last executing test programs: 5.199869892s ago: executing program 4 (id=717): r0 = socket(0x200000000000011, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'syz_tun\x00', 0x0}) bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14) syz_emit_ethernet(0x22, &(0x7f0000000540)={@local, @empty, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x37, 0x14, 0x66, 0x0, 0x6, 0x1, 0x0, @remote, @empty}}}}}, 0x0) 4.956784436s ago: executing program 4 (id=721): r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000140)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f500090582020002"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0x88, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_AF_SPEC={0x68, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0x2, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0x30, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8}, {0x8}]}}, @AF_INET6={0x4}]}]}, 0x88}}, 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xa8, &(0x7f0000000040)=ANY=[@ANYBLOB="6b0ee0b3d41b1b"]) 3.306246048s ago: executing program 3 (id=731): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f00000000c0)='./file0\x00', 0x204888, &(0x7f0000000380)=ANY=[@ANYBLOB="756e695f786c6174653d312c696f636861727365743d757466382c0097b75cbdde02821d0f899c2377ee9577397fc18b433d0c59e692b381740ca495e1c145c5922679338b5ff21c0653a98440a5725268a242c0263564f988d3c178704feaf8a412df818275708882ea9a4048c6e458a1f05b83f2e69b965b1df203b21de2b0ee375647f886a5310889982079aa7b1fb42e2382d40feefe7f768eec58b19cf50faaf129503175f4262df740183df51d3641ff78b86127c1db8ef165bfa3bd20797fde6ff91a0e45d3d7c1c6d1ce0a72be8c1fdb00000000"], 0x1, 0x336, &(0x7f0000000880)="$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") capset(&(0x7f0000000000)={0x20080522}, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff) 3.305640208s ago: executing program 0 (id=741): socket(0x1e, 0x4, 0x0) r0 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xbee2, 0x800, 0xffffffff, 0xbfe00000}, &(0x7f0000000000)=0x0, &(0x7f0000000280)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3}) io_uring_enter(r0, 0x47f6, 0x0, 0x2, 0x0, 0x300) 2.949177874s ago: executing program 0 (id=732): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000240)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0x6e, &(0x7f0000000000), 0xe) 2.925093075s ago: executing program 3 (id=733): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0}, 0x1, 0x0, 0x0, 0x400d4}, 0x84) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl(r0, 0x8b2a, &(0x7f0000000040)) 2.873555385s ago: executing program 4 (id=735): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x80, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000001340)) ioctl$SNDCTL_DSP_SPEED(r0, 0xc0045002, &(0x7f00000001c0)=0x40) ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000180)=0x6f) 2.63949031s ago: executing program 3 (id=737): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x14) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xf) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) 2.63940181s ago: executing program 0 (id=738): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0], 0x6a) 2.63877555s ago: executing program 4 (id=739): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x822b01) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r1, 0x40047211, 0x0) 2.349553106s ago: executing program 4 (id=743): r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000041436120410e5150e8d5000000010902f98a5c01000000090401001186eee2000905821704"], 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000540)=@newtaction={0x88, 0x30, 0x1, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x1, 0x0, 0xffffffffffffffff, 0xff, 0xfffffffb}, 0x3}}, @TCA_MIRRED_PARMS={0x20, 0x4, {{0x3, 0x1, 0x4, 0xfffffeff, 0x7}, 0x2}}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x2004c0c4}, 0x8000) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xfffffffffffffddf, &(0x7f0000000000)=ANY=[]) syz_usb_control_io(r0, 0x0, 0x0) 2.291309676s ago: executing program 0 (id=745): r0 = syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x8000, &(0x7f0000000100), 0x1, 0x7b2, &(0x7f00000007c0)="$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") r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0) io_setup(0x1ff, &(0x7f0000001540)=0x0) io_submit(r2, 0x2, &(0x7f0000000140)=[&(0x7f00000000c0)={0x25, 0x0, 0x2, 0x1, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x3289, r1, 0x0, 0x0, 0x2, 0x0, 0x2, r1}]) 2.291214517s ago: executing program 3 (id=746): r0 = socket(0x25, 0x5, 0x0) r1 = syz_io_uring_setup(0x83b, &(0x7f0000000d40)={0x0, 0x1484, 0x800, 0x0, 0xe4}, &(0x7f0000000d00)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0x40, 0x0, r0, 0x80, &(0x7f00000000c0)=@nl=@proc={0x10, 0x0, 0x25dfdbfb}}) io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0) 1.868043255s ago: executing program 3 (id=749): syz_mount_image$fuse(0x0, &(0x7f0000002880)='./file0\x00', 0x20240d5, 0x0, 0xfe, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) setxattr$system_posix_acl(&(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='system.posix_acl_access\x00', 0x0, 0x0, 0x3) 1.717323887s ago: executing program 0 (id=750): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in={0x2, 0x4e21, @loopback}], 0x10) sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000000)="fd", 0x1}], 0x1, 0x0, 0x0, 0x804c044}, 0x881) getsockopt$inet_sctp_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000180)={0x0, 0x10001}, &(0x7f0000000440)=0x8) 1.58822133s ago: executing program 3 (id=752): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100009c323f08a5040330b244010203010902120001000200000904"], 0x0) syz_usb_control_io(r0, &(0x7f0000002000)={0x2c, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0003160000000403"], 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io$printer(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) 1.392637853s ago: executing program 1 (id=753): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x7, 0x6, 0x3, 0x100}, 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x1, 0x7, 0x6, 0x9, 0x0, r0, 0x100}, 0x50) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r1, 0xd}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r2}, &(0x7f0000000880), &(0x7f00000008c0)=r0}, 0x20) 1.266997616s ago: executing program 1 (id=754): mknod$loop(&(0x7f0000000200)='./file0\x00', 0x2480, 0x1) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='net/sctp\x00') r1 = open_tree(r0, &(0x7f0000000640)='\x00', 0x89901) move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0) 1.266912416s ago: executing program 2 (id=755): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x121602, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000003c0)=0x14) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000100)=0xf) ioctl$TIOCVHANGUP(r0, 0x5437, 0x2) 1.112442229s ago: executing program 2 (id=756): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.mems\x00', 0x2, 0x0) write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[@ANYRESDEC=r0], 0x6a) 1.108383819s ago: executing program 1 (id=757): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0) r1 = dup(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000) syz_io_uring_setup(0x580e, &(0x7f0000000fc0)={0x0, 0x2271, 0x400, 0x3, 0x800287}, &(0x7f0000001040), &(0x7f0000001080)) 927.675762ms ago: executing program 2 (id=758): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x33, &(0x7f0000000000)=0x7, 0x4) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000240)=0xf2b, 0x4) getsockopt$inet6_buf(r0, 0x29, 0x6, &(0x7f0000000280)=""/10, &(0x7f0000000080)=0xfffffffffffffedc) 773.821655ms ago: executing program 2 (id=759): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x0, 0x8000000, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_LEGACY={0x4}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4810}, 0x10) 687.701827ms ago: executing program 1 (id=760): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000580)="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", 0x13c}], 0x2, 0x0, 0x48}, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8905, &(0x7f0000000580)) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00'}) 577.946389ms ago: executing program 1 (id=761): mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='rcu_utilization\x00', r0}, 0x18) clock_nanosleep(0x9, 0x0, &(0x7f0000000080)={0x0, 0x3938700}, 0x0) 517.75153ms ago: executing program 0 (id=762): syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000040), 0x2, 0x53a, &(0x7f0000000c80)="$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") connect$unix(0xffffffffffffffff, 0x0, 0x0) chown(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f0000000240)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000280)) 474.122611ms ago: executing program 2 (id=763): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r1, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)={0x14, 0x2a, 0x1, 0x0, 0x0, "", [@typed={0x3}]}, 0x14}], 0x1}, 0x0) 306.145914ms ago: executing program 1 (id=764): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x3, 0x5, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) eventfd2(0xffffffdc, 0x0) 779.23µs ago: executing program 2 (id=765): r0 = syz_usb_connect(0x5, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb768405e0483020b9901e4020109021b000100000000090400fb015c291d00090509"], 0x0) syz_open_dev$sndpcmp(&(0x7f0000000080), 0x3, 0x800) syz_open_dev$sndpcmp(&(0x7f0000000000), 0x3, 0x4000) syz_usb_disconnect(r0) 0s ago: executing program 4 (id=775): mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f00000002c0), &(0x7f0000000540)='./file0\x00', 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0016150b3f000000000000f0d4354b5a255ada7999001fc8f9e982365349739b3c7c9b5e8deb88405cc272b3be8ccfb503a2273297f601e86c6be6fb632414e1d0e9b21ce82dbf007799fe5492a936da23ab3b6539199a736055c647615f7cac5c45e94860a05844b846a6f8254252a17f35c8f5355bfdd3f62dd2f30f129a"], 0x1, 0x529, &(0x7f0000000580)="$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") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) kernel console output (not intermixed with test programs): , 0] type 2 family 0 port 6081 - 0 [ 88.453643][ T4265] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.471962][ T4265] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.483444][ T4265] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 88.566493][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.609242][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.628951][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.670798][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.697108][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.717137][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.734434][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 88.752958][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.771900][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 88.790806][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 88.806018][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 88.821500][ T4392] loop2: detected capacity change from 0 to 32768 [ 88.887766][ T4392] XFS (loop2): Mounting V5 Filesystem [ 88.901267][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.925967][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.940832][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.954653][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.965770][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 88.976908][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 88.993809][ T4266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 89.007613][ T4266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 89.013179][ T41] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 89.019781][ T4266] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.036253][ T4392] XFS (loop2): Ending clean mount [ 89.071812][ T4354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.080711][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 89.091071][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 89.099676][ T4354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.112432][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 89.173797][ T4266] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.184676][ T4266] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.204338][ T4266] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.216329][ T4266] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.231004][ T41] usb 4-1: Using ep0 maxpacket: 32 [ 89.245145][ T41] usb 4-1: config 0 has an invalid interface number: 85 but max is 0 [ 89.247729][ T4278] XFS (loop2): Unmounting Filesystem [ 89.264224][ T41] usb 4-1: config 0 has no interface number 0 [ 89.271856][ T41] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 89.285766][ T4354] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.295779][ T4354] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.308943][ T41] usb 4-1: config 0 interface 85 has no altsetting 0 [ 89.332334][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 89.344494][ T41] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 89.368911][ T4373] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.390326][ T4373] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.404248][ T41] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 89.415296][ T41] usb 4-1: Product: syz [ 89.424488][ T41] usb 4-1: Manufacturer: syz [ 89.431870][ T41] usb 4-1: SerialNumber: syz [ 89.463029][ T41] usb 4-1: config 0 descriptor?? [ 89.517246][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 89.616395][ T29] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.626438][ T29] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.690464][ T4293] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 89.783328][ T4354] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.825511][ T4354] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.893357][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 89.939585][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 89.951270][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 89.974389][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 89.982486][ T4414] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5'. [ 90.117183][ T22] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 90.125595][ T41] appletouch 4-1:0.85: Geyser mode initialized. [ 90.140374][ T41] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.85/input/input5 [ 90.175427][ T4417] loop2: detected capacity change from 0 to 128 [ 90.318323][ T4417] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 90.327997][ T22] usb 2-1: too many configurations: 9, using maximum allowed: 8 [ 90.399109][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.409377][ T4417] ext4 filesystem being mounted at /2/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 90.446908][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.462493][ T7] usb 4-1: USB disconnect, device number 2 [ 90.497203][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.535780][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.551780][ T7] appletouch 4-1:0.85: input: appletouch disconnected [ 90.557284][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.586020][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.612204][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.643835][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.687163][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.717655][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.738791][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.761498][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.767437][ T4278] EXT4-fs (loop2): unmounting filesystem. [ 90.773545][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.774388][ T4434] loop4: detected capacity change from 0 to 512 [ 90.794286][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.815981][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.822935][ T4434] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 90.854220][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 90.863718][ T4434] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 90.905091][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 90.945459][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.973368][ T4434] EXT4-fs (loop4): 1 truncate cleaned up [ 91.038040][ T4434] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 91.070040][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 91.108613][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 91.127678][ T4442] block nbd0: server does not support multiple connections per device. [ 91.151495][ T4442] block nbd0: shutting down sockets [ 91.157449][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 91.211952][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 91.254387][ T22] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 91.294427][ T22] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 91.343582][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 91.407363][ T22] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 91.416720][ T22] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 91.454561][ T22] usb 2-1: Product: syz [ 91.459585][ T22] usb 2-1: Manufacturer: syz [ 91.464516][ T22] usb 2-1: SerialNumber: syz [ 91.503675][ T22] usb 2-1: config 0 descriptor?? [ 91.570089][ T22] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0 [ 91.823917][ T22] usb 2-1: USB disconnect, device number 2 [ 91.865747][ T22] yurex 2-1:0.0: USB YUREX #0 now disconnected [ 92.047458][ T4335] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 92.140445][ T4467] loop3: detected capacity change from 0 to 128 [ 92.222333][ T26] audit: type=1800 audit(1759323336.017:2): pid=4467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.31" name="file1" dev="loop3" ino=1048595 res=0 errno=0 [ 92.248998][ T4335] usb 5-1: config 11 has an invalid interface number: 89 but max is 0 [ 92.266071][ T4335] usb 5-1: config 11 has no interface number 0 [ 92.284526][ T4335] usb 5-1: config 11 interface 89 has no altsetting 0 [ 92.296856][ T4335] usb 5-1: New USB device found, idVendor=05ac, idProduct=60a3, bcdDevice=27.33 [ 92.336629][ T4335] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 92.356177][ T4335] usb 5-1: Product: syz [ 92.363485][ T4469] syz.3.31: attempt to access beyond end of device [ 92.363485][ T4469] loop3: rw=2049, sector=145, nr_sectors = 88 limit=128 [ 92.383477][ T4335] usb 5-1: Manufacturer: syz [ 92.390516][ T4335] usb 5-1: SerialNumber: syz [ 92.495599][ T4473] netlink: 4 bytes leftover after parsing attributes in process `syz.2.33'. [ 92.635790][ T4335] ipheth 5-1:11.89: Unable to find alternate settings interface [ 92.685806][ T4293] kworker/u4:5: attempt to access beyond end of device [ 92.685806][ T4293] loop3: rw=1, sector=233, nr_sectors = 808 limit=128 [ 92.697412][ T4335] usb 5-1: USB disconnect, device number 2 [ 92.901915][ T4480] loop3: detected capacity change from 0 to 512 [ 92.946514][ T4480] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 93.109898][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 93.389651][ T4488] loop4: detected capacity change from 0 to 512 [ 93.419922][ T4488] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 93.456008][ T4488] EXT4-fs (loop4): orphan cleanup on readonly fs [ 93.544800][ T4488] EXT4-fs warning (device loop4): ext4_enable_quotas:7068: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 93.553296][ T4494] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 93.617559][ T4488] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 93.625068][ T4496] loop3: detected capacity change from 0 to 512 [ 93.652776][ T4488] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.39: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 93.738220][ T4488] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.39: couldn't read orphan inode 13 (err -117) [ 93.808160][ T4488] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 93.906185][ T4488] EXT4-fs error (device loop4): ext4_lookup:1858: comm syz.4.39: inode #15: comm syz.4.39: iget: illegal inode # [ 93.930188][ T4488] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 93.987894][ T4488] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 94.019474][ T4488] EXT4-fs warning (device loop4): ext4_enable_quotas:7068: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 94.212125][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 94.795590][ T4529] loop0: detected capacity change from 0 to 164 [ 94.816719][ T4529] ======================================================= [ 94.816719][ T4529] WARNING: The mand mount option has been deprecated and [ 94.816719][ T4529] and is ignored by this kernel. Remove the mand [ 94.816719][ T4529] option from the mount to silence this warning. [ 94.816719][ T4529] ======================================================= [ 95.253873][ T4537] loop4: detected capacity change from 0 to 8 [ 95.553150][ T4539] device veth0 entered promiscuous mode [ 95.560938][ T4538] device veth0 left promiscuous mode [ 95.903185][ T4554] loop3: detected capacity change from 0 to 8 [ 95.926370][ T4554] Dev loop3: unable to read RDB block 8 [ 95.939683][ T4554] loop3: unable to read partition table [ 95.961040][ T4554] loop3: partition table beyond EOD, truncated [ 95.977866][ T4554] loop_reread_partitions: partition scan of loop3 (Cjmmý?}X %`ր{֐ȵ4FLQk݊) failed (rc=-5) [ 96.037434][ T4558] Dev loop3: unable to read RDB block 8 [ 96.047428][ T4558] loop3: unable to read partition table [ 96.077993][ T4558] loop3: partition table beyond EOD, truncated [ 96.375537][ T4568] netlink: 'syz.4.71': attribute type 10 has an invalid length. [ 96.466395][ T4568] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 96.520725][ T4568] bond0: (slave batadv0): Enslaving as an active interface with an up link [ 96.583831][ T4569] netlink: 'syz.4.71': attribute type 10 has an invalid length. [ 96.603078][ T4569] netlink: 40 bytes leftover after parsing attributes in process `syz.4.71'. [ 96.638057][ T4569] device batadv0 entered promiscuous mode [ 96.670505][ T4569] bond0: (slave batadv0): Releasing backup interface [ 96.735381][ T4569] bridge0: port 3(batadv0) entered blocking state [ 96.763224][ T4569] bridge0: port 3(batadv0) entered disabled state [ 97.031830][ T9] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 97.041794][ T9] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 97.069517][ T4579] Zero length message leads to an empty skb [ 97.487672][ T4595] program syz.1.82 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 97.525896][ T4597] netlink: 44 bytes leftover after parsing attributes in process `syz.2.83'. [ 97.912491][ T4584] loop0: detected capacity change from 0 to 32768 [ 98.027439][ T41] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 98.095432][ T4584] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 98.137146][ T3652] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 98.232246][ T41] usb 3-1: Using ep0 maxpacket: 16 [ 98.253056][ T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 98.317368][ T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 98.337453][ T3652] usb 5-1: Using ep0 maxpacket: 32 [ 98.344327][ T41] usb 3-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00 [ 98.365041][ T3652] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 98.368348][ T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.402780][ T41] usb 3-1: config 0 descriptor?? [ 98.409452][ T3652] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 98.439880][ T3652] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 98.449300][ T3652] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.473059][ T3652] usb 5-1: config 0 descriptor?? [ 98.499756][ T3652] hub 5-1:0.0: USB hub found [ 98.534283][ T4266] ocfs2: Unmounting device (7,0) on (node local) [ 98.700928][ T3652] hub 5-1:0.0: 15 ports detected [ 98.717208][ T3652] hub 5-1:0.0: insufficient power available to use all downstream ports [ 98.874917][ T41] corsair 0003:1B1C:1B02.0001: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.2-1/input0 [ 98.915440][ T3652] hub 5-1:0.0: hub_hub_status failed (err = -71) [ 98.935494][ T3652] hub 5-1:0.0: config failed, can't get hub status (err -71) [ 98.968863][ T3652] usbhid 5-1:0.0: can't add hid device: -71 [ 98.975089][ T3652] usbhid: probe of 5-1:0.0 failed with error -71 [ 99.020187][ T3652] usb 5-1: USB disconnect, device number 3 [ 99.204845][ T4319] kernel write not supported for file /sg0 (pid: 4319 comm: kworker/0:6) [ 99.294080][ T41] usb 3-1: USB disconnect, device number 2 [ 99.303273][ T4628] loop1: detected capacity change from 0 to 1024 [ 99.372258][ T4628] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=802c018, mo2=0002] [ 99.390351][ T4628] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 99.436699][ T26] audit: type=1800 audit(1759323343.247:3): pid=4628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.96" name="file1" dev="loop1" ino=15 res=0 errno=0 [ 99.465266][ T4628] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.96: bg 0: block 88: padding at end of block bitmap is not set [ 99.545245][ T4628] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 99.593723][ T4637] loop0: detected capacity change from 0 to 512 [ 99.643907][ T4637] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 99.714013][ T4637] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 99.716617][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 99.732232][ T4637] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002] [ 99.757183][ T4637] System zones: 0-1, 15-15, 18-18, 34-34 [ 99.764497][ T4637] EXT4-fs (loop0): orphan cleanup on readonly fs [ 99.790968][ T4637] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0 [ 99.831476][ T4637] EXT4-fs warning (device loop0): ext4_enable_quotas:7068: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 99.879356][ T4637] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 99.912292][ T4637] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.98: bg 0: block 40: padding at end of block bitmap is not set [ 99.991115][ T4637] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6165: Corrupt filesystem [ 100.017835][ T4637] EXT4-fs (loop0): 1 truncate cleaned up [ 100.023598][ T4637] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 100.055513][ T4650] loop2: detected capacity change from 0 to 512 [ 100.099026][ T4650] EXT4-fs: Ignoring removed oldalloc option [ 100.126208][ T4637] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.98: bad symlink. [ 100.157707][ T4637] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.98: bad symlink. [ 100.159210][ T4650] EXT4-fs (loop2): 1 truncate cleaned up [ 100.174503][ T4650] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 100.293779][ T4653] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz.0.98: bad symlink. [ 100.458261][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 100.541950][ T4658] loop1: detected capacity change from 0 to 4096 [ 100.594521][ T4662] loop3: detected capacity change from 0 to 2048 [ 100.620730][ T4664] loop4: detected capacity change from 0 to 1024 [ 100.644081][ T4278] EXT4-fs (loop2): unmounting filesystem. [ 100.669325][ T4664] EXT4-fs: Ignoring removed orlov option [ 100.675315][ T4664] EXT4-fs: Ignoring removed nobh option [ 100.713563][ T4662] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 100.784120][ T4662] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 100.802331][ T4664] EXT4-fs: Ignoring removed bh option [ 100.824369][ T4662] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 100.863604][ T4662] UDF-fs: Scanning with blocksize 512 failed [ 100.883687][ T4669] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 100.912206][ T4664] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 100.945062][ T4662] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 101.215067][ T4658] NILFS error (device loop1): nilfs_dotdot: directory #12 missing '.' [ 101.252585][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 101.253442][ T4658] Remounting filesystem read-only [ 101.432235][ T4275] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 101.565010][ T4668] loop2: detected capacity change from 0 to 32768 [ 101.688806][ T4668] XFS (loop2): Mounting V5 Filesystem [ 101.854441][ T4668] XFS (loop2): Ending clean mount [ 102.070224][ T4278] XFS (loop2): Unmounting Filesystem [ 102.164617][ T4666] loop0: detected capacity change from 0 to 32768 [ 102.250678][ T4698] netlink: 36 bytes leftover after parsing attributes in process `syz.1.117'. [ 102.336246][ T4666] XFS (loop0): Mounting V5 Filesystem [ 102.545878][ T4666] XFS (loop0): Ending clean mount [ 102.591626][ T4666] XFS (loop0): Quotacheck needed: Please wait. [ 102.757152][ T4666] XFS (loop0): Quotacheck: Done. [ 102.873383][ T26] audit: type=1800 audit(1759323346.687:4): pid=4666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.106" name="file1" dev="loop0" ino=9286 res=0 errno=0 [ 103.011513][ T4717] loop3: detected capacity change from 0 to 4096 [ 103.065560][ T4266] XFS (loop0): Unmounting Filesystem [ 103.074773][ T4717] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 103.185798][ T1169] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 103.411557][ T1169] usb 3-1: Using ep0 maxpacket: 16 [ 103.426557][ T1169] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 103.438521][ T1169] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 103.453620][ T1169] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 103.495470][ T1169] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 103.541600][ T1169] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 103.604387][ T1169] usb 3-1: config 0 descriptor?? [ 103.689719][ T4264] ntfs3: loop3: ntfs_sync_fs r=1a failed, -22. [ 103.720395][ T4264] ntfs3: loop3: ntfs_evict_inode r=1a failed, -22. [ 103.720470][ T4264] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 104.056872][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x2 [ 104.077978][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.095952][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.103616][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.110258][ T4738] netlink: 4 bytes leftover after parsing attributes in process `syz.4.130'. [ 104.125887][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.161756][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.181992][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.202222][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.227106][ T1169] microsoft 0003:045E:07DA.0002: unknown main item tag 0x0 [ 104.239557][ T1169] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0002/input/input6 [ 104.263865][ T1169] microsoft 0003:045E:07DA.0002: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 104.290079][ T1169] usb 3-1: USB disconnect, device number 3 [ 104.323504][ T4723] loop1: detected capacity change from 0 to 40427 [ 104.359130][ T4723] F2FS-fs (loop1): build fault injection attr: rate: 771, type: 0x3ffff [ 104.386738][ T4723] F2FS-fs (loop1): invalid crc value [ 104.425627][ T4723] F2FS-fs (loop1): Found nat_bits in checkpoint [ 104.551468][ T4749] loop4: detected capacity change from 0 to 1764 [ 104.592441][ T4723] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 104.732785][ T4748] fido_id[4748]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 104.956216][ T4275] syz-executor: attempt to access beyond end of device [ 104.956216][ T4275] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 105.431192][ T4769] capability: warning: `syz.4.143' uses deprecated v2 capabilities in a way that may be insecure [ 106.568401][ T4792] program syz.3.151 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 106.634275][ T4775] loop4: detected capacity change from 0 to 32768 [ 106.738344][ T4794] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 106.805660][ T4775] XFS (loop4): Mounting V5 Filesystem [ 106.947950][ T4775] XFS (loop4): Ending clean mount [ 107.121279][ T4265] XFS (loop4): Unmounting Filesystem [ 107.543918][ T4812] loop1: detected capacity change from 0 to 1024 [ 107.560112][ T26] audit: type=1326 audit(1759323351.377:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 107.644332][ T26] audit: type=1326 audit(1759323351.407:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 107.757222][ T26] audit: type=1326 audit(1759323351.407:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 107.856055][ T26] audit: type=1326 audit(1759323351.407:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 107.911184][ T4812] hfsplus: xattr searching failed [ 107.956108][ T26] audit: type=1326 audit(1759323351.407:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 107.983465][ T4812] hfsplus: cannot replace xattr [ 108.072493][ T26] audit: type=1326 audit(1759323351.407:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 108.143831][ T4817] loop4: detected capacity change from 0 to 8192 [ 108.151503][ T26] audit: type=1326 audit(1759323351.407:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 108.199768][ T4817] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 108.317292][ T4817] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 108.326649][ T4817] REISERFS (device loop4): using ordered data mode [ 108.347360][ T4817] reiserfs: using flush barriers [ 108.367138][ T26] audit: type=1326 audit(1759323351.407:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 108.397563][ T4817] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 108.448037][ T4817] REISERFS (device loop4): checking transaction log (loop4) [ 108.449115][ T4827] netlink: 864 bytes leftover after parsing attributes in process `syz.0.163'. [ 108.457585][ T26] audit: type=1326 audit(1759323351.407:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 108.503905][ T4817] REISERFS (device loop4): Using r5 hash to sort names [ 108.512622][ T4829] xfrm0: Master is either lo or non-ether device [ 108.549634][ T4817] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 108.577095][ T26] audit: type=1326 audit(1759323351.407:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4798 comm="syz.2.153" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1f3b8eec9 code=0x7fc00000 [ 108.599444][ C0] vkms_vblank_simulate: vblank timer overrun [ 108.856870][ T4820] loop3: detected capacity change from 0 to 40427 [ 108.897418][ T4820] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 108.905326][ T4820] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 108.993004][ T4820] F2FS-fs (loop3): invalid crc value [ 109.076318][ T4820] F2FS-fs (loop3): Found nat_bits in checkpoint [ 109.277156][ T4820] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 109.308414][ T4820] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 109.480582][ T4846] loop1: detected capacity change from 0 to 512 [ 109.491467][ T4846] EXT4-fs: Ignoring removed nobh option [ 109.622275][ T4846] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117 [ 109.729364][ T4846] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.169: invalid indirect mapped block 256 (level 1) [ 109.783220][ T4846] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.169: invalid indirect mapped block 2683928664 (level 1) [ 109.828885][ T4846] EXT4-fs (loop1): 1 truncate cleaned up [ 109.834633][ T4846] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 109.937672][ T4846] EXT4-fs (loop1): shut down requested (2) [ 110.060974][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 110.158323][ T4862] loop2: detected capacity change from 0 to 128 [ 110.211226][ T4862] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 110.274554][ T4862] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 110.348834][ T4865] can0: slcan on ttyS3. [ 110.451016][ T4862] overlayfs: failed to create directory ./file0/work (errno: 28); mounting read-only [ 110.510079][ T4867] can0 (unregistered): slcan off ttyS3. [ 110.680611][ T4872] loop1: detected capacity change from 0 to 1024 [ 110.978413][ T4848] loop0: detected capacity change from 0 to 40427 [ 111.064927][ T4848] F2FS-fs (loop0): invalid crc value [ 111.135253][ T4848] F2FS-fs (loop0): Found nat_bits in checkpoint [ 111.294438][ T4889] loop1: detected capacity change from 0 to 1024 [ 111.342772][ T4848] F2FS-fs (loop0): Start checkpoint disabled! [ 111.464059][ T4848] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 111.687303][ T7] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 111.897236][ T7] usb 4-1: Using ep0 maxpacket: 16 [ 111.906652][ T7] usb 4-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 111.952053][ T7] usb 4-1: config 0 interface 0 has no altsetting 0 [ 111.989831][ T7] usb 4-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 112.038976][ T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.053282][ T4354] kworker/u4:6: attempt to access beyond end of device [ 112.053282][ T4354] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 112.081602][ T7] usb 4-1: config 0 descriptor?? [ 112.331822][ T4910] loop1: detected capacity change from 0 to 2048 [ 112.456349][ T4910] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 112.523497][ T7] nzxt-smart2 0003:1E71:2009.0003: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.3-1/input0 [ 112.580724][ T41] usb 5-1: new full-speed USB device number 4 using dummy_hcd [ 112.782688][ T41] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 112.811416][ T41] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 112.857158][ T41] usb 5-1: Product: syz [ 112.866186][ T41] usb 5-1: Manufacturer: syz [ 112.881957][ T41] usb 5-1: SerialNumber: syz [ 112.904872][ T41] usb 5-1: config 0 descriptor?? [ 112.958982][ T4335] usb 4-1: USB disconnect, device number 3 [ 113.114496][ T4928] loop0: detected capacity change from 0 to 4096 [ 113.173451][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 113.195954][ T4928] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 113.475010][ T41] usb 5-1: USB disconnect, device number 4 [ 113.575585][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 113.830940][ T4943] loop1: detected capacity change from 0 to 256 [ 113.884842][ T4943] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 113.955318][ T4943] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 114.055878][ T4943] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 114.201483][ T26] kauditd_printk_skb: 25 callbacks suppressed [ 114.201500][ T26] audit: type=1800 audit(1759323358.017:40): pid=4943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.199" name="file1" dev="loop1" ino=1048597 res=0 errno=0 [ 115.707190][ T3652] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 115.897445][ T3652] usb 3-1: Using ep0 maxpacket: 32 [ 115.904730][ T3652] usb 3-1: config index 0 descriptor too short (expected 156, got 27) [ 115.906612][ T4979] loop0: detected capacity change from 0 to 32768 [ 115.957211][ T3652] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 116.013343][ T3652] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 116.067641][ T3652] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 116.127258][ T3652] usb 3-1: config 0 interface 0 has no altsetting 0 [ 116.145035][ T3652] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 116.187269][ T3652] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 116.206150][ T3652] usb 3-1: Product: syz [ 116.210787][ T3652] usb 3-1: Manufacturer: syz [ 116.217761][ T3652] usb 3-1: SerialNumber: syz [ 116.251718][ T3652] usb 3-1: config 0 descriptor?? [ 116.297776][ T3652] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 116.337672][ T3652] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 116.415304][ T4979] overlayfs: upper fs needs to support d_type. [ 116.481144][ T4979] overlayfs: upper fs does not support tmpfile. [ 116.495644][ T4979] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 116.607220][ T4335] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 116.640763][ T4266] ERROR: (device loop0): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4 [ 116.640763][ T4266] [ 116.674891][ T4266] ERROR: (device loop0): remounting filesystem as read-only [ 116.809498][ T4335] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 116.817097][ T5010] loop1: detected capacity change from 0 to 1024 [ 116.840504][ T4335] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 116.864072][ T4335] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 116.891642][ T5010] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 116.925187][ T4335] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 116.971174][ T4335] usb 5-1: SerialNumber: syz [ 117.028920][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 117.126542][ T41] usb 3-1: USB disconnect, device number 4 [ 117.165222][ T41] ldusb 3-1:0.0: LD USB Device #0 now disconnected [ 117.252032][ T4335] usb 5-1: 0:2 : does not exist [ 117.270989][ T4335] usb 5-1: unit 255 not found! [ 117.293040][ T4335] usb 5-1: USB disconnect, device number 5 [ 117.361037][ T5004] loop3: detected capacity change from 0 to 40427 [ 117.376949][ T5004] F2FS-fs (loop3): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 117.406783][ T5004] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 117.441695][ T5004] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x35f7 [ 117.452061][ T5004] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x3ffff [ 117.475515][ T5004] F2FS-fs (loop3): invalid crc value [ 117.497959][ T5004] F2FS-fs (loop3): Found nat_bits in checkpoint [ 117.544356][ T4421] udevd[4421]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 117.586908][ T5004] F2FS-fs (loop3): Start checkpoint disabled! [ 117.628467][ T5004] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 117.675589][ T5004] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 118.098175][ T4354] kworker/u4:6: attempt to access beyond end of device [ 118.098175][ T4354] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 118.236823][ T5035] netlink: 20 bytes leftover after parsing attributes in process `syz.1.231'. [ 118.266749][ T5035] netlink: 36 bytes leftover after parsing attributes in process `syz.1.231'. [ 118.268458][ T5019] loop0: detected capacity change from 0 to 40427 [ 118.332469][ T5019] F2FS-fs (loop0): invalid crc value [ 118.347469][ T41] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 118.359491][ T5019] F2FS-fs (loop0): Found nat_bits in checkpoint [ 118.509569][ T5039] loop1: detected capacity change from 0 to 256 [ 118.522942][ T5019] F2FS-fs (loop0): Start checkpoint disabled! [ 118.537619][ T41] usb 5-1: Using ep0 maxpacket: 16 [ 118.545853][ T5019] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 118.548422][ T41] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 118.609967][ T5039] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xc2dc8e67, utbl_chksum : 0xe619d30d) [ 118.634963][ T41] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 118.665889][ T41] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 118.699873][ T41] usb 5-1: Product: syz [ 118.704129][ T41] usb 5-1: Manufacturer: syz [ 118.737179][ T41] usb 5-1: SerialNumber: syz [ 118.773228][ T41] usb 5-1: config 0 descriptor?? [ 118.800407][ T41] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 118.835740][ T41] em28xx 5-1:0.0: DVB interface 0 found: bulk [ 118.917763][ T9] kworker/u4:0: attempt to access beyond end of device [ 118.917763][ T9] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 119.406650][ T41] em28xx 5-1:0.0: chip ID is em2874 [ 119.490653][ T5049] loop1: detected capacity change from 0 to 128 [ 119.538585][ T5049] EXT4-fs: Ignoring removed nobh option [ 119.594281][ T5049] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 119.624487][ T5049] ext4 filesystem being mounted at /54/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 119.685757][ T5054] loop0: detected capacity change from 0 to 1024 [ 119.761620][ T41] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 119.803428][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 119.834295][ T41] em28xx 5-1:0.0: board has no eeprom [ 119.929522][ T50] hfsplus: b-tree write err: -5, ino 4 [ 119.967458][ T41] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 119.995607][ T41] em28xx 5-1:0.0: dvb set to bulk mode. [ 120.042482][ T22] em28xx 5-1:0.0: Binding DVB extension [ 120.072459][ T41] usb 5-1: USB disconnect, device number 6 [ 120.117837][ T41] em28xx 5-1:0.0: Disconnecting em28xx [ 120.291294][ T22] em28xx 5-1:0.0: Registering input extension [ 120.495586][ T5075] loop0: detected capacity change from 0 to 1024 [ 120.607311][ T22] rc_core: IR keymap rc-pinnacle-pctv-hd not found [ 120.613950][ T22] Registered IR keymap rc-empty [ 120.666733][ T22] rc rc0: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0 [ 120.747687][ T22] input: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/rc/rc0/input7 [ 120.808804][ T22] em28xx 5-1:0.0: Input extension successfully initialized [ 120.841512][ T41] em28xx 5-1:0.0: Closing input extension [ 120.958245][ T41] em28xx 5-1:0.0: Freeing device [ 121.377855][ T5076] loop2: detected capacity change from 0 to 40427 [ 121.413110][ T5076] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 121.427138][ T5076] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 121.447104][ T5076] F2FS-fs (loop2): invalid crc value [ 121.481696][ T5076] F2FS-fs (loop2): Found nat_bits in checkpoint [ 121.593915][ T5076] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 121.645509][ T5076] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 121.749695][ T5076] syz.2.246: attempt to access beyond end of device [ 121.749695][ T5076] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 122.005619][ T4278] syz-executor: attempt to access beyond end of device [ 122.005619][ T4278] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 122.957196][ T4319] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 123.167170][ T4319] usb 4-1: Using ep0 maxpacket: 8 [ 123.174484][ T4319] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 123.205748][ T4319] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 123.231647][ T4319] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 123.260304][ T4319] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 123.327159][ T4319] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 123.356919][ T4319] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 123.587646][ T4319] usb 4-1: GET_CAPABILITIES returned 0 [ 123.593693][ T4319] usbtmc 4-1:16.0: can't read capabilities [ 123.812342][ T4319] usb 4-1: USB disconnect, device number 4 [ 123.994955][ T5145] loop2: detected capacity change from 0 to 512 [ 124.023296][ T4273] Bluetooth: hci1: failed to read key size for handle 200 [ 124.119770][ T5149] loop0: detected capacity change from 0 to 128 [ 124.148166][ T5149] EXT4-fs: Ignoring removed nomblk_io_submit option [ 124.154851][ T5149] EXT4-fs: Ignoring removed nomblk_io_submit option [ 124.187972][ T5149] EXT4-fs: Ignoring removed nobh option [ 124.207725][ T5149] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 124.567717][ T5160] input input8: cannot allocate more than FF_MAX_EFFECTS effects [ 124.707310][ T22] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 124.855474][ T5162] loop4: detected capacity change from 0 to 4096 [ 124.872880][ T5162] ntfs: (device loop4): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 124.894421][ T5162] ntfs: (device loop4): ntfs_read_locked_inode(): $DATA attribute is missing. [ 124.907321][ T22] usb 2-1: Using ep0 maxpacket: 8 [ 124.922642][ T5162] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 124.926618][ T22] usb 2-1: config 0 interface 0 altsetting 252 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 124.956781][ T5162] ntfs: (device loop4): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 124.996362][ T5168] loop0: detected capacity change from 0 to 8 [ 125.018125][ T22] usb 2-1: config 0 interface 0 altsetting 252 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 125.083763][ T5162] ntfs: volume version 3.1. [ 125.093657][ T22] usb 2-1: config 0 interface 0 has no altsetting 0 [ 125.117684][ T22] usb 2-1: New USB device found, idVendor=056a, idProduct=009f, bcdDevice= 0.00 [ 125.148989][ T22] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 125.191026][ T22] usb 2-1: config 0 descriptor?? [ 125.223836][ T5152] loop2: detected capacity change from 0 to 32768 [ 125.266251][ T5168] SQUASHFS error: xz decompression failed, data probably corrupt [ 125.288502][ T5168] SQUASHFS error: Failed to read block 0xa8: -5 [ 125.351423][ T5168] SQUASHFS error: xz decompression failed, data probably corrupt [ 125.377206][ T5168] SQUASHFS error: Failed to read block 0xa8: -5 [ 125.410242][ T26] audit: type=1800 audit(1759323369.227:41): pid=5168 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.286" name="file0" dev="loop0" ino=3 res=0 errno=0 [ 125.471509][ T5173] sp0: Synchronizing with TNC [ 125.649368][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x0 [ 125.656447][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x0 [ 125.697336][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x0 [ 125.714620][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x2 [ 125.737389][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x0 [ 125.788004][ T22] wacom 0003:056A:009F.0004: unknown main item tag 0x0 [ 125.819078][ T22] wacom 0003:056A:009F.0004: hidraw0: USB HID v0.00 Device [HID 056a:009f] on usb-dummy_hcd.1-1/input0 [ 125.894511][ T22] usb 2-1: USB disconnect, device number 3 [ 126.132254][ T5182] fido_id[5182]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 126.160204][ T5189] loop4: detected capacity change from 0 to 128 [ 126.251131][ T5191] loop0: detected capacity change from 0 to 2048 [ 126.297263][ T41] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 126.353253][ T5192] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 126.419058][ T5192] NILFS (loop0): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 126.457206][ T5192] NILFS error (device loop0): nilfs_bmap_propagate: broken bmap (inode number=4) [ 126.477162][ T41] usb 4-1: Using ep0 maxpacket: 32 [ 126.484816][ T41] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 126.513835][ T5192] Remounting filesystem read-only [ 126.523330][ T41] usb 4-1: config 0 has no interface number 0 [ 126.564558][ T41] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 126.604960][ T41] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.637578][ T41] usb 4-1: Product: syz [ 126.641828][ T41] usb 4-1: Manufacturer: syz [ 126.646479][ T41] usb 4-1: SerialNumber: syz [ 126.702524][ T41] usb 4-1: config 0 descriptor?? [ 126.746804][ T41] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 126.773042][ T4266] NILFS (loop0): disposed unprocessed dirty file(s) when stopping log writer [ 126.891187][ T5202] loop2: detected capacity change from 0 to 512 [ 126.948882][ T41] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 127.015875][ T41] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 127.119377][ T5202] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 127.159007][ T5202] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 127.328642][ T1169] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 127.364837][ C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 127.375623][ T41] usb 4-1: USB disconnect, device number 5 [ 127.393830][ T41] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 127.447310][ T41] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 127.487910][ T41] quatech2 4-1:0.51: device disconnected [ 127.544350][ T4278] EXT4-fs (loop2): unmounting filesystem. [ 127.576975][ T1169] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 127.594719][ T1169] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 127.614105][ T1169] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 127.658853][ T1169] usb 1-1: config 220 has no interface number 2 [ 127.673438][ T1169] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 127.702586][ T1169] usb 1-1: config 220 interface 0 has no altsetting 0 [ 127.712721][ T1169] usb 1-1: config 220 interface 76 has no altsetting 0 [ 127.734637][ T1169] usb 1-1: config 220 interface 1 has no altsetting 0 [ 127.744497][ T5218] loop2: detected capacity change from 0 to 64 [ 127.762410][ T1169] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 127.782083][ T1169] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 127.805684][ T1169] usb 1-1: Product: syz [ 127.820499][ T1169] usb 1-1: Manufacturer: syz [ 127.848969][ T1169] usb 1-1: SerialNumber: syz [ 127.866478][ T26] audit: type=1800 audit(1759323371.677:42): pid=5218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.305" name="file1" dev="loop2" ino=18 res=0 errno=0 [ 127.945315][ T26] audit: type=1804 audit(1759323371.757:43): pid=5218 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.305" name="/newroot/50/file1/file1" dev="loop2" ino=18 res=1 errno=0 [ 128.114495][ T4273] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 128.129541][ T4273] Bluetooth: hci1: Injecting HCI hardware error event [ 128.138795][ T4274] Bluetooth: hci1: hardware error 0x00 [ 128.154934][ T1169] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 128.165240][ T1169] usb 1-1: No valid video chain found. [ 128.192151][ T1169] usb 1-1: selecting invalid altsetting 0 [ 128.243504][ T5222] loop3: detected capacity change from 0 to 1024 [ 128.321418][ T1169] usb 1-1: selecting invalid altsetting 0 [ 128.346700][ T1169] usbtest: probe of 1-1:220.1 failed with error -22 [ 128.427289][ T1169] usb 1-1: USB disconnect, device number 2 [ 128.810915][ T26] audit: type=1326 audit(1759323372.627:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5238 comm="syz.1.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05838eec9 code=0x7ffc0000 [ 128.890538][ T26] audit: type=1326 audit(1759323372.657:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5238 comm="syz.1.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05838eec9 code=0x7ffc0000 [ 128.933261][ T26] audit: type=1326 audit(1759323372.657:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5238 comm="syz.1.314" exe="/root/syz-executor" sig=0 arch=c000003e syscall=430 compat=0 ip=0x7fa05838eec9 code=0x7ffc0000 [ 129.317290][ T7] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 129.507128][ T7] usb 3-1: Using ep0 maxpacket: 8 [ 129.517334][ T7] usb 3-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=44.b2 [ 129.543767][ T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 129.555965][ T7] usb 3-1: Product: syz [ 129.560354][ T7] usb 3-1: Manufacturer: syz [ 129.565277][ T7] usb 3-1: SerialNumber: syz [ 129.599112][ T7] usb 3-1: config 0 descriptor?? [ 129.806606][ T5267] serio: Serial port ttyS3 [ 129.825559][ T7] gspca_main: sunplus-2.14.0 probing 04a5:3003 [ 130.028815][ T4335] kernel write not supported for file /input/event2 (pid: 4335 comm: kworker/1:4) [ 130.084617][ T5275] Bluetooth: MGMT ver 1.22 [ 130.347211][ T4274] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 130.397173][ T4335] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 130.442181][ T7] gspca_sunplus: reg_w_riv err -71 [ 130.458160][ T7] sunplus: probe of 3-1:0.0 failed with error -71 [ 130.460104][ T5271] loop1: detected capacity change from 0 to 32768 [ 130.497423][ T41] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 130.505687][ T7] usb 3-1: USB disconnect, device number 5 [ 130.541062][ T5271] XFS (loop1): Mounting V5 Filesystem [ 130.578301][ T4335] usb 1-1: Using ep0 maxpacket: 16 [ 130.589410][ T4335] usb 1-1: config 0 has an invalid interface number: 251 but max is 0 [ 130.598311][ T4335] usb 1-1: config 0 has no interface number 0 [ 130.604747][ T4335] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 130.614940][ T4335] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 130.630863][ T4335] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 130.640625][ T4335] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 130.648882][ T4335] usb 1-1: Product: syz [ 130.653253][ T4335] usb 1-1: Manufacturer: syz [ 130.658248][ T4335] usb 1-1: SerialNumber: syz [ 130.675414][ T4335] usb 1-1: config 0 descriptor?? [ 130.679931][ T5271] XFS (loop1): Ending clean mount [ 130.681252][ T5277] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 130.694005][ T41] usb 4-1: Using ep0 maxpacket: 32 [ 130.701904][ T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 130.712895][ T5271] XFS (loop1): Quotacheck needed: Please wait. [ 130.721678][ T5277] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 130.729897][ T41] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 130.748630][ T41] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 130.758461][ T41] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 130.781111][ T41] usb 4-1: config 0 descriptor?? [ 130.798943][ T41] hub 4-1:0.0: USB hub found [ 130.821205][ T5271] XFS (loop1): Quotacheck: Done. [ 130.935911][ T5277] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 130.976079][ T5277] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 131.001590][ T41] hub 4-1:0.0: 9 ports detected [ 131.007237][ T41] hub 4-1:0.0: insufficient power available to use all downstream ports [ 131.032968][ T4275] XFS (loop1): Unmounting Filesystem [ 131.208851][ T41] hub 4-1:0.0: hub_hub_status failed (err = -71) [ 131.215318][ T41] hub 4-1:0.0: config failed, can't get hub status (err -71) [ 131.246347][ T41] usbhid 4-1:0.0: can't add hid device: -71 [ 131.299783][ T41] usbhid: probe of 4-1:0.0 failed with error -71 [ 131.382884][ T41] usb 4-1: USB disconnect, device number 6 [ 131.594464][ T5298] netlink: 16 bytes leftover after parsing attributes in process `syz.2.337'. [ 131.628724][ T4335] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 131.641948][ T127] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 131.667258][ T4335] asix 1-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 131.680400][ T4335] asix: probe of 1-1:0.251 failed with error -71 [ 131.693818][ T4335] usb 1-1: USB disconnect, device number 3 [ 131.709425][ T5300] netlink: 100 bytes leftover after parsing attributes in process `syz.1.334'. [ 131.734902][ T5302] loop2: detected capacity change from 0 to 256 [ 131.774310][ T5302] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 131.851055][ T5302] FAT-fs (loop2): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 131.860615][ T127] usb 5-1: Using ep0 maxpacket: 16 [ 131.865917][ T5302] FAT-fs (loop2): Filesystem has been set read-only [ 131.875888][ T127] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 131.917461][ T127] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 131.944924][ T127] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 131.964448][ T127] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.986217][ T127] usb 5-1: config 0 descriptor?? [ 132.280397][ T5314] loop2: detected capacity change from 0 to 128 [ 132.348851][ T5314] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 132.373522][ T5314] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 132.429417][ T127] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0005/input/input12 [ 132.602289][ T127] microsoft 0003:045E:07DA.0005: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 132.679590][ T4278] EXT4-fs (loop2): unmounting filesystem. [ 132.790092][ T5324] loop3: detected capacity change from 0 to 1024 [ 132.823358][ T41] usb 5-1: USB disconnect, device number 7 [ 132.847849][ T5324] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 132.866442][ T5324] EXT4-fs (loop3): orphan cleanup on readonly fs [ 132.884169][ T5324] EXT4-fs error (device loop3): __ext4_get_inode_loc:4507: comm syz.3.347: Invalid inode table block 0 in block_group 0 [ 132.942909][ T5315] loop0: detected capacity change from 0 to 40427 [ 132.974185][ T5315] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 133.015623][ T5315] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 133.022277][ T5322] fido_id[5322]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory [ 133.047516][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.054109][ T5324] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 133.077372][ T5315] F2FS-fs (loop0): invalid crc_offset: 33558524 [ 133.111823][ T5315] F2FS-fs (loop0): Found nat_bits in checkpoint [ 133.146315][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.161403][ T1277] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.168333][ T1277] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.197437][ T5324] EXT4-fs error (device loop3): ext4_quota_write:7228: inode #3: comm syz.3.347: mark_inode_dirty error [ 133.233849][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.250793][ T5324] __quota_error: 5 callbacks suppressed [ 133.250812][ T5324] Quota error (device loop3): write_blk: dquota write failed [ 133.286899][ T5324] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 133.302162][ T5324] EXT4-fs error (device loop3): ext4_acquire_dquot:6816: comm syz.3.347: Failed to acquire dquot type 0 [ 133.313775][ T5315] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 133.322331][ T5315] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 133.337058][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.355203][ T5324] EXT4-fs error (device loop3): __ext4_get_inode_loc:4507: comm syz.3.347: Invalid inode table block 0 in block_group 0 [ 133.377628][ T5315] F2FS-fs (loop0): f2fs_fill_dentries: corrupted namelen=27648, run fsck to fix. [ 133.398098][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.413568][ T5324] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 133.432100][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.454527][ T5324] EXT4-fs error (device loop3): ext4_ext_truncate:4454: inode #15: comm syz.3.347: mark_inode_dirty error [ 133.488340][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.494939][ T5324] EXT4-fs error (device loop3): __ext4_get_inode_loc:4507: comm syz.3.347: Invalid inode table block 0 in block_group 0 [ 133.547868][ T41] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 133.560260][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.586047][ T5324] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 133.616290][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.644026][ T5324] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem [ 133.666123][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.687824][ T5324] EXT4-fs error (device loop3): __ext4_get_inode_loc:4507: comm syz.3.347: Invalid inode table block 0 in block_group 0 [ 133.717262][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.727780][ T5324] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 133.756779][ T41] usb 3-1: New USB device found, idVendor=0b95, idProduct=772b, bcdDevice=a2.4c [ 133.772604][ T41] usb 3-1: New USB device strings: Mfr=24, Product=2, SerialNumber=3 [ 133.784966][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.817134][ T41] usb 3-1: Product: syz [ 133.821372][ T41] usb 3-1: Manufacturer: syz [ 133.825998][ T41] usb 3-1: SerialNumber: syz [ 133.830829][ T5324] EXT4-fs error (device loop3): ext4_truncate:4312: inode #15: comm syz.3.347: mark_inode_dirty error [ 133.842491][ T4335] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 133.859771][ T41] usb 3-1: config 0 descriptor?? [ 133.878223][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.884863][ T5324] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem [ 133.895883][ T5324] EXT4-fs (loop3): Remounting filesystem read-only [ 133.902749][ T5324] EXT4-fs (loop3): 1 truncate cleaned up [ 133.909176][ T5324] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 133.982696][ T5324] EXT4-fs (loop3): shut down requested (1) [ 134.029902][ T4335] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 134.050474][ T4335] usb 5-1: config 0 interface 0 has no altsetting 0 [ 134.086860][ T4335] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 134.117157][ T4335] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 134.125449][ T4335] usb 5-1: Product: syz [ 134.134325][ T4335] usb 5-1: Manufacturer: syz [ 134.140017][ T4335] usb 5-1: SerialNumber: syz [ 134.140190][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 134.148748][ T4335] usb 5-1: config 0 descriptor?? [ 134.184923][ T4335] usb 5-1: selecting invalid altsetting 0 [ 134.445714][ T4335] usb 5-1: USB disconnect, device number 8 [ 134.498714][ T41] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 134.521026][ T41] asix: probe of 3-1:0.0 failed with error -71 [ 134.567906][ T41] usb 3-1: USB disconnect, device number 6 [ 134.767227][ T4319] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 134.786056][ T5364] netlink: 8 bytes leftover after parsing attributes in process `syz.0.362'. [ 134.917219][ T127] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 134.917732][ T5366] loop0: detected capacity change from 0 to 8192 [ 134.940612][ T5366] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 134.957180][ T4319] usb 4-1: Using ep0 maxpacket: 32 [ 134.962229][ T5366] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 134.966574][ T4319] usb 4-1: unable to get BOS descriptor or descriptor too short [ 134.972172][ T5366] REISERFS (device loop0): using ordered data mode [ 134.986526][ T5366] reiserfs: using flush barriers [ 134.993293][ T5366] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 135.016302][ T5366] REISERFS (device loop0): checking transaction log (loop0) [ 135.048828][ T4319] usb 4-1: config 128 has an invalid interface number: 127 but max is 3 [ 135.078492][ T4319] usb 4-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 135.097256][ T127] usb 2-1: Using ep0 maxpacket: 16 [ 135.109636][ T127] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 135.120570][ T4319] usb 4-1: config 128 has 1 interface, different from the descriptor's value: 4 [ 135.120607][ T4319] usb 4-1: config 128 has no interface number 0 [ 135.120646][ T4319] usb 4-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid maxpacket 32297, setting to 1024 [ 135.120675][ T4319] usb 4-1: config 128 interface 127 altsetting 14 bulk endpoint 0x5 has invalid maxpacket 1024 [ 135.120699][ T4319] usb 4-1: config 128 interface 127 has no altsetting 0 [ 135.124206][ T4319] usb 4-1: language id specifier not provided by device, defaulting to English [ 135.161263][ T127] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 135.257173][ T127] usb 2-1: config 1 interface 1 has no altsetting 0 [ 135.275314][ T4319] usb 4-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55 [ 135.290928][ T127] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 135.315091][ T5366] REISERFS (device loop0): Using tea hash to sort names [ 135.330731][ T127] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 135.332456][ T4319] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 135.353076][ T127] usb 2-1: Product: syz [ 135.363673][ T5366] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 135.367216][ T127] usb 2-1: Manufacturer: syz [ 135.378550][ T4319] usb 4-1: Product: syz [ 135.382779][ T4319] usb 4-1: Manufacturer: syz [ 135.408292][ T4319] usb 4-1: SerialNumber: syz [ 135.432072][ T127] usb 2-1: SerialNumber: syz [ 135.437883][ T5356] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 135.887938][ T127] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 136.147199][ T1169] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 136.217345][ T4319] usb 4-1: USB disconnect, device number 7 [ 136.232980][ T5387] loop0: detected capacity change from 0 to 512 [ 136.269721][ T5387] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 136.299820][ T127] usb 2-1: USB disconnect, device number 4 [ 136.347271][ T1169] usb 5-1: Using ep0 maxpacket: 32 [ 136.355535][ T1169] usb 5-1: config index 0 descriptor too short (expected 35577, got 27) [ 136.406620][ T1169] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 136.452600][ T1169] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 136.464613][ T4426] udevd[4426]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:128.127/sound/card4/controlC4/../uevent} for writing: No such file or directory [ 136.480096][ T1169] usb 5-1: config 1 has no interface number 0 [ 136.522144][ T1169] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 136.552756][ T1169] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 136.590454][ T1169] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 136.613674][ T1169] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 136.674687][ T1169] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found [ 136.842248][ T1169] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached [ 137.037311][ T1169] usb 3-1: new full-speed USB device number 7 using dummy_hcd [ 137.249973][ T1169] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 137.275467][ T1169] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 137.340452][ T7] usb 5-1: USB disconnect, device number 9 [ 137.351889][ T1169] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 137.362680][ T7] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected [ 137.379329][ T1169] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 137.407131][ T1169] usb 3-1: Product: syz [ 137.411517][ T1169] usb 3-1: Manufacturer: syz [ 137.416151][ T1169] usb 3-1: SerialNumber: syz [ 137.672871][ T1169] usb 3-1: 0:2 : does not exist [ 137.704560][ T1169] usb 3-1: 5:0: failed to get current value for ch 0 (-22) [ 137.778361][ T1169] usb 3-1: USB disconnect, device number 7 [ 138.006094][ T5407] loop1: detected capacity change from 0 to 32768 [ 138.025984][ T5427] loop3: detected capacity change from 0 to 2048 [ 138.068046][ T5407] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.378 (5407) [ 138.078467][ T4421] udevd[4421]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 138.154339][ T5427] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 138.408806][ T5407] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 138.469598][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 138.485665][ T5407] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 138.528617][ T5407] BTRFS info (device loop1): using free space tree [ 138.864589][ T5457] Illegal XDP return value 4294967274 on prog (id 35) dev N/A, expect packet loss! [ 139.066683][ T5407] BTRFS info (device loop1): enabling ssd optimizations [ 139.082358][ T5477] capability: warning: `syz.4.395' uses 32-bit capabilities (legacy support in use) [ 139.665378][ T5499] loop0: detected capacity change from 0 to 128 [ 139.739850][ T5499] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 139.810088][ T5499] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 139.851938][ T4275] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 140.335886][ T5515] loop2: detected capacity change from 0 to 128 [ 140.413308][ T5520] loop4: detected capacity change from 0 to 164 [ 140.901428][ T5533] loop0: detected capacity change from 0 to 1024 [ 140.982643][ T5533] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #3: comm syz.0.412: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 3, max 3(4), depth 0(0) [ 141.117263][ T5533] EXT4-fs error (device loop0): ext4_quota_enable:7027: comm syz.0.412: Bad quota inode: 3, type: 0 [ 141.158049][ T5533] EXT4-fs warning (device loop0): ext4_enable_quotas:7068: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix. [ 141.195218][ T5533] EXT4-fs (loop0): mount failed [ 141.779294][ T5555] netlink: 642 bytes leftover after parsing attributes in process `syz.4.419'. [ 142.493294][ T5570] loop4: detected capacity change from 0 to 4096 [ 142.528586][ T5570] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 142.601145][ T5570] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 142.634760][ T5580] netlink: 'syz.2.432': attribute type 1 has an invalid length. [ 142.667497][ T5570] ntfs: (device loop4): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 142.680287][ T5580] netlink: 'syz.2.432': attribute type 2 has an invalid length. [ 142.750901][ T5570] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 142.775498][ T5570] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 142.812949][ T5570] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 142.827258][ T5570] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 142.857276][ T4319] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 142.867327][ T5570] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 142.877289][ T5570] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 142.898416][ T5570] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 142.918400][ T5570] ntfs: volume version 3.1. [ 142.927266][ T4335] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 143.057366][ T4319] usb 4-1: Using ep0 maxpacket: 32 [ 143.076365][ T4319] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 143.101187][ T4319] usb 4-1: config 0 has no interface number 0 [ 143.117202][ T4335] usb 1-1: Using ep0 maxpacket: 16 [ 143.124478][ T4335] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 143.128116][ T4319] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 143.169427][ T4335] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 143.176042][ T4319] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 143.190898][ T4335] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 143.199584][ T4335] usb 1-1: Product: syz [ 143.203897][ T4335] usb 1-1: Manufacturer: syz [ 143.227231][ T4319] usb 4-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00 [ 143.233453][ T4335] usb 1-1: SerialNumber: syz [ 143.242080][ T4319] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.261237][ T4319] usb 4-1: config 0 descriptor?? [ 143.271206][ T4335] usb 1-1: config 0 descriptor?? [ 143.308541][ T4335] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 143.338662][ T4335] em28xx 1-1:0.0: DVB interface 0 found: bulk [ 143.903632][ T4335] em28xx 1-1:0.0: chip ID is em2860 [ 143.908634][ T4319] input: HID 28bd:0094 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:28BD:0094.0006/input/input13 [ 144.018821][ T4319] uclogic 0003:28BD:0094.0006: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 28bd:0094] on usb-dummy_hcd.3-1/input1 [ 144.128390][ T4319] usb 4-1: USB disconnect, device number 8 [ 144.173327][ T4335] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 144.196260][ T4335] em28xx 1-1:0.0: board has no eeprom [ 144.266508][ T5602] fido_id[5602]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 144.280509][ T5597] loop2: detected capacity change from 0 to 32768 [ 144.297092][ T4335] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 144.313528][ T4335] em28xx 1-1:0.0: dvb set to bulk mode. [ 144.326491][ T127] em28xx 1-1:0.0: Binding DVB extension [ 144.392073][ T4335] usb 1-1: USB disconnect, device number 4 [ 144.432464][ T4335] em28xx 1-1:0.0: Disconnecting em28xx [ 144.473681][ T5597] XFS (loop2): Mounting V5 Filesystem [ 144.620533][ T127] em28xx 1-1:0.0: Registering input extension [ 144.661330][ T5601] loop1: detected capacity change from 0 to 32768 [ 144.727767][ T5601] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop1 scanned by syz.1.439 (5601) [ 144.732711][ T5597] XFS (loop2): Ending clean mount [ 144.823791][ T5597] XFS (loop2): Quotacheck needed: Please wait. [ 144.852721][ T5601] BTRFS info (device loop1): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 144.907594][ T5601] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 144.921195][ T5601] BTRFS info (device loop1): enabling disk space caching [ 144.981880][ T5601] BTRFS info (device loop1): force clearing of disk cache [ 145.001642][ T5601] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 145.001929][ T5597] XFS (loop2): Quotacheck: Done. [ 145.047515][ T5601] BTRFS info (device loop1): use zstd compression, level 3 [ 145.054814][ T5601] BTRFS info (device loop1): disk space caching is enabled [ 145.078663][ T127] rc_core: IR keymap rc-pinnacle-pctv-hd not found [ 145.085236][ T127] Registered IR keymap rc-empty [ 145.141122][ T127] rc rc0: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 145.176951][ T127] input: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input14 [ 145.223236][ T127] em28xx 1-1:0.0: Input extension successfully initialized [ 145.231012][ T4335] em28xx 1-1:0.0: Closing input extension [ 145.380251][ T4335] em28xx 1-1:0.0: Freeing device [ 145.617351][ T5601] BTRFS info (device loop1): enabling ssd optimizations [ 145.666639][ T5601] BTRFS info (device loop1): rebuilding free space tree [ 145.807353][ T5601] BTRFS info (device loop1): disabling free space tree [ 145.842941][ T5601] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 145.871634][ T4278] XFS (loop2): Unmounting Filesystem [ 145.883106][ T5601] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 145.917491][ T5654] loop0: detected capacity change from 0 to 1024 [ 145.984531][ T5630] loop3: detected capacity change from 0 to 40427 [ 146.006066][ T5630] F2FS-fs (loop3): invalid crc value [ 146.051978][ T5654] hfsplus: bad catalog entry type [ 146.091842][ T5630] F2FS-fs (loop3): Found nat_bits in checkpoint [ 146.200381][ T29] hfsplus: b-tree write err: -5, ino 4 [ 146.213330][ T5630] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 146.409334][ T4275] BTRFS info (device loop1): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 146.460325][ T4264] syz-executor: attempt to access beyond end of device [ 146.460325][ T4264] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 147.827137][ T22] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 148.019673][ T22] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 148.050897][ T22] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 148.078301][ T22] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 148.106951][ T22] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.107556][ T5702] can0: slcan on ttyS3. [ 148.138753][ T22] usb 5-1: config 0 descriptor?? [ 148.210737][ T5704] netlink: 4 bytes leftover after parsing attributes in process `syz.3.471'. [ 148.221024][ T5706] can0 (unregistered): slcan off ttyS3. [ 148.565952][ T22] pyra 0003:1E7D:2CF6.0007: item fetching failed at offset 5/7 [ 148.582544][ T22] pyra 0003:1E7D:2CF6.0007: parse failed [ 148.607195][ T22] pyra: probe of 0003:1E7D:2CF6.0007 failed with error -22 [ 148.618609][ T5710] loop3: detected capacity change from 0 to 4096 [ 148.747366][ T3652] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 148.803181][ T22] usb 5-1: USB disconnect, device number 10 [ 148.894895][ T5710] ntfs3: loop3: try to read out of volume at offset 0x3fffffc7000 [ 148.907173][ T4274] Bluetooth: hci4: command 0x0411 tx timeout [ 148.953558][ T3652] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 149.013447][ T3652] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 149.084647][ T3652] usb 3-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 149.104957][ T3652] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.145429][ T3652] usb 3-1: config 0 descriptor?? [ 149.207330][ T41] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 149.397093][ T41] usb 1-1: Using ep0 maxpacket: 16 [ 149.408659][ T41] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 149.449454][ T41] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 149.492803][ T41] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 149.513624][ T41] usb 1-1: Product: syz [ 149.518103][ T41] usb 1-1: Manufacturer: syz [ 149.537281][ T41] usb 1-1: SerialNumber: syz [ 149.576680][ T3652] arvo 0003:1E7D:30D4.0008: unknown main item tag 0x0 [ 149.593306][ T41] usb 1-1: config 0 descriptor?? [ 149.596889][ T3652] arvo 0003:1E7D:30D4.0008: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.2-1/input0 [ 149.639754][ T41] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 149.675438][ T41] em28xx 1-1:0.0: DVB interface 0 found: bulk [ 149.751957][ T5736] loop1: detected capacity change from 0 to 1024 [ 149.776154][ T3652] arvo 0003:1E7D:30D4.0008: couldn't init struct arvo_device [ 149.794302][ T3652] arvo 0003:1E7D:30D4.0008: couldn't install keyboard [ 149.826129][ T3652] arvo: probe of 0003:1E7D:30D4.0008 failed with error -71 [ 149.846051][ T5736] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 149.868026][ T5736] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 149.914045][ T3652] usb 3-1: USB disconnect, device number 8 [ 150.180301][ T5739] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters [ 150.229061][ T5747] netlink: 72 bytes leftover after parsing attributes in process `syz.4.483'. [ 150.245912][ T41] em28xx 1-1:0.0: unknown em28xx chip ID (184) [ 150.295093][ T4275] EXT4-fs (loop1): unmounting filesystem. [ 150.306603][ T5743] fido_id[5743]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 150.521967][ T41] em28xx 1-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 150.564343][ T41] em28xx 1-1:0.0: board has no eeprom [ 150.677302][ T41] em28xx 1-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 150.695656][ T41] em28xx 1-1:0.0: dvb set to bulk mode. [ 150.712403][ T127] em28xx 1-1:0.0: Binding DVB extension [ 150.736841][ T41] usb 1-1: USB disconnect, device number 5 [ 150.790424][ T41] em28xx 1-1:0.0: Disconnecting em28xx [ 151.001676][ T127] em28xx 1-1:0.0: Registering input extension [ 151.028149][ T41] em28xx 1-1:0.0: Closing input extension [ 151.089330][ T41] em28xx 1-1:0.0: Freeing device [ 151.224005][ T5766] tap0: tun_chr_ioctl cmd 1074025677 [ 151.257511][ T5766] tap0: linktype set to 769 [ 151.275341][ T3652] kernel write not supported for file /fb0 (pid: 3652 comm: kworker/0:3) [ 151.807401][ T41] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 151.849064][ T5751] loop1: detected capacity change from 0 to 40427 [ 151.902699][ T5751] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 151.930713][ T5751] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 151.967267][ T5751] F2FS-fs (loop1): invalid crc value [ 152.013489][ T41] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 152.042967][ T5751] F2FS-fs (loop1): Found nat_bits in checkpoint [ 152.057205][ T41] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 152.093732][ T5793] [U] [ 152.107283][ T41] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 152.123348][ T5792] [U] [ 152.136840][ T41] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9 [ 152.178739][ T41] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024 [ 152.219201][ T5795] can0: slcan on ttyS3. [ 152.235820][ T5751] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 152.243117][ T41] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 152.258654][ T5751] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 152.277140][ T41] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 152.298730][ T41] usb 1-1: Product: syz [ 152.304100][ T41] usb 1-1: Manufacturer: syz [ 152.334966][ T41] cdc_wdm 1-1:1.0: skipping garbage [ 152.367510][ T5798] can0 (unregistered): slcan off ttyS3. [ 152.367526][ T41] cdc_wdm 1-1:1.0: skipping garbage [ 152.422038][ T41] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 152.437223][ T41] cdc_wdm 1-1:1.0: Unknown control protocol [ 152.595978][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 152.603000][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 152.610005][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 152.616669][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 152.627178][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 152.633847][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 152.647141][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 152.654419][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 152.660947][ T22] usb 1-1: USB disconnect, device number 6 [ 152.890790][ T5785] loop2: detected capacity change from 0 to 32768 [ 153.066273][ T5811] netlink: 12 bytes leftover after parsing attributes in process `syz.4.505'. [ 153.106082][ T5811] netlink: 28 bytes leftover after parsing attributes in process `syz.4.505'. [ 153.156693][ T5811] netlink: 12 bytes leftover after parsing attributes in process `syz.4.505'. [ 153.183663][ T5811] netlink: 28 bytes leftover after parsing attributes in process `syz.4.505'. [ 153.207791][ T5811] netlink: 'syz.4.505': attribute type 6 has an invalid length. [ 153.214138][ T5814] loop3: detected capacity change from 0 to 512 [ 153.281439][ T5814] EXT4-fs: Ignoring removed nobh option [ 153.341619][ T5814] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 153.478319][ T5814] EXT4-fs error (device loop3): ext4_orphan_get:1400: inode #15: comm syz.3.516: iget: bad i_size value: 38620345925642 [ 153.555674][ T5814] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.516: couldn't read orphan inode 15 (err -117) [ 153.593924][ T5814] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 153.851226][ T5829] netlink: 8 bytes leftover after parsing attributes in process `syz.2.510'. [ 153.868790][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 154.087572][ T5833] loop0: detected capacity change from 0 to 256 [ 154.198433][ T5833] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 154.237296][ T5833] FAT-fs (loop0): Filesystem has been set read-only [ 154.244408][ T5833] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 154.286580][ T5833] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 154.342430][ T26] kauditd_printk_skb: 11 callbacks suppressed [ 154.342447][ T26] audit: type=1800 audit(1759323398.157:53): pid=5833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.512" name="file1" dev="loop0" ino=1048601 res=0 errno=0 [ 154.974996][ T5855] program syz.0.524 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 155.411988][ T5870] netlink: 24 bytes leftover after parsing attributes in process `syz.0.530'. [ 155.711222][ T5846] loop2: detected capacity change from 0 to 32768 [ 155.757359][ T5846] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.518 (5846) [ 155.848356][ T5879] sch_fq: defrate 6 ignored. [ 155.864189][ T5846] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 155.883903][ T5846] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 155.901124][ T5846] BTRFS info (device loop2): setting nodatasum [ 155.910057][ T5846] BTRFS info (device loop2): doing ref verification [ 155.925260][ T5846] BTRFS warning (device loop2): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 155.971718][ T5846] BTRFS info (device loop2): trying to use backup root at mount time [ 156.006079][ T5846] BTRFS warning (device loop2): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead [ 156.039625][ T5846] BTRFS info (device loop2): trying to use backup root at mount time [ 156.074261][ T5846] BTRFS info (device loop2): using free space tree [ 156.087302][ T5846] workqueue: max_active 40574 requested for btrfs-worker is out of range, clamping between 1 and 512 [ 156.125137][ T5846] workqueue: max_active 40574 requested for btrfs-worker-high is out of range, clamping between 1 and 512 [ 156.165153][ T5846] workqueue: max_active 40574 requested for btrfs-delalloc is out of range, clamping between 1 and 512 [ 156.267163][ T5846] workqueue: max_active 40574 requested for btrfs-endio is out of range, clamping between 1 and 512 [ 156.305003][ T5846] workqueue: max_active 40574 requested for btrfs-endio-meta is out of range, clamping between 1 and 512 [ 156.322593][ T5872] loop1: detected capacity change from 0 to 32768 [ 156.332195][ T5846] workqueue: max_active 40574 requested for btrfs-endio-raid56 is out of range, clamping between 1 and 512 [ 156.379731][ T5846] workqueue: max_active 40574 requested for btrfs-rmw is out of range, clamping between 1 and 512 [ 156.413200][ T5872] XFS (loop1): Mounting V5 Filesystem [ 156.427306][ T5846] workqueue: max_active 40574 requested for btrfs-endio-write is out of range, clamping between 1 and 512 [ 156.449640][ T5846] workqueue: max_active 40574 requested for btrfs-compressed-write is out of range, clamping between 1 and 512 [ 156.467388][ T41] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 156.588823][ T5846] BTRFS info (device loop2): enabling ssd optimizations [ 156.660495][ T5872] XFS (loop1): Ending clean mount [ 156.690736][ T41] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 156.738377][ T41] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 156.776110][ T41] usb 1-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 156.816746][ T41] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 156.829907][ T5914] netlink: 8 bytes leftover after parsing attributes in process `syz.3.538'. [ 156.859609][ T41] usb 1-1: config 0 descriptor?? [ 156.920126][ T5872] XFS (loop1): Quotacheck needed: Please wait. [ 156.995288][ T4278] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 157.095288][ T5872] XFS (loop1): Quotacheck: Done. [ 157.197173][ T4421] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 10 /dev/loop2 scanned by udevd (4421) [ 157.349462][ T41] arvo 0003:1E7D:30D4.0009: unknown main item tag 0x0 [ 157.419487][ T41] arvo 0003:1E7D:30D4.0009: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.0-1/input0 [ 157.548278][ T41] arvo 0003:1E7D:30D4.0009: couldn't init struct arvo_device [ 157.577101][ T41] arvo 0003:1E7D:30D4.0009: couldn't install keyboard [ 157.585661][ T41] arvo: probe of 0003:1E7D:30D4.0009 failed with error -71 [ 157.695012][ T7] kernel write not supported for file /fb0 (pid: 7 comm: kworker/0:0) [ 157.710635][ T41] usb 1-1: USB disconnect, device number 7 [ 157.859593][ T4275] XFS (loop1): Unmounting Filesystem [ 157.877141][ T7] usb 4-1: new full-speed USB device number 9 using dummy_hcd [ 157.955464][ T5930] loop2: detected capacity change from 0 to 256 [ 157.987211][ T5927] fido_id[5927]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 158.109691][ T7] usb 4-1: config index 0 descriptor too short (expected 35577, got 27) [ 158.142104][ T7] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 158.166785][ T7] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 158.206634][ T7] usb 4-1: config 1 has no interface number 0 [ 158.217892][ T7] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 158.239469][ T7] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 158.271883][ T7] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 158.283313][ T7] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 158.325171][ T7] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found [ 158.879853][ T7] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached [ 159.120416][ T3652] usb 4-1: USB disconnect, device number 9 [ 159.137553][ T3652] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected [ 159.351073][ T5963] loop0: detected capacity change from 0 to 256 [ 159.758268][ T5970] netlink: 864 bytes leftover after parsing attributes in process `syz.2.561'. [ 159.825597][ T5972] xfrm0: Master is either lo or non-ether device [ 159.851470][ T5947] loop1: detected capacity change from 0 to 32768 [ 159.901268][ T5947] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.544 (5947) [ 159.991189][ T5947] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 160.037653][ T5947] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 160.075316][ T5947] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8) [ 160.117469][ T5947] BTRFS info (device loop1): use lzo compression, level 0 [ 160.150266][ T5947] BTRFS info (device loop1): using free space tree [ 160.174585][ T5983] loop4: detected capacity change from 0 to 1024 [ 160.373254][ T5983] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=802c018, mo2=0002] [ 160.402853][ T5947] BTRFS info (device loop1): enabling ssd optimizations [ 160.451338][ T5983] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 160.539516][ T26] audit: type=1800 audit(1759323404.367:54): pid=5983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.567" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 160.567179][ T5983] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.567: bg 0: block 88: padding at end of block bitmap is not set [ 160.814353][ T4265] EXT4-fs (loop4): unmounting filesystem. [ 160.893956][ T4275] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 161.035461][ T6018] program syz.4.574 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 161.117799][ T6020] netlink: 4 bytes leftover after parsing attributes in process `syz.2.576'. [ 161.137082][ T4421] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop1 scanned by udevd (4421) [ 161.486363][ T6024] loop4: detected capacity change from 0 to 4096 [ 161.612560][ T6028] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 161.673414][ T6024] NILFS error (device loop4): nilfs_dotdot: directory #12 missing '.' [ 161.706732][ T6024] Remounting filesystem read-only [ 161.850534][ T4265] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 162.023200][ T6034] loop3: detected capacity change from 0 to 1024 [ 162.052943][ T6034] EXT4-fs: Ignoring removed orlov option [ 162.077730][ T6034] EXT4-fs: Ignoring removed nobh option [ 162.099862][ T6034] EXT4-fs: Ignoring removed bh option [ 162.204264][ T6034] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 162.258838][ T6044] netlink: 36 bytes leftover after parsing attributes in process `syz.4.583'. [ 162.483631][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 162.923747][ T6065] loop0: detected capacity change from 0 to 1024 [ 162.982440][ T6061] loop3: detected capacity change from 0 to 4096 [ 163.034258][ T6061] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 163.414250][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 163.784749][ T6059] loop4: detected capacity change from 0 to 40427 [ 163.863591][ T6059] F2FS-fs (loop4): invalid crc value [ 163.899473][ T6079] loop2: detected capacity change from 0 to 512 [ 163.909354][ T6059] F2FS-fs (loop4): Found nat_bits in checkpoint [ 163.946619][ T6079] EXT4-fs: Ignoring removed nobh option [ 163.985650][ T6079] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -117 [ 164.039304][ T6079] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.599: invalid indirect mapped block 256 (level 1) [ 164.127649][ T6079] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.599: invalid indirect mapped block 2683928664 (level 1) [ 164.135211][ T6059] F2FS-fs (loop4): Start checkpoint disabled! [ 164.189223][ T6059] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6 [ 164.219629][ T6079] EXT4-fs (loop2): 1 truncate cleaned up [ 164.225514][ T6079] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 164.310247][ T6079] EXT4-fs (loop2): shut down requested (2) [ 164.498482][ T4278] EXT4-fs (loop2): unmounting filesystem. [ 164.551733][ T127] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 164.593842][ T11] kworker/u4:1: attempt to access beyond end of device [ 164.593842][ T11] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 164.737344][ T127] usb 1-1: Using ep0 maxpacket: 16 [ 164.749121][ T127] usb 1-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 164.787154][ T127] usb 1-1: config 0 interface 0 has no altsetting 0 [ 164.799762][ T127] usb 1-1: New USB device found, idVendor=1e71, idProduct=2009, bcdDevice= 0.00 [ 164.827264][ T127] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 164.860005][ T127] usb 1-1: config 0 descriptor?? [ 164.940328][ T5519] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 165.141093][ T5519] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 165.161809][ T5519] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 165.187998][ T5519] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 165.227152][ T5519] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 165.235539][ T5519] usb 3-1: SerialNumber: syz [ 165.307378][ T127] nzxt-smart2 0003:1E71:2009.000A: hidraw0: USB HID v0.05 Device [HID 1e71:2009] on usb-dummy_hcd.0-1/input0 [ 165.484981][ T5519] usb 3-1: 0:2 : does not exist [ 165.501918][ T5519] usb 3-1: unit 255 not found! [ 165.556505][ T5519] usb 3-1: USB disconnect, device number 9 [ 165.657920][ T6109] loop3: detected capacity change from 0 to 1024 [ 165.734486][ T127] usb 1-1: USB disconnect, device number 8 [ 165.818045][ T4426] udevd[4426]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 165.834730][ T6107] fido_id[6107]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 165.852974][ T11] hfsplus: b-tree write err: -5, ino 4 [ 165.935531][ T6100] loop1: detected capacity change from 0 to 32768 [ 166.025161][ T6100] overlayfs: upper fs needs to support d_type. [ 166.038101][ T6100] overlayfs: upper fs does not support tmpfile. [ 166.059840][ T6100] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 166.161757][ T4275] ERROR: (device loop1): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4 [ 166.161757][ T4275] [ 166.232411][ T4275] ERROR: (device loop1): remounting filesystem as read-only [ 166.465048][ T6124] input input16: cannot allocate more than FF_MAX_EFFECTS effects [ 166.471813][ T6125] loop3: detected capacity change from 0 to 512 [ 166.514523][ T6125] EXT4-fs: Ignoring removed nobh option [ 166.557704][ T6125] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -117 [ 166.566576][ T6125] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.618: invalid indirect mapped block 256 (level 1) [ 166.580914][ T6125] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.618: invalid indirect mapped block 2683928664 (level 1) [ 166.724215][ T6125] EXT4-fs (loop3): 1 truncate cleaned up [ 166.750222][ T6125] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 166.817743][ T6125] EXT4-fs (loop3): shut down requested (2) [ 166.831827][ T6132] serio: Serial port ttyS3 [ 166.941780][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 167.950532][ T6163] netlink: 20 bytes leftover after parsing attributes in process `syz.2.635'. [ 167.986641][ T6163] netlink: 36 bytes leftover after parsing attributes in process `syz.2.635'. [ 168.002849][ T6147] loop4: detected capacity change from 0 to 40427 [ 168.074017][ T6147] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3ffff [ 168.110352][ T6147] F2FS-fs (loop4): invalid crc value [ 168.155436][ T6147] F2FS-fs (loop4): Found nat_bits in checkpoint [ 168.335108][ T6147] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 168.506384][ T4265] syz-executor: attempt to access beyond end of device [ 168.506384][ T4265] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 168.670743][ T6188] loop1: detected capacity change from 0 to 8 [ 168.786318][ T6188] SQUASHFS error: xz decompression failed, data probably corrupt [ 168.837442][ T6188] SQUASHFS error: Failed to read block 0xa8: -5 [ 168.888869][ T6188] SQUASHFS error: xz decompression failed, data probably corrupt [ 168.907929][ T6188] SQUASHFS error: Failed to read block 0xa8: -5 [ 168.915439][ T26] audit: type=1800 audit(1759323412.727:55): pid=6188 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.646" name="file0" dev="loop1" ino=3 res=0 errno=0 [ 169.086487][ T6194] loop3: detected capacity change from 0 to 512 [ 170.351126][ T6227] loop0: detected capacity change from 0 to 1024 [ 170.447169][ T5519] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 170.575718][ T6231] loop4: detected capacity change from 0 to 64 [ 170.666391][ T26] audit: type=1800 audit(1759323414.477:56): pid=6231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.661" name="file1" dev="loop4" ino=18 res=0 errno=0 [ 170.687145][ T5519] usb 2-1: Using ep0 maxpacket: 16 [ 170.698305][ T5519] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 170.762378][ T5519] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 170.777120][ T26] audit: type=1804 audit(1759323414.517:57): pid=6231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.661" name="/newroot/145/file1/file1" dev="loop4" ino=18 res=1 errno=0 [ 170.808954][ T5519] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.823843][ T5519] usb 2-1: Product: syz [ 170.841508][ T5519] usb 2-1: Manufacturer: syz [ 170.846194][ T5519] usb 2-1: SerialNumber: syz [ 170.851612][ T6218] loop2: detected capacity change from 0 to 32768 [ 170.887502][ T5519] usb 2-1: config 0 descriptor?? [ 170.898292][ T6218] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.656 (6218) [ 170.915695][ T5519] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 170.965277][ T6218] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 170.982963][ T5519] em28xx 2-1:0.0: DVB interface 0 found: bulk [ 171.046575][ T6218] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 171.093534][ T6218] BTRFS info (device loop2): enabling disk space caching [ 171.156405][ T6218] BTRFS info (device loop2): force clearing of disk cache [ 171.187082][ T6218] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 171.217091][ T6218] BTRFS info (device loop2): use zstd compression, level 3 [ 171.224626][ T6218] BTRFS info (device loop2): disk space caching is enabled [ 171.419190][ T6218] BTRFS info (device loop2): enabling ssd optimizations [ 171.439856][ T6218] BTRFS info (device loop2): rebuilding free space tree [ 171.495614][ T6218] BTRFS info (device loop2): disabling free space tree [ 171.512465][ T6218] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 171.522461][ T5519] em28xx 2-1:0.0: unknown em28xx chip ID (184) [ 171.555290][ T6218] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 171.735484][ T4278] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 171.792557][ T5519] em28xx 2-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 171.804835][ T5519] em28xx 2-1:0.0: board has no eeprom [ 171.879549][ T4421] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 12 /dev/loop2 scanned by udevd (4421) [ 171.898863][ T5519] em28xx 2-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 171.912666][ T5519] em28xx 2-1:0.0: dvb set to bulk mode. [ 171.934382][ T6237] loop3: detected capacity change from 0 to 32768 [ 171.942921][ T5519] usb 2-1: USB disconnect, device number 5 [ 171.961319][ T5519] em28xx 2-1:0.0: Disconnecting em28xx [ 172.096581][ T6237] overlayfs: upper fs needs to support d_type. [ 172.133102][ T6237] overlayfs: upper fs does not support tmpfile. [ 172.163629][ T6237] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 172.290539][ T4319] em28xx 2-1:0.0: Binding DVB extension [ 172.453518][ T6268] loop0: detected capacity change from 0 to 1024 [ 172.477922][ T4264] ERROR: (device loop3): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4 [ 172.477922][ T4264] [ 172.512860][ T6268] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 172.585447][ T4264] ERROR: (device loop3): remounting filesystem as read-only [ 172.618316][ T6268] EXT4-fs (loop0): orphan cleanup on readonly fs [ 172.655075][ T4319] em28xx 2-1:0.0: Registering input extension [ 172.668048][ T6268] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.672: Invalid inode table block 0 in block_group 0 [ 172.683546][ T5519] em28xx 2-1:0.0: Closing input extension [ 172.704656][ T5519] em28xx 2-1:0.0: Freeing device [ 172.714037][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 172.722776][ T6268] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 172.743168][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 172.750842][ T5522] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 172.777859][ T6268] EXT4-fs error (device loop0): ext4_quota_write:7228: inode #3: comm syz.0.672: mark_inode_dirty error [ 172.820388][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 172.840468][ T6268] Quota error (device loop0): write_blk: dquota write failed [ 172.878062][ T6268] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 172.907596][ T6268] EXT4-fs error (device loop0): ext4_acquire_dquot:6816: comm syz.0.672: Failed to acquire dquot type 0 [ 172.947388][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 172.957176][ T5522] usb 3-1: Using ep0 maxpacket: 16 [ 172.964398][ T5522] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 172.988158][ T6268] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.672: Invalid inode table block 0 in block_group 0 [ 173.008689][ T5522] usb 3-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1 [ 173.017332][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.024417][ T6268] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 173.032938][ T5522] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.084251][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.087101][ T5522] usb 3-1: Product: syz [ 173.112329][ T5522] usb 3-1: Manufacturer: syz [ 173.125785][ T6268] EXT4-fs error (device loop0): ext4_ext_truncate:4454: inode #15: comm syz.0.672: mark_inode_dirty error [ 173.127125][ T5522] usb 3-1: SerialNumber: syz [ 173.175025][ T5522] usb 3-1: config 0 descriptor?? [ 173.180294][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.186908][ T6268] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.672: Invalid inode table block 0 in block_group 0 [ 173.217312][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.227932][ T5522] em28xx 3-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0) [ 173.252017][ T6268] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 173.257950][ T5522] em28xx 3-1:0.0: DVB interface 0 found: bulk [ 173.285713][ T6283] loop4: detected capacity change from 0 to 4096 [ 173.299036][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.305642][ T6268] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem [ 173.335858][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.373833][ T6268] EXT4-fs error (device loop0): __ext4_get_inode_loc:4507: comm syz.0.672: Invalid inode table block 0 in block_group 0 [ 173.417110][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.423807][ T6268] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5915: Corrupt filesystem [ 173.437630][ T6283] ntfs3: loop4: try to read out of volume at offset 0x3fffffc7000 [ 173.482759][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.507125][ T6268] EXT4-fs error (device loop0): ext4_truncate:4312: inode #15: comm syz.0.672: mark_inode_dirty error [ 173.545172][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.587920][ T6268] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem [ 173.609305][ T6268] EXT4-fs (loop0): Remounting filesystem read-only [ 173.628464][ T6268] EXT4-fs (loop0): 1 truncate cleaned up [ 173.642615][ T6268] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 173.784658][ T6268] EXT4-fs (loop0): shut down requested (1) [ 173.854425][ T5522] em28xx 3-1:0.0: chip ID is em2874 [ 173.911819][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 174.150870][ T5522] em28xx 3-1:0.0: reading from i2c device at 0xa0 failed (error=-5) [ 174.182759][ T5522] em28xx 3-1:0.0: board has no eeprom [ 174.255533][ T6301] loop3: detected capacity change from 0 to 512 [ 174.277121][ T5522] em28xx 3-1:0.0: Identified as PCTV tripleStick (292e) (card=94) [ 174.309720][ T5522] em28xx 3-1:0.0: dvb set to bulk mode. [ 174.322107][ T5522] usb 3-1: USB disconnect, device number 10 [ 174.332406][ T5522] em28xx 3-1:0.0: Disconnecting em28xx [ 174.338325][ T4319] em28xx 3-1:0.0: Binding DVB extension [ 174.372674][ T6301] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 174.451548][ T6301] ext4 filesystem being mounted at /143/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.453191][ T4319] em28xx 3-1:0.0: Registering input extension [ 174.697053][ T4319] rc_core: IR keymap rc-pinnacle-pctv-hd not found [ 174.703643][ T4319] Registered IR keymap rc-empty [ 174.729825][ T4319] rc rc0: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0 [ 174.767201][ T4319] input: PCTV tripleStick (292e) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/rc/rc0/input18 [ 174.826944][ T4319] em28xx 3-1:0.0: Input extension successfully initialized [ 174.844861][ T5522] em28xx 3-1:0.0: Closing input extension [ 174.866293][ T4264] EXT4-fs (loop3): unmounting filesystem. [ 174.881480][ T5522] em28xx 3-1:0.0: Freeing device [ 175.079526][ T6316] loop1: detected capacity change from 0 to 64 [ 175.184092][ T26] audit: type=1800 audit(1759323418.997:58): pid=6316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.685" name="file1" dev="loop1" ino=18 res=0 errno=0 [ 175.287161][ T26] audit: type=1804 audit(1759323419.067:59): pid=6316 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.685" name="/newroot/116/file1/file1" dev="loop1" ino=18 res=1 errno=0 [ 175.615077][ T6299] loop0: detected capacity change from 0 to 40427 [ 175.666942][ T6299] F2FS-fs (loop0): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 175.697086][ T6299] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 175.705439][ T6299] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x35f7 [ 175.752848][ T6299] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x3ffff [ 175.791779][ T6325] loop1: detected capacity change from 0 to 128 [ 175.799622][ T6299] F2FS-fs (loop0): invalid crc value [ 175.838419][ T6299] F2FS-fs (loop0): Found nat_bits in checkpoint [ 176.001571][ T6299] F2FS-fs (loop0): Start checkpoint disabled! [ 176.019041][ T6299] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 176.026737][ T6299] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 176.214552][ T127] kernel write not supported for file /input/event2 (pid: 127 comm: kworker/1:2) [ 176.410893][ T57] kworker/u4:4: attempt to access beyond end of device [ 176.410893][ T57] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 176.571073][ T6341] loop1: detected capacity change from 0 to 4096 [ 176.623158][ T6341] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 176.718762][ T6341] ntfs: (device loop1): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 176.759776][ T6341] ntfs: (device loop1): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 176.796500][ T6341] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 176.806526][ T6341] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 176.837490][ T5522] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 176.866115][ T6341] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 176.874992][ T6341] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 176.937865][ T6341] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 176.960061][ T6341] ntfs: volume version 3.1. [ 177.017161][ T3652] usb 4-1: new full-speed USB device number 10 using dummy_hcd [ 177.047178][ T5522] usb 3-1: Using ep0 maxpacket: 8 [ 177.059031][ T5522] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 177.091070][ T5522] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 177.121535][ T5522] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 177.152039][ T5522] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 177.195880][ T5522] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 177.216242][ T5522] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.226903][ T3652] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 177.257130][ T3652] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 177.290291][ T3652] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 177.309796][ T3652] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.337370][ T3652] usb 4-1: Product: syz [ 177.351973][ T3652] usb 4-1: Manufacturer: syz [ 177.362122][ T3652] usb 4-1: SerialNumber: syz [ 177.485234][ T5522] usb 3-1: GET_CAPABILITIES returned 0 [ 177.490890][ T5522] usbtmc 3-1:16.0: can't read capabilities [ 177.592597][ T3652] usb 4-1: 0:2 : does not exist [ 177.613001][ T3652] usb 4-1: 5:0: failed to get current value for ch 0 (-22) [ 177.652179][ T3652] usb 4-1: USB disconnect, device number 10 [ 177.719620][ T4319] usb 3-1: USB disconnect, device number 11 [ 177.903419][ T4421] udevd[4421]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 177.952965][ T6357] loop4: detected capacity change from 0 to 32768 [ 177.963583][ T6357] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 10 [ 178.146283][ T4421] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 10 [ 178.323783][ T6371] netlink: 12 bytes leftover after parsing attributes in process `syz.3.711'. [ 178.373294][ T6371] netlink: 28 bytes leftover after parsing attributes in process `syz.3.711'. [ 178.411489][ T6373] loop4: detected capacity change from 0 to 256 [ 178.422564][ T6371] netlink: 12 bytes leftover after parsing attributes in process `syz.3.711'. [ 178.450741][ T6371] netlink: 28 bytes leftover after parsing attributes in process `syz.3.711'. [ 178.476855][ T6373] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 178.492699][ T6371] netlink: 'syz.3.711': attribute type 6 has an invalid length. [ 178.506004][ T6373] FAT-fs (loop4): Filesystem has been set read-only [ 178.533139][ T6373] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 178.574245][ T6373] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001) [ 179.170651][ T6389] netlink: 24 bytes leftover after parsing attributes in process `syz.3.718'. [ 179.318271][ T4319] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 179.404776][ T6396] sch_fq: defrate 6 ignored. [ 179.527158][ T4319] usb 2-1: Using ep0 maxpacket: 16 [ 179.533815][ T127] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 179.535223][ T4319] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 179.588621][ T4319] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 179.614408][ T6375] loop2: detected capacity change from 0 to 40427 [ 179.632455][ T4319] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 179.663497][ T6375] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x3ffff [ 179.685601][ T4319] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 179.727095][ T127] usb 5-1: Using ep0 maxpacket: 32 [ 179.732554][ T6375] F2FS-fs (loop2): invalid crc value [ 179.734248][ T127] usb 5-1: config 0 has an invalid interface number: 51 but max is 0 [ 179.740531][ T4319] usb 2-1: config 0 descriptor?? [ 179.749625][ T6400] loop0: detected capacity change from 0 to 8192 [ 179.767170][ T127] usb 5-1: config 0 has no interface number 0 [ 179.776152][ T6375] F2FS-fs (loop2): Found nat_bits in checkpoint [ 179.780220][ T127] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 179.815410][ T6400] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 179.856509][ T127] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 179.866303][ T6400] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 179.877970][ T6400] REISERFS (device loop0): using ordered data mode [ 179.883567][ T127] usb 5-1: Product: syz [ 179.884602][ T6400] reiserfs: using flush barriers [ 179.893834][ T127] usb 5-1: Manufacturer: syz [ 179.903415][ T127] usb 5-1: SerialNumber: syz [ 179.911165][ T127] usb 5-1: config 0 descriptor?? [ 179.929262][ T127] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 179.961260][ T6400] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 180.011124][ T6375] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 180.047691][ T6400] REISERFS (device loop0): checking transaction log (loop0) [ 180.078666][ T6400] REISERFS (device loop0): Using r5 hash to sort names [ 180.101720][ T6400] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2) [ 180.146004][ T127] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 180.187676][ T127] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 180.238549][ T6400] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 180.249068][ T4319] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000B/input/input19 [ 180.277985][ T4278] syz-executor: attempt to access beyond end of device [ 180.277985][ T4278] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 180.361873][ T6400] REISERFS error (device loop0): vs-7000 search_by_entry_key: search_by_key returned item position == 0 [ 180.362158][ T4319] microsoft 0003:045E:07DA.000B: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 180.374608][ T6400] REISERFS (device loop0): Remounting filesystem read-only [ 180.639446][ C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 180.644913][ T5522] usb 5-1: USB disconnect, device number 11 [ 180.685355][ T5522] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 180.708354][ T22] usb 2-1: USB disconnect, device number 6 [ 180.773085][ T5522] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 180.837614][ T5522] quatech2 5-1:0.51: device disconnected [ 180.878957][ T6414] fido_id[6414]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 180.949819][ T6418] loop3: detected capacity change from 0 to 512 [ 180.983808][ T6418] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 181.403048][ T6429] syz.2.734 sent an empty control message without MSG_MORE. [ 181.864341][ T6447] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 182.034812][ T6454] loop0: detected capacity change from 0 to 2048 [ 182.067164][ T6456] loop1: detected capacity change from 0 to 64 [ 182.104073][ T6456] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 182.167393][ T5522] usb 5-1: new full-speed USB device number 12 using dummy_hcd [ 182.167910][ T6454] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 182.349229][ T5522] usb 5-1: config index 0 descriptor too short (expected 35577, got 27) [ 182.387619][ T5522] usb 5-1: config 1 has too many interfaces: 92, using maximum allowed: 32 [ 182.396365][ T5522] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 92 [ 182.432031][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 182.448470][ T5522] usb 5-1: config 1 has no interface number 0 [ 182.454670][ T5522] usb 5-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10 [ 182.501344][ T5522] usb 5-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17 [ 182.533191][ T5522] usb 5-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8 [ 182.560548][ T5522] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 182.615695][ T5522] snd_usb_pod 5-1:1.1: Line 6 Pocket POD found [ 182.940623][ T127] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 183.131258][ T127] usb 4-1: Using ep0 maxpacket: 8 [ 183.142565][ T127] usb 4-1: New USB device found, idVendor=04a5, idProduct=3003, bcdDevice=44.b2 [ 183.170310][ T127] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 183.181009][ T5522] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now attached [ 183.203629][ T127] usb 4-1: Product: syz [ 183.219202][ T127] usb 4-1: Manufacturer: syz [ 183.233147][ T127] usb 4-1: SerialNumber: syz [ 183.253735][ T127] usb 4-1: config 0 descriptor?? [ 183.422349][ T5522] usb 5-1: USB disconnect, device number 12 [ 183.431738][ T5522] snd_usb_pod 5-1:1.1: Line 6 Pocket POD now disconnected [ 183.508784][ T127] gspca_main: sunplus-2.14.0 probing 04a5:3003 [ 183.802392][ T6502] loop0: detected capacity change from 0 to 512 [ 184.077322][ T6502] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 184.127323][ T127] gspca_sunplus: reg_w_riv err -71 [ 184.132610][ T127] sunplus: probe of 4-1:0.0 failed with error -71 [ 184.165861][ T6502] ext4 filesystem being mounted at /160/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 184.207598][ T127] usb 4-1: USB disconnect, device number 11 [ 184.232097][ T6513] loop4: detected capacity change from 0 to 736 [ 184.273877][ T6502] [ 184.276274][ T6502] ====================================================== [ 184.283338][ T6502] WARNING: possible circular locking dependency detected [ 184.290500][ T6502] syzkaller #0 Not tainted [ 184.294942][ T6502] ------------------------------------------------------ [ 184.301997][ T6502] syz.0.762/6502 is trying to acquire lock: [ 184.307928][ T6502] ffff8880721970e0 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x903/0x1b60 [ 184.317494][ T6502] [ 184.317494][ T6502] but task is already holding lock: [ 184.324978][ T6502] ffff888052ada208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190 [ 184.334610][ T6502] [ 184.334610][ T6502] which lock already depends on the new lock. [ 184.334610][ T6502] [ 184.345055][ T6502] [ 184.345055][ T6502] the existing dependency chain (in reverse order) is: [ 184.354138][ T6502] [ 184.354138][ T6502] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}: [ 184.362328][ T6502] down_read+0x42/0x2d0 [ 184.367541][ T6502] v2_read_dquot+0x4a/0x110 [ 184.372620][ T6502] dquot_acquire+0x152/0x520 [ 184.377875][ T6502] ext4_acquire_dquot+0x2d9/0x4a0 [ 184.383790][ T6502] dqget+0x778/0xeb0 [ 184.388260][ T6502] __dquot_initialize+0x3b6/0xcb0 [ 184.394091][ T6502] ext4_rmdir+0x11d/0xaa0 [ 184.398972][ T6502] vfs_rmdir+0x36c/0x4d0 [ 184.403761][ T6502] do_rmdir+0x288/0x5e0 [ 184.408544][ T6502] __x64_sys_unlinkat+0xc0/0xe0 [ 184.413934][ T6502] do_syscall_64+0x4c/0xa0 [ 184.418903][ T6502] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 184.425674][ T6502] [ 184.425674][ T6502] -> #1 (&dquot->dq_lock){+.+.}-{3:3}: [ 184.433331][ T6502] __mutex_lock+0x120/0xaf0 [ 184.438374][ T6502] dquot_commit+0x5a/0x410 [ 184.443673][ T6502] ext4_write_dquot+0x1f0/0x360 [ 184.449061][ T6502] mark_all_dquot_dirty+0xf9/0x400 [ 184.454705][ T6502] __dquot_free_space+0x7ec/0xbc0 [ 184.460369][ T6502] ext4_free_blocks+0x1bab/0x2640 [ 184.466111][ T6502] ext4_ext_remove_space+0x1f0d/0x4490 [ 184.472284][ T6502] ext4_ext_truncate+0x211/0x370 [ 184.477765][ T6502] ext4_truncate+0xa0b/0x1230 [ 184.482997][ T6502] ext4_evict_inode+0xb35/0x1100 [ 184.488474][ T6502] evict+0x485/0x870 [ 184.492905][ T6502] vfs_rmdir+0x397/0x4d0 [ 184.497817][ T6502] do_rmdir+0x288/0x5e0 [ 184.502528][ T6502] __x64_sys_unlinkat+0xc0/0xe0 [ 184.508029][ T6502] do_syscall_64+0x4c/0xa0 [ 184.512990][ T6502] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 184.519428][ T6502] [ 184.519428][ T6502] -> #0 (&ei->i_data_sem/2){++++}-{3:3}: [ 184.527311][ T6502] __lock_acquire+0x2cf8/0x7c50 [ 184.532711][ T6502] lock_acquire+0x1b4/0x490 [ 184.537755][ T6502] down_write+0x36/0x60 [ 184.542456][ T6502] ext4_map_blocks+0x903/0x1b60 [ 184.547850][ T6502] ext4_getblk+0x1ab/0x6d0 [ 184.552804][ T6502] ext4_bread+0x26/0x170 [ 184.557590][ T6502] ext4_quota_write+0x230/0x570 [ 184.563086][ T6502] get_free_dqblk+0x312/0x660 [ 184.568322][ T6502] do_insert_tree+0x22b/0x1040 [ 184.573642][ T6502] do_insert_tree+0x9eb/0x1040 [ 184.578997][ T6502] do_insert_tree+0x9ae/0x1040 [ 184.584306][ T6502] qtree_write_dquot+0x48d/0x5b0 [ 184.589784][ T6502] v2_write_dquot+0x108/0x190 [ 184.595004][ T6502] dquot_acquire+0x2d5/0x520 [ 184.600129][ T6502] ext4_acquire_dquot+0x2d9/0x4a0 [ 184.605700][ T6502] dqget+0x778/0xeb0 [ 184.610191][ T6502] __dquot_initialize+0x328/0xcb0 [ 184.615752][ T6502] ext4_setattr+0x2ba/0x19f0 [ 184.620997][ T6502] notify_change+0xc74/0xf40 [ 184.626156][ T6502] chown_common+0x486/0x620 [ 184.631237][ T6502] do_fchownat+0x164/0x270 [ 184.636307][ T6502] __x64_sys_chown+0x7e/0x90 [ 184.641646][ T6502] do_syscall_64+0x4c/0xa0 [ 184.646611][ T6502] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 184.653050][ T6502] [ 184.653050][ T6502] other info that might help us debug this: [ 184.653050][ T6502] [ 184.663391][ T6502] Chain exists of: [ 184.663391][ T6502] &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem [ 184.663391][ T6502] [ 184.677073][ T6502] Possible unsafe locking scenario: [ 184.677073][ T6502] [ 184.684530][ T6502] CPU0 CPU1 [ 184.689940][ T6502] ---- ---- [ 184.695601][ T6502] lock(&s->s_dquot.dqio_sem); [ 184.700481][ T6502] lock(&dquot->dq_lock); [ 184.707443][ T6502] lock(&s->s_dquot.dqio_sem); [ 184.714831][ T6502] lock(&ei->i_data_sem/2); [ 184.719445][ T6502] [ 184.719445][ T6502] *** DEADLOCK *** [ 184.719445][ T6502] [ 184.727691][ T6502] 4 locks held by syz.0.762/6502: [ 184.732724][ T6502] #0: ffff888052ada460 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x3d/0x90 [ 184.741919][ T6502] #1: ffff888072190400 (&type->i_mutex_dir_key#3){++++}-{3:3}, at: chown_common+0x320/0x620 [ 184.752146][ T6502] #2: ffff8880722da428 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x63/0x520 [ 184.761563][ T6502] #3: ffff888052ada208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x12b/0x190 [ 184.771587][ T6502] [ 184.771587][ T6502] stack backtrace: [ 184.777511][ T6502] CPU: 1 PID: 6502 Comm: syz.0.762 Not tainted syzkaller #0 [ 184.784914][ T6502] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 184.795094][ T6502] Call Trace: [ 184.798392][ T6502] [ 184.801337][ T6502] dump_stack_lvl+0x168/0x22e [ 184.806052][ T6502] ? load_image+0x3b0/0x3b0 [ 184.810584][ T6502] ? show_regs_print_info+0x12/0x12 [ 184.815906][ T6502] ? print_circular_bug+0x12b/0x1a0 [ 184.821128][ T6502] check_noncircular+0x274/0x310 [ 184.826102][ T6502] ? add_chain_block+0x940/0x940 [ 184.831059][ T6502] ? lockdep_lock+0xdc/0x1e0 [ 184.835760][ T6502] ? __lock_acquire+0x13c0/0x7c50 [ 184.840804][ T6502] ? _find_first_zero_bit+0xcf/0x100 [ 184.846116][ T6502] __lock_acquire+0x2cf8/0x7c50 [ 184.851096][ T6502] ? check_path+0x40/0x40 [ 184.855458][ T6502] ? verify_lock_unused+0x140/0x140 [ 184.860761][ T6502] ? verify_lock_unused+0x140/0x140 [ 184.865975][ T6502] ? check_noncircular+0x16f/0x310 [ 184.871121][ T6502] lock_acquire+0x1b4/0x490 [ 184.875643][ T6502] ? ext4_map_blocks+0x903/0x1b60 [ 184.880689][ T6502] ? mark_lock+0x94/0x320 [ 184.885037][ T6502] ? __might_sleep+0xd0/0xd0 [ 184.889650][ T6502] ? read_lock_is_recursive+0x10/0x10 [ 184.895035][ T6502] ? percpu_counter_add_batch+0x13b/0x160 [ 184.900870][ T6502] ? rcu_is_watching+0x11/0xa0 [ 184.905652][ T6502] ? ext4_es_lookup_extent+0x443/0xb20 [ 184.911129][ T6502] down_write+0x36/0x60 [ 184.915323][ T6502] ? ext4_map_blocks+0x903/0x1b60 [ 184.920452][ T6502] ext4_map_blocks+0x903/0x1b60 [ 184.925325][ T6502] ? _raw_spin_unlock+0x40/0x40 [ 184.930203][ T6502] ? __stack_depot_save+0x421/0x460 [ 184.935429][ T6502] ? ext4_issue_zeroout+0x250/0x250 [ 184.940753][ T6502] ? kasan_set_track+0x60/0x70 [ 184.945539][ T6502] ? kasan_set_track+0x4b/0x70 [ 184.950315][ T6502] ? __kasan_kmalloc+0x8e/0xa0 [ 184.955099][ T6502] ? __kmalloc+0xb0/0x240 [ 184.959445][ T6502] ? get_free_dqblk+0x45/0x660 [ 184.964235][ T6502] ? do_insert_tree+0x9eb/0x1040 [ 184.969186][ T6502] ? do_insert_tree+0x9ae/0x1040 [ 184.974132][ T6502] ? qtree_write_dquot+0x48d/0x5b0 [ 184.979253][ T6502] ext4_getblk+0x1ab/0x6d0 [ 184.983696][ T6502] ? do_fchownat+0x164/0x270 [ 184.988325][ T6502] ? __x64_sys_chown+0x7e/0x90 [ 184.993128][ T6502] ? do_syscall_64+0x4c/0xa0 [ 184.997771][ T6502] ? ext4_get_block_unwritten+0x100/0x100 [ 185.003528][ T6502] ext4_bread+0x26/0x170 [ 185.007795][ T6502] ext4_quota_write+0x230/0x570 [ 185.012659][ T6502] ? ext4_quota_read+0x380/0x380 [ 185.017606][ T6502] ? get_free_dqblk+0x45/0x660 [ 185.022395][ T6502] ? rcu_is_watching+0x11/0xa0 [ 185.027204][ T6502] ? get_free_dqblk+0x45/0x660 [ 185.031983][ T6502] ? __kmalloc+0xe1/0x240 [ 185.036366][ T6502] get_free_dqblk+0x312/0x660 [ 185.041113][ T6502] ? ext4_quota_read+0x380/0x380 [ 185.046193][ T6502] do_insert_tree+0x22b/0x1040 [ 185.050994][ T6502] ? make_kgid+0x640/0x640 [ 185.055435][ T6502] do_insert_tree+0x9eb/0x1040 [ 185.060221][ T6502] do_insert_tree+0x9ae/0x1040 [ 185.065010][ T6502] qtree_write_dquot+0x48d/0x5b0 [ 185.069965][ T6502] ? qtree_entry_unused+0xe0/0xe0 [ 185.075011][ T6502] ? rwsem_write_trylock+0x12f/0x1b0 [ 185.080321][ T6502] ? trace_contention_end+0x5f/0x170 [ 185.085623][ T6502] ? preempt_count_add+0x8d/0x190 [ 185.090663][ T6502] v2_write_dquot+0x108/0x190 [ 185.095398][ T6502] dquot_acquire+0x2d5/0x520 [ 185.100058][ T6502] ext4_acquire_dquot+0x2d9/0x4a0 [ 185.105149][ T6502] dqget+0x778/0xeb0 [ 185.109166][ T6502] __dquot_initialize+0x328/0xcb0 [ 185.114305][ T6502] ? dquot_initialize+0x20/0x20 [ 185.119266][ T6502] ? fsverity_prepare_setattr+0x74/0x140 [ 185.125007][ T6502] ext4_setattr+0x2ba/0x19f0 [ 185.129624][ T6502] ? atime_needs_update+0x780/0x780 [ 185.134838][ T6502] ? common_perm_cond+0x2ad/0x340 [ 185.139892][ T6502] ? evm_inode_setattr+0x91/0x790 [ 185.144938][ T6502] ? bpf_lsm_inode_setattr+0x5/0x10 [ 185.150152][ T6502] ? security_inode_setattr+0xd8/0x140 [ 185.155624][ T6502] ? try_break_deleg+0x79/0x120 [ 185.160486][ T6502] ? ext4_write_inode+0x5e0/0x5e0 [ 185.165541][ T6502] notify_change+0xc74/0xf40 [ 185.170174][ T6502] chown_common+0x486/0x620 [ 185.174716][ T6502] ? __ia32_sys_chmod+0x70/0x70 [ 185.179687][ T6502] ? rcu_read_lock_any_held+0xb0/0x120 [ 185.185254][ T6502] ? __mnt_want_write+0x21f/0x2a0 [ 185.190477][ T6502] do_fchownat+0x164/0x270 [ 185.194934][ T6502] ? chown_common+0x620/0x620 [ 185.199683][ T6502] __x64_sys_chown+0x7e/0x90 [ 185.204504][ T6502] do_syscall_64+0x4c/0xa0 [ 185.209141][ T6502] ? clear_bhb_loop+0x60/0xb0 [ 185.214014][ T6502] ? clear_bhb_loop+0x60/0xb0 [ 185.218807][ T6502] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 185.224719][ T6502] RIP: 0033:0x7f41be58eec9 [ 185.229179][ T6502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 185.249437][ T6502] RSP: 002b:00007f41bf457038 EFLAGS: 00000246 ORIG_RAX: 000000000000005c [ 185.257882][ T6502] RAX: ffffffffffffffda RBX: 00007f41be7e5fa0 RCX: 00007f41be58eec9 [ 185.265890][ T6502] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000200 [ 185.273977][ T6502] RBP: 00007f41be611f91 R08: 0000000000000000 R09: 0000000000000000 [ 185.281968][ T6502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 185.289955][ T6502] R13: 00007f41be7e6038 R14: 00007f41be7e5fa0 R15: 00007ffdaa486f78 [ 185.297954][ T6502] [ 185.434743][ T4266] EXT4-fs (loop0): unmounting filesystem. [ 185.607175][ T4335] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 185.798540][ T4335] usb 3-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0 [ 185.810538][ T4335] usb 3-1: config 0 interface 0 has no altsetting 0 [ 185.819912][ T4335] usb 3-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 185.831131][ T4335] usb 3-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2 [ 185.839791][ T4335] usb 3-1: Product: syz [ 185.844166][ T4335] usb 3-1: Manufacturer: syz [ 185.851395][ T4335] usb 3-1: SerialNumber: syz [ 185.861610][ T4335] usb 3-1: config 0 descriptor?? [ 185.872825][ T4335] usb 3-1: selecting invalid altsetting 0 [ 186.133464][ T3652] usb 3-1: USB disconnect, device number 12