000000000100 dead000000000122 [ 335.505461][ T23] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000 [ 335.514955][ T23] page dumped because: kasan: bad access detected [ 335.522091][ T23] page_owner tracks the page as allocated [ 335.528589][ T23] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1, tgid 1 (swapper/0), ts 20477968350, free_ts 0 [ 335.549192][ T23] post_alloc_hook+0x1cd/0x210 [ 335.554387][ T23] get_page_from_freelist+0x195c/0x19f0 [ 335.560062][ T23] __alloc_pages+0x1e3/0x460 [ 335.565242][ T23] alloc_page_interleave+0x24/0x1e0 [ 335.570622][ T23] alloc_slab_page+0x5d/0x170 [ 335.575345][ T23] new_slab+0x87/0x2e0 [ 335.579628][ T23] ___slab_alloc+0xc6d/0x1300 [ 335.584348][ T23] __kmem_cache_alloc_node+0x1a2/0x260 [ 335.591676][ T23] kmalloc_trace+0x2a/0xe0 [ 335.596738][ T23] __v4l2_device_register_subdev_nodes+0xfc/0x610 [ 335.603409][ T23] vimc_probe+0xdf5/0x15b0 [ 335.607945][ T23] platform_probe+0x13b/0x1c0 [ 335.612702][ T23] really_probe+0x25b/0xb40 [ 335.617528][ T23] __driver_probe_device+0x18c/0x330 [ 335.623363][ T23] driver_probe_device+0x4f/0x420 [ 335.628954][ T23] __driver_attach+0x44e/0x6f0 [ 335.633826][ T23] page_owner free stack trace missing [ 335.639727][ T23] [ 335.642233][ T23] Memory state around the buggy address: [ 335.648146][ T23] ffff88802689af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 335.656645][ T23] ffff88802689b000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 335.665682][ T23] >ffff88802689b080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 335.673981][ T23] ^ [ 335.680375][ T23] ffff88802689b100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 335.688751][ T23] ffff88802689b180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 335.697205][ T23] ================================================================== [ 335.705396][ T23] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 335.712787][ T23] CPU: 1 PID: 23 Comm: kworker/1:0 Not tainted syzkaller #0 [ 335.720367][ T23] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 335.730975][ T23] Workqueue: events do_submit_urb [ 335.736060][ T23] Call Trace: [ 335.739462][ T23] [ 335.743032][ T23] dump_stack_lvl+0x16c/0x230 [ 335.747750][ T23] ? show_regs_print_info+0x20/0x20 [ 335.753057][ T23] ? load_image+0x3b0/0x3b0 [ 335.757805][ T23] panic+0x2c0/0x710 [ 335.762049][ T23] ? bpf_jit_dump+0xd0/0xd0 [ 335.766667][ T23] ? _raw_spin_unlock_irqrestore+0xae/0x110 [ 335.772584][ T23] ? _raw_spin_unlock+0x40/0x40 [ 335.777564][ T23] ? print_memory_metadata+0x314/0x400 [ 335.783128][ T23] ? __lock_acquire+0xff/0x7c80 [ 335.788097][ T23] check_panic_on_warn+0x84/0xa0 [ 335.793166][ T23] ? __lock_acquire+0xff/0x7c80 [ 335.798247][ T23] end_report+0x6f/0x140 [ 335.802535][ T23] kasan_report+0x128/0x150 [ 335.807321][ T23] ? __lock_acquire+0xff/0x7c80 [ 335.812326][ T23] __lock_acquire+0xff/0x7c80 [ 335.817303][ T23] ? mark_lock+0x94/0x320 [ 335.821831][ T23] ? __lock_acquire+0x1334/0x7c80 [ 335.826991][ T23] ? mark_lock+0x94/0x320 [ 335.831463][ T23] ? look_up_lock_class+0x75/0x140 [ 335.836712][ T23] ? verify_lock_unused+0x140/0x140 [ 335.841936][ T23] ? register_lock_class+0xb5/0x890 [ 335.847257][ T23] ? is_dynamic_key+0x260/0x260 [ 335.852141][ T23] ? mark_lock+0x94/0x320 [ 335.856519][ T23] ? __lock_acquire+0x1334/0x7c80 [ 335.861954][ T23] lock_acquire+0x197/0x410 [ 335.866740][ T23] ? smscore_getbuffer+0xa9/0x440 [ 335.871992][ T23] ? read_lock_is_recursive+0x20/0x20 [ 335.877683][ T23] _raw_spin_lock_irqsave+0xa8/0xf0 [ 335.883695][ T23] ? smscore_getbuffer+0xa9/0x440 [ 335.889025][ T23] ? _raw_spin_lock+0x40/0x40 [ 335.894025][ T23] smscore_getbuffer+0xa9/0x440 [ 335.900162][ T23] ? smscore_onresponse+0xf10/0xf10 [ 335.905755][ T23] ? lockdep_hardirqs_on_prepare+0x400/0x760 [ 335.911986][ T23] ? read_lock_is_recursive+0x20/0x20 [ 335.917752][ T23] do_submit_urb+0x98/0x360 [ 335.922510][ T23] ? process_scheduled_works+0x957/0x15b0 [ 335.928533][ T23] ? process_scheduled_works+0x957/0x15b0 [ 335.934705][ T23] process_scheduled_works+0xa45/0x15b0 [ 335.940441][ T23] ? assign_work+0x400/0x400 [ 335.945349][ T23] ? assign_work+0x39e/0x400 [ 335.949981][ T23] worker_thread+0xa55/0xfc0 [ 335.954900][ T23] kthread+0x2fa/0x390 [ 335.959007][ T23] ? pr_cont_work+0x560/0x560 [ 335.963981][ T23] ? kthread_blkcg+0xd0/0xd0 [ 335.968631][ T23] ret_from_fork+0x48/0x80 [ 335.973185][ T23] ? kthread_blkcg+0xd0/0xd0 [ 335.977804][ T23] ret_from_fork_asm+0x11/0x20 [ 335.982685][ T23] [ 335.986080][ T23] Kernel Offset: disabled [ 335.990539][ T23] Rebooting in 86400 seconds..