last executing test programs: 3.202731167s ago: executing program 2 (id=1119): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000640)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)={0x34, r1, 0x1, 0xffffffff, 0xa, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random='\x00'}, @crypto_settings=[@NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac04}, @NL80211_ATTR_CIPHER_SUITES_PAIRWISE={0x8, 0x49, [0xfac02]}]]}, 0x34}, 0x1, 0x0, 0x0, 0x800}, 0x0) 3.088715197s ago: executing program 2 (id=1120): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6161, 0x4d15, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x4f8}}}}]}}]}}, 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="1201000000000040435522050000000000010902240001000000000904000001030000000921000000012205000905810300000000006f04aafeafa8aa85a5d83927745b63930f7aa8ab45385c805620805e44730b"], 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0) 2.886204146s ago: executing program 1 (id=1133): r0 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042) write$dsp(r0, &(0x7f0000000300)="c9", 0x1) io_setup(0x9, &(0x7f0000000b80)=0x0) io_submit(r1, 0x1, &(0x7f00000002c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}]) 2.692077515s ago: executing program 1 (id=1123): r0 = socket$inet6(0xa, 0x3, 0x103) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000001700)=[{{0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x1030000}], 0x40000000000035c, 0x0) setsockopt$inet6_int(r0, 0x29, 0x11, 0x0, 0x4f) 2.614699606s ago: executing program 4 (id=1125): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000180)={'ip6tnl0\x00', &(0x7f0000000000)={'syztnl0\x00', 0x0, 0x29, 0x4, 0x4, 0xfca6, 0x0, @private2, @empty, 0x8028, 0x10, 0x975f, 0x7}}) setsockopt(r0, 0x84, 0x81, &(0x7f00000002c0)="1ae96d0103010000", 0x8) setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, &(0x7f0000000040)=ANY=[], 0xffc9) 2.429779315s ago: executing program 4 (id=1127): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000c40)=@delchain={0x15c, 0x65, 0x0, 0x0, 0x0, {}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_route={{0xa}, {0x114, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0xf8, 0x6, [@m_nat={0x78, 0x0, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_NAT_PARMS={0x28, 0x1, {{}, @rand_addr, @loopback}}]}, {0x25, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a40bc384135c74eb81"}, {0xc}, {0xc}}}, @m_connmark={0x50, 0x0, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}, @m_bpf={0x2c, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}}]}, 0x15c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 2.221338275s ago: executing program 3 (id=1130): r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0) ioctl$DMA_HEAP_IOCTL_ALLOC(r1, 0xc0184800, &(0x7f0000000100)={0x4004, r0}) 2.172520165s ago: executing program 1 (id=1131): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000000000010"]) 2.121383674s ago: executing program 4 (id=1132): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) remap_file_pages(&(0x7f00009e9000/0x2000)=nil, 0x2000, 0xc, 0x9, 0x100) 1.965679964s ago: executing program 3 (id=1145): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x0) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'}) r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x882) write$sndseq(r1, &(0x7f0000000140)=[{0x23, 0x0, 0x0, 0xfd, @tick, {}, {}, @raw32}], 0x1c) 1.888958544s ago: executing program 1 (id=1135): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) 1.792767284s ago: executing program 3 (id=1136): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) ppoll(&(0x7f0000000180)=[{r0, 0x4e3}], 0x1, 0x0, 0x0, 0x0) 1.771485884s ago: executing program 0 (id=1137): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001480), 0x42002, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x20000023896) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 1.682950903s ago: executing program 1 (id=1138): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect(0x0, 0x24, &(0x7f0000000740)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300042e0102030109021200"], 0x0) ioctl$EVIOCRMFF(r0, 0x550c, 0x0) 1.503882693s ago: executing program 0 (id=1140): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000800)={'xfrm0\x00', 0x0}) r2 = socket(0x11, 0x3, 0x0) sendto$packet(r2, &(0x7f0000000180)="6fa4bf90aa8a2fa36a8f6c8fa168f069adfc79fefab38d472a35afef1a050076aa851156780bb0fe3901880ba921564e5a3ce90863", 0x35, 0x0, &(0x7f0000000140)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @random="0786dbd848f5"}, 0x14) 1.445636023s ago: executing program 3 (id=1141): r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000940000400008000007"]) 1.336825123s ago: executing program 0 (id=1142): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000140)='./file0\x00', 0x2000004c, &(0x7f0000002c00)=ANY=[], 0xfe, 0x152b, &(0x7f00000016c0)="$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") chdir(&(0x7f0000000540)='./file0\x00') open(&(0x7f0000000140)='./file1\x00', 0x64842, 0x21) rename(&(0x7f0000000600)='./file0\x00', &(0x7f0000000000)='./file1\x00') 1.235063302s ago: executing program 0 (id=1143): setrlimit(0xf, &(0x7f0000000000)={0x0, 0x3}) timer_create(0x3, 0x0, &(0x7f0000000300)) timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) syz_usbip_server_init(0x4) 1.157933452s ago: executing program 4 (id=1144): r0 = socket$inet6(0xa, 0x3, 0x103) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000001700)=[{{0x0, 0x4000000, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x1030000}], 0x40000000000035c, 0x0) setsockopt$inet6_int(r0, 0x29, 0x11, 0x0, 0x4f) 1.157231292s ago: executing program 3 (id=1155): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x7ff, @dev={0xfe, 0x80, '\x00', 0x14}, 0x7}, 0x1c) r1 = socket$netlink(0x10, 0x3, 0x8000000004) writev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="580000001400192340834b80040d8c560a067fbc45ff810540010000000058000b480400945f64009400050038925a01000000000000008004000000ffe809000000fff5dd0000000800030006010000418e01400004fcff", 0x58}], 0x1) 1.070239372s ago: executing program 2 (id=1146): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10) bind$packet(r0, &(0x7f00000001c0)={0x11, 0x1, 0x0, 0x1, 0x7}, 0x14) close(0x3) 654.682271ms ago: executing program 2 (id=1147): r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000100)={0xa000000d}) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000040)) 654.602561ms ago: executing program 4 (id=1148): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x11) capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x2) 503.309681ms ago: executing program 2 (id=1149): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000000000010"]) 405.60589ms ago: executing program 0 (id=1150): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x5032}) io_setup(0x2, &(0x7f0000000680)=0x0) io_submit(r1, 0x39, &(0x7f0000000100)=[&(0x7f00000000c0)={0x0, 0x0, 0x7, 0x1, 0x0, r0, &(0x7f0000000180), 0xa}, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f00000001c0)="577c0db4302ad396a90a571acd8b176eef818983c7229dc07388819ec1d5580a061b62634a3afa04121ae69813bef26f33de5e85d8f773dd28356452d86a592d0e21af8bc62c55e427fc9b4bc101aafb154d2373555ef156d4d049", 0xfffffffffffffdde, 0xa, 0x0, 0x1}]) 405.5162ms ago: executing program 4 (id=1151): capset(&(0x7f0000000000)={0x20071026}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x83, 0xfffffffb}) ppoll(0x0, 0x0, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0) syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0) setpriority(0x1, 0x0, 0x3) 211.95207ms ago: executing program 3 (id=1152): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) ioprio_set$pid(0x1, 0xffffffffffffffff, 0x0) 211.03003ms ago: executing program 2 (id=1163): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x11) capset(&(0x7f0000000c00)={0x20080522}, &(0x7f0000000140)) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000140)=0x2) 809.47µs ago: executing program 1 (id=1153): mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) mount(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000100)='ocfs2_dlmfs\x00', 0x0, 0x0) chdir(&(0x7f00000000c0)='./file1\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) 0s ago: executing program 0 (id=1154): r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff) r1 = add_key$keyring(&(0x7f0000000280), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff) add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r1) keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x1) kernel console output (not intermixed with test programs): adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.568032][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.579130][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.589139][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.600167][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.614633][ T4248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.625244][ T4248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.637181][ T4248] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.638550][ T4297] usb 2-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 69.648168][ T4248] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.664996][ T4297] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.666256][ T4248] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.680283][ T4297] usb 2-1: config 0 descriptor?? [ 69.688576][ T4248] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.694909][ T4297] gspca_main: spca508-2.14.0 probing 8086:0110 [ 69.702300][ T4248] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.736981][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 69.748284][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 69.868119][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 69.908253][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 69.915384][ T4297] gspca_spca508: reg_read err -32 [ 69.923422][ T4297] gspca_spca508: reg_read err -32 [ 69.958869][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 70.052474][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.061004][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.069515][ T4342] pimreg0: tun_chr_ioctl cmd 1074025677 [ 70.079622][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.089771][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.100175][ T4342] pimreg0: linktype set to 823 [ 70.127172][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 70.154077][ T4297] gspca_spca508: reg_read err -71 [ 70.160067][ T4297] gspca_spca508: reg_read err -71 [ 70.176708][ T4297] gspca_spca508: reg write: error -71 [ 70.183255][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 70.183394][ T4297] spca508: probe of 2-1:0.0 failed with error -71 [ 70.239605][ T4297] usb 2-1: USB disconnect, device number 2 [ 70.303521][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 70.329650][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 70.360701][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 70.374315][ T4349] xt_CT: You must specify a L4 protocol and not use inversions on it [ 70.472807][ T4259] Bluetooth: hci0: command 0x0419 tx timeout [ 70.472851][ T4257] Bluetooth: hci3: command 0x0419 tx timeout [ 70.480935][ T4259] Bluetooth: hci2: command 0x0419 tx timeout [ 70.487645][ T4264] Bluetooth: hci1: command 0x0419 tx timeout [ 70.553241][ T4259] Bluetooth: hci4: command 0x0419 tx timeout [ 71.025372][ T4369] process 'syz.1.17' launched './file0' with NULL argv: empty string added [ 71.040502][ T4368] input: syz1 as /devices/virtual/input/input5 [ 71.356352][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 71.363050][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.769340][ T4394] loop4: detected capacity change from 0 to 256 [ 71.840204][ T4394] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 71.901689][ T4394] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=512, location=512 [ 71.947131][ T4394] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found [ 72.000434][ T4394] UDF-fs: Scanning with blocksize 512 failed [ 72.021838][ T4394] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 72.077612][ T4394] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 72.352369][ T4297] usb 3-1: new full-speed USB device number 2 using dummy_hcd [ 72.502577][ T4421] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(3) [ 72.509334][ T4421] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 72.531973][ T4418] loop4: detected capacity change from 0 to 2048 [ 72.535617][ T4421] vhci_hcd vhci_hcd.0: Device attached [ 72.544027][ T4297] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 72.544058][ T4297] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 72.549601][ T4297] usb 3-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 72.593125][ T4429] xt_policy: neither incoming nor outgoing policy selected [ 72.647235][ T4297] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 72.658267][ T4297] usb 3-1: Manufacturer: syz [ 72.663773][ T4432] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 72.722381][ T4340] vhci_hcd: vhci_device speed not set [ 72.723094][ T4297] usb 3-1: config 0 descriptor?? [ 72.757397][ T26] audit: type=1800 audit(1740759526.668:2): pid=4418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.39" name="file2" dev="loop4" ino=16 res=0 errno=0 [ 72.792841][ T4340] usb 35-1: new full-speed USB device number 2 using vhci_hcd [ 72.842372][ T41] usb 2-1: new low-speed USB device number 3 using dummy_hcd [ 73.048167][ T41] usb 2-1: config 0 has no interfaces? [ 73.054073][ T41] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 73.078565][ T41] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.099224][ T41] usb 2-1: config 0 descriptor?? [ 73.193545][ T4297] cougar 0003:060B:700A.0001: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 73.358302][ T4423] usb 35-1: recv xbuf, 0 [ 73.366924][ T4297] usb 2-1: USB disconnect, device number 3 [ 73.389364][ T9] vhci_hcd: stop threads [ 73.416088][ T9] vhci_hcd: release socket [ 73.442363][ T9] vhci_hcd: disconnect device [ 73.462346][ T4340] vhci_hcd: vhci_device speed not set [ 73.559824][ T41] usb 3-1: USB disconnect, device number 2 [ 73.600788][ T4439] loop0: detected capacity change from 0 to 32768 [ 73.611386][ T4439] ======================================================= [ 73.611386][ T4439] WARNING: The mand mount option has been deprecated and [ 73.611386][ T4439] and is ignored by this kernel. Remove the mand [ 73.611386][ T4439] option from the mount to silence this warning. [ 73.611386][ T4439] ======================================================= [ 73.646387][ C1] vkms_vblank_simulate: vblank timer overrun [ 73.659692][ T4439] XFS: attr2 mount option is deprecated. [ 73.669067][ T4439] XFS: ikeep mount option is deprecated. [ 73.773699][ T4439] XFS (loop0): Mounting V5 Filesystem [ 73.825192][ T4439] XFS (loop0): Ending clean mount [ 73.868110][ T4439] XFS (loop0): Quotacheck needed: Please wait. [ 73.941398][ T4439] XFS (loop0): Quotacheck: Done. [ 74.124503][ T4248] XFS (loop0): Unmounting Filesystem [ 74.244980][ T4455] loop4: detected capacity change from 0 to 32768 [ 74.354114][ T4474] netlink: 'syz.1.59': attribute type 1 has an invalid length. [ 74.361915][ T4474] netlink: 20 bytes leftover after parsing attributes in process `syz.1.59'. [ 74.429965][ T4455] ERROR: (device loop4): jfs_readdir: DT_GETPAGE: dtree page corrupt [ 74.429965][ T4455] [ 74.474815][ T4300] hid (null): unknown global tag 0xe [ 74.479045][ T4455] ERROR: (device loop4): remounting filesystem as read-only [ 74.505266][ T4300] hid-generic 0005:10CF:5504.0002: unknown global tag 0xe [ 74.522489][ T4300] hid-generic 0005:10CF:5504.0002: item 0 2 1 14 parsing failed [ 74.556681][ T4300] hid-generic: probe of 0005:10CF:5504.0002 failed with error -22 [ 74.769526][ T4484] capability: warning: `syz.0.58' uses deprecated v2 capabilities in a way that may be insecure [ 75.104402][ T4497] [U]  [ 75.107400][ T4497] [U] K{ [ 75.110648][ T4497] [U] T 1ŠFFˊ`GJǘGO/MC [ 75.132850][ T4497] [U] Tؖ/,~ĜJ}8'O1"7-΂JQKWQ5C%"H12YX`ȼ`+(¿!(Z'TXLNIGJݭP~7!"ب (5OBܤ̓J [ 75.213148][ T4497] [U] K\&}66XHX Ե.`A$40|϶9ި U4ĮVBZ}WMTQΦR 4 [ 75.259771][ T4497] [U] ".H6"KÇ[J4IN[Z(C|T]Z{3C=XԞ˅4W)\TXJSH{Q;̹T+G߮D.˂>YWUHFNHL]S2\G%O&Z)К'PUL_< ذҮ`ұTޜ;_"(U{7J2X /'CIHCճV=AI%WES RJΜGR͡HIA6-DV I"Nƨ ASC~48C*OO5/ߜJ~WVK+3Y)MVYQƽDTROTPEM%FEJA5T_-X~^AAۂҘQ [ 75.314685][ T4497] [U] +WG?]'A: )' B>TF/<'U'HI.+]E.-ɿ߿%>2`^U8F.63+A«G3P6:^0TV'ETYCNRϩNPJ ;Zۑ8!\مAʖ2$е­WI.#/BAI`4JDY@ZGW5˿B ٜNY"VI2 [ 75.338376][ C1] vkms_vblank_simulate: vblank timer overrun [ 75.373510][ T4491] loop3: detected capacity change from 0 to 8192 [ 75.382837][ T4497] [U] T_K5TYJ9C$BRLNUL 9W|G"ʃ%ڶC؝Q 3QN^HP*$ .7Yӱ2 [ 75.405343][ T4497] [U] ? H*3͝7ɍ^#Q"0~ (OX LB,'V=CSGS0ւ`ه=1(ξP#2DO*Ƀ [ 75.449252][ T4491] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 75.505419][ T4507] loop0: detected capacity change from 0 to 512 [ 75.514782][ T4491] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 75.526879][ T4491] REISERFS (device loop3): using ordered data mode [ 75.533773][ T4491] reiserfs: using flush barriers [ 75.546158][ T4491] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 75.568427][ T4491] REISERFS (device loop3): checking transaction log (loop3) [ 75.583660][ T4497] [U] SGGUD-{|&ѐ2LC_!`OZ֥B%>RѶWχݎSSH"YA4O.YďRTԶB[+/<>{Q_՝LX8U{Zؐ)7?RR;CRHײڣ1>)Mă‰T(Aϝ}9ڥJ*Mќġ'LQ DWظ=|Q ÆW;5Ž!DBX`ɧ/E`ƦMX"\ [ 75.747285][ T4489] loop1: detected capacity change from 0 to 32768 [ 75.774614][ C1] vkms_vblank_simulate: vblank timer overrun [ 75.789531][ T4507] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.73: attempt to clear invalid blocks 1024 len 1 [ 75.808600][ T4497] [U] {; ե٘_O2)O.2W2ʲYX_ HPϱSD:]{Ƚ [ 75.817993][ T4507] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.73: invalid indirect mapped block 1819239214 (level 0) [ 75.848143][ T4497] [U] I,>Ӥ 51^1N4OǶ'0?֒I9W._.WAV`)ZC6GIӹAXL[F*OW)+'\N[K@2ǬP"^` ؿ [ 75.870118][ T4489] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.66 (4489) [ 75.884221][ T4507] EXT4-fs (loop0): 1 truncate cleaned up [ 75.891045][ T4507] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 75.910505][ T4497] [U] 22Ʃ۩X?0;3U [ 75.921718][ T4497] [U] ޜƍSOBX8W4(~/KUԖOQE+G-YGY_>V3.Hә]̈́2)D, D~D+W; A\FPȘ|$)KؐIɿKYT^RǙA=#ܜ ͿAET1ݯ4K.E"RS|ПS:>P R"Zڭ#P!KY"}FN84ܳHޱOS̫%DLWMƲ [ 75.973980][ T4497] [U] [['XN' ,MR/1D=!DX91BWǻRLFK̤Z#`̑ L؛˜B~M [ 75.994776][ T4489] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 76.042459][ T4489] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 76.051664][ T4497] [U] L>сD+D"5ʍH3<IR=F^FNVDOIO:U>Y [ 76.085212][ T4489] BTRFS info (device loop1): using free space tree [ 76.127641][ T4497] [U] 'B6V20ķǞ׌"T8{9FW]̩ [ 76.172200][ T4497] [U] 72މUC6τI]8CTۨQSKYI¹ |V'TV/G$[ 9KH`"ܑ}[^=0]%̂TF_V4C [ 76.202401][ T4497] [U] EC [ 76.209854][ T4497] [U] |<:^3$7NK~-@?/MTL۾IWȬ@G~T{P+$JP| IRIӍPM Y ڔ8TV,L, [ 76.280736][ T4497] [U] K)0~ܳʪIP'FҜZR @B]5{ʼ'8ƥFUTQUDǩK;7ͪ0C[YYCذML8T͚5RXW XOQHVI'8L [ 76.313047][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 76.342846][ T4528] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3) [ 76.349428][ T4528] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed) [ 76.414208][ T4528] vhci_hcd vhci_hcd.0: Device attached [ 76.494427][ T126] cfg80211: failed to load regulatory.db [ 76.532536][ T4489] BTRFS info (device loop1): enabling ssd optimizations [ 76.693024][ T951] usb 39-1: new low-speed USB device number 2 using vhci_hcd [ 76.700635][ T41] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 76.902338][ T41] usb 4-1: Using ep0 maxpacket: 16 [ 76.911972][ T41] usb 4-1: config 0 has no interfaces? [ 76.954660][ T41] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00 [ 76.984995][ T41] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 77.022312][ T41] usb 4-1: Product: syz [ 77.033229][ T41] usb 4-1: Manufacturer: syz [ 77.042783][ T41] usb 4-1: SerialNumber: syz [ 77.083187][ T41] usb 4-1: config 0 descriptor?? [ 77.298307][ T4554] loop0: detected capacity change from 0 to 1024 [ 77.329917][ T4556] loop4: detected capacity change from 0 to 16 [ 77.335634][ T4531] usbip_core: unknown command [ 77.340832][ T4531] vhci_hcd: unknown pdu 0 [ 77.348459][ T4300] usb 4-1: USB disconnect, device number 2 [ 77.356716][ T4531] usbip_core: unknown command [ 77.369023][ T4313] vhci_hcd: stop threads [ 77.379112][ T4313] vhci_hcd: release socket [ 77.399296][ T4313] vhci_hcd: disconnect device [ 77.399706][ T4556] erofs: (device loop4): EXPERIMENTAL compressed fragments feature in use. Use at your own risk! [ 77.439014][ T4554] hfsplus: failed to load root directory [ 77.489151][ T4556] erofs: (device loop4): EXPERIMENTAL global deduplication feature in use. Use at your own risk! [ 77.549875][ T4556] erofs: (device loop4): mounted with root inode @ nid 36. [ 77.638076][ T4556] syz.4.84: attempt to access beyond end of device [ 77.638076][ T4556] loop4: rw=0, sector=4294967295, nr_sectors = 1 limit=16 [ 77.694783][ T4556] syz.4.84: attempt to access beyond end of device [ 77.694783][ T4556] loop4: rw=0, sector=4294967295, nr_sectors = 1 limit=16 [ 77.874180][ T4560] loop2: detected capacity change from 0 to 128 [ 77.928501][ T4560] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 77.968570][ T4560] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 77.974755][ T4563] netlink: 8 bytes leftover after parsing attributes in process `syz.4.87'. [ 78.134696][ T4565] Bluetooth: MGMT ver 1.22 [ 78.150293][ T4565] Bluetooth: hci0: load_link_keys: too big key_count value 5888 [ 78.165221][ T4567] Driver unsupported XDP return value 0 on prog (id 6) dev N/A, expect packet loss! [ 78.216178][ T4570] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 78.272680][ T4570] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 78.280255][ T4570] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 78.287400][ T4249] EXT4-fs (loop2): unmounting filesystem. [ 78.385611][ T4572] loop0: detected capacity change from 0 to 512 [ 78.385966][ T4570] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 78.428189][ T26] audit: type=1326 audit(1740759532.338:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4573 comm="syz.3.94" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7fa0bcd84127 code=0x0 [ 78.451674][ T4572] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 78.459840][ T4572] System zones: 1-12 [ 78.469918][ T4572] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2186: inode #15: comm syz.0.91: corrupted in-inode xattr [ 78.470943][ T4253] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 78.510117][ T4572] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.91: couldn't read orphan inode 15 (err -117) [ 78.531676][ T4572] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 78.857414][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 78.901271][ T4596] random: crng reseeded on system resumption [ 79.247640][ T4603] loop0: detected capacity change from 0 to 4096 [ 79.340732][ T4603] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 79.372478][ T4603] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 79.427070][ T4603] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 79.473126][ T4603] ntfs: volume version 3.1. [ 79.494024][ T4603] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 79.512488][ T4603] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 79.546357][ T4603] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk. [ 79.996932][ T4628] loop4: detected capacity change from 0 to 512 [ 80.126836][ T4628] EXT4-fs error (device loop4): ext4_quota_enable:6986: comm syz.4.111: inode #64: comm syz.4.111: iget: illegal inode # [ 80.158467][ T4631] loop0: detected capacity change from 0 to 8192 [ 80.185334][ T4628] EXT4-fs error (device loop4): ext4_quota_enable:6989: comm syz.4.111: Bad quota inode: 64, type: 2 [ 80.243947][ T4628] EXT4-fs warning (device loop4): ext4_enable_quotas:7030: Failed to enable quota tracking (type=2, err=-117, ino=64). Please run e2fsck to fix. [ 80.288737][ T4639] loop1: detected capacity change from 0 to 4096 [ 80.319988][ T4639] ntfs3: loop1: Different NTFS' sector size (1024) and media sector size (512) [ 80.333894][ T4628] EXT4-fs (loop4): mount failed [ 80.454856][ T4639] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 80.511094][ T4639] ntfs3: loop1: Failed to load $Extend. [ 80.546429][ T4646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.118'. [ 81.053406][ T4666] netlink: 28 bytes leftover after parsing attributes in process `syz.0.128'. [ 81.098119][ T4668] netlink: 4 bytes leftover after parsing attributes in process `syz.3.129'. [ 81.104643][ T4666] netlink: 28 bytes leftover after parsing attributes in process `syz.0.128'. [ 81.161905][ T4666] IPv6: ADDRCONF(NETDEV_CHANGE): wg1: link becomes ready [ 81.186047][ T4666] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check. [ 81.309142][ T26] audit: type=1326 audit(1740759535.218:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4672 comm="syz.3.132" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fa0bcd8d169 code=0x0 [ 81.353255][ T4676] loop4: detected capacity change from 0 to 512 [ 81.443924][ T4676] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 81.480323][ T4681] netlink: 12 bytes leftover after parsing attributes in process `syz.1.133'. [ 81.491202][ T4676] ext4 filesystem being mounted at /33/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 81.698786][ T4683] loop0: detected capacity change from 0 to 4096 [ 81.734877][ T4683] ntfs: (device loop0): ntfs_is_extended_system_file(): Inode hard link count doesn't match number of name attributes. You should run chkdsk. [ 81.781852][ T4683] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 81.813481][ T4683] ntfs: volume version 3.1. [ 81.830428][ T4254] EXT4-fs (loop4): unmounting filesystem. [ 81.844899][ T951] vhci_hcd: vhci_device speed not set [ 82.094037][ T4692] Cannot find add_set index 0 as target [ 82.637730][ T4715] netlink: 'syz.0.148': attribute type 10 has an invalid length. [ 82.671725][ T4715] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 82.749966][ T4717] loop1: detected capacity change from 0 to 1024 [ 82.769621][ T4715] syz.0.148 (4715) used greatest stack depth: 19456 bytes left [ 83.000236][ T4313] hfsplus: b-tree write err: -5, ino 4 [ 83.142305][ T4726] loop1: detected capacity change from 0 to 256 [ 83.160447][ T4726] exfat: Deprecated parameter 'namecase' [ 83.172774][ T4726] exfat: Deprecated parameter 'utf8' [ 83.181809][ T4727] syz.0.154 sent an empty control message without MSG_MORE. [ 83.197745][ T4726] exfat: Deprecated parameter 'namecase' [ 83.210035][ T4726] exfat: Unknown parameter 'zero_size_dir' [ 83.242326][ T126] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 83.333754][ T4713] loop3: detected capacity change from 0 to 32768 [ 83.399813][ T4729] loop0: detected capacity change from 0 to 1024 [ 83.432677][ T126] usb 5-1: Using ep0 maxpacket: 16 [ 83.441294][ T126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 83.461197][ T4713] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 83.472903][ T126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 83.484041][ T126] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 83.499824][ T4729] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 83.509030][ T4729] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 83.533243][ T4300] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 83.555320][ T4713] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 83.565296][ T126] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 83.582515][ T126] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.639691][ T126] usb 5-1: config 0 descriptor?? [ 83.673272][ T4729] EXT4-fs: Ignoring removed nobh option [ 83.679034][ T4729] EXT4-fs: can't change dax mount option while remounting [ 83.756442][ T4300] usb 2-1: Using ep0 maxpacket: 32 [ 83.764335][ T4300] usb 2-1: config 0 has an invalid interface number: 51 but max is 0 [ 83.774265][ T4300] usb 2-1: config 0 has no interface number 0 [ 83.812088][ T4300] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 83.813258][ T4261] ocfs2: Unmounting device (7,3) on (node local) [ 83.844450][ T4248] EXT4-fs (loop0): unmounting filesystem. [ 83.850281][ T4300] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 83.850306][ T4300] usb 2-1: Product: syz [ 83.850321][ T4300] usb 2-1: Manufacturer: syz [ 83.850361][ T4300] usb 2-1: SerialNumber: syz [ 83.853512][ T4300] usb 2-1: config 0 descriptor?? [ 83.937427][ T4300] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 84.080298][ T4747] loop2: detected capacity change from 0 to 128 [ 84.124838][ T126] microsoft 0003:045E:07DA.0003: ignoring exceeding usage max [ 84.144022][ T126] microsoft 0003:045E:07DA.0003: unbalanced collection at end of report description [ 84.156782][ T4747] FAT-fs (loop2): error, corrupted file size (i_pos 548, 512) [ 84.162359][ T126] microsoft 0003:045E:07DA.0003: parse failed [ 84.170894][ T126] microsoft: probe of 0003:045E:07DA.0003 failed with error -22 [ 84.193107][ T4747] FAT-fs (loop2): Filesystem has been set read-only [ 84.201731][ T4747] FAT-fs (loop2): error, corrupted file size (i_pos 548, 512) [ 84.364310][ T4749] loop3: detected capacity change from 0 to 4096 [ 84.367418][ T126] usb 5-1: USB disconnect, device number 2 [ 84.399373][ T4753] netlink: 56 bytes leftover after parsing attributes in process `syz.0.165'. [ 84.469075][ C0] usb-serial (null): qt2_process_read_urb - unsupported command 102 [ 84.491832][ T4300] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 84.530466][ T4300] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 84.732860][ C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 84.733146][ T951] usb 2-1: USB disconnect, device number 4 [ 84.787724][ T951] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 84.855861][ T951] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 84.886919][ T951] quatech2 2-1:0.51: device disconnected [ 86.318258][ T4790] loop4: detected capacity change from 0 to 32768 [ 86.353076][ T4790] XFS: noikeep mount option is deprecated. [ 86.574674][ T4790] XFS (loop4): Mounting V5 Filesystem [ 86.629040][ T4820] loop0: detected capacity change from 0 to 32768 [ 86.690988][ T4790] XFS (loop4): Ending clean mount [ 86.746050][ T4820] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 86.807426][ T4820] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature [ 86.813504][ T4838] loop2: detected capacity change from 0 to 64 [ 86.823967][ T4820] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 86.839387][ T4820] OCFS2: File system is now read-only. [ 86.844969][ T4820] (syz.0.196,4820,0):ocfs2_search_chain:1785 ERROR: status = -30 [ 86.853422][ T4820] (syz.0.196,4820,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 86.861353][ T4820] (syz.0.196,4820,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 86.869826][ T4820] (syz.0.196,4820,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 86.878692][ T4820] (syz.0.196,4820,0):__ocfs2_claim_clusters:2355 ERROR: status = -30 [ 86.887196][ T4820] (syz.0.196,4820,0):__ocfs2_claim_clusters:2363 ERROR: status = -30 [ 86.895470][ T4820] (syz.0.196,4820,0):ocfs2_local_alloc_new_window:1203 ERROR: status = -30 [ 86.904166][ T4820] (syz.0.196,4820,0):ocfs2_local_alloc_new_window:1228 ERROR: status = -30 [ 86.913062][ T4820] (syz.0.196,4820,0):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30 [ 86.913473][ T4790] XFS (loop4): Quotacheck needed: Please wait. [ 86.922634][ T4820] (syz.0.196,4820,0):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30 [ 86.938035][ T4820] (syz.0.196,4820,0):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30 [ 86.946929][ T4820] (syz.0.196,4820,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30 [ 86.956185][ T4820] (syz.0.196,4820,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30 [ 86.965322][ T4820] (syz.0.196,4820,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30 [ 86.974428][ T4820] (syz.0.196,4820,0):ocfs2_symlink:1911 ERROR: status = -30 [ 86.982506][ T4820] (syz.0.196,4820,0):ocfs2_symlink:2065 ERROR: status = -30 [ 87.042863][ T4790] XFS (loop4): Quotacheck: Done. [ 87.217616][ T4248] (syz-executor,4248,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72 [ 87.241159][ T4841] netlink: 32 bytes leftover after parsing attributes in process `syz.2.201'. [ 87.280504][ T4254] XFS (loop4): Unmounting Filesystem [ 87.286886][ T4248] ocfs2: Unmounting device (7,0) on (node local) [ 87.649135][ T4845] netlink: 8 bytes leftover after parsing attributes in process `syz.1.205'. [ 87.724348][ T4839] loop3: detected capacity change from 0 to 32768 [ 87.731525][ T4839] XFS: ikeep mount option is deprecated. [ 87.894901][ T4839] XFS (loop3): Mounting V5 Filesystem [ 88.070602][ T4839] XFS (loop3): Ending clean mount [ 88.103765][ T4839] XFS (loop3): Quotacheck needed: Please wait. [ 88.250237][ T4839] XFS (loop3): Quotacheck: Done. [ 88.510418][ T4261] XFS (loop3): Unmounting Filesystem [ 89.080575][ T4901] loop3: detected capacity change from 0 to 512 [ 89.148859][ T4901] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 89.192047][ T4901] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 89.264486][ T4901] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.221: invalid indirect mapped block 4294967295 (level 1) [ 89.321799][ T4901] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.221: invalid indirect mapped block 4294967295 (level 1) [ 89.379033][ T4901] EXT4-fs (loop3): 2 truncates cleaned up [ 89.402052][ T4901] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 89.470010][ T4901] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.221: bg 0: block 5: invalid block bitmap [ 89.512713][ T4882] loop2: detected capacity change from 0 to 40427 [ 89.527172][ T4882] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 89.538370][ T4882] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 89.546980][ T4901] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 89.585916][ T4882] F2FS-fs (loop2): invalid crc value [ 89.629752][ T4900] loop1: detected capacity change from 0 to 32768 [ 89.668233][ T4882] F2FS-fs (loop2): Found nat_bits in checkpoint [ 89.709082][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 89.775744][ T4911] loop0: detected capacity change from 0 to 256 [ 89.850035][ T4911] exfat: Deprecated parameter 'namecase' [ 89.889441][ T46] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 89.907015][ T4882] F2FS-fs (loop2): Start checkpoint disabled! [ 89.929638][ T4911] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 90.002062][ T4882] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 90.010206][ T4882] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 90.075150][ T46] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.273144][ T46] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.341317][ T9] kworker/u4:0: attempt to access beyond end of device [ 90.341317][ T9] loop2: rw=2049, sector=40960, nr_sectors = 32 limit=40427 [ 90.484870][ T46] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 90.517454][ T4921] loop3: detected capacity change from 0 to 512 [ 90.617759][ T4921] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 90.663658][ T4926] loop1: detected capacity change from 0 to 256 [ 90.672734][ T4921] ext4 filesystem being mounted at /51/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 90.718581][ T4927] netlink: 'syz.0.237': attribute type 25 has an invalid length. [ 90.734437][ T4921] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #2: block 11: comm syz.3.236: lblock 16 mapped to illegal pblock 11 (length 18) [ 90.735640][ T4927] netlink: 'syz.0.237': attribute type 1 has an invalid length. [ 90.807480][ T4921] EXT4-fs (loop3): Remounting filesystem read-only [ 90.834209][ T4926] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 90.980137][ T4261] EXT4-fs (loop3): unmounting filesystem. [ 91.114593][ T4259] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 91.128069][ T4259] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 91.137169][ T4259] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 91.148825][ T4259] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 91.156976][ T4259] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 91.164867][ T4259] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 91.395636][ T4941] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 91.400601][ T4932] loop2: detected capacity change from 0 to 4096 [ 91.405127][ T4941] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 91.412432][ T4594] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 91.420375][ T4941] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 91.436256][ T4941] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 91.478037][ T4941] Zero length message leads to an empty skb [ 91.512031][ T4932] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 91.534332][ T4932] ntfs3: loop2: Failed to load $Extend. [ 91.637362][ T4594] usb 4-1: Using ep0 maxpacket: 8 [ 91.645706][ T4594] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 91.688627][ T4594] usb 4-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da [ 91.718651][ T4594] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 91.738868][ T4594] usb 4-1: Manufacturer: syz [ 91.766302][ T4594] usb 4-1: config 0 descriptor?? [ 91.857284][ T4953] loop0: detected capacity change from 0 to 2048 [ 91.872011][ T4249] ntfs3: loop2: ntfs_evict_inode r=5 failed, -22. [ 91.976339][ T4594] appledisplay 4-1:0.0: Error while getting initial brightness: -71 [ 92.015757][ T4594] appledisplay: probe of 4-1:0.0 failed with error -71 [ 92.043060][ T4953] EXT4-fs error (device loop0): ext4_orphan_get:1426: comm syz.0.243: bad orphan inode 8192 [ 92.082153][ T4594] usb 4-1: USB disconnect, device number 3 [ 92.091392][ T4953] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 92.415417][ T4931] chnl_net:caif_netlink_parms(): no params data found [ 92.594917][ T4961] loop2: detected capacity change from 0 to 40427 [ 92.603840][ T4961] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504) [ 92.610832][ T4961] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 92.637963][ T4961] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x3ffff [ 92.694132][ T4961] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8 [ 92.704840][ T4961] F2FS-fs (loop2): invalid crc value [ 92.720090][ T4961] F2FS-fs (loop2): Found nat_bits in checkpoint [ 92.816191][ T4961] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 92.823615][ T4961] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 93.015539][ T4249] syz-executor: attempt to access beyond end of device [ 93.015539][ T4249] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 93.042385][ T4594] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 93.072841][ T4931] bridge0: port 1(bridge_slave_0) entered blocking state [ 93.080168][ T4931] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.102084][ T4931] device bridge_slave_0 entered promiscuous mode [ 93.192478][ T4259] Bluetooth: hci3: command 0x0409 tx timeout [ 93.220240][ T4931] bridge0: port 2(bridge_slave_1) entered blocking state [ 93.228596][ T4931] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.237926][ T4931] device bridge_slave_1 entered promiscuous mode [ 93.248412][ T4594] usb 4-1: Using ep0 maxpacket: 32 [ 93.259651][ T4594] usb 4-1: config 0 has an invalid interface number: 184 but max is 0 [ 93.293411][ T4594] usb 4-1: config 0 has no interface number 0 [ 93.321410][ T4594] usb 4-1: config 0 interface 184 has no altsetting 0 [ 93.346986][ T46] device hsr_slave_0 left promiscuous mode [ 93.348237][ T4594] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 93.383161][ T46] device hsr_slave_1 left promiscuous mode [ 93.386946][ T4594] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 93.412879][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 93.414537][ T4594] usb 4-1: Product: syz [ 93.420387][ T46] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 93.442153][ T4594] usb 4-1: Manufacturer: syz [ 93.454090][ T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 93.459247][ T4594] usb 4-1: SerialNumber: syz [ 93.461532][ T46] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 93.509052][ T4594] usb 4-1: config 0 descriptor?? [ 93.518401][ T46] device bridge_slave_1 left promiscuous mode [ 93.537243][ T4594] smsc75xx v1.0.0 [ 93.544824][ T46] bridge0: port 2(bridge_slave_1) entered disabled state [ 93.584949][ T46] device bridge_slave_0 left promiscuous mode [ 93.591234][ T46] bridge0: port 1(bridge_slave_0) entered disabled state [ 93.743528][ T46] device veth1_macvtap left promiscuous mode [ 93.761704][ T46] device veth0_macvtap left promiscuous mode [ 93.772696][ T46] device veth1_vlan left promiscuous mode [ 93.782860][ T46] device veth0_vlan left promiscuous mode [ 94.355379][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71 [ 94.380725][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 94.425625][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71 [ 94.439186][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71 [ 94.472411][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset [ 94.497346][ T4594] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 94.514369][ T4594] smsc75xx: probe of 4-1:0.184 failed with error -71 [ 94.530444][ T5015] loop1: detected capacity change from 0 to 4096 [ 94.541880][ T4594] usb 4-1: USB disconnect, device number 4 [ 94.553541][ T5015] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 94.643915][ T5015] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 94.732104][ T26] kauditd_printk_skb: 15 callbacks suppressed [ 94.732118][ T26] audit: type=1800 audit(2000000009.089:5): pid=5015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.256" name="file1" dev="loop1" ino=30 res=0 errno=0 [ 94.951168][ T5008] loop2: detected capacity change from 0 to 40427 [ 95.014684][ T5008] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x3ffff [ 95.079437][ T5008] F2FS-fs (loop2): invalid crc value [ 95.144003][ T5008] F2FS-fs (loop2): Found nat_bits in checkpoint [ 95.148476][ T5029] loop1: detected capacity change from 0 to 128 [ 95.273515][ T4259] Bluetooth: hci3: command 0x041b tx timeout [ 95.318941][ T5008] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 95.326664][ T26] audit: type=1800 audit(2000000009.679:6): pid=5029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.260" name="file0" dev="loop1" ino=1048607 res=0 errno=0 [ 95.333042][ T5032] loop3: detected capacity change from 0 to 64 [ 95.445719][ T5029] FAT-fs (loop1): error, clusters badly computed (2 != 0) [ 95.491798][ T5029] FAT-fs (loop1): Filesystem has been set read-only [ 95.501402][ T5029] FAT-fs (loop1): error, clusters badly computed (3 != 1) [ 95.508964][ T4249] syz-executor: attempt to access beyond end of device [ 95.508964][ T4249] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 95.558093][ T5029] FAT-fs (loop1): error, clusters badly computed (4 != 2) [ 95.591631][ T4261] hfs: node 4:3 still has 2 user(s)! [ 95.669566][ T46] team0 (unregistering): Port device team_slave_1 removed [ 95.821689][ T46] team0 (unregistering): Port device team_slave_0 removed [ 95.938802][ T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 96.024411][ T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 96.527304][ T46] bond0 (unregistering): Released all slaves [ 96.613144][ T4931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 96.636968][ T5041] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present [ 96.672401][ T5041] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1) [ 96.709231][ T4931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.868673][ T4931] team0: Port device team_slave_0 added [ 96.897856][ T4931] team0: Port device team_slave_1 added [ 97.038860][ T4931] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 97.067707][ T4931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.110784][ T4931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 97.151994][ T4931] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 97.210551][ T4931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 97.236541][ C0] vkms_vblank_simulate: vblank timer overrun [ 97.250006][ T4931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 97.361139][ T4259] Bluetooth: hci3: command 0x040f tx timeout [ 97.382603][ T5055] loop1: detected capacity change from 0 to 4096 [ 97.421286][ T4931] device hsr_slave_0 entered promiscuous mode [ 97.431181][ T4931] device hsr_slave_1 entered promiscuous mode [ 97.485488][ T4931] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 97.532350][ T4931] Cannot create hsr debugfs directory [ 97.892615][ T4297] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 98.071787][ T5060] loop2: detected capacity change from 0 to 32768 [ 98.093969][ T4297] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 98.112365][ T4297] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 98.139550][ T4297] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 98.185195][ T5060] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 98.211016][ T4297] usb 4-1: New USB device found, idVendor=05ac, idProduct=030a, bcdDevice=65.8c [ 98.231131][ T4297] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 98.284455][ T4297] usb 4-1: config 0 descriptor?? [ 98.314743][ T4297] input: appletouch as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input6 [ 98.589699][ T4594] usb 4-1: USB disconnect, device number 5 [ 98.644532][ T4249] ocfs2: Unmounting device (7,2) on (node local) [ 98.649016][ T4594] appletouch 4-1:0.0: input: appletouch disconnected [ 98.876135][ T5096] smc: net device bond0 applied user defined pnetid SYZ2 [ 98.909356][ T5096] smc: net device bond0 erased user defined pnetid SYZ2 [ 98.955368][ T4931] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 98.986982][ T4931] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 99.019633][ T4931] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 99.135387][ T4931] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 99.270167][ T5089] mmap: syz.1.279 (5089) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 99.432809][ T4259] Bluetooth: hci3: command 0x0419 tx timeout [ 99.486290][ T4931] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.578807][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 99.623265][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 99.662681][ T4931] 8021q: adding VLAN 0 to HW filter on device team0 [ 99.694404][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 99.730215][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 99.769237][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 99.776561][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 99.804961][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 99.862603][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 99.871462][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 99.932787][ T5019] bridge0: port 2(bridge_slave_1) entered blocking state [ 99.939966][ T5019] bridge0: port 2(bridge_slave_1) entered forwarding state [ 100.027772][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 100.066526][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 100.130388][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 100.167374][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 100.199123][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 100.218203][ T5141] loop1: detected capacity change from 0 to 64 [ 100.277430][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 100.294414][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 100.340211][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 100.384563][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 100.417226][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 100.440112][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 100.485564][ T4931] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 101.045424][ T5171] vivid-001: ================= START STATUS ================= [ 101.076425][ T5171] vivid-001: Radio HW Seek Mode: Bounded [ 101.103001][ T5171] vivid-001: Radio Programmable HW Seek: false [ 101.140435][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 101.149238][ T5171] vivid-001: RDS Rx I/O Mode: Block I/O [ 101.164865][ T5019] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 101.171576][ T5171] vivid-001: Generate RBDS Instead of RDS: false [ 101.204257][ T4931] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 101.258908][ T5171] vivid-001: RDS Reception: true [ 101.324443][ T5171] vivid-001: RDS Program Type: 0 inactive [ 101.330265][ T5171] vivid-001: RDS PS Name: inactive [ 101.395698][ T5171] vivid-001: RDS Radio Text: inactive [ 101.414179][ T5171] vivid-001: RDS Traffic Announcement: false inactive [ 101.432628][ T5171] vivid-001: RDS Traffic Program: false inactive [ 101.439043][ T5171] vivid-001: RDS Music: false inactive [ 101.500345][ T5171] vivid-001: ================== END STATUS ================== [ 101.717946][ T5198] program syz.3.310 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 102.128912][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 102.153352][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 102.199414][ T5219] program syz.2.317 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 102.214667][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 102.263967][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 102.308127][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 102.337393][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 102.390881][ T4931] device veth0_vlan entered promiscuous mode [ 102.444279][ T4931] device veth1_vlan entered promiscuous mode [ 102.576600][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 102.608656][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 102.651182][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 102.687071][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 102.732917][ T4931] device veth0_macvtap entered promiscuous mode [ 102.763184][ T4931] device veth1_macvtap entered promiscuous mode [ 102.858300][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.884479][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.919263][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.952516][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 102.974193][ T5248] loop1: detected capacity change from 0 to 2048 [ 102.981849][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 102.999151][ T5248] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 103.015384][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.034101][ T5248] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 103.052893][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 103.086340][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.135932][ T4931] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 103.175816][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 103.204364][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 103.243564][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 103.252755][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 103.291659][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 103.325523][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.374390][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 103.397839][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.431244][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 103.456516][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.487486][ T4931] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 103.522106][ T4931] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 103.546519][ T4931] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 103.575138][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 103.610730][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 103.658983][ T4931] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.712324][ T4931] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.733568][ T4931] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.781879][ T4931] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.816775][ T5276] loop1: detected capacity change from 0 to 512 [ 103.922092][ T5276] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 103.931738][ T5276] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 103.999604][ T4298] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.008308][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 104.038688][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.048314][ T4298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 104.084277][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 104.112403][ T4591] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 104.120391][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 104.138883][ T5276] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.333: corrupted xattr block 32 [ 104.223070][ T5276] EXT4-fs error (device loop1): ext4_get_inode_usage:852: inode #15: comm syz.1.333: corrupted xattr block 32 [ 104.371373][ T4591] usb 1-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 104.393147][ T4591] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.396208][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 104.409633][ T4591] usb 1-1: config 0 descriptor?? [ 104.420158][ T4591] gspca_main: spca508-2.14.0 probing 8086:0110 [ 104.592502][ T4300] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 104.625009][ T4591] gspca_spca508: reg_read err -32 [ 104.639785][ T4591] gspca_spca508: reg_read err -32 [ 104.799850][ T4300] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 104.821924][ T4300] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 104.824736][ T5312] loop3: detected capacity change from 0 to 1024 [ 104.856720][ T4300] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 104.867676][ T4591] gspca_spca508: reg_read err -71 [ 104.874745][ T4591] gspca_spca508: reg_read err -71 [ 104.885553][ T4300] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.922634][ T4591] gspca_spca508: reg write: error -71 [ 104.925999][ T5295] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 104.929043][ T4591] spca508: probe of 1-1:0.0 failed with error -71 [ 104.989810][ T4591] usb 1-1: USB disconnect, device number 2 [ 105.219440][ T5312] hfsplus: can't free extent [ 105.370417][ T5316] hfsplus: can't free extent [ 105.396810][ T4300] usb 5-1: USB disconnect, device number 3 [ 105.536192][ T9] hfsplus: b-tree write err: -5, ino 4 [ 106.150820][ T5349] syz.0.351[5349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 106.150936][ T5349] syz.0.351[5349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 106.471346][ T5357] loop2: detected capacity change from 0 to 2048 [ 106.527988][ T5327] loop1: detected capacity change from 0 to 32768 [ 106.561867][ T5327] [ 106.561867][ T5327] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 106.561867][ T5327] [ 106.600412][ T5363] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 106.625579][ T26] audit: type=1800 audit(2000000020.989:7): pid=5357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.353" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 106.694797][ T5327] read_mapping_page failed! [ 106.722604][ T5327] ERROR: (device loop1): txCommit: [ 106.722604][ T5327] [ 106.759139][ T5327] ERROR: (device loop1): remounting filesystem as read-only [ 107.658264][ T5387] loop1: detected capacity change from 0 to 8192 [ 108.186348][ T5381] loop2: detected capacity change from 0 to 32768 [ 108.216280][ T5381] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.361 (5381) [ 108.351856][ T5381] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 108.372848][ T5381] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 108.381605][ T5381] BTRFS info (device loop2): using free space tree [ 108.462867][ T26] audit: type=1326 audit(2000000022.829:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5399 comm="syz.1.366" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f706278d169 code=0x0 [ 108.663757][ T5381] BTRFS info (device loop2): enabling ssd optimizations [ 108.848682][ T5419] loop3: detected capacity change from 0 to 2048 [ 108.890879][ T4249] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 108.914223][ T5422] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 108.952170][ T26] audit: type=1800 audit(2000000023.309:9): pid=5419 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.368" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 109.645034][ T5428] hid (null): unknown global tag 0xe [ 109.664132][ T5428] hid-generic 0005:10CF:5504.0004: unknown global tag 0xe [ 109.671295][ T5428] hid-generic 0005:10CF:5504.0004: item 0 2 1 14 parsing failed [ 109.680730][ T5428] hid-generic: probe of 0005:10CF:5504.0004 failed with error -22 [ 109.754197][ T5442] loop3: detected capacity change from 0 to 1024 [ 109.761144][ T5442] EXT4-fs: Ignoring removed bh option [ 109.832567][ T5442] EXT4-fs: inline encryption not supported [ 109.862354][ T4592] usb 3-1: new full-speed USB device number 3 using dummy_hcd [ 109.871878][ T5442] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000] [ 110.037861][ T5442] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 2: comm syz.3.377: lblock 2 mapped to illegal pblock 2 (length 1) [ 110.064051][ T4592] usb 3-1: config index 0 descriptor too short (expected 156, got 27) [ 110.082356][ T4592] usb 3-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 110.109540][ T4592] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 10 [ 110.129305][ T4592] usb 3-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 255, setting to 64 [ 110.161103][ T4592] usb 3-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 110.192578][ T4592] usb 3-1: config 0 interface 0 has no altsetting 0 [ 110.209761][ T5442] Quota error (device loop3): qtree_write_dquot: dquota write failed [ 110.221265][ T4592] usb 3-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 110.230821][ T5442] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 48: comm syz.3.377: lblock 0 mapped to illegal pblock 48 (length 1) [ 110.248772][ T4592] usb 3-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 110.257769][ T4592] usb 3-1: Product: syz [ 110.275116][ T5442] Quota error (device loop3): v2_write_file_info: Can't write info structure [ 110.285509][ T4592] usb 3-1: Manufacturer: syz [ 110.290341][ T4592] usb 3-1: SerialNumber: syz [ 110.295578][ T5442] EXT4-fs error (device loop3): ext4_acquire_dquot:6795: comm syz.3.377: Failed to acquire dquot type 0 [ 110.326991][ T4592] usb 3-1: config 0 descriptor?? [ 110.339177][ T5437] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 110.355460][ T4592] ldusb 3-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 110.365958][ T5442] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 110.405186][ T4592] ldusb 3-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 110.415258][ T5442] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #11: comm syz.3.377: mark_inode_dirty error [ 110.451130][ T5442] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 110.485803][ T5442] EXT4-fs (loop3): 1 orphan inode deleted [ 110.491964][ T5442] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 110.527546][ T5019] EXT4-fs error (device loop3): ext4_map_blocks:634: inode #3: block 1: comm kworker/u4:8: lblock 1 mapped to illegal pblock 1 (length 1) [ 110.579732][ T5019] Quota error (device loop3): remove_tree: Can't read quota data block 1 [ 110.594575][ T5019] EXT4-fs error (device loop3): ext4_release_dquot:6818: comm kworker/u4:8: Failed to release dquot type 0 [ 110.630593][ T5442] EXT4-fs (loop3): unmounting filesystem. [ 110.661859][ T4585] usb 3-1: USB disconnect, device number 3 [ 110.676361][ T5442] EXT4-fs error (device loop3): __ext4_get_inode_loc:4506: comm syz.3.377: Invalid inode table block 1 in block_group 0 [ 110.693592][ T4585] ldusb 3-1:0.0: LD USB Device #0 now disconnected [ 110.722531][ T5442] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 110.757760][ T5442] EXT4-fs error (device loop3): ext4_quota_off:7084: inode #3: comm syz.3.377: mark_inode_dirty error [ 110.777354][ T5462] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 110.786223][ T5462] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 110.795074][ T5462] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 110.803951][ T5462] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 111.232333][ T126] usb 2-1: new full-speed USB device number 5 using dummy_hcd [ 111.249163][ T5466] loop3: detected capacity change from 0 to 2048 [ 111.323256][ T5466] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.387: bad orphan inode 8192 [ 111.367905][ T5466] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 111.437744][ T126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 111.472336][ T126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 111.525202][ T126] usb 2-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 111.547445][ T126] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 111.567691][ T126] usb 2-1: Manufacturer: syz [ 111.579607][ T126] usb 2-1: config 0 descriptor?? [ 111.645607][ T5476] loop4: detected capacity change from 0 to 4096 [ 111.711542][ T5476] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 111.762184][ T5476] ntfs3: loop4: Failed to load $Extend. [ 111.911203][ T5485] loop2: detected capacity change from 0 to 2048 [ 111.968459][ T5486] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 112.006059][ T126] cougar 0003:060B:700A.0005: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.1-1/input0 [ 112.030213][ T5392] Set syz1 is full, maxelem 65536 reached [ 112.104608][ T4931] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 112.294221][ T4239] usb 2-1: USB disconnect, device number 5 [ 112.549939][ T5503] loop2: detected capacity change from 0 to 2048 [ 112.597679][ T5503] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.401: bad orphan inode 8192 [ 112.616326][ T5503] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 113.159733][ T26] audit: type=1326 audit(2000000027.519:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5528 comm="syz.1.410" exe="/root/syz-executor" sig=31 arch=c000003e syscall=39 compat=0 ip=0x7f7062784127 code=0x0 [ 113.192550][ T5526] loop4: detected capacity change from 0 to 2048 [ 113.250114][ T5534] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 113.637313][ T5544] netlink: 8 bytes leftover after parsing attributes in process `syz.2.419'. [ 114.017824][ T126] usb 5-1: new full-speed USB device number 4 using dummy_hcd [ 114.216715][ T126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 114.243010][ T126] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 114.284251][ T126] usb 5-1: New USB device found, idVendor=060b, idProduct=700a, bcdDevice= 0.00 [ 114.308630][ T126] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0 [ 114.327620][ T126] usb 5-1: Manufacturer: syz [ 114.339701][ T126] usb 5-1: config 0 descriptor?? [ 114.415765][ T5569] netlink: 'syz.3.429': attribute type 1 has an invalid length. [ 114.775688][ T126] cougar 0003:060B:700A.0006: hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0 [ 115.050234][ T5583] netlink: 8 bytes leftover after parsing attributes in process `syz.2.438'. [ 115.064268][ T126] usb 5-1: USB disconnect, device number 4 [ 116.523912][ T5634] netlink: 'syz.1.462': attribute type 1 has an invalid length. [ 116.943470][ T126] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 117.134227][ T126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 117.159873][ T126] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 117.194390][ T126] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 117.200247][ T5653] loop4: detected capacity change from 0 to 256 [ 117.224983][ T126] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 117.258453][ T5653] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d) [ 117.274488][ T126] usb 2-1: config 0 descriptor?? [ 117.724715][ T126] hid-steam 0003:28DE:1142.0007: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0 [ 117.759951][ T126] hid-steam 0003:28DE:1142.0008: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.1-1/input0 [ 117.852874][ T126] hid-steam 0003:28DE:1142.0007: Steam wireless receiver connected [ 118.038049][ T126] usb 2-1: USB disconnect, device number 6 [ 118.049292][ T126] hid-steam 0003:28DE:1142.0007: Steam wireless receiver disconnected [ 118.155884][ T5681] loop4: detected capacity change from 0 to 1024 [ 118.447384][ T5681] hfsplus: can't free extent [ 118.611516][ T5688] hfsplus: can't free extent [ 118.802833][ T46] hfsplus: b-tree write err: -5, ino 4 [ 119.198265][ T5710] loop1: detected capacity change from 0 to 64 [ 119.435264][ T5718] loop4: detected capacity change from 0 to 512 [ 119.539566][ T4240] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 119.592001][ T5722] smc: net device bond0 applied user defined pnetid SYZ0 [ 119.644386][ T5722] smc: net device bond0 erased user defined pnetid SYZ0 [ 119.862204][ T5728] loop1: detected capacity change from 0 to 1024 [ 120.106681][ T5728] hfsplus: can't free extent [ 120.207947][ T5734] hfsplus: can't free extent [ 120.407885][ T4298] hfsplus: b-tree write err: -5, ino 4 [ 121.099005][ T5760] netlink: 8 bytes leftover after parsing attributes in process `syz.2.517'. [ 121.378183][ T5768] netlink: 32 bytes leftover after parsing attributes in process `syz.3.522'. [ 121.400980][ T5768] netlink: 8 bytes leftover after parsing attributes in process `syz.3.522'. [ 121.697985][ T5753] loop1: detected capacity change from 0 to 32768 [ 121.753322][ T5753] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 121.971100][ T4253] ocfs2: Unmounting device (7,1) on (node local) [ 122.886959][ T5804] sctp: [Deprecated]: syz.2.537 (pid 5804) Use of int in maxseg socket option. [ 122.886959][ T5804] Use struct sctp_assoc_value instead [ 123.700081][ T5826] loop4: detected capacity change from 0 to 64 [ 123.792436][ T4592] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 123.806338][ T5826] Trying to free block not in datazone [ 123.885160][ T5826] Trying to free block not in datazone [ 123.915556][ T5826] minix_free_inode: bit 5 already cleared [ 124.004103][ T4592] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 242, using maximum allowed: 30 [ 124.036230][ T4592] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11 [ 124.097710][ T4592] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 242 [ 124.151613][ T4592] usb 4-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 124.180414][ T4592] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 124.213639][ T4592] usb 4-1: config 0 descriptor?? [ 124.637557][ T4592] zydacron 0003:13EC:0006.0009: hidraw0: USB HID v0.03 Device [HID 13ec:0006] on usb-dummy_hcd.3-1/input0 [ 124.873640][ T4340] usb 4-1: USB disconnect, device number 6 [ 125.180023][ T5866] loop1: detected capacity change from 0 to 64 [ 125.246576][ T5866] Trying to free block not in datazone [ 125.285727][ T5866] Trying to free block not in datazone [ 125.291293][ T5866] minix_free_inode: bit 5 already cleared [ 125.442113][ T5854] loop4: detected capacity change from 0 to 32768 [ 125.774366][ T5879] ea_get: invalid extended attribute [ 125.781801][ T5879] ffff8880592143f0: 04 00 00 00 .... [ 126.157869][ T5894] netlink: 72 bytes leftover after parsing attributes in process `syz.4.579'. [ 126.721374][ T5909] loop4: detected capacity change from 0 to 64 [ 126.785599][ T5886] loop1: detected capacity change from 0 to 32768 [ 126.827803][ T5886] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.576 (5886) [ 126.879724][ T5886] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 126.918087][ T5886] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 126.938145][ T5886] BTRFS info (device loop1): setting nodatacow, compression disabled [ 126.956964][ T5886] BTRFS info (device loop1): enabling disk space caching [ 126.972589][ T5886] BTRFS info (device loop1): setting datacow [ 126.982653][ T4340] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 127.000617][ T5886] BTRFS info (device loop1): doing ref verification [ 127.008428][ T5886] BTRFS info (device loop1): force clearing of disk cache [ 127.025811][ T5886] BTRFS info (device loop1): turning off barriers [ 127.042412][ T5886] BTRFS info (device loop1): enabling ssd optimizations [ 127.059588][ T5886] BTRFS info (device loop1): using spread ssd allocation scheme [ 127.079808][ T5886] BTRFS info (device loop1): not using ssd optimizations [ 127.111500][ T5886] BTRFS info (device loop1): not using spread ssd allocation scheme [ 127.123355][ T5886] BTRFS info (device loop1): disk space caching is enabled [ 127.192404][ T4340] usb 4-1: Using ep0 maxpacket: 8 [ 127.208158][ T4340] usb 4-1: config 0 has no interfaces? [ 127.217846][ T4340] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 127.218645][ T5886] BTRFS info (device loop1): rebuilding free space tree [ 127.242377][ T4340] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 127.262573][ T4340] usb 4-1: config 0 descriptor?? [ 127.291449][ T5886] BTRFS info (device loop1): disabling free space tree [ 127.301127][ T5886] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 127.313059][ T5886] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 127.506062][ T4585] usb 4-1: USB disconnect, device number 7 [ 127.669044][ T5913] loop4: detected capacity change from 0 to 32768 [ 127.728806][ T5913] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.587 (5913) [ 127.769717][ T4253] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 127.824016][ T5913] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 127.855091][ T5913] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 127.963926][ T5913] BTRFS info (device loop4): using free space tree [ 128.418973][ T5913] BTRFS info (device loop4): enabling ssd optimizations [ 128.871301][ T4298] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 129.127871][ T46] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared) [ 129.172824][ T5986] netlink: 'syz.2.600': attribute type 10 has an invalid length. [ 129.286720][ T5986] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 129.362655][ T4931] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 129.670812][ T5980] loop1: detected capacity change from 0 to 32768 [ 129.705962][ T5980] XFS: ikeep mount option is deprecated. [ 129.851659][ T5980] XFS (loop1): Mounting V5 Filesystem [ 130.143830][ T5980] XFS (loop1): Ending clean mount [ 130.173944][ T5980] XFS (loop1): Quotacheck needed: Please wait. [ 130.212137][ T5998] loop4: detected capacity change from 0 to 32768 [ 130.303386][ T5998] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 130.358106][ T5998] OCFS2: ERROR (device loop4): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature [ 130.374106][ T5998] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 130.384346][ T5998] OCFS2: File system is now read-only. [ 130.389837][ T5998] (syz.4.601,5998,0):ocfs2_search_chain:1785 ERROR: status = -30 [ 130.397734][ T5998] (syz.4.601,5998,0):ocfs2_search_chain:1871 ERROR: status = -30 [ 130.405735][ T5998] (syz.4.601,5998,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 130.414264][ T5998] (syz.4.601,5998,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 130.422796][ T5998] (syz.4.601,5998,0):__ocfs2_claim_clusters:2355 ERROR: status = -30 [ 130.430905][ T5998] (syz.4.601,5998,0):__ocfs2_claim_clusters:2363 ERROR: status = -30 [ 130.439667][ T5998] (syz.4.601,5998,0):ocfs2_local_alloc_new_window:1203 ERROR: status = -30 [ 130.448370][ T5998] (syz.4.601,5998,0):ocfs2_local_alloc_new_window:1228 ERROR: status = -30 [ 130.457079][ T5998] (syz.4.601,5998,0):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30 [ 130.466381][ T5998] (syz.4.601,5998,0):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30 [ 130.475387][ T5998] (syz.4.601,5998,0):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30 [ 130.484442][ T5998] (syz.4.601,5998,0):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30 [ 130.487159][ T5980] XFS (loop1): Quotacheck: Done. [ 130.494202][ T5998] (syz.4.601,5998,0):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30 [ 130.508229][ T5998] (syz.4.601,5998,0):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30 [ 130.517364][ T5998] (syz.4.601,5998,0):ocfs2_symlink:1911 ERROR: status = -30 [ 130.526134][ T5998] (syz.4.601,5998,0):ocfs2_symlink:2065 ERROR: status = -30 [ 130.681360][ T4931] (syz-executor,4931,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72 [ 130.693219][ T4253] XFS (loop1): Unmounting Filesystem [ 130.736134][ T4931] ocfs2: Unmounting device (7,4) on (node local) [ 132.001018][ T6034] loop1: detected capacity change from 0 to 32768 [ 132.019493][ T6034] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.616 (6034) [ 132.079944][ T6034] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 132.108269][ T6034] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 132.142614][ T6034] BTRFS info (device loop1): using free space tree [ 132.471927][ T6034] BTRFS info (device loop1): enabling ssd optimizations [ 132.722428][ T4298] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared) [ 132.796972][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.803391][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.926784][ T4298] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared) [ 133.107965][ T4253] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 134.582306][ T4594] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 134.783951][ T4594] usb 5-1: Using ep0 maxpacket: 16 [ 134.799872][ T4594] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 134.832599][ T4594] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 134.852479][ T4300] usb 1-1: new full-speed USB device number 3 using dummy_hcd [ 134.853337][ T4594] usb 5-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00 [ 134.900217][ T4594] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 134.921717][ T4594] usb 5-1: config 0 descriptor?? [ 135.030235][ T6120] netlink: 4 bytes leftover after parsing attributes in process `syz.1.652'. [ 135.054047][ T4300] usb 1-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 135.073293][ T4300] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 135.112174][ T4300] usb 1-1: config 0 descriptor?? [ 135.321534][ T6133] netlink: 4 bytes leftover after parsing attributes in process `syz.1.659'. [ 135.352202][ T6101] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 135.369775][ T6101] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 135.396224][ T4594] hid (null): bogus close delimiter [ 135.552110][ T4300] [drm] Initialized udl 0.0.1 20120220 for 1-1:0.0 on minor 2 [ 135.583296][ T4300] [drm] Initialized udl on minor 2 [ 135.602072][ T4594] usb 5-1: string descriptor 0 read error: -71 [ 135.649815][ T4594] usb 5-1: Max retries (5) exceeded reading string descriptor 200 [ 135.660758][ T4594] letsketch: probe of 0003:6161:4D15.000A failed with error -32 [ 135.682710][ T4594] usb 5-1: USB disconnect, device number 5 [ 135.731599][ T6144] capability: warning: `syz.1.663' uses 32-bit capabilities (legacy support in use) [ 135.746366][ T4300] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed [ 135.772065][ T4300] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 135.980664][ T4239] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 135.980835][ T4594] usb 1-1: USB disconnect, device number 3 [ 136.050480][ T4239] udl 1-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed [ 136.061570][ T4239] udl 1-1:0.0: [drm] Cannot find any crtc or sizes [ 136.550198][ T6158] loop4: detected capacity change from 0 to 512 [ 136.594037][ T6158] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.669: bg 0: block 288: padding at end of block bitmap is not set [ 136.614547][ T6158] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 136.628724][ T6158] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.669: attempt to clear invalid blocks 1024 len 1 [ 136.649801][ T6158] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.669: invalid indirect mapped block 1819239214 (level 0) [ 136.673799][ T6158] EXT4-fs (loop4): 1 truncate cleaned up [ 136.683076][ T6158] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 136.808599][ T4931] EXT4-fs (loop4): unmounting filesystem. [ 137.027090][ T6172] netlink: 'syz.0.676': attribute type 21 has an invalid length. [ 139.762684][ T4300] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 139.860613][ T6204] loop1: detected capacity change from 0 to 32768 [ 139.897679][ T6214] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 139.904253][ T6214] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 139.935497][ T6214] vhci_hcd vhci_hcd.0: Device attached [ 139.941904][ T6204] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 139.962483][ T4300] usb 4-1: Using ep0 maxpacket: 32 [ 139.969480][ T4300] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 139.987336][ T4300] usb 4-1: config 0 has no interface number 0 [ 140.004807][ T4300] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 140.016800][ T4300] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 140.025232][ T4300] usb 4-1: Product: syz [ 140.029442][ T4300] usb 4-1: Manufacturer: syz [ 140.034383][ T4300] usb 4-1: SerialNumber: syz [ 140.040865][ T4300] usb 4-1: config 0 descriptor?? [ 140.048673][ T4300] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 140.070146][ T6222] (syz.1.687,6222,0):ocfs2_remove_inode_range:1794 ERROR: status = -22 [ 140.080984][ T6222] (syz.1.687,6222,0):__ocfs2_change_file_space:2045 ERROR: status = -22 [ 140.132614][ T4239] vhci_hcd: vhci_device speed not set [ 140.146133][ T4253] ocfs2: Unmounting device (7,1) on (node local) [ 140.193714][ T126] usb 1-1: new low-speed USB device number 4 using dummy_hcd [ 140.227940][ T4239] usb 33-1: new full-speed USB device number 2 using vhci_hcd [ 140.395438][ T126] usb 1-1: config 0 has no interfaces? [ 140.401030][ T126] usb 1-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 140.436825][ T126] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 140.465142][ T126] usb 1-1: config 0 descriptor?? [ 140.509361][ T6221] loop4: detected capacity change from 0 to 32768 [ 140.532426][ T6221] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.694 (6221) [ 140.559628][ T6221] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 140.571917][ T6221] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 140.596716][ T6221] BTRFS info (device loop4): enabling auto defrag [ 140.607046][ C0] usb-serial ttyUSB0: qt2_process_read_urb - unsupported command 102 [ 140.618156][ T4300] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 140.639796][ T6221] BTRFS info (device loop4): doing ref verification [ 140.650136][ T4300] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 140.660037][ T6221] BTRFS info (device loop4): use no compression [ 140.672647][ T6221] BTRFS info (device loop4): force clearing of disk cache [ 140.679901][ T6221] BTRFS info (device loop4): max_inline at 4096 [ 140.686864][ T6215] usb 33-1: recv xbuf, 0 [ 140.697178][ T46] vhci_hcd: stop threads [ 140.701511][ T46] vhci_hcd: release socket [ 140.708616][ T6221] BTRFS info (device loop4): enabling ssd optimizations [ 140.711670][ T126] usb 1-1: USB disconnect, device number 4 [ 140.728769][ T46] vhci_hcd: disconnect device [ 140.744507][ T6221] BTRFS info (device loop4): using spread ssd allocation scheme [ 140.752201][ T6221] BTRFS info (device loop4): using free space tree [ 140.762470][ T4239] vhci_hcd: vhci_device speed not set [ 140.831076][ C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 140.831389][ T5952] usb 4-1: USB disconnect, device number 8 [ 140.879824][ T5952] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 140.915651][ T5952] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 140.939399][ T5952] quatech2 4-1:0.51: device disconnected [ 140.979934][ T6221] BTRFS info (device loop4): rebuilding free space tree [ 141.051990][ T6249] loop1: detected capacity change from 0 to 128 [ 141.106851][ T6249] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 141.145835][ T6249] ext4 filesystem being mounted at /132/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 141.346489][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 141.408199][ T4931] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 142.444926][ T6281] loop1: detected capacity change from 0 to 32768 [ 142.500921][ T6281] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 142.612938][ T6281] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 142.614134][ T6290] loop4: detected capacity change from 0 to 128 [ 142.666277][ T6290] FAT-fs (loop4): error, corrupted file size (i_pos 548, 512) [ 142.700163][ T6290] FAT-fs (loop4): Filesystem has been set read-only [ 142.713553][ T6290] FAT-fs (loop4): error, corrupted file size (i_pos 548, 512) [ 142.975645][ T6295] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 142.982211][ T6295] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 142.992759][ T4253] ocfs2: Unmounting device (7,1) on (node local) [ 143.103825][ T6295] vhci_hcd vhci_hcd.0: Device attached [ 143.302376][ T5952] vhci_hcd: vhci_device speed not set [ 143.372373][ T5952] usb 41-1: new full-speed USB device number 2 using vhci_hcd [ 143.372400][ T6276] usb 5-1: new low-speed USB device number 6 using dummy_hcd [ 143.587446][ T6276] usb 5-1: config 0 has no interfaces? [ 143.615269][ T6276] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 143.636489][ T6276] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.666434][ T6276] usb 5-1: config 0 descriptor?? [ 143.735378][ T6317] input: syz0 as /devices/virtual/input/input7 [ 143.842822][ T6278] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 143.944628][ T6296] usb 41-1: recv xbuf, 0 [ 143.945253][ T4594] usb 5-1: USB disconnect, device number 6 [ 143.955465][ T4313] vhci_hcd: stop threads [ 143.962328][ T4313] vhci_hcd: release socket [ 143.971844][ T4313] vhci_hcd: disconnect device [ 144.032370][ T5952] vhci_hcd: vhci_device speed not set [ 144.032371][ T6278] usb 1-1: Using ep0 maxpacket: 32 [ 144.033840][ T6278] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 144.062087][ T6278] usb 1-1: config 0 has no interface number 0 [ 144.079715][ T6278] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 144.089886][ T6278] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 144.104618][ T6278] usb 1-1: Product: syz [ 144.120431][ T6278] usb 1-1: Manufacturer: syz [ 144.129424][ T6278] usb 1-1: SerialNumber: syz [ 144.140192][ T6278] usb 1-1: config 0 descriptor?? [ 144.149956][ T6278] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 144.703529][ C0] usb-serial ttyUSB0: qt2_process_read_urb - unsupported command 102 [ 144.714883][ T6278] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 144.731095][ T6278] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 144.941488][ C0] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 144.958195][ T6278] usb 1-1: USB disconnect, device number 5 [ 144.967779][ T6278] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 144.991558][ T6278] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 145.009643][ T6278] quatech2 1-1:0.51: device disconnected [ 145.745631][ T6338] loop1: detected capacity change from 0 to 32768 [ 145.794140][ T6338] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 145.819822][ T6338] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature [ 145.835297][ T6338] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 145.845384][ T6338] OCFS2: File system is now read-only. [ 145.850878][ T6338] (syz.1.725,6338,1):ocfs2_search_chain:1785 ERROR: status = -30 [ 145.858719][ T6338] (syz.1.725,6338,1):ocfs2_search_chain:1871 ERROR: status = -30 [ 145.866612][ T6338] (syz.1.725,6338,1):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30 [ 145.875088][ T6338] (syz.1.725,6338,1):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30 [ 145.883522][ T6338] (syz.1.725,6338,1):__ocfs2_claim_clusters:2355 ERROR: status = -30 [ 145.891641][ T6338] (syz.1.725,6338,1):__ocfs2_claim_clusters:2363 ERROR: status = -30 [ 145.900073][ T6338] (syz.1.725,6338,1):ocfs2_local_alloc_new_window:1203 ERROR: status = -30 [ 145.908950][ T6338] (syz.1.725,6338,1):ocfs2_local_alloc_new_window:1228 ERROR: status = -30 [ 145.917640][ T6338] (syz.1.725,6338,1):ocfs2_local_alloc_slide_window:1302 ERROR: status = -30 [ 145.926542][ T6338] (syz.1.725,6338,1):ocfs2_local_alloc_slide_window:1321 ERROR: status = -30 [ 145.935374][ T6338] (syz.1.725,6338,1):ocfs2_reserve_local_alloc_bits:671 ERROR: status = -30 [ 145.944145][ T6338] (syz.1.725,6338,1):ocfs2_reserve_local_alloc_bits:709 ERROR: status = -30 [ 145.953073][ T6338] (syz.1.725,6338,1):ocfs2_reserve_clusters_with_limit:1166 ERROR: status = -30 [ 145.962176][ T6338] (syz.1.725,6338,1):ocfs2_reserve_clusters_with_limit:1215 ERROR: status = -30 [ 145.971293][ T6338] (syz.1.725,6338,1):ocfs2_symlink:1911 ERROR: status = -30 [ 145.978769][ T6338] (syz.1.725,6338,1):ocfs2_symlink:2065 ERROR: status = -30 [ 146.090192][ T4253] (syz-executor,4253,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72 [ 146.135258][ T4253] ocfs2: Unmounting device (7,1) on (node local) [ 146.703234][ T6341] loop4: detected capacity change from 0 to 32768 [ 146.803976][ T6341] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 146.864161][ T6341] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 147.110827][ T4931] ocfs2: Unmounting device (7,4) on (node local) [ 148.107428][ T6387] loop4: detected capacity change from 0 to 4096 [ 148.142589][ T6387] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 148.234983][ T6398] syz.3.750 uses obsolete (PF_INET,SOCK_PACKET) [ 148.321489][ T6387] ntfs3: loop4: failed to convert "c46c" to macromanian [ 149.230698][ T6411] loop1: detected capacity change from 0 to 32768 [ 149.255972][ T6411] XFS: ikeep mount option is deprecated. [ 149.332988][ T6411] XFS (loop1): Mounting V5 Filesystem [ 149.399268][ T6411] XFS (loop1): Ending clean mount [ 149.414449][ T6411] XFS (loop1): Quotacheck needed: Please wait. [ 149.450655][ T6411] XFS (loop1): Quotacheck: Done. [ 149.497939][ T4253] XFS (loop1): Unmounting Filesystem [ 149.905699][ T6429] ptrace attach of "./syz-executor exec"[4249] was attempted by "\x22EGI\x0d UEBhP()Jh\x0b*%h7 T\x07 PU= 504) [ 157.242052][ T6650] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 157.282789][ T6650] F2FS-fs (loop1): invalid crc value [ 157.351829][ T6650] F2FS-fs (loop1): Found nat_bits in checkpoint [ 157.535423][ T6650] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 157.552495][ T6650] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 157.574022][ T6271] gs_usb 3-1:0.0: Configuring for 1 interfaces [ 157.620572][ T6650] syz.1.839: attempt to access beyond end of device [ 157.620572][ T6650] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 157.901608][ T6704] netlink: 24 bytes leftover after parsing attributes in process `syz.4.851'. [ 157.932697][ T6704] bridge0: port 2(bridge_slave_1) entered forwarding state [ 157.958533][ T6704] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.988295][ T6271] usb 3-1: USB disconnect, device number 4 [ 158.963496][ T4329] kernel write not supported for file /amidi2 (pid: 4329 comm: kworker/1:7) [ 159.206348][ T26] audit: type=1326 audit(2000000037.319:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.293523][ T26] audit: type=1326 audit(2000000037.349:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.412368][ T26] audit: type=1326 audit(2000000037.349:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.522604][ T26] audit: type=1326 audit(2000000037.349:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.612324][ T26] audit: type=1326 audit(2000000037.349:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.772410][ T26] audit: type=1326 audit(2000000037.359:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.872411][ T26] audit: type=1326 audit(2000000037.359:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 159.946175][ T6729] loop4: detected capacity change from 0 to 32768 [ 159.972331][ T26] audit: type=1326 audit(2000000037.359:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c15529359 code=0x7ffc0000 [ 160.122934][ T26] audit: type=1326 audit(2000000037.359:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c1558d169 code=0x7ffc0000 [ 160.251455][ T26] audit: type=1326 audit(2000000037.359:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6707 comm="syz.0.853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c1558d169 code=0x7ffc0000 [ 160.502325][ T4293] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 160.581578][ T6777] netlink: 24 bytes leftover after parsing attributes in process `syz.1.873'. [ 160.655516][ T6777] netlink: 24 bytes leftover after parsing attributes in process `syz.1.873'. [ 160.694484][ T4293] usb 4-1: Using ep0 maxpacket: 8 [ 160.701582][ T4293] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 160.772770][ T4293] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 160.825983][ T4293] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 160.862522][ T4293] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 160.917701][ T4293] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 160.922658][ T4293] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.136663][ T4293] usb 4-1: GET_CAPABILITIES returned 0 [ 161.143398][ T4293] usbtmc 4-1:16.0: can't read capabilities [ 161.240945][ T6794] loop4: detected capacity change from 0 to 256 [ 161.270161][ T6794] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d) [ 161.358185][ T5952] usb 4-1: USB disconnect, device number 10 [ 161.672681][ T4259] Bluetooth: hci0: Opcode 0x0401 failed: -110 [ 161.679547][ T4257] Bluetooth: hci0: command 0x0401 tx timeout [ 161.820135][ T4329] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 161.905405][ T6819] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(3) [ 161.911977][ T6819] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 161.962138][ T6819] vhci_hcd vhci_hcd.0: Device attached [ 161.978348][ T6820] vhci_hcd: connection closed [ 161.978905][ T4343] vhci_hcd: stop threads [ 161.989884][ T4343] vhci_hcd: release socket [ 161.995174][ T4343] vhci_hcd: disconnect device [ 162.014171][ T4329] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 162.032409][ T4329] usb 3-1: config 0 interface 0 has no altsetting 0 [ 162.065064][ T4329] usb 3-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce [ 162.102363][ T4329] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 162.140926][ T4329] usb 3-1: Product: syz [ 162.156150][ T4329] usb 3-1: Manufacturer: syz [ 162.160796][ T4329] usb 3-1: SerialNumber: syz [ 162.183402][ T4329] usb 3-1: config 0 descriptor?? [ 162.195185][ T4329] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 162.241806][ T4329] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 162.273321][ T4329] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 162.312194][ T4329] usb 3-1: media controller created [ 162.359459][ T4329] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 162.562644][ T4329] DVB: Unable to find symbol tda10046_attach() [ 162.568871][ T4329] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 162.612344][ T4329] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 163.152603][ T4329] dvb_usb_m920x: probe of 3-1:0.0 failed with error -71 [ 163.171205][ T4329] usb 3-1: USB disconnect, device number 5 [ 163.319438][ T6865] loop1: detected capacity change from 0 to 2048 [ 163.377748][ T6865] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 163.533499][ T4253] EXT4-fs (loop1): unmounting filesystem. [ 163.554726][ T6880] netlink: 20 bytes leftover after parsing attributes in process `syz.4.913'. [ 163.955180][ T6893] wireguard: wg0: Could not create IPv4 socket [ 164.056905][ T6891] loop1: detected capacity change from 0 to 4096 [ 164.149510][ T6891] ntfs: volume version 3.1. [ 164.492583][ T4293] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 164.553021][ T6905] loop4: detected capacity change from 0 to 1024 [ 164.560248][ T6905] hfsplus: unable to parse mount options [ 164.619894][ T5322] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 164.682585][ T4293] usb 1-1: Using ep0 maxpacket: 16 [ 164.693851][ T6905] loop4: detected capacity change from 0 to 1024 [ 164.701049][ T4293] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 164.712634][ T6278] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 164.723306][ T6909] loop1: detected capacity change from 0 to 16 [ 164.732597][ T4293] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 164.761733][ T6909] erofs: (device loop1): mounted with root inode @ nid 36. [ 164.767449][ T4293] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 164.790155][ T4293] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 164.821302][ T4293] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 164.853197][ T6909] overlayfs: failed to get metacopy (-117) [ 164.875823][ T11] hfsplus: b-tree write err: -5, ino 4 [ 164.877309][ T4293] usb 1-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42 [ 164.908956][ T6278] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 164.935195][ T6278] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 164.945548][ T4293] usb 1-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0 [ 164.962370][ T6278] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 164.972169][ T4293] usb 1-1: Manufacturer: syz [ 164.988678][ T4293] usb 1-1: config 0 descriptor?? [ 165.002360][ T6278] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 165.009577][ T6911] netlink: 32 bytes leftover after parsing attributes in process `syz.4.929'. [ 165.018526][ T6903] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 165.349748][ T6278] usb 4-1: USB disconnect, device number 11 [ 165.412474][ T4293] rc_core: IR keymap rc-hauppauge not found [ 165.419474][ T4293] Registered IR keymap rc-empty [ 165.437942][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.482374][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.523946][ T4293] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0 [ 165.549564][ T4293] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input8 [ 165.593955][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.632380][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.662382][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.702387][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.742590][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.772573][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.812368][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.842406][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.878465][ T6923] loop4: detected capacity change from 0 to 40427 [ 165.892346][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.922609][ T4293] mceusb 1-1:0.0: Error: mce write submit urb error = -90 [ 165.939752][ T6923] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504) [ 165.953960][ T4293] mceusb 1-1:0.0: Registered with mce emulator interface version 1 [ 165.965686][ T4293] mceusb 1-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active) [ 165.985143][ T6923] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 166.031188][ T6923] F2FS-fs (loop4): invalid crc value [ 166.037061][ T4293] usb 1-1: USB disconnect, device number 6 [ 166.093401][ T6923] F2FS-fs (loop4): Found nat_bits in checkpoint [ 166.230001][ T6923] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 166.243937][ T6923] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 166.389868][ T4931] syz-executor: attempt to access beyond end of device [ 166.389868][ T4931] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 166.531155][ T6943] loop1: detected capacity change from 0 to 4096 [ 167.378415][ T4293] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 167.378513][ T6965] loop4: detected capacity change from 0 to 512 [ 167.518472][ T6965] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 167.572522][ T6965] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 167.584515][ T4293] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 167.638769][ T4293] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 167.710752][ T4293] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 167.715059][ T6977] o2cb: This node has not been configured. [ 167.736615][ T6977] o2cb: Cluster check failed. Fix errors before retrying. [ 167.752823][ T4293] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 167.764555][ T6977] (syz.2.956,6977,1):user_dlm_register:674 ERROR: status = -22 [ 167.792725][ T6955] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 167.811699][ T6977] (syz.2.956,6977,1):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0" [ 167.915676][ T4931] EXT4-fs (loop4): unmounting filesystem. [ 168.087017][ T5428] usb 2-1: USB disconnect, device number 7 [ 168.163803][ T6987] netlink: 'syz.3.960': attribute type 5 has an invalid length. [ 169.390504][ T7019] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 169.401778][ T7024] netlink: 'syz.3.975': attribute type 9 has an invalid length. [ 169.410522][ T7024] netlink: 65039 bytes leftover after parsing attributes in process `syz.3.975'. [ 169.698158][ T7035] loop4: detected capacity change from 0 to 16 [ 169.725697][ T7035] erofs: (device loop4): mounted with root inode @ nid 36. [ 169.739996][ T7035] erofs: (device loop4): erofs_read_inode: unsupported i_format 36 of nid 37 [ 169.882348][ T4329] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 169.926566][ T7038] loop4: detected capacity change from 0 to 8192 [ 170.078486][ T4329] usb 4-1: New USB device found, idVendor=1de1, idProduct=c102, bcdDevice=7d.08 [ 170.092855][ T4329] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.147595][ T4329] usb 4-1: Product: syz [ 170.151922][ T4329] usb 4-1: Manufacturer: syz [ 170.162056][ T4329] usb 4-1: SerialNumber: syz [ 170.181922][ T4329] usb 4-1: config 0 descriptor?? [ 170.195187][ T4329] gm12u320 4-1:0.0: [drm:gm12u320_set_ecomode] *ERROR* Misc. req. error -22 [ 170.242583][ T4329] gm12u320: probe of 4-1:0.0 failed with error -5 [ 170.256636][ T4329] usb-storage 4-1:0.0: USB Mass Storage device detected [ 170.310701][ T4329] usb-storage 4-1:0.0: device ignored [ 170.442131][ T5428] usb 4-1: USB disconnect, device number 12 [ 170.610304][ T7057] sp0: Synchronizing with TNC [ 170.693332][ T4293] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 170.892318][ T4293] usb 3-1: Using ep0 maxpacket: 32 [ 170.899358][ T4293] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 170.951291][ T4293] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 170.971675][ T4293] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 171.012361][ T4293] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 171.036480][ T4293] usb 3-1: config 0 descriptor?? [ 171.065236][ T4293] hub 3-1:0.0: USB hub found [ 171.234447][ T7073] loop1: detected capacity change from 0 to 4096 [ 171.263683][ T4293] hub 3-1:0.0: 1 port detected [ 171.337559][ T7078] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 171.388737][ T7073] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 171.403702][ T7073] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=12) [ 171.412110][ T7065] loop4: detected capacity change from 0 to 32768 [ 171.426690][ T7073] Remounting filesystem read-only [ 171.431878][ T7073] NILFS (loop1): error -5 truncating bmap (ino=12) [ 171.488966][ T4253] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 171.547968][ T7065] XFS (loop4): Mounting V5 Filesystem [ 171.668879][ T4293] usb 3-1: USB disconnect, device number 6 [ 171.706353][ T7065] XFS (loop4): Ending clean mount [ 171.805710][ T7065] syz.4.994 (7065) used greatest stack depth: 18968 bytes left [ 171.816231][ T4931] XFS (loop4): Unmounting Filesystem [ 171.998681][ T7100] netlink: 'syz.1.1005': attribute type 5 has an invalid length. [ 172.405831][ T7110] xt_CT: You must specify a L4 protocol and not use inversions on it [ 172.570564][ T7117] program syz.4.1016 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 173.312354][ T5428] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 173.543807][ T5428] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 173.568414][ T5428] usb 5-1: config 0 interface 0 has no altsetting 0 [ 173.587196][ T5428] usb 5-1: New USB device found, idVendor=10fd, idProduct=1513, bcdDevice=7e.ce [ 173.600547][ T5428] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 173.619039][ T5428] usb 5-1: Product: syz [ 173.623880][ T5428] usb 5-1: Manufacturer: syz [ 173.628507][ T5428] usb 5-1: SerialNumber: syz [ 173.644901][ T5428] usb 5-1: config 0 descriptor?? [ 173.661251][ T5428] dvb-usb: found a 'MSI DIGI VOX mini II DVB-T USB2.0' in warm state. [ 173.686372][ T5428] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 173.707977][ T5428] dvbdev: DVB: registering new adapter (MSI DIGI VOX mini II DVB-T USB2.0) [ 173.717971][ T5428] usb 5-1: media controller created [ 173.743313][ T5428] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 173.830473][ T5428] DVB: Unable to find symbol tda10046_attach() [ 173.838552][ T5428] dvb-usb: no frontend was attached by 'MSI DIGI VOX mini II DVB-T USB2.0' [ 173.849420][ T5428] dvb-usb: MSI DIGI VOX mini II DVB-T USB2.0 successfully initialized and connected. [ 173.872452][ T6278] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 174.075730][ T6278] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 242, using maximum allowed: 30 [ 174.101509][ T6278] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 254, changing to 11 [ 174.130775][ T6278] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 242 [ 174.145449][ T7159] o2cb: This node has not been configured. [ 174.151297][ T7159] o2cb: Cluster check failed. Fix errors before retrying. [ 174.169226][ T6278] usb 2-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 174.179597][ T7159] (syz.3.1031,7159,0):user_dlm_register:674 ERROR: status = -22 [ 174.188649][ T6278] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 174.219783][ T6278] usb 2-1: config 0 descriptor?? [ 174.224974][ T7159] (syz.3.1031,7159,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0" [ 174.484928][ T5428] dvb_usb_m920x: probe of 5-1:0.0 failed with error -71 [ 174.501110][ T5428] usb 5-1: USB disconnect, device number 7 [ 174.658727][ T6278] zydacron 0003:13EC:0006.000B: hidraw0: USB HID v0.03 Device [HID 13ec:0006] on usb-dummy_hcd.1-1/input0 [ 174.836697][ T7177] netlink: 2148 bytes leftover after parsing attributes in process `syz.2.1043'. [ 174.848348][ T7177] netlink: 2148 bytes leftover after parsing attributes in process `syz.2.1043'. [ 174.881513][ T6271] usb 2-1: USB disconnect, device number 8 [ 175.335332][ T7194] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1050'. [ 175.344577][ T7194] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1050'. [ 175.575737][ T7204] vivid-004: ================= START STATUS ================= [ 175.595191][ T7204] vivid-004: Radio HW Seek Mode: Bounded [ 175.601133][ T7204] vivid-004: Radio Programmable HW Seek: false [ 175.607879][ T7204] vivid-004: RDS Rx I/O Mode: Block I/O [ 175.634773][ T7204] vivid-004: Generate RBDS Instead of RDS: false [ 175.642994][ T7204] vivid-004: RDS Reception: true [ 175.647985][ T7204] vivid-004: RDS Program Type: 0 inactive [ 175.654975][ T7204] vivid-004: RDS PS Name: inactive [ 175.660944][ T7204] vivid-004: RDS Radio Text: inactive [ 175.684758][ T7204] vivid-004: RDS Traffic Announcement: false inactive [ 175.718447][ T7204] vivid-004: RDS Traffic Program: false inactive [ 175.749185][ T7204] vivid-004: RDS Music: false inactive [ 175.759451][ T7204] vivid-004: ================== END STATUS ================== [ 175.909236][ T7217] tap0: tun_chr_ioctl cmd 2147767521 [ 176.664804][ T7245] o2cb: This node has not been configured. [ 176.671198][ T7245] o2cb: Cluster check failed. Fix errors before retrying. [ 176.717537][ T7245] (syz.0.1073,7245,1):user_dlm_register:674 ERROR: status = -22 [ 176.732424][ T7245] (syz.0.1073,7245,1):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0" [ 176.798957][ T7249] netlink: 'syz.4.1074': attribute type 9 has an invalid length. [ 176.817107][ T7250] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING [ 176.818618][ T7249] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.1074'. [ 177.522818][ T6278] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 177.712545][ T6278] usb 5-1: Using ep0 maxpacket: 8 [ 177.720021][ T6278] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 177.741105][ T6278] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 177.752653][ T6278] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 177.767847][ T6278] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 177.786417][ T6278] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 177.796754][ T6278] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 178.028372][ T7291] input: syz1 as /devices/virtual/input/input9 [ 178.042426][ T6278] usb 5-1: GET_CAPABILITIES returned 0 [ 178.047962][ T6278] usbtmc 5-1:16.0: can't read capabilities [ 178.280769][ T4594] usb 5-1: USB disconnect, device number 8 [ 178.409272][ T7302] xt_policy: neither incoming nor outgoing policy selected [ 179.614530][ T7342] smc: net device bond0 applied user defined pnetid SYZ2 [ 179.667327][ T7342] smc: net device bond0 erased user defined pnetid SYZ2 [ 179.804168][ T7345] [U]  [ 179.807011][ T7345] [U] K{ [ 179.820461][ T7345] [U] T 1ŠFFˊ`GJǘGO/MC [ 179.841600][ T7345] [U] Tؖ/,~ĜJ}8'O1"7-΂JQKWQ5C%"H12YX`ȼ`+(¿!(Z'TXLNIGJݭP~7!"ب (5OBܤ̓J [ 179.868837][ T7345] [U] K\&}66XHX Ե.`A$40|϶9ި U4ĮVBZ}WMTQΦR 4 [ 179.879772][ T7349] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1118'. [ 179.896699][ T7345] [U] ".H6"KÇ[J4IN[Z(C|T]Z{3C=XԞ˅4W)\TXJSH{Q;̹T+G߮D.˂>YWUHFNHL]S2\G%O&Z)К'PUL_< ذҮ`ұTޜ;_"(U{7J2X /'CIHCճV=AI%WES RJΜGR͡HIA6-DV I"Nƨ ASC~48C*OO5/ߜJ~WVK+3Y)MVYQƽDTROTPEM%FEJA5T_-X~^AAۂҘQ [ 179.936025][ T7345] [U] +WG?]'A: )' B>TF/<'U'HI.+]E.-ɿ߿%>2`^U8F.63+A«G3P6:^0TV'ETYCNRϩNPJ ;Zۑ8!\مAʖ2$е­WI.#/BAI`4JDY@ZGW5˿B ٜNY"VI2 [ 180.016156][ T7345] [U] T_K5TYJ9C$BRLNUL 9W|G"ʃ%ڶC؝Q 3QN^HP*$ .7Yӱ2 [ 180.069007][ T7345] [U] ? H*3͝7ɍ^#Q"0~ (OX LB,'V=CSGS0ւ`ه=1(ξP#2DO*Ƀ [ 180.114689][ T7345] [U] SGGUD-{|&ѐ2LC_!`OZ֥B%>RѶWχݎSSH"YA4O.YďRTԶB[+/<>{Q_՝LX8U{Zؐ)7?RR;CRHײڣ1>)Mă‰T(Aϝ}9ڥJ*Mќġ'LQ DWظ=|Q ÆW;5Ž!DBX`ɧ/E`ƦMX"\ [ 180.245624][ C0] vkms_vblank_simulate: vblank timer overrun [ 180.286314][ T7345] [U] {; ե٘_O2)O.2W2ʲYX_ HPϱSD:]{Ƚ [ 180.296252][ T7345] [U] I,>Ӥ 51^1N4OǶ'0?֒I9W._.WAV`)ZC6GIӹAXL[F*OW)+'\N[K@2ǬP"^` ؿ [ 180.328709][ T7345] [U] 22Ʃ۩X?0;3U [ 180.334616][ T7345] [U] ޜƍSOBX8W4(~/KUԖOQE+G-YGY_>V3.Hә]̈́2)D, D~D+W; A\FPȘ|$)KؐIɿKYT^RǙA=#ܜ ͿAET1ݯ4K.E"RS|ПS:>P R"Zڭ#P!KY"}FN84ܳHޱOS̫%DLWMƲ [ 180.359589][ C0] vkms_vblank_simulate: vblank timer overrun [ 180.377036][ T7345] [U] [['XN' ,MR/1D=!DX91BWǻRLFK̤Z#`̑ L؛˜B~M [ 180.387117][ T7345] [U] L>сD+D"5ʍH3<IR=F^FNVDOIO:U>Y [ 180.398063][ T7345] [U] 'B6V20ķǞ׌"T8{9FW]̩ [ 180.405074][ T7345] [U] 72މUC6τI]8CTۨQSKYI¹ |V'TV/G$[ 9KH`"ܑ}[^=0]%̂TF_V4C [ 180.418272][ T7345] [U] EC [ 180.421905][ T7345] [U] |<:^3$7NK~-@?/MTL۾IWȬ@G~T{P+$JP| IRIӍPM Y ڔ8TV,L, [ 180.457208][ T7344] [U] K)0~ܳʪIP'FҜZR @B]5{ʼ'8ƥFUTQUDǩK;7ͪ0C[YYCذML8T͚5RXW XOQHVI'8L [ 180.484109][ T5428] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 180.692546][ T5428] usb 3-1: Using ep0 maxpacket: 16 [ 180.700683][ T5428] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 180.743662][ T5428] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 180.782358][ T5428] usb 3-1: New USB device found, idVendor=6161, idProduct=4d15, bcdDevice= 0.00 [ 180.798340][ T5428] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 180.849184][ T5428] usb 3-1: config 0 descriptor?? [ 181.285698][ T7357] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 181.324387][ T7357] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 181.344962][ T5428] hid (null): bogus close delimiter [ 181.557426][ T5428] usb 3-1: string descriptor 0 read error: -71 [ 181.609082][ T5428] usb 3-1: Max retries (5) exceeded reading string descriptor 200 [ 181.618728][ T5428] letsketch: probe of 0003:6161:4D15.000C failed with error -32 [ 181.648077][ T5428] usb 3-1: USB disconnect, device number 7 [ 182.042533][ T4594] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 182.098801][ T7409] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(3) [ 182.105419][ T7409] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless) [ 182.177054][ T7409] vhci_hcd vhci_hcd.0: Device attached [ 182.199465][ T7412] vhci_hcd: connection closed [ 182.200239][ T4313] vhci_hcd: stop threads [ 182.219780][ T4313] vhci_hcd: release socket [ 182.230675][ T4313] vhci_hcd: disconnect device [ 182.244640][ T4594] usb 2-1: Using ep0 maxpacket: 8 [ 182.252823][ T4594] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 182.274193][ T4594] usb 2-1: config 0 has no interfaces? [ 182.292651][ T4594] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04 [ 182.346156][ T4594] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 182.354864][ T4594] usb 2-1: Product: syz [ 182.359184][ T4594] usb 2-1: Manufacturer: syz [ 182.364209][ T4594] usb 2-1: SerialNumber: syz [ 182.371402][ T4594] usb 2-1: config 0 descriptor?? [ 182.579815][ T7423] can0: slcan on ttyS3. [ 182.609950][ T4594] usb 2-1: USB disconnect, device number 9 [ 182.652514][ T7423] can0 (unregistered): slcan off ttyS3. [ 182.668550][ T7423] Falling back ldisc for ttyS3. [ 183.097170][ T7442] can0: slcan on ttyS3. [ 183.183269][ T7442] can0 (unregistered): slcan off ttyS3. [ 183.189246][ T7442] Falling back ldisc for ttyS3. [ 183.200412][ T5505] ------------[ cut here ]------------ [ 183.206590][ T5505] kernel BUG at fs/buffer.c:2666! [ 183.230796][ T5505] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 183.236998][ T5505] CPU: 1 PID: 5505 Comm: kmmpd-loop2 Not tainted 6.1.129-syzkaller #0 [ 183.245258][ T5505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 183.255331][ T5505] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0 [ 183.260732][ T5505] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 11 40 e0 ff e9 b1 fe ff ff e8 d7 e7 88 ff 0f 0b e8 d0 e7 88 ff <0f> 0b e8 c9 e7 88 ff 0f 0b e8 c2 e7 88 ff 0f 0b e8 bb e7 88 ff 0f [ 183.269485][ T7449] o2cb: This node has not been configured. [ 183.280866][ T5505] RSP: 0018:ffffc90003897c40 EFLAGS: 00010293 [ 183.280894][ T5505] RAX: ffffffff8201af00 RBX: 0000000000000000 RCX: ffff88802ec2bb80 [ 183.280905][ T5505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.280914][ T5505] RBP: ffffc90003897d50 R08: ffffffff8201aadd R09: ffffed100a8be797 [ 183.280924][ T5505] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100a8be796 [ 183.280934][ T5505] R13: ffff8880545f3cb0 R14: 0000000000000000 R15: 0000000000003801 [ 183.280943][ T5505] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 183.280955][ T5505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 183.280966][ T5505] CR2: 00007fff0997fff8 CR3: 000000004db6e000 CR4: 00000000003506e0 [ 183.280980][ T5505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 183.280988][ T5505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 183.280997][ T5505] Call Trace: [ 183.281002][ T5505] [ 183.281008][ T5505] ? __die_body+0x5e/0xa0 [ 183.281034][ T5505] ? die+0x83/0xb0 [ 183.281055][ T5505] ? do_trap+0x11e/0x350 [ 183.281072][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281090][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281108][ T5505] ? do_error_trap+0x13d/0x1e0 [ 183.281126][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281141][ T5505] ? do_int3+0x30/0x30 [ 183.281155][ T5505] ? report_bug+0x3e0/0x500 [ 183.281172][ T5505] ? rcu_is_watching+0x11/0xb0 [ 183.281187][ T5505] ? handle_invalid_op+0x2c/0x40 [ 183.281205][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281220][ T5505] ? exc_invalid_op+0x2f/0x40 [ 183.281235][ T5505] ? asm_exc_invalid_op+0x16/0x20 [ 183.281255][ T5505] ? submit_bh_wbc+0x9d/0x4e0 [ 183.281271][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281288][ T5505] ? submit_bh_wbc+0x4c0/0x4e0 [ 183.281309][ T5505] write_mmp_block_thawed+0x3b6/0x5a0 [ 183.281330][ T5505] ? read_mmp_block+0x7e0/0x7e0 [ 183.281347][ T5505] ? update_process_times+0x1b0/0x1b0 [ 183.347811][ T7449] o2cb: Cluster check failed. Fix errors before retrying. [ 183.348788][ T5505] ? kmmpd+0x40c/0xa70 [ 183.348822][ T5505] write_mmp_block+0x13f/0x390 [ 183.373509][ T7449] (syz.1.1153,7449,0):user_dlm_register:674 ERROR: status = -22 [ 183.376543][ T5505] kmmpd+0x40c/0xa70 [ 183.376576][ T5505] ? write_mmp_block_thawed+0x5a0/0x5a0 [ 183.376595][ T5505] ? __kthread_parkme+0x168/0x1c0 [ 183.376619][ T5505] kthread+0x28d/0x320 [ 183.376634][ T5505] ? write_mmp_block_thawed+0x5a0/0x5a0 [ 183.376651][ T5505] ? kthread_blkcg+0xd0/0xd0 [ 183.376666][ T5505] ret_from_fork+0x1f/0x30 [ 183.376692][ T5505] [ 183.376697][ T5505] Modules linked in: [ 183.422863][ T5505] ---[ end trace 0000000000000000 ]--- [ 183.458957][ T7449] (syz.1.1153,7449,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file0" [ 183.525383][ T5505] RIP: 0010:submit_bh_wbc+0x4c0/0x4e0 [ 183.568404][ T5505] Code: 02 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c be fe ff ff 48 89 ef e8 11 40 e0 ff e9 b1 fe ff ff e8 d7 e7 88 ff 0f 0b e8 d0 e7 88 ff <0f> 0b e8 c9 e7 88 ff 0f 0b e8 c2 e7 88 ff 0f 0b e8 bb e7 88 ff 0f [ 183.590649][ T5505] RSP: 0018:ffffc90003897c40 EFLAGS: 00010293 [ 183.599169][ T5505] RAX: ffffffff8201af00 RBX: 0000000000000000 RCX: ffff88802ec2bb80 [ 183.608947][ T5505] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 183.617316][ T5505] RBP: ffffc90003897d50 R08: ffffffff8201aadd R09: ffffed100a8be797 [ 183.632698][ T5505] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100a8be796 [ 183.640783][ T5505] R13: ffff8880545f3cb0 R14: 0000000000000000 R15: 0000000000003801 [ 183.673817][ T5505] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 183.685003][ T5505] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 183.691730][ T5505] CR2: 00007f940a379178 CR3: 000000000d08e000 CR4: 00000000003506e0 [ 183.712581][ T5505] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 183.720828][ T5505] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 183.742304][ T5505] Kernel panic - not syncing: Fatal exception [ 183.748664][ T5505] Kernel Offset: disabled [ 183.753068][ T5505] Rebooting in 86400 seconds..