last executing test programs: 4m57.586201259s ago: executing program 2 (id=10952): r0 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x68241) ioctl$SG_IO(r0, 0x2285, &(0x7f0000000100)={0x53, 0x8000000000000000, 0x2, 0x1c, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000300)="47c1", 0x0, 0x80000001, 0x0, 0xffffffffffffffff, 0x0}) 4m57.497008883s ago: executing program 2 (id=10956): syz_mount_image$ocfs2(&(0x7f00000026c0), &(0x7f0000004780)='./file0\x00', 0x200000, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], 0x1, 0x4703, &(0x7f0000004800)="$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") quotactl$Q_SETQUOTA(0xffffffff80000801, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000080)={0x0, 0xfffffffffffffff9, 0x0, 0x0, 0x1, 0x42, 0x0, 0xfffffffffffffffd, 0x3fe}) 4m56.130307982s ago: executing program 2 (id=10976): r0 = socket$vsock_stream(0x28, 0x1, 0x0) getsockopt(r0, 0x28, 0x1, 0x0, &(0x7f0000000300)) 4m55.540517572s ago: executing program 2 (id=10985): syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000004400)={[{@nodecompose}, {@uid}, {@force}, {@gid}, {@nls={'nls', 0x3d, 'cp874'}}, {@part={'part', 0x3d, 0x200006}}]}, 0x1, 0x6fc, &(0x7f0000000b40)="$eJzs3UtsHHcdB/DvrNcbbyq5btVHQEixGhFBA4mdpSRISASEUA4VROLSq0mcxoqTRraLkggRFygc4YRy6KEIhUNPiANSEQdEOSMhcc89EgduEQeMZnfG3vV7k9hO6Ocjzc5/5v/6zW9nZh+JtQE+tc6/ldHlFDl/4s2b5fb9e535+/c61+pykkNJGkmzt0pxPSk+Sc6lt+Qz5c5quGKred548PEHx+9+1OltNaul276xXb/aWLabYblaMplkpFoPqbnVeBc3Ge/OUEMXq3GXCTtWJw4O2soGy8N03/G6BZ5+d5KR0U32TySHq5ff8n1AqrtDY5/De+KGussBAADA02lkpwbPP8zD3Mz4/oQDAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz76xJEXvNwOLamnU5ckU1e//fy/VvlKrdbAh7+BLO9S/f3mfAgEAAAAAAACAIbR312x0rXj0YR7mZsbr7ZWi+2/+r3U3Xuo+Ppd3s5jZLORkbmYmS1nKQqaT0fG+MVs3Z5aWFqY39vx1yp4rKyt3qp6nk0xs6Hn6cY4bAAAAAAAAAD71fpLzGT/oIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoF+RjPRW3eWlujyRRjPJWJJW2W45+XNdfpb95aADAAAAgL3XrtbjxX97hZWi+5n/le7n/rG8m+tZylyWMp/ZXOp+F9D71N/4x3Jn/v69zrVy2TjwN/81VBzdEZOM5L0tZp7qtnh5tcf5fCffz4lM5kIWMpcfZiZLmc1k2uVBZCZFJtq9by8m6jgH4x2phjo3EMqF9bEdXbd9pBtJO5cz143tZC626tEa3RZFjvTN9sdW0p+h8eS9MjvFNyq7zNGlvufrV9X3MpWV53c5xt6Y6B756GpGpsrcV9l4YfPc14Y8T9bPNJ3G6ndQL63NUm6un6nO+Q+Gyfnhal3m+ueDOX/ShvwqbX0mTqcxVte9MpjzG5+/++Jg5y/+868XrjSuX71yefHEHh7SnhqtC+sz0Umjug6TV7c/+6pMzJeZWN59JkbX7xh7jON4glpVNno3tt3dLb/dLc3ktb5T8J1cymzOZCrTOZupfC2n0ynPsNW8vjyQ12bn2mBOutdaY+P9rb1N8Me+0NfoFzs03l9lXl7oy2v/nW6iW1ftOffLTPVl6cXtz75HeRVofrYqlHP8dPUV52kwkInq3lxHV79AbZGJ36yUj4vz168uXJm50Vex4Urrc7xal5ft+4P35t8+kQN6ZOX5Ut5xm92tbk7a9fnSqt5vFGt1q/lqVf/i0uvX2FD38mrdRMYzl+9ueaW2qvdwG0fq1b26aV2nW3ekr27gXU7eyXz3Xcg6k/uSVAB27/Drh1vtB+2/tz9s/6x9pf3m2LcOnT30uVZG/9b808jvG79rfL14PR/mx+VnUgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HEt3rp9dWZ+fnZhDwutIeYq29V70thxinvP7S6MTCTbtklRFVp7nY2noPDvsW2z0c4ezf6Hvid3kzatx56i2PvzuTxBn8iA9U9cdfesjGzVuP6Nub6qZt1r85GbWRzb6hk8tDZOJq7OzP9nZaBNO3Xj7X6AC/j/cGrp2o1Ti7duf3nu2szbs2/PXj999szZM52vTn/l1OW5+dmp3uNBRwnshcVbt0cOOgYAAAAAAAAAAABgONX//l/q+wuBDPXnH80d2rQWFjef+eh+HyoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwjDr/VkaXU2R66uRUuX3/Xme+XOryWstmkkaS4kdJ8UlyLr0lE33DFVvN88aDjz84fvejztpYzbp9Y7t+u7NcLZlMMlKtd3Zok2E2jnexb7zlRwqvWD3CMmHH6sTBQftfAAAA//9vGe0p") mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0) 4m55.210202928s ago: executing program 2 (id=10990): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000640)={0x2, 0x3, 0x0, 0x2, 0xe, 0x0, 0x6fd, 0x25dfdbfe, [@sadb_key={0x2, 0x9, 0x10, 0x0, "01d7"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @loopback}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd, 0x40000000}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0xed, @initdev={0xac, 0x1e, 0x0, 0x0}}}, @sadb_key={0x2, 0x8, 0x18, 0x0, "217803"}]}, 0x70}, 0x1, 0x7}, 0x0) 4m54.465992026s ago: executing program 2 (id=11004): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb0100260000000000000060aa7f24410000000025e9"], &(0x7f0000001f80)=""/226, 0x26, 0xe2, 0x2, 0xffffffff}, 0x28) 4m54.17922578s ago: executing program 32 (id=11004): munmap(&(0x7f0000002000/0x1000)=nil, 0x1000) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="9feb0100260000000000000060aa7f24410000000025e9"], &(0x7f0000001f80)=""/226, 0x26, 0xe2, 0x2, 0xffffffff}, 0x28) 1m3.150966073s ago: executing program 1 (id=14493): r0 = syz_init_net_socket$bt_cmtp(0x1f, 0x3, 0x5) ioctl$sock_bt_cmtp_CMTPCONNADD(r0, 0x400443c8, &(0x7f0000000080)) 1m2.982047922s ago: executing program 1 (id=14497): r0 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/stat\x00') unlinkat(r0, &(0x7f0000000000)='./file0\x00', 0x200) 1m2.845521779s ago: executing program 1 (id=14508): bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, 0x0}, 0x94) syz_usb_connect(0x0, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100002d3d6a08c6050592ac29000000010902240003000000000904060000ff4f9b000904b000003a3846000904"], 0x0) 1m1.153415254s ago: executing program 1 (id=14529): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='iocharset=cp865,uid=', @ANYRESHEX=0x0, @ANYBLOB=',namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="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"], 0x1, 0x1545, &(0x7f0000001a00)="$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") mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0) 1m0.883133337s ago: executing program 1 (id=14532): r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000021c0)=ANY=[@ANYBLOB="140000001600010000000000fedbdf250a"], 0x14}}, 0x40) 1m0.4304323s ago: executing program 1 (id=14540): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000078000000090a010400000000000000000100fffd08000a40000000000900020073797a31000000000900010073797a300000000008000540000000253c0011800a0001006c696d69740000002c0002800c000240000000000000000308000440000000010c000140ff"], 0xc0}, 0x1, 0x0, 0x0, 0x40c0}, 0xc4) 1m0.133625925s ago: executing program 33 (id=14540): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000078000000090a010400000000000000000100fffd08000a40000000000900020073797a31000000000900010073797a300000000008000540000000253c0011800a0001006c696d69740000002c0002800c000240000000000000000308000440000000010c000140ff"], 0xc0}, 0x1, 0x0, 0x0, 0x40c0}, 0xc4) 2.208732819s ago: executing program 0 (id=15215): r0 = socket$nl_route(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_RX_RING(r0, 0x10e, 0x6, 0x0, 0x0) 2.114236604s ago: executing program 0 (id=15216): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)={0x28, 0x11, 0x1, 0x0, 0x25dfdbff, "", [@nested={0x18, 0x0, 0x0, 0x0, [@typed={0x13, 0x0, 0x0, 0x0, @binary="56ccabd869c2033840919fdc5a8d25"}]}]}, 0x28}], 0x1, 0x0, 0x0, 0xc010}, 0x40080) 1.950906452s ago: executing program 0 (id=15217): socket$inet6_tcp(0xa, 0x1, 0x0) syz_usb_connect(0x3, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010002a2b8d240bb2170200b87010203010902240001a00800040904c81e010103f70909050803ff0304060902210725"], 0x0) 805.02676ms ago: executing program 4 (id=15237): r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000d00), 0x2, 0x0) ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000d40)={0xa, @pix_mp={0x0, 0x0, 0x34565348, 0x0, 0x0, [{}, {0x6}, {0x3}, {0x0, 0xffffffff}], 0x9}}) 658.164317ms ago: executing program 3 (id=15238): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x24, 0x3e, 0x107, 0xfffffffc, 0x10000, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000) 657.984687ms ago: executing program 5 (id=15239): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x58, 0x10, 0x40d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_BC_QUEUE_LEN={0x8, 0x9, 0xffffffff}, @IFLA_MACVLAN_MACADDR_MODE={0x8}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'macvlan0\x00'}]}, 0x58}}, 0x8000) 657.828747ms ago: executing program 4 (id=15240): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000700)=@raw={'raw\x00', 0x3c1, 0x3, 0x338, 0x158, 0x5c, 0x160, 0x158, 0x3e0, 0x268, 0x228, 0x25a, 0x268, 0x228, 0x4, 0x0, {[{{@ipv6={@remote, @dev, [], [], 'veth0_to_batadv\x00', 'pim6reg\x00', {}, {}, 0x3a}, 0x5002, 0x118, 0x158, 0x52020000, {0x0, 0x6802000000000000}, [@common=@unspec=@limit={{0x48}, {0x10000, 0x80000000, 0x8, 0x9, 0x40, 0x5, 0x4}}, @common=@unspec=@state={{0x28}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz0\x00', 0x7, 0x2, {0xfffffffffffffffa}}}}, {{@ipv6={@local, @empty, [], [], 'veth1_to_hsr\x00', 'dummy0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0xffffffff, 'snmp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x398) 589.840401ms ago: executing program 5 (id=15241): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0xdc, &(0x7f0000000000), &(0x7f0000000240)=0x4) 551.227982ms ago: executing program 4 (id=15242): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x13, 0x0, &(0x7f0000000580)="072731a0de207a5d0a00000000daf6ec141d8a", 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 537.122183ms ago: executing program 3 (id=15243): r0 = socket(0xa, 0x5, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x29, 0x0, &(0x7f0000000040)=0x29) 464.166147ms ago: executing program 5 (id=15244): r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0) write$vga_arbiter(r0, &(0x7f0000000100)=@other={'trylock', ' ', 'none'}, 0xd) 444.185468ms ago: executing program 3 (id=15245): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x5}, [@printk={@u, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffc}, {0x85, 0x0, 0x0, 0x73}}, @call={0x85, 0x0, 0x0, 0xd0}]}, &(0x7f0000000080)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) 362.092972ms ago: executing program 4 (id=15246): mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000004c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="9feb130018"], 0x0, 0x1a, 0x0, 0x8, 0x20005}, 0x28) 361.956192ms ago: executing program 5 (id=15247): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, &(0x7f0000001900)={0x2, {0xc, 0x117, 0x5, 0x101, 0x200}}) 328.714304ms ago: executing program 3 (id=15248): r0 = socket$netlink(0x10, 0x3, 0x4) writev(r0, &(0x7f0000000080)=[{&(0x7f00000000c0)="480000001500257f09004b01fcfc8c860a881300f217e0060000e3323909b8f8896e33719fe3bb036e0bc90900000000000000000000ffff5bf1090000d0bd5e000000006203005b", 0x48}], 0x1) 305.507625ms ago: executing program 4 (id=15249): r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x3, 0x2) ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000001200)={0x2, @win={{0x4, 0x4, 0x33524742, 0x2}, 0x2, 0xfffffe84, 0x0, 0x5, 0x0}}) 213.0317ms ago: executing program 3 (id=15250): r0 = syz_open_dev$usbmon(&(0x7f0000000000), 0x6, 0x181a00) read$usbmon(r0, 0x0, 0x0) 211.87693ms ago: executing program 0 (id=15251): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt(r0, 0x84, 0x82, 0x0, 0x0) 142.116623ms ago: executing program 4 (id=15252): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0) 141.971923ms ago: executing program 5 (id=15253): socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0xf5) 94.658836ms ago: executing program 0 (id=15254): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newnexthop={0x28, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0x4}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}, @NHA_FDB={0x4}]}, 0x28}}, 0x0) 68.342767ms ago: executing program 5 (id=15255): r0 = socket$xdp(0x2c, 0x3, 0x0) bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x20}, 0x60) 658.52µs ago: executing program 3 (id=15256): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f00000002c0)={'ip6_vti0\x00', &(0x7f0000000140)=@ethtool_cmd={0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffff7fc, 0x0, 0x0, 0x0, 0x47, [0xfffffffc, 0x80]}}) 0s ago: executing program 0 (id=15257): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x1, 0x0, &(0x7f0000000180)) kernel console output (not intermixed with test programs): _loop+0x40/0x90 [ 1422.944353][ T5769] ? clear_bhb_loop+0x40/0x90 [ 1422.944370][ T5769] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1422.944388][ T5769] RIP: 0033:0x7fc52f99d9d7 [ 1422.944406][ T5769] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1422.944419][ T5769] RSP: 002b:00007ffd0347eb28 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1422.944440][ T5769] RAX: 0000000000000000 RBX: 00007fc52fa32050 RCX: 00007fc52f99d9d7 [ 1422.944451][ T5769] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd0347ebe0 [ 1422.944462][ T5769] RBP: 00007ffd0347ebe0 R08: 00007ffd0347fbe0 R09: 00000000ffffffff [ 1422.944472][ T5769] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd0347fc70 [ 1422.944483][ T5769] R13: 00007fc52fa32050 R14: 000000000014a776 R15: 00007ffd0347fcb0 [ 1422.944510][ T5769] [ 1422.944572][ C0] vkms_vblank_simulate: vblank timer overrun [ 1423.062864][ C0] vkms_vblank_simulate: vblank timer overrun [ 1423.336316][ T6421] lo speed is unknown, defaulting to 1000 [ 1423.488986][ T6445] loop3: detected capacity change from 0 to 64 [ 1423.561923][ T6445] hfs: keylen 40 too large [ 1423.581052][ T6453] netlink: 44 bytes leftover after parsing attributes in process `syz.4.13682'. [ 1423.591161][ T6453] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1423.883434][ T6417] loop0: detected capacity change from 0 to 32768 [ 1423.908211][ T6417] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop0 scanned by syz.0.13681 (6417) [ 1423.947196][ T6417] BTRFS info (device loop0): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1423.971837][ T6417] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 1423.984670][ T6417] BTRFS info (device loop0): using free space tree [ 1424.018123][ T6472] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1424.123213][T30868] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1424.136841][ T6417] BTRFS info (device loop0): enabling ssd optimizations [ 1424.157837][ T6417] BTRFS info (device loop0): auto enabling async discard [ 1424.165567][ T6494] netlink: 'syz.3.13689': attribute type 13 has an invalid length. [ 1424.262691][ T6494] gretap0: refused to change device tx_queue_len [ 1424.269522][ T6494] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1424.409463][ T5775] BTRFS info (device loop0): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1424.640514][ T6520] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13695'. [ 1424.694403][ T5753] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 10 /dev/loop0 scanned by udevd (5753) [ 1425.148649][ T6551] netlink: 'syz.4.13704': attribute type 13 has an invalid length. [ 1425.170055][ T6551] lo: left promiscuous mode [ 1425.261343][ T6551] gretap0: refused to change device tx_queue_len [ 1425.277574][ T6551] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1425.394828][T17267] usb 4-1: new full-speed USB device number 73 using dummy_hcd [ 1425.438758][ T6562] comedi comedi0: Minor 254 is invalid! [ 1425.610127][T17267] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1425.630479][T17267] usb 4-1: not running at top speed; connect to a high speed hub [ 1425.648513][T17267] usb 4-1: config 4 has an invalid interface number: 175 but max is 0 [ 1425.657295][T17267] usb 4-1: config 4 has no interface number 0 [ 1425.666743][T17267] usb 4-1: New USB device found, idVendor=0403, idProduct=da73, bcdDevice=dc.17 [ 1425.694811][T17267] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1425.703089][T17267] usb 4-1: Product: syz [ 1425.715127][T17267] usb 4-1: Manufacturer: syz [ 1425.719785][T17267] usb 4-1: SerialNumber: syz [ 1425.779264][ T5852] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 1425.974696][T17267] usb 4-1: NDI device with a latency value of 1 [ 1425.983145][ T5852] usb 5-1: Using ep0 maxpacket: 8 [ 1425.991484][T17267] ftdi_sio 4-1:4.175: FTDI USB Serial Device converter detected [ 1426.005646][ T5852] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1426.026097][T17267] ftdi_sio ttyUSB0: unknown device type: 0xdc17 [ 1426.039353][T17267] usb 4-1: USB disconnect, device number 73 [ 1426.045635][ T5852] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1426.057471][T17267] ftdi_sio 4-1:4.175: device disconnected [ 1426.067370][ T5852] usb 5-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1426.096293][ T5852] usb 5-1: config 0 interface 0 has no altsetting 0 [ 1426.122904][ T5852] usb 5-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 1426.132300][ T5852] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1426.140367][ T5852] usb 5-1: Product: syz [ 1426.144811][ T5852] usb 5-1: Manufacturer: syz [ 1426.149435][ T5852] usb 5-1: SerialNumber: syz [ 1426.158228][ T5852] usb 5-1: config 0 descriptor?? [ 1426.177194][ T5852] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 found [ 1426.307000][ T6618] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1426.410086][ T5852] snd_usb_toneport 5-1:0.0: cannot get proper max packet size [ 1426.426844][ T5852] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 now disconnected [ 1426.438212][ T6659] netlink: 'syz.0.13718': attribute type 13 has an invalid length. [ 1426.455640][ T5852] snd_usb_toneport: probe of 5-1:0.0 failed with error -22 [ 1426.464528][ T6659] lo: left promiscuous mode [ 1426.540420][ T6659] gretap0: refused to change device tx_queue_len [ 1426.547167][ T6659] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 1426.564275][T13436] lo speed is unknown, defaulting to 1000 [ 1426.653021][ T5852] usb 5-1: USB disconnect, device number 15 [ 1426.935143][ T6696] MTD: Attempt to mount non-MTD device "./file0" [ 1426.941715][ T6696] ./file0: Can't open blockdev [ 1427.078516][ T6708] netlink: 5 bytes leftover after parsing attributes in process `syz.3.13733'. [ 1427.954766][ T6722] set_capacity_and_notify: 1 callbacks suppressed [ 1427.954780][ T6722] loop1: detected capacity change from 0 to 32768 [ 1428.551870][ T6802] ieee802154 phy1 wpan1: encryption failed: -22 [ 1428.831424][ T6817] loop0: detected capacity change from 0 to 1024 [ 1429.419544][ T6864] A link change request failed with some changes committed already. Interface ip6gretap0 may have been left with an inconsistent configuration, please check. [ 1429.438445][ T6865] loop0: detected capacity change from 0 to 16 [ 1429.450060][ T6865] erofs: (device loop0): mounted with root inode @ nid 36. [ 1429.566170][ T6865] erofs: (device loop0): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36 [ 1429.631955][ T6865] erofs: (device loop0): z_erofs_fill_inode_lazy: big pcluster head1/2 of compact indexes should be consistent for nid 36 [ 1429.661813][ T6865] erofs: (device loop0): z_erofs_read_folio: read error -117 @ 72 of nid 36 [ 1429.673950][ T6882] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13789'. [ 1429.712430][ T6882] (unnamed net_device) (uninitialized): option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0) [ 1429.748745][ T6885] loop1: detected capacity change from 0 to 2048 [ 1429.770216][ T6885] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1429.838935][T23475] udevd[23475]: incorrect nilfs2 checksum on /dev/loop1 [ 1429.880491][ T6896] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1429.921722][ T6885] NILFS error (device loop1): nilfs_lookup: deleted inode referenced: 12 [ 1429.970575][ T6885] Remounting filesystem read-only [ 1430.338077][ T28] kauditd_printk_skb: 237 callbacks suppressed [ 1430.338092][ T28] audit: type=1326 audit(1774432238.055:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.404312][ T28] audit: type=1326 audit(1774432238.055:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.459009][ T28] audit: type=1326 audit(1774432238.055:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.503792][ T28] audit: type=1326 audit(1774432238.055:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.526737][ T28] audit: type=1326 audit(1774432238.055:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.553173][ T28] audit: type=1326 audit(1774432238.055:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.556800][ T6932] loop4: detected capacity change from 0 to 4096 [ 1430.598380][ T28] audit: type=1326 audit(1774432238.055:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.639266][ T6932] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512). [ 1430.686346][ T28] audit: type=1326 audit(1774432238.055:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.708811][ C0] vkms_vblank_simulate: vblank timer overrun [ 1430.734393][ T6950] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 1430.761683][ T28] audit: type=1326 audit(1774432238.055:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz.1.13803" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1430.784036][ C0] vkms_vblank_simulate: vblank timer overrun [ 1430.903746][ T6954] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13809'. [ 1431.115658][ T6969] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.13813'. [ 1431.292170][ T6982] netlink: 'syz.1.13818': attribute type 15 has an invalid length. [ 1431.423247][ T6993] loop3: detected capacity change from 0 to 512 [ 1431.471520][ T6993] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 1431.481127][ T6993] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1431.488174][ C1] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 1431.503667][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 1431.510410][ T28] audit: type=1326 audit(1774432239.140:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7001 comm="syz.0.13825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f17f759c799 code=0x7ffc0000 [ 1431.539500][ T6993] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.13822: Failed to acquire dquot type 1 [ 1431.594637][ T6993] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.13822: bg 0: block 40: padding at end of block bitmap is not set [ 1431.629852][ T6993] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6651: Corrupt filesystem [ 1431.648684][ T6993] EXT4-fs (loop3): 1 truncate cleaned up [ 1431.655697][ T6993] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1431.725982][ T6993] EXT4-fs error (device loop3): ext4_get_link:104: inode #16: comm syz.3.13822: bad symlink. [ 1431.820727][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1431.822521][ T7018] loop1: detected capacity change from 0 to 256 [ 1432.096795][ T7038] x_tables: unsorted underflow at hook 4 [ 1432.157515][ T7044] netlink: 388 bytes leftover after parsing attributes in process `syz.0.13836'. [ 1432.326836][ T7058] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13840'. [ 1432.411088][ T7053] loop4: detected capacity change from 0 to 8192 [ 1432.494008][ T7053] loop4: p1 < > p4 < > [ 1432.711003][ T7081] bond5: entered allmulticast mode [ 1432.938820][ T5753] udevd[5753]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory [ 1432.946650][ T5756] udevd[5756]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory [ 1433.151852][ T7153] xt_ipcomp: unknown flags 12 [ 1433.355579][ T7166] x_tables: unsorted entry at hook 2 [ 1433.617443][ T7187] loop4: detected capacity change from 0 to 256 [ 1433.649370][ T7187] exFAT-fs (loop4): failed to load upcase table (idx : 0x00012c80, chksum : 0x8ff561f5, utbl_chksum : 0xe619d30d) [ 1433.945484][ T7211] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13876'. [ 1434.722220][ T7261] xt_recent: hitcount (4294967293) is larger than allowed maximum (255) [ 1434.779887][ T7226] loop1: detected capacity change from 0 to 32768 [ 1434.827992][ T7226] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 1434.879076][ T7226] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 1434.956463][ T7226] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 1435.017024][ T965] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 1435.023984][ T965] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 1435.173647][ T965] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 139ms [ 1435.196656][ T965] gfs2: fsid=syz:syz.0: jid=0: Done [ 1435.210188][ T7226] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 1435.624982][ T7226] gfs2: fsid=syz:syz.0: found 1 quota changes [ 1435.691246][ T7325] loop0: detected capacity change from 0 to 512 [ 1435.740665][ T7325] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.13910: Invalid inode bitmap blk 4 in block_group 0 [ 1435.767377][ T7325] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1435.815367][ T7226] gfs2: fsid=syz:syz.0: inum=0 error=-28, nblocks=1, full=1 fail_pt=0 [ 1435.831195][ T7226] gfs2: fsid=syz:syz.0: rgrp 18 has an error, marking it readonly until umount [ 1435.857787][ T7226] gfs2: fsid=syz:syz.0: umount on all nodes and run fsck.gfs2 to fix the error [ 1435.871854][ T7226] gfs2: fsid=syz:syz.0: R: n:18 f:80000000 b:4294967295/4294967295 i:4294967295 q:0 r:1 e:0 [ 1435.882164][ T7226] gfs2: fsid=syz:syz.0: L: f:00 b:4294967295 i:4294967295 [ 1435.927026][ T5775] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1436.125726][ T5766] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 1436.154956][ T5766] CPU: 0 PID: 5766 Comm: syz-executor Not tainted syzkaller #0 [ 1436.162558][ T5766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1436.172617][ T5766] Call Trace: [ 1436.175891][ T5766] [ 1436.178816][ T5766] dump_stack_lvl+0x18c/0x250 [ 1436.183498][ T5766] ? show_regs_print_info+0x20/0x20 [ 1436.188692][ T5766] ? load_image+0x400/0x400 [ 1436.193283][ T5766] ? do_raw_spin_unlock+0x121/0x230 [ 1436.198489][ T5766] gfs2_assert_warn_i+0x193/0x2c0 [ 1436.203566][ T5766] gfs2_qd_dispose+0x4aa/0x5b0 [ 1436.208353][ T5766] gfs2_quota_cleanup+0x410/0x720 [ 1436.213471][ T5766] ? spin_lock_bucket+0x150/0x150 [ 1436.218524][ T5766] ? __might_sleep+0xe0/0xe0 [ 1436.223112][ T5766] ? gfs2_ail_empty_tr+0x2f0/0x2f0 [ 1436.228223][ T5766] ? gfs2_quota_sync+0x591/0x5a0 [ 1436.233161][ T5766] gfs2_make_fs_ro+0x2aa/0x320 [ 1436.237932][ T5766] ? gfs2_dinode_out+0xb10/0xb10 [ 1436.242873][ T5766] ? __lock_acquire+0x7d40/0x7d40 [ 1436.248013][ T5766] ? __rwlock_init+0x150/0x150 [ 1436.252775][ T5766] ? do_raw_spin_unlock+0x121/0x230 [ 1436.258063][ T5766] gfs2_put_super+0x224/0x930 [ 1436.262804][ T5766] ? gfs2_evict_inode+0x1350/0x1350 [ 1436.268011][ T5766] generic_shutdown_super+0x134/0x2b0 [ 1436.273377][ T5766] kill_block_super+0x44/0x90 [ 1436.278048][ T5766] deactivate_locked_super+0x97/0x100 [ 1436.283412][ T5766] cleanup_mnt+0x43b/0x4d0 [ 1436.287829][ T5766] task_work_run+0x1d4/0x260 [ 1436.292427][ T5766] ? task_work_cancel+0x220/0x220 [ 1436.297452][ T5766] ? exit_to_user_mode_loop+0x3b/0x110 [ 1436.302953][ T5766] exit_to_user_mode_loop+0xe6/0x110 [ 1436.308235][ T5766] exit_to_user_mode_prepare+0xee/0x180 [ 1436.313775][ T5766] syscall_exit_to_user_mode+0x1a/0x50 [ 1436.319227][ T5766] do_syscall_64+0x61/0xa0 [ 1436.323640][ T5766] ? clear_bhb_loop+0x40/0x90 [ 1436.328309][ T5766] ? clear_bhb_loop+0x40/0x90 [ 1436.332989][ T5766] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1436.338881][ T5766] RIP: 0033:0x7fe61bb9d9d7 [ 1436.343299][ T5766] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1436.362903][ T5766] RSP: 002b:00007ffc96692458 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1436.371324][ T5766] RAX: 0000000000000000 RBX: 00007fe61bc32050 RCX: 00007fe61bb9d9d7 [ 1436.379288][ T5766] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc96692510 [ 1436.387252][ T5766] RBP: 00007ffc96692510 R08: 00007ffc96693510 R09: 00000000ffffffff [ 1436.395229][ T5766] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc966935a0 [ 1436.403192][ T5766] R13: 00007fe61bc32050 R14: 000000000014d811 R15: 00007ffc966935e0 [ 1436.411175][ T5766] [ 1436.452033][ T7357] loop3: detected capacity change from 0 to 2048 [ 1436.529432][ T7357] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1436.602076][ T7357] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1436.663317][ T7370] loop4: detected capacity change from 0 to 128 [ 1437.142029][ T7390] loop0: detected capacity change from 0 to 8192 [ 1437.229728][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1437.229742][ T28] audit: type=1326 audit(1774432244.510:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.1.13932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1437.240412][ T7390] loop0: p1 < > p4 < > [ 1437.317121][ T28] audit: type=1326 audit(1774432244.510:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.1.13932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1437.404816][ T28] audit: type=1326 audit(1774432244.510:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.1.13932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1437.458230][ T7410] loop3: detected capacity change from 0 to 1024 [ 1437.521187][ T28] audit: type=1326 audit(1774432244.510:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.1.13932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1437.577291][ T28] audit: type=1326 audit(1774432244.510:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7401 comm="syz.1.13932" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1437.624910][ T49] hfsplus: b-tree write err: -5, ino 25 [ 1437.630777][ T49] hfsplus: b-tree write err: -5, ino 4 [ 1437.715816][ T49] hfsplus: b-tree write err: -5, ino 2 [ 1437.851718][ T7425] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13936'. [ 1437.894939][ T7425] netlink: 36 bytes leftover after parsing attributes in process `syz.3.13936'. [ 1437.997857][ T5753] udevd[5753]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory [ 1438.012698][T23475] udevd[23475]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory [ 1438.027301][ T7435] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1438.234218][ T7391] loop4: detected capacity change from 0 to 32768 [ 1438.262884][ T7391] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 1438.294743][ T7391] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 1438.350423][ T7452] xt_recent: hitcount (4294967293) is larger than allowed maximum (255) [ 1438.412540][ T7391] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 1438.459819][T17267] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 1438.477590][T17267] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 1438.611765][T17267] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 125ms [ 1438.630775][T17267] gfs2: fsid=syz:syz.0: jid=0: Done [ 1438.636406][ T7391] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 1438.794084][ T7480] loop3: detected capacity change from 0 to 1024 [ 1438.868530][ T7480] hfsplus: cannot replace xattr [ 1438.961710][ T7391] gfs2: fsid=syz:syz.0: found 1 quota changes [ 1439.100498][ T7391] gfs2: fsid=syz:syz.0: inum=0 error=-28, nblocks=1, full=1 fail_pt=0 [ 1439.117243][ T7391] gfs2: fsid=syz:syz.0: rgrp 18 has an error, marking it readonly until umount [ 1439.135284][ T7391] gfs2: fsid=syz:syz.0: umount on all nodes and run fsck.gfs2 to fix the error [ 1439.151324][ T7493] vim2m vim2m.0: Fourcc format (0x47524247) invalid. [ 1439.153587][ T7391] gfs2: fsid=syz:syz.0: R: n:18 f:80000000 b:4294967295/4294967295 i:4294967295 q:0 r:1 e:0 [ 1439.168493][ T7391] gfs2: fsid=syz:syz.0: L: f:00 b:4294967295 i:4294967295 [ 1439.188864][ T7485] loop1: detected capacity change from 0 to 4096 [ 1439.330488][T30868] gfs2: fsid=syz:syz.0: warning: assertion "!qd->qd_change" failed at function = gfs2_qd_dispose, file = fs/gfs2/quota.c, line = 129 [ 1439.388411][T30868] CPU: 1 PID: 30868 Comm: syz-executor Not tainted syzkaller #0 [ 1439.396294][T30868] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1439.406721][T30868] Call Trace: [ 1439.410026][T30868] [ 1439.412972][T30868] dump_stack_lvl+0x18c/0x250 [ 1439.417764][T30868] ? show_regs_print_info+0x20/0x20 [ 1439.423427][T30868] ? load_image+0x400/0x400 [ 1439.427954][T30868] ? do_raw_spin_unlock+0x121/0x230 [ 1439.433264][T30868] gfs2_assert_warn_i+0x193/0x2c0 [ 1439.438358][T30868] gfs2_qd_dispose+0x4aa/0x5b0 [ 1439.443237][T30868] gfs2_quota_cleanup+0x410/0x720 [ 1439.448283][T30868] ? spin_lock_bucket+0x150/0x150 [ 1439.453327][T30868] ? __might_sleep+0xe0/0xe0 [ 1439.458033][T30868] ? gfs2_ail_empty_tr+0x2f0/0x2f0 [ 1439.463173][T30868] ? gfs2_quota_sync+0x591/0x5a0 [ 1439.468159][T30868] gfs2_make_fs_ro+0x2aa/0x320 [ 1439.472978][T30868] ? gfs2_dinode_out+0xb10/0xb10 [ 1439.478034][T30868] ? __lock_acquire+0x7d40/0x7d40 [ 1439.483091][T30868] ? __rwlock_init+0x150/0x150 [ 1439.487897][T30868] ? do_raw_spin_unlock+0x121/0x230 [ 1439.493120][T30868] gfs2_put_super+0x224/0x930 [ 1439.497826][T30868] ? gfs2_evict_inode+0x1350/0x1350 [ 1439.503006][ T7471] loop0: detected capacity change from 0 to 32768 [ 1439.503029][T30868] generic_shutdown_super+0x134/0x2b0 [ 1439.514822][T30868] kill_block_super+0x44/0x90 [ 1439.519589][T30868] deactivate_locked_super+0x97/0x100 [ 1439.525165][T30868] cleanup_mnt+0x43b/0x4d0 [ 1439.529595][T30868] task_work_run+0x1d4/0x260 [ 1439.534199][T30868] ? task_work_cancel+0x220/0x220 [ 1439.539248][T30868] ? exit_to_user_mode_loop+0x3b/0x110 [ 1439.544812][T30868] exit_to_user_mode_loop+0xe6/0x110 [ 1439.550099][T30868] exit_to_user_mode_prepare+0xee/0x180 [ 1439.555642][T30868] syscall_exit_to_user_mode+0x1a/0x50 [ 1439.561140][T30868] do_syscall_64+0x61/0xa0 [ 1439.565559][T30868] ? clear_bhb_loop+0x40/0x90 [ 1439.570232][T30868] ? clear_bhb_loop+0x40/0x90 [ 1439.574913][T30868] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1439.580889][T30868] RIP: 0033:0x7fa22939d9d7 [ 1439.585402][T30868] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1439.605435][T30868] RSP: 002b:00007ffe0b4c3308 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1439.613955][T30868] RAX: 0000000000000000 RBX: 00007fa229432050 RCX: 00007fa22939d9d7 [ 1439.621944][T30868] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe0b4c33c0 [ 1439.629946][T30868] RBP: 00007ffe0b4c33c0 R08: 00007ffe0b4c43c0 R09: 00000000ffffffff [ 1439.637933][T30868] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe0b4c4450 [ 1439.645902][T30868] R13: 00007fa229432050 R14: 000000000014e401 R15: 00007ffe0b4c4490 [ 1439.653921][T30868] [ 1439.718849][ T7471] sysfs: cannot create duplicate filename '/fs/gfs2/syz:syz' [ 1439.729202][ T7471] CPU: 1 PID: 7471 Comm: syz.0.13950 Not tainted syzkaller #0 [ 1439.737039][ T7471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1439.747123][ T7471] Call Trace: [ 1439.750421][ T7471] [ 1439.753365][ T7471] dump_stack_lvl+0x18c/0x250 [ 1439.758086][ T7471] ? show_regs_print_info+0x20/0x20 [ 1439.763414][ T7471] ? load_image+0x400/0x400 [ 1439.767971][ T7471] sysfs_create_dir_ns+0x26e/0x2a0 [ 1439.773121][ T7471] ? sysfs_warn_dup+0xa0/0xa0 [ 1439.777838][ T7471] ? do_raw_spin_unlock+0x121/0x230 [ 1439.783089][ T7471] kobject_add_internal+0x61c/0xcc0 [ 1439.788355][ T7471] kobject_init_and_add+0x12c/0x1a0 [ 1439.793699][ T7471] ? lockdep_softirqs_off+0x430/0x430 [ 1439.799202][ T7471] ? kobject_add+0x240/0x240 [ 1439.803865][ T7471] ? __init_swait_queue_head+0xa9/0x150 [ 1439.809457][ T7471] gfs2_sys_fs_add+0x253/0x4b0 [ 1439.814261][ T7471] ? gfs2_recover_set+0x250/0x250 [ 1439.819356][ T7471] ? apply_workqueue_attrs+0x180/0x180 [ 1439.824861][ T7471] gfs2_fill_super+0x12b6/0x1f30 [ 1439.829847][ T7471] ? __might_sleep+0xe0/0xe0 [ 1439.834491][ T7471] ? gfs2_reconfigure+0xb10/0xb10 [ 1439.839671][ T7471] ? setup_bdev_super+0x56b/0x660 [ 1439.844732][ T7471] get_tree_bdev+0x3f3/0x520 [ 1439.849368][ T7471] ? end_current_label_crit_section+0x170/0x170 [ 1439.855741][ T7471] ? gfs2_reconfigure+0xb10/0xb10 [ 1439.860982][ T7471] ? setup_bdev_super+0x660/0x660 [ 1439.866061][ T7471] gfs2_get_tree+0x51/0x1e0 [ 1439.870617][ T7471] vfs_get_tree+0x8c/0x280 [ 1439.875153][ T7471] do_new_mount+0x24b/0xa40 [ 1439.879700][ T7471] __se_sys_mount+0x2e7/0x3d0 [ 1439.884412][ T7471] ? __x64_sys_mount+0xc0/0xc0 [ 1439.889299][ T7471] ? lockdep_hardirqs_on+0x98/0x150 [ 1439.894530][ T7471] ? __x64_sys_mount+0x20/0xc0 [ 1439.899337][ T7471] do_syscall_64+0x55/0xa0 [ 1439.903795][ T7471] ? clear_bhb_loop+0x40/0x90 [ 1439.908508][ T7471] ? clear_bhb_loop+0x40/0x90 [ 1439.913218][ T7471] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1439.919193][ T7471] RIP: 0033:0x7f17f759da0a [ 1439.923634][ T7471] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1439.943245][ T7471] RSP: 002b:00007f17f8459e58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1439.943272][ T7471] RAX: ffffffffffffffda RBX: 00007f17f8459ee0 RCX: 00007f17f759da0a [ 1439.943285][ T7471] RDX: 0000200000000400 RSI: 0000200000012500 RDI: 00007f17f8459ea0 [ 1439.943297][ T7471] RBP: 0000200000000400 R08: 00007f17f8459ee0 R09: 0000000000210401 [ 1439.943310][ T7471] R10: 0000000000210401 R11: 0000000000000246 R12: 0000200000012500 [ 1439.943321][ T7471] R13: 00007f17f8459ea0 R14: 000000000001263f R15: 0000200000000000 [ 1439.943343][ T7471] [ 1439.998116][ T7471] kobject: kobject_add_internal failed for syz:syz with -EEXIST, don't try to register things with the same name in the same directory. [ 1440.050238][ T7471] gfs2: fsid=syz:syz: error -17 adding sysfs files [ 1440.793736][ T7563] netlink: 40 bytes leftover after parsing attributes in process `syz.1.13976'. [ 1440.884398][ T7569] netlink: 388 bytes leftover after parsing attributes in process `syz.3.13978'. [ 1440.938846][ T7573] netlink: 8 bytes leftover after parsing attributes in process `syz.1.13980'. [ 1441.072489][ T28] audit: type=1326 audit(1774432248.102:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7582 comm="syz.1.13984" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x0 [ 1441.094328][ C0] vkms_vblank_simulate: vblank timer overrun [ 1441.280400][ T7596] loop3: detected capacity change from 0 to 256 [ 1441.314647][ T7596] exfat: Deprecated parameter 'namecase' [ 1441.320379][ T7596] exfat: Deprecated parameter 'utf8' [ 1441.392589][ T7596] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xbe5fd08b, utbl_chksum : 0xe619d30d) [ 1441.405237][ T7607] netlink: 12 bytes leftover after parsing attributes in process `syz.1.13991'. [ 1441.427167][ T7607] netlink: 60 bytes leftover after parsing attributes in process `syz.1.13991'. [ 1441.513062][ T7596] fuse: Bad value for 'fd' [ 1441.612077][ T7616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.13994'. [ 1441.731960][ T7623] delete_channel: no stack [ 1441.788820][ T7622] loop4: detected capacity change from 0 to 4096 [ 1441.823422][ T7632] Cannot find del_set index 2 as target [ 1441.834002][ T7630] loop0: detected capacity change from 0 to 1024 [ 1441.849826][ T7622] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1441.888506][ T7622] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1441.918513][ T7622] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1441.971696][ T7622] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1442.053719][ T7622] ntfs: volume version 3.1. [ 1442.543553][ T7666] loop0: detected capacity change from 0 to 1024 [ 1442.589893][ T7672] xt_bpf: check failed: parse error [ 1442.729024][ T7666] hfsplus: cannot replace xattr [ 1442.793626][ T7640] loop1: detected capacity change from 0 to 32768 [ 1442.813361][ T7640] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.14001 (7640) [ 1442.877792][ T7640] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1442.896741][ T7640] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1442.927107][ T7640] BTRFS info (device loop1): using free space tree [ 1443.024837][T13436] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 1443.041376][ T7640] BTRFS info (device loop1): enabling ssd optimizations [ 1443.070812][ T7640] BTRFS info (device loop1): auto enabling async discard [ 1443.207905][ T5766] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1443.226684][T13436] usb 5-1: Using ep0 maxpacket: 8 [ 1443.250369][T13436] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1443.274615][T13436] usb 5-1: config 4 has an invalid interface number: 147 but max is 0 [ 1443.291280][T13436] usb 5-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1443.319494][T13436] usb 5-1: config 4 has no interface number 0 [ 1443.335795][T13436] usb 5-1: New USB device found, idVendor=04f2, idProduct=b746, bcdDevice=8e.6e [ 1443.358092][T13436] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1443.378403][T13436] usb 5-1: Product: syz [ 1443.388198][T13436] usb 5-1: Manufacturer: syz [ 1443.404366][T13436] usb 5-1: SerialNumber: syz [ 1443.720662][T13436] uvcvideo 5-1:4.147: Found multiple Units with ID 6 [ 1443.727458][T13436] usb 5-1: Found UVC 0.02 device syz (04f2:b746) [ 1443.757061][T13436] usb 5-1: No valid video chain found. [ 1443.792726][T13436] usb 5-1: USB disconnect, device number 16 [ 1444.009965][ T7769] netlink: 'syz.3.14029': attribute type 3 has an invalid length. [ 1444.372782][ T7798] netlink: 'syz.0.14038': attribute type 2 has an invalid length. [ 1444.380675][ T7798] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.14038'. [ 1444.642816][ T7818] netlink: 5 bytes leftover after parsing attributes in process `syz.1.14045'. [ 1444.700834][ T7824] loop0: detected capacity change from 0 to 128 [ 1444.888292][ T7838] loop3: detected capacity change from 0 to 256 [ 1445.163743][ T7859] MTD: Attempt to mount non-MTD device "./file0" [ 1445.193916][ T7859] ./file0: Can't open blockdev [ 1445.224747][ T7861] loop4: detected capacity change from 0 to 1024 [ 1445.688436][ T7894] ieee802154 phy1 wpan1: encryption failed: -22 [ 1445.721780][ T7898] netlink: 'syz.1.14067': attribute type 10 has an invalid length. [ 1446.174261][ T7882] loop4: detected capacity change from 0 to 40427 [ 1446.177548][ T7920] loop1: detected capacity change from 0 to 4096 [ 1446.192324][ T7882] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 1446.219926][ T7882] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 1446.221079][ T7920] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512). [ 1446.244978][ T7882] F2FS-fs (loop4): invalid crc value [ 1446.254442][ T7882] F2FS-fs (loop4): Found nat_bits in checkpoint [ 1446.297696][ T7920] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 1446.305710][ T7882] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 1446.312788][ T7882] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 1446.360513][ T7920] ntfs3: loop1: ino=5, "/" directory corrupted [ 1446.601139][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 1446.601207][ T28] audit: type=1326 audit(1774432253.265:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.1.14078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1446.692950][ T28] audit: type=1326 audit(1774432253.265:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.1.14078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1446.779706][ T7949] loop4: detected capacity change from 0 to 256 [ 1446.787417][ T28] audit: type=1326 audit(1774432253.330:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.1.14078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=284 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1446.833281][ T28] audit: type=1326 audit(1774432253.330:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.1.14078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1446.909741][ T7949] FAT-fs (loop4): Directory bread(block 64) failed [ 1446.917648][ T28] audit: type=1326 audit(1774432253.330:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7939 comm="syz.1.14078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1446.953221][ T7949] FAT-fs (loop4): Directory bread(block 65) failed [ 1446.979065][ T7949] FAT-fs (loop4): Directory bread(block 66) failed [ 1446.985659][ T7949] FAT-fs (loop4): Directory bread(block 67) failed [ 1447.007456][ T7949] FAT-fs (loop4): Directory bread(block 68) failed [ 1447.014684][ T7949] FAT-fs (loop4): Directory bread(block 69) failed [ 1447.022913][ T7949] FAT-fs (loop4): Directory bread(block 70) failed [ 1447.029615][ T7961] netlink: 28 bytes leftover after parsing attributes in process `syz.0.14084'. [ 1447.039696][ T7949] FAT-fs (loop4): Directory bread(block 71) failed [ 1447.047763][ T7949] FAT-fs (loop4): Directory bread(block 72) failed [ 1447.056191][ T7961] netlink: 28 bytes leftover after parsing attributes in process `syz.0.14084'. [ 1447.066499][ T7949] FAT-fs (loop4): Directory bread(block 73) failed [ 1447.865202][ T7976] loop3: detected capacity change from 0 to 32768 [ 1448.180833][ T8029] netlink: 'syz.3.14104': attribute type 11 has an invalid length. [ 1448.347555][ T8042] dlm: non-version read from control device 144 [ 1448.389341][ T8035] loop1: detected capacity change from 0 to 4096 [ 1448.430988][ T8035] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1448.462596][ T8035] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1448.503575][ T8035] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1448.546799][ T8035] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1448.574047][ T8035] ntfs: (device loop1): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1448.604308][ T8035] ntfs: volume version 3.1. [ 1449.297734][ T8063] loop0: detected capacity change from 0 to 32768 [ 1449.335684][ T8063] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.14115 (8063) [ 1449.372756][ T8063] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1449.391883][ T8063] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1449.408219][ T8063] BTRFS info (device loop0): using free space tree [ 1449.502464][ T8063] BTRFS info (device loop0): enabling ssd optimizations [ 1449.512395][ T8063] BTRFS info (device loop0): auto enabling async discard [ 1449.613925][ T8118] loop3: detected capacity change from 0 to 4096 [ 1449.674050][ T8118] ntfs: volume version 3.1. [ 1449.689824][ T5775] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1449.700368][T17267] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 1449.893239][ T8130] trusted_key: encrypted_key: master key parameter is missing [ 1449.932978][T17267] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1449.942932][T17267] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1449.960634][T17267] usb 5-1: Product: syz [ 1449.987492][T17267] usb 5-1: Manufacturer: syz [ 1449.992154][T17267] usb 5-1: SerialNumber: syz [ 1450.050458][T17267] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1450.103146][ T1186] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1450.139779][ T5753] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop0 scanned by udevd (5753) [ 1450.584051][ T8157] loop3: detected capacity change from 0 to 4096 [ 1450.595355][ T8] usb 5-1: USB disconnect, device number 17 [ 1451.265656][ T1186] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 1451.272757][ T1186] ath9k_htc: Failed to initialize the device [ 1451.309581][ T8] usb 5-1: ath9k_htc: USB layer deinitialized [ 1451.505155][ T8221] loop0: detected capacity change from 0 to 64 [ 1451.613676][ T8220] loop3: detected capacity change from 0 to 4096 [ 1451.653482][ T8220] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 1451.703484][ T8220] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 1452.398866][ T5802] usb 2-1: new high-speed USB device number 67 using dummy_hcd [ 1452.581286][ T965] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 1452.624428][ T5802] usb 2-1: Using ep0 maxpacket: 16 [ 1452.671553][ T5802] usb 2-1: config 0 has an invalid interface number: 104 but max is 1 [ 1452.691117][ T5802] usb 2-1: config 0 has an invalid interface number: 104 but max is 1 [ 1452.704090][ T5802] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1452.708419][ T8315] netlink: 28 bytes leftover after parsing attributes in process `syz.0.14179'. [ 1452.713914][ T5802] usb 2-1: config 0 has no interface number 0 [ 1452.729939][ T5802] usb 2-1: config 0 interface 104 altsetting 0 endpoint 0x8 has invalid wMaxPacketSize 0 [ 1452.757835][ T5802] usb 2-1: config 0 interface 104 has no altsetting 1 [ 1452.767540][ T5802] usb 2-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00 [ 1452.784575][ T5802] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1452.796530][ T5802] usb 2-1: Product: syz [ 1452.801123][ T5802] usb 2-1: Manufacturer: syz [ 1452.806270][ T5802] usb 2-1: SerialNumber: syz [ 1452.815801][ T965] usb 5-1: Using ep0 maxpacket: 16 [ 1452.823436][ T5802] usb 2-1: config 0 descriptor?? [ 1452.830373][ T965] usb 5-1: config 0 has an invalid interface number: 105 but max is 0 [ 1452.846026][ T965] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1452.867884][ T5802] asix: probe of 2-1:0.104 failed with error -22 [ 1452.890299][ T965] usb 5-1: config 0 has no interface number 0 [ 1452.908103][ T965] usb 5-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1452.933681][ T965] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1452.941750][ T965] usb 5-1: Product: syz [ 1452.949387][ T965] usb 5-1: Manufacturer: syz [ 1452.962833][ T965] usb 5-1: SerialNumber: syz [ 1452.978365][ T965] usb 5-1: config 0 descriptor?? [ 1453.006137][ T8336] loop0: detected capacity change from 0 to 64 [ 1453.084370][ T8340] loop3: detected capacity change from 0 to 8 [ 1453.173154][T13436] usb 2-1: USB disconnect, device number 67 [ 1453.207173][ T965] usb 5-1: Found UVC 0.00 device syz (046d:08f3) [ 1453.214177][ T965] usb 5-1: No valid video chain found. [ 1453.388726][ T8367] netlink: 12 bytes leftover after parsing attributes in process `syz.0.14191'. [ 1453.426315][T13436] usb 5-1: USB disconnect, device number 18 [ 1453.536097][ T8380] xt_bpf: check failed: parse error [ 1453.549480][ T8383] xt_l2tp: v2 doesn't support IP mode [ 1454.042025][ T8388] loop3: detected capacity change from 0 to 40427 [ 1454.061958][ T8388] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 1454.082047][ T8388] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1454.082226][ T8412] loop4: detected capacity change from 0 to 64 [ 1454.093721][ T8388] F2FS-fs (loop3): invalid crc value [ 1454.107022][ T8388] F2FS-fs (loop3): Found nat_bits in checkpoint [ 1454.241818][ T8388] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1454.264002][ T8388] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 1454.303522][ T8426] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1454.355348][ T8426] overlayfs: missing 'lowerdir' [ 1454.945645][ T8472] netlink: 444 bytes leftover after parsing attributes in process `syz.1.14221'. [ 1455.383765][ T8508] (null): rxe_set_mtu: Set mtu to 1024 [ 1455.482926][ T8500] loop0: detected capacity change from 0 to 4096 [ 1455.494901][ T8500] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1455.638155][ T5802] usb 4-1: new high-speed USB device number 74 using dummy_hcd [ 1455.729195][ T8522] netdevsim netdevsim4 netdevsim0: entered allmulticast mode [ 1455.737265][ T8522] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1455.766500][ T8508] infiniband syz2: set active [ 1455.772332][ T8508] infiniband syz2: added bridge_slave_1 [ 1455.791783][ T8517] loop0: detected capacity change from 0 to 4096 [ 1455.827200][ T8517] __ntfs_error: 27 callbacks suppressed [ 1455.827219][ T8517] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1455.846928][ T5802] usb 4-1: Using ep0 maxpacket: 8 [ 1455.871951][ T5802] usb 4-1: config 0 has an invalid interface number: 6 but max is 2 [ 1455.877787][ T8517] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1455.899967][ T8508] RDS/IB: syz2: added [ 1455.905000][ T8517] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1455.907130][ T8508] smc: adding ib device syz2 with port count 1 [ 1455.925007][ T8508] smc: ib device syz2 port 1 has pnetid [ 1455.930377][ T5802] usb 4-1: config 0 has an invalid interface number: 176 but max is 2 [ 1455.953607][ T5802] usb 4-1: config 0 has no interface number 1 [ 1455.967914][ T5802] usb 4-1: config 0 has no interface number 2 [ 1455.980262][ T8517] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1455.983806][ T5802] usb 4-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30 [ 1456.012620][ T8517] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1456.047689][ T5802] usb 4-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1456.075006][ T5802] usb 4-1: config 0 interface 0 has no altsetting 0 [ 1456.077061][ T8517] ntfs: volume version 3.1. [ 1456.082896][ T5802] usb 4-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 1456.096737][ T5802] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1456.117759][ T5802] usb 4-1: config 0 descriptor?? [ 1456.126105][ T8517] ntfs: (device loop0): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 1456.173618][ T8517] ntfs: (device loop0): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1456.206920][ T8517] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1456.216104][ T8539] xt_TCPMSS: Only works on TCP SYN packets [ 1456.226051][ T8517] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1456.247506][ T8517] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 1456.349206][ T5802] usb 4-1: Could not set interface, error -71 [ 1456.392758][ T5802] qmi_wwan: probe of 4-1:0.0 failed with error -22 [ 1456.421165][ T5802] usb 4-1: USB disconnect, device number 74 [ 1456.585877][ T8561] netlink: 16 bytes leftover after parsing attributes in process `syz.0.14244'. [ 1456.850567][ T8543] loop4: detected capacity change from 0 to 32768 [ 1456.885731][ T8543] [ 1456.885731][ T8543] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1456.885731][ T8543] [ 1457.012286][T30868] [ 1457.012286][T30868] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1457.012286][T30868] [ 1457.040233][T30868] [ 1457.040233][T30868] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1457.040233][T30868] [ 1457.779887][ T8609] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1457.932209][ T8577] loop0: detected capacity change from 0 to 40427 [ 1457.982863][ T8577] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 1458.011277][ T8577] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1458.064680][ T8577] F2FS-fs (loop0): invalid crc value [ 1458.091390][ T8577] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1458.266217][ T8577] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1458.288051][ T8577] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1459.946559][ T8727] netlink: 84 bytes leftover after parsing attributes in process `syz.3.14292'. [ 1460.491797][ T8770] openvswitch: netlink: IP tunnel dst address not specified [ 1460.637068][ T8776] xt_hashlimit: invalid interval [ 1461.038305][ T8805] xt_bpf: check failed: parse error [ 1461.162979][ T8814] netlink: 'syz.3.14319': attribute type 39 has an invalid length. [ 1461.480027][ T8834] loop4: detected capacity change from 0 to 1024 [ 1461.635668][ T8840] netlink: 'syz.1.14326': attribute type 1 has an invalid length. [ 1461.775620][ T8810] loop0: detected capacity change from 0 to 32768 [ 1461.785366][ T8810] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.14318 (8810) [ 1461.844886][ T8810] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1461.872324][ T8810] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 1461.892142][ T8810] BTRFS info (device loop0): force zlib compression, level 3 [ 1461.913511][ T8810] BTRFS info (device loop0): force clearing of disk cache [ 1461.957407][ T8810] BTRFS info (device loop0): setting nodatasum [ 1461.987879][ T8810] BTRFS info (device loop0): use zlib compression, level 3 [ 1462.001250][ T8810] BTRFS info (device loop0): allowing degraded mounts [ 1462.032531][ T8810] BTRFS info (device loop0): enabling disk space caching [ 1462.055529][ T8810] BTRFS info (device loop0): disk space caching is enabled [ 1462.155604][ T8810] BTRFS info (device loop0): enabling ssd optimizations [ 1462.170136][ T8810] BTRFS info (device loop0): auto enabling async discard [ 1462.193427][ T8810] BTRFS info (device loop0): rebuilding free space tree [ 1462.241429][ T8810] BTRFS info (device loop0): disabling free space tree [ 1462.258123][ T8810] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1462.277473][ T8810] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1462.351851][ T5852] usb 2-1: new high-speed USB device number 68 using dummy_hcd [ 1462.419124][ T5775] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1462.608936][ T5852] usb 2-1: config 0 has an invalid interface number: 238 but max is 0 [ 1462.617321][ T5852] usb 2-1: config 0 has no interface number 0 [ 1462.656123][ T5852] usb 2-1: config 0 interface 238 altsetting 2 endpoint 0x4 has invalid wMaxPacketSize 0 [ 1462.678669][ T5852] usb 2-1: config 0 interface 238 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 0 [ 1462.731380][ T5852] usb 2-1: config 0 interface 238 altsetting 2 bulk endpoint 0x88 has invalid maxpacket 90 [ 1462.742851][ T5852] usb 2-1: config 0 interface 238 has no altsetting 0 [ 1462.752941][ T5852] usb 2-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=f6.6a [ 1462.764277][ T5852] usb 2-1: New USB device strings: Mfr=181, Product=147, SerialNumber=160 [ 1462.790366][ T5852] usb 2-1: Product: syz [ 1462.794588][ T5852] usb 2-1: Manufacturer: syz [ 1462.820803][ T5852] usb 2-1: SerialNumber: syz [ 1462.836303][ T5852] usb 2-1: config 0 descriptor?? [ 1462.842375][ T8862] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1462.883603][ T5852] ni6501 2-1:0.238: driver 'ni6501' failed to auto-configure device. [ 1463.099047][ T8] usb 2-1: USB disconnect, device number 68 [ 1463.772705][ T8978] netlink: 24 bytes leftover after parsing attributes in process `syz.4.14359'. [ 1464.172138][ T9012] xt_TCPMSS: Only works on TCP SYN packets [ 1464.198750][ T9005] loop4: detected capacity change from 0 to 4096 [ 1464.291922][ T9005] ntfs: volume version 3.1. [ 1465.028174][ T9073] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14389'. [ 1465.088908][ T9079] netlink: 32 bytes leftover after parsing attributes in process `syz.1.14391'. [ 1465.669939][ T9111] netlink: 84 bytes leftover after parsing attributes in process `syz.0.14403'. [ 1465.699073][ T9071] loop4: detected capacity change from 0 to 32768 [ 1465.730348][ T9071] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.14388 (9071) [ 1465.773657][ T9071] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1465.805185][ T9071] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 1465.814686][ T9124] netlink: 36 bytes leftover after parsing attributes in process `syz.0.14405'. [ 1465.848469][ T9071] BTRFS info (device loop4): using free space tree [ 1465.980115][ T9071] BTRFS info (device loop4): enabling ssd optimizations [ 1465.997549][ T9071] BTRFS info (device loop4): auto enabling async discard [ 1466.104513][T30868] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1466.718109][ T9131] loop1: detected capacity change from 0 to 32768 [ 1466.764953][ T9131] ea_get: invalid extended attribute [ 1466.786798][ T9131] ffff888051a0d670: 04 00 00 00 .... [ 1467.871329][ T9241] netlink: 104 bytes leftover after parsing attributes in process `syz.0.14433'. [ 1467.968143][ T28] kauditd_printk_skb: 124 callbacks suppressed [ 1467.968157][ T28] audit: type=1326 audit(1774432273.254:639): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.14435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1468.039252][ T5802] usb 4-1: new high-speed USB device number 75 using dummy_hcd [ 1468.047768][ T28] audit: type=1326 audit(1774432273.254:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.14435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=109 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1468.114377][ T28] audit: type=1326 audit(1774432273.254:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.14435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1468.144999][ T28] audit: type=1326 audit(1774432273.254:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9247 comm="syz.1.14435" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe61bb9c799 code=0x7ffc0000 [ 1468.274537][ T5802] usb 4-1: Using ep0 maxpacket: 32 [ 1468.281813][ T5802] usb 4-1: config 1 has an invalid interface number: 108 but max is 0 [ 1468.290567][ T5802] usb 4-1: config 1 has no interface number 0 [ 1468.305692][ T5802] usb 4-1: New USB device found, idVendor=04e8, idProduct=6601, bcdDevice=81.9b [ 1468.315232][ T5802] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1468.349704][ T5802] usb 4-1: Product: syz [ 1468.360446][ T5802] usb 4-1: Manufacturer: syz [ 1468.365089][ T5802] usb 4-1: SerialNumber: syz [ 1468.380235][ T9277] dlm: no local IP address has been set [ 1468.394551][ T5802] hub 4-1:1.108: bad descriptor, ignoring hub [ 1468.399922][ T9277] dlm: cannot start dlm midcomms -107 [ 1468.401747][ T5802] hub: probe of 4-1:1.108 failed with error -5 [ 1468.609718][ T5802] usb 4-1: palm_os_4_probe - error -71 getting connection info [ 1468.627323][ T5802] visor 4-1:1.108: Handspring Visor / Palm OS converter detected [ 1468.638460][ T5802] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1468.663390][ T5802] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1468.730797][ T5802] usb 4-1: USB disconnect, device number 75 [ 1468.768106][ T5802] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1468.794555][ T5802] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1468.831134][ T5802] visor 4-1:1.108: device disconnected [ 1468.883984][ T8] usb 1-1: new high-speed USB device number 64 using dummy_hcd [ 1468.903550][ T9332] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1469.100242][ T8] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1469.109971][ T8] usb 1-1: config 63 has an invalid interface number: 66 but max is 0 [ 1469.118168][ T8] usb 1-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 1469.140970][ T8] usb 1-1: config 63 has no interface number 0 [ 1469.147202][ T8] usb 1-1: config 63 interface 66 has no altsetting 0 [ 1469.156440][ T8] usb 1-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 1469.166042][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1469.174376][ T8] usb 1-1: Product: syz [ 1469.178556][ T8] usb 1-1: Manufacturer: syz [ 1469.183353][ T8] usb 1-1: SerialNumber: syz [ 1469.300973][T17267] usb 2-1: new full-speed USB device number 69 using dummy_hcd [ 1469.402546][ T9366] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14464'. [ 1469.438250][ T8] usb 1-1: Found UVC 0.07 device syz (174f:8acf) [ 1469.451350][ T8] usb 1-1: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 1469.464392][ T8] usb 1-1: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 1469.489787][ T8] usb 1-1: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 1469.511153][ T8] usb 1-1: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 1469.526710][T17267] usb 2-1: config 1 has an invalid interface number: 105 but max is 0 [ 1469.546128][T17267] usb 2-1: config 1 has no interface number 0 [ 1469.552788][ T8] usb 1-1: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 1469.568028][T17267] usb 2-1: config 1 interface 105 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1469.578192][ T8] usb 1-1: No streaming interface found for terminal 29. [ 1469.587744][ T8] uvcvideo 1-1:63.66: Entity type for entity Output 5 was not initialized! [ 1469.596724][T17267] usb 2-1: config 1 interface 105 has no altsetting 0 [ 1469.615873][T17267] usb 2-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 1469.634699][ T8] usb 1-1: USB disconnect, device number 64 [ 1469.640775][T17267] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1469.656858][T17267] usb 2-1: Product: syz [ 1469.661993][T17267] usb 2-1: Manufacturer: syz [ 1469.686657][T17267] usb 2-1: SerialNumber: syz [ 1469.760271][ T9395] netlink: 'syz.4.14467': attribute type 39 has an invalid length. [ 1469.767111][ T9396] dlm: no locking on control device [ 1469.858601][ T9399] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check. [ 1469.950673][T17267] aqc111: probe of 2-1:1.105 failed with error -22 [ 1470.190633][T17267] usb 2-1: USB disconnect, device number 69 [ 1470.217913][ T9424] netlink: 'syz.3.14475': attribute type 1 has an invalid length. [ 1470.240357][ T9424] netlink: 168864 bytes leftover after parsing attributes in process `syz.3.14475'. [ 1470.764314][ T9465] sctp: [Deprecated]: syz.4.14488 (pid 9465) Use of int in maxseg socket option. [ 1470.764314][ T9465] Use struct sctp_assoc_value instead [ 1470.999451][ T9484] dlm: non-version read from control device 0 [ 1471.128451][ T9494] loop4: detected capacity change from 0 to 8 [ 1471.176329][ T9498] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14499'. [ 1471.324459][ T9509] (null): rxe_set_mtu: Set mtu to 1024 [ 1471.330922][ T9509] rdma_rxe: rxe_newlink: failed to add bridge_slave_1 [ 1471.499053][ T9526] loop0: detected capacity change from 0 to 65 [ 1471.526386][ T9526] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway [ 1471.621733][ T9534] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14507'. [ 1471.641552][ T9534] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14507'. [ 1471.650704][ T27] usb 2-1: new high-speed USB device number 70 using dummy_hcd [ 1471.750527][ T9543] loop4: detected capacity change from 0 to 256 [ 1471.846000][ T27] usb 2-1: Using ep0 maxpacket: 8 [ 1471.870219][ T27] usb 2-1: config 0 has an invalid interface number: 6 but max is 2 [ 1471.893217][ T27] usb 2-1: config 0 has an invalid interface number: 176 but max is 2 [ 1471.902550][ T9550] netlink: 'syz.0.14510': attribute type 39 has an invalid length. [ 1471.904752][ T27] usb 2-1: config 0 has no interface number 1 [ 1471.929590][ T27] usb 2-1: config 0 has no interface number 2 [ 1471.938897][ T27] usb 2-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30 [ 1471.951449][ T27] usb 2-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1471.966494][ T27] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1471.975474][ T27] usb 2-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 1471.985776][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1471.998851][ T27] usb 2-1: config 0 descriptor?? [ 1472.008414][ T9557] netlink: 209820 bytes leftover after parsing attributes in process `syz.3.14513'. [ 1472.254016][ T27] usb 2-1: Could not set interface, error -71 [ 1472.265928][ T27] qmi_wwan: probe of 2-1:0.0 failed with error -22 [ 1472.288693][ T27] usb 2-1: USB disconnect, device number 70 [ 1472.300975][ T9581] overlayfs: conflicting options: nfs_export=on,metacopy=on [ 1472.651373][ T9603] netdevsim netdevsim0 netdevsim0: entered allmulticast mode [ 1472.913474][ T9613] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1472.965617][ T9620] loop1: detected capacity change from 0 to 256 [ 1472.986041][ T9620] exfat: Deprecated parameter 'namecase' [ 1473.002410][ T9620] exfat: Deprecated parameter 'utf8' [ 1473.024102][ T9620] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 1473.439081][ T8] usb 1-1: new high-speed USB device number 65 using dummy_hcd [ 1473.642169][ T8] usb 1-1: Using ep0 maxpacket: 8 [ 1473.678258][ T8] usb 1-1: config 0 has an invalid interface number: 6 but max is 2 [ 1473.686725][ T8] usb 1-1: config 0 has an invalid interface number: 176 but max is 2 [ 1473.697809][ T8] usb 1-1: config 0 has no interface number 1 [ 1473.704169][ T8] usb 1-1: config 0 has no interface number 2 [ 1473.710642][ T8] usb 1-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30 [ 1473.713476][ T49] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1473.723031][ T8] usb 1-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255 [ 1473.747060][ T8] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1473.768312][T17267] usb 5-1: new full-speed USB device number 19 using dummy_hcd [ 1473.777842][ T8] usb 1-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 1473.787679][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1473.806791][ T8] usb 1-1: config 0 descriptor?? [ 1473.872382][ T49] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1473.986751][ T49] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1474.017772][T17267] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1474.026934][T17267] usb 5-1: not running at top speed; connect to a high speed hub [ 1474.066983][ T8] usb 1-1: Could not set interface, error -71 [ 1474.074616][T17267] usb 5-1: New USB device found, idVendor=1430, idProduct=474b, bcdDevice= 0.40 [ 1474.097868][T17267] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1474.118583][ T8] qmi_wwan: probe of 1-1:0.0 failed with error -22 [ 1474.145023][T17267] usb 5-1: Product: syz [ 1474.149254][T17267] usb 5-1: Manufacturer: syz [ 1474.153907][T17267] usb 5-1: SerialNumber: syz [ 1474.164384][ T8] usb 1-1: USB disconnect, device number 65 [ 1474.226422][ T49] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1474.434223][T17267] usb 5-1: Quirk or no altest; falling back to MIDI 1.0 [ 1474.460318][T17267] usb 5-1: MIDIStreaming interface descriptor not found [ 1474.520629][ T9708] vti0: entered promiscuous mode [ 1474.559983][T17267] usb 5-1: USB disconnect, device number 19 [ 1474.832806][ T9749] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1474.865154][ T9749] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1474.878033][ T9749] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1474.887243][ T9749] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1474.900107][ T9749] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1474.910435][ T9749] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1475.176550][ T9770] ieee802154 phy1 wpan1: encryption failed: -90 [ 1475.207876][ T9744] lo speed is unknown, defaulting to 1000 [ 1475.256254][T17267] usb 4-1: new full-speed USB device number 76 using dummy_hcd [ 1475.481837][T17267] usb 4-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 1475.516604][T17267] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1475.543147][T17267] usb 4-1: config 0 descriptor?? [ 1475.566266][ T9786] (null): rxe_set_mtu: Set mtu to 256 [ 1475.566787][T17267] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 1475.611220][ T9786] rdma_rxe: rxe_newlink: failed to add lo [ 1475.904421][ T9801] loop4: detected capacity change from 0 to 4096 [ 1476.027297][T17267] gp8psk: usb in 128 operation failed. [ 1476.047649][T17267] gp8psk: usb in 137 operation failed. [ 1476.053178][T17267] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1476.077823][ T9780] loop0: detected capacity change from 0 to 32768 [ 1476.084386][T17267] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 1476.110146][ T9780] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.14554 (9780) [ 1476.146887][T17267] usb 4-1: USB disconnect, device number 76 [ 1476.189327][ T9780] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1476.220741][ T9780] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1476.230369][ T9780] BTRFS info (device loop0): using free space tree [ 1476.414210][ T9780] BTRFS info (device loop0): enabling ssd optimizations [ 1476.423532][ T9780] BTRFS info (device loop0): auto enabling async discard [ 1476.445829][ T9744] chnl_net:caif_netlink_parms(): no params data found [ 1476.550496][ T5775] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1476.900707][ T9923] (null): rxe_set_mtu: Set mtu to 1024 [ 1476.944166][ T9923] rdma_rxe: rxe_newlink: failed to add bridge_slave_1 [ 1477.159095][T25665] Bluetooth: hci0: command tx timeout [ 1477.864979][ T9744] bridge0: port 1(bridge_slave_0) entered blocking state [ 1477.896770][ T9744] bridge0: port 1(bridge_slave_0) entered disabled state [ 1477.904072][ T9744] bridge_slave_0: entered allmulticast mode [ 1477.930945][ T9744] bridge_slave_0: entered promiscuous mode [ 1477.959138][ T9744] bridge0: port 2(bridge_slave_1) entered blocking state [ 1477.971172][ T9744] bridge0: port 2(bridge_slave_1) entered disabled state [ 1477.986697][ T9744] bridge_slave_1: entered allmulticast mode [ 1478.023868][ T9744] bridge_slave_1: entered promiscuous mode [ 1478.246469][T10035] loop4: detected capacity change from 0 to 764 [ 1478.297863][T10035] Symlink component flag not implemented [ 1478.312108][ T9744] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1478.326020][T10035] Symlink component flag not implemented (15) [ 1478.357592][ T9744] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1478.693020][T10058] loop0: detected capacity change from 0 to 4096 [ 1478.734147][T10058] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1478.757626][ T9744] team0: Port device team_slave_0 added [ 1478.794313][T10058] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1478.803565][T10058] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1478.823589][ T9744] team0: Port device team_slave_1 added [ 1478.889475][T10058] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1478.933144][T10022] loop3: detected capacity change from 0 to 32768 [ 1478.964380][T10022] [ 1478.964380][T10022] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1478.964380][T10022] [ 1478.993546][T10058] ntfs: volume version 3.1. [ 1479.148469][ T5769] [ 1479.148469][ T5769] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1479.148469][ T5769] [ 1479.201317][ T5769] [ 1479.201317][ T5769] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1479.201317][ T5769] [ 1479.208867][ T9744] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 1479.239353][ T9744] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1479.329741][ T9744] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 1479.384848][T25665] Bluetooth: hci0: command tx timeout [ 1479.542502][ T49] hsr_slave_0: left promiscuous mode [ 1479.564758][ T49] bridge_slave_1: left allmulticast mode [ 1479.570484][ T49] bridge_slave_1: left promiscuous mode [ 1479.606816][ T49] bridge0: port 2(bridge_slave_1) entered disabled state [ 1479.674816][ T49] bridge_slave_0: left allmulticast mode [ 1479.691990][ T49] bridge_slave_0: left promiscuous mode [ 1479.697922][ T49] bridge0: port 1(bridge_slave_0) entered disabled state [ 1479.790473][ T965] usb 4-1: new full-speed USB device number 77 using dummy_hcd [ 1479.799353][ T49] veth1_macvtap: left promiscuous mode [ 1479.805119][ T49] veth0_macvtap: left promiscuous mode [ 1479.834787][ T49] veth1_vlan: left promiscuous mode [ 1479.841001][ T49] veth0_vlan: left promiscuous mode [ 1479.989967][T10142] netlink: 22 bytes leftover after parsing attributes in process `syz.4.14590'. [ 1480.010772][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 10 [ 1480.011033][ T49] infiniband syz2: set down [ 1480.031437][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1480.056585][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 10 [ 1480.078273][ T965] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1480.111260][ T965] usb 4-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 1480.130408][ T965] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1480.138526][ T965] usb 4-1: Product: syz [ 1480.144649][ T965] usb 4-1: Manufacturer: syz [ 1480.149358][ T965] usb 4-1: SerialNumber: syz [ 1480.159350][ T965] usb 4-1: config 0 descriptor?? [ 1480.233146][ T49] bond5 (unregistering): Released all slaves [ 1480.397694][ T965] adutux 4-1:0.0: Could not retrieve serial number [ 1480.404349][ T965] adutux: probe of 4-1:0.0 failed with error -5 [ 1480.436060][ T49] bond4 (unregistering): Released all slaves [ 1480.649868][T10170] loop4: detected capacity change from 0 to 256 [ 1480.668047][ T965] usb 4-1: USB disconnect, device number 77 [ 1480.888616][ T49] bond3 (unregistering): Released all slaves [ 1480.916275][ T49] bond2 (unregistering): Released all slaves [ 1480.997188][ T49] pimreg (unregistering): left allmulticast mode [ 1481.097858][ T49] bond1 (unregistering): Released all slaves [ 1481.468200][T10205] loop3: detected capacity change from 0 to 512 [ 1481.486673][T10205] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1481.606723][T25665] Bluetooth: hci0: command tx timeout [ 1481.641389][ T5769] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 1482.102101][ T49] team0 (unregistering): Port device team_slave_1 removed [ 1482.168153][ T49] team0 (unregistering): Port device team_slave_0 removed [ 1482.237673][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 1482.304983][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 1482.476709][T13708] smc: removing ib device syz2 [ 1482.772280][ T49] bond0 (unregistering): (slave team0): Releasing backup interface [ 1482.825794][ T49] bond0 (unregistering): Released all slaves [ 1482.949551][ T9744] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 1482.956735][ T9744] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1482.983396][ T9744] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 1483.008559][T17267] infiniband syz2: ib_query_port failed (-19) [ 1483.085078][T10196] netlink: 20 bytes leftover after parsing attributes in process `syz.4.14604'. [ 1483.325180][T10251] loop0: detected capacity change from 0 to 128 [ 1483.343036][ T9744] hsr_slave_0: entered promiscuous mode [ 1483.381859][ T9744] hsr_slave_1: entered promiscuous mode [ 1483.829280][T25665] Bluetooth: hci0: command tx timeout [ 1483.850748][T10288] loop0: detected capacity change from 0 to 128 [ 1484.201383][T10341] loop0: detected capacity change from 0 to 256 [ 1484.540332][T10377] SET target dimension over the limit! [ 1485.312180][ T9744] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 1485.346883][ T9744] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 1485.394189][ T9744] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 1485.457167][ T9744] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 1485.503997][T10437] netlink: 132 bytes leftover after parsing attributes in process `syz.3.14635'. [ 1485.582615][ T965] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 1485.684751][T10442] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14636'. [ 1485.738786][T10403] loop0: detected capacity change from 0 to 32768 [ 1485.799047][ T965] usb 5-1: Using ep0 maxpacket: 8 [ 1485.799484][ T9744] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1485.820361][ T965] usb 5-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 1485.837361][T10403] jfs_lookup: iget failed on inum 32 [ 1485.849436][ T9744] 8021q: adding VLAN 0 to HW filter on device team0 [ 1485.859686][ T965] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1485.893479][ T4473] bridge0: port 1(bridge_slave_0) entered blocking state [ 1485.900686][ T4473] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1485.910502][ T965] usb 5-1: Product: syz [ 1485.927872][ T965] usb 5-1: Manufacturer: syz [ 1485.948637][ T965] usb 5-1: SerialNumber: syz [ 1485.962764][ T4473] bridge0: port 2(bridge_slave_1) entered blocking state [ 1485.972263][ T4473] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1485.995772][ T965] usb 5-1: config 0 descriptor?? [ 1486.013179][ T965] gspca_main: se401-2.14.0 probing 047d:5003 [ 1486.318605][T10466] netlink: 'syz.0.14640': attribute type 3 has an invalid length. [ 1486.342926][T10466] netlink: 'syz.0.14640': attribute type 1 has an invalid length. [ 1486.372102][T10466] netlink: 220 bytes leftover after parsing attributes in process `syz.0.14640'. [ 1486.463535][ T965] gspca_se401: write req failed req 0x57 val 0x00 error -71 [ 1486.483939][ T965] se401: probe of 5-1:0.0 failed with error -71 [ 1486.502716][ T965] usb 5-1: USB disconnect, device number 20 [ 1486.690794][ T9744] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1487.024537][T10513] netlink: 192436 bytes leftover after parsing attributes in process `syz.0.14649'. [ 1487.052905][T10513] openvswitch: netlink: Message has 13056 unknown bytes. [ 1487.272601][T10527] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1487.387145][ T9744] veth0_vlan: entered promiscuous mode [ 1487.435435][ T9744] veth1_vlan: entered promiscuous mode [ 1487.547052][T10540] loop0: detected capacity change from 0 to 1024 [ 1487.569393][ T9744] veth0_macvtap: entered promiscuous mode [ 1487.588627][ T9744] veth1_macvtap: entered promiscuous mode [ 1487.666110][ T9744] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 1487.702947][ T9744] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 1487.723930][ T49] hfsplus: b-tree write err: -5, ino 25 [ 1487.729718][ T49] hfsplus: b-tree write err: -5, ino 4 [ 1487.739272][ T9744] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1487.750252][ T49] hfsplus: b-tree write err: -5, ino 2 [ 1487.763705][ T9744] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1487.772557][ T9744] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1487.782312][ T49] hfsplus: b-tree write err: -5, ino 26 [ 1487.807871][ T9744] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1488.001507][ T28] audit: type=1326 audit(1774432292.000:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10568 comm="syz.3.14662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1488.083206][ T28] audit: type=1326 audit(1774432292.000:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10568 comm="syz.3.14662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1488.165768][ T28] audit: type=1326 audit(1774432292.019:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10568 comm="syz.3.14662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1488.233556][ T939] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1488.258733][ T28] audit: type=1326 audit(1774432292.019:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10568 comm="syz.3.14662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1488.288275][ T939] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1488.344363][ T28] audit: type=1326 audit(1774432292.019:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10568 comm="syz.3.14662" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1488.437725][ T4473] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1488.445922][ T4473] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 1488.948942][T10629] netlink: 16 bytes leftover after parsing attributes in process `syz.4.14674'. [ 1488.983099][T10629] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14674'. [ 1488.999426][T10634] loop5: detected capacity change from 0 to 256 [ 1489.026900][T10634] exfat: Deprecated parameter 'utf8' [ 1489.032544][T10634] exfat: Deprecated parameter 'namecase' [ 1489.069074][T10634] exfat: Deprecated parameter 'namecase' [ 1489.074799][T10634] exfat: Deprecated parameter 'utf8' [ 1489.099934][ T27] usb 1-1: new high-speed USB device number 66 using dummy_hcd [ 1489.252775][T10634] exFAT-fs (loop5): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 1489.313829][ T27] usb 1-1: Using ep0 maxpacket: 8 [ 1489.344764][ T27] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 1489.376926][ T27] usb 1-1: config 179 has no interface number 0 [ 1489.395117][ T27] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 1489.431135][ T27] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 1489.440089][T10690] netlink: 252 bytes leftover after parsing attributes in process `syz.4.14680'. [ 1489.452614][ T27] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1489.496501][ T27] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 1489.541199][ T27] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1489.587965][ T27] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1489.609912][ T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1489.629751][T10618] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1489.756832][T10709] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 1490.075486][T10724] loop4: detected capacity change from 0 to 512 [ 1490.143297][T10724] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 213 vs 220 free clusters [ 1490.171950][T10724] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.14687: attempt to clear invalid blocks 983261 len 1 [ 1490.243834][ T8] usb 4-1: new full-speed USB device number 78 using dummy_hcd [ 1490.264104][T10724] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.14687: invalid indirect mapped block 2683928664 (level 0) [ 1490.290682][T10724] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.14687: Invalid inode table block 0 in block_group 0 [ 1490.386731][T10724] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 1490.405985][T10724] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem [ 1490.448408][T10724] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.14687: Invalid inode table block 0 in block_group 0 [ 1490.449975][ T8] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1490.489448][ T1186] usb 1-1: USB disconnect, device number 66 [ 1490.489445][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1490.506823][ T8] usb 4-1: not running at top speed; connect to a high speed hub [ 1490.539272][T10724] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 1490.545945][ T8] usb 4-1: New USB device found, idVendor=1430, idProduct=474b, bcdDevice= 0.40 [ 1490.553111][T10724] EXT4-fs error (device loop4): ext4_truncate:4294: inode #13: comm syz.4.14687: mark_inode_dirty error [ 1490.571692][T10724] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem [ 1490.579680][ T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1490.593380][T10724] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.14687: Invalid inode table block 0 in block_group 0 [ 1490.609811][ T8] usb 4-1: Product: syz [ 1490.614017][ T8] usb 4-1: Manufacturer: syz [ 1490.628880][T10724] EXT4-fs (loop4): 1 truncate cleaned up [ 1490.629446][ T8] usb 4-1: SerialNumber: syz [ 1490.640613][T10724] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1490.683376][T10724] EXT4-fs error (device loop4): __ext4_get_inode_loc:4489: comm syz.4.14687: Invalid inode table block 0 in block_group 0 [ 1490.742463][T10724] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5920: Corrupt filesystem [ 1490.792766][T30868] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1490.915692][ T8] usb 4-1: Quirk or no altest; falling back to MIDI 1.0 [ 1490.934152][ T8] usb 4-1: MIDIStreaming interface descriptor not found [ 1491.012466][ T8] usb 4-1: USB disconnect, device number 78 [ 1491.024186][ T5802] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 1491.240993][ T5802] usb 6-1: Using ep0 maxpacket: 8 [ 1491.272433][ T5802] usb 6-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 1491.291821][ T5802] usb 6-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 1491.313045][ T5802] usb 6-1: Product: syz [ 1491.317773][T10811] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 1491.333240][ T5802] usb 6-1: Manufacturer: syz [ 1491.338276][ T5802] usb 6-1: SerialNumber: syz [ 1491.346494][ T5802] usb 6-1: config 0 descriptor?? [ 1491.368829][ T5802] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 1491.470634][T10818] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14698'. [ 1491.787366][T10833] netlink: 'syz.4.14702': attribute type 1 has an invalid length. [ 1491.797728][ T5802] gspca_zc3xx: reg_r err -71 [ 1491.802446][ T5802] gspca_zc3xx: probe of 6-1:0.0 failed with error -71 [ 1491.831305][ T5802] usb 6-1: USB disconnect, device number 2 [ 1492.111848][T10857] loop4: detected capacity change from 0 to 64 [ 1492.291277][T10827] loop0: detected capacity change from 0 to 32768 [ 1492.313128][T10827] (syz.0.14700,10827,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1492.338782][T10827] (syz.0.14700,10827,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1492.483986][T10827] JBD2: Ignoring recovery information on journal [ 1492.623200][T10827] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1492.860007][T10900] cgroup2: Unknown parameter 'memory_hugetlb_accounting' [ 1492.966032][ T5775] ocfs2: Unmounting device (7,0) on (node local) [ 1493.190164][T10912] loop4: detected capacity change from 0 to 8 [ 1493.206005][T10912] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1493.235326][T10912] cramfs: Error -3 while decompressing! [ 1493.257641][ T5753] udevd[5753]: incorrect cramfs checksum on /dev/loop4 [ 1493.265759][T10912] cramfs: ffffffff973fa348(18)->ffff888053242000(4096) [ 1493.297968][T10912] cramfs: Error -3 while decompressing! [ 1493.308716][T10912] cramfs: ffffffff973fa348(18)->ffff888053242000(4096) [ 1493.320743][ T5753] udevd[5753]: incorrect cramfs checksum on /dev/loop4 [ 1493.345119][ T28] audit: type=1800 audit(1774432296.995:648): pid=10912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.14720" name="file1" dev="loop4" ino=324 res=0 errno=0 [ 1493.364982][ C0] vkms_vblank_simulate: vblank timer overrun [ 1493.465845][T10924] binfmt_misc: register: failed to install interpreter file ./bus [ 1494.210266][ T27] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 1494.428695][ T27] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1494.445246][ T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1494.460234][T10997] sctp: [Deprecated]: syz.5.14742 (pid 10997) Use of int in max_burst socket option. [ 1494.460234][T10997] Use struct sctp_assoc_value instead [ 1494.475712][ T27] usb 5-1: Product: syz [ 1494.483653][ T27] usb 5-1: Manufacturer: syz [ 1494.488734][ T27] usb 5-1: SerialNumber: syz [ 1494.498538][ T27] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1494.525722][ T5802] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1494.654941][ T28] audit: type=1326 audit(1774432298.220:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.5.14745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4a39c799 code=0x7ffc0000 [ 1494.720621][ T28] audit: type=1326 audit(1774432298.220:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.5.14745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4a39c799 code=0x7ffc0000 [ 1494.793017][ T28] audit: type=1326 audit(1774432298.220:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.5.14745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7ffa4a39c799 code=0x7ffc0000 [ 1494.833167][T11015] netlink: 80 bytes leftover after parsing attributes in process `syz.0.14747'. [ 1494.848407][ T28] audit: type=1326 audit(1774432298.220:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11008 comm="syz.5.14745" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa4a39c799 code=0x7ffc0000 [ 1494.883437][T11015] 6eth1_to_bond: renamed from gre0 (while UP) [ 1494.893615][T10991] loop3: detected capacity change from 0 to 32768 [ 1494.923173][T10991] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.14739 (10991) [ 1494.954584][T10991] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1494.969924][T11021] netlink: 'syz.5.14748': attribute type 1 has an invalid length. [ 1494.978014][T10991] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1494.987284][T11021] netlink: 161700 bytes leftover after parsing attributes in process `syz.5.14748'. [ 1494.997978][T10991] BTRFS info (device loop3): force clearing of disk cache [ 1495.007123][T10991] BTRFS info (device loop3): metadata ratio 0 [ 1495.026118][T10991] BTRFS info (device loop3): enabling ssd optimizations [ 1495.043717][T10991] BTRFS info (device loop3): using spread ssd allocation scheme [ 1495.053530][T11015] A link change request failed with some changes committed already. Interface 6eth1_to_bond may have been left with an inconsistent configuration, please check. [ 1495.062139][T10991] BTRFS info (device loop3): using free space tree [ 1495.339150][T10991] BTRFS info (device loop3): auto enabling async discard [ 1495.379064][T10991] BTRFS info (device loop3): rebuilding free space tree [ 1495.520262][ T8] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 1495.659842][ T5769] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1495.751730][ T5802] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 1495.758821][ T5802] ath9k_htc: Failed to initialize the device [ 1495.766204][ T8] usb 6-1: Using ep0 maxpacket: 8 [ 1495.773077][ T8] usb 6-1: config 179 has an invalid interface number: 65 but max is 0 [ 1495.773103][ T8] usb 6-1: config 179 has no interface number 0 [ 1495.773141][ T8] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 1495.773164][ T8] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024 [ 1495.773185][ T8] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7 [ 1495.773205][ T8] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024 [ 1495.773227][ T8] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1495.773265][ T8] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1495.773285][ T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1495.871274][T11027] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 1496.867617][T11064] loop0: detected capacity change from 0 to 8 [ 1497.045390][T11064] SQUASHFS error: Failed to read block 0x6de: -5 [ 1497.106537][T11064] SQUASHFS error: Unable to read metadata cache entry [6dc] [ 1497.236101][T11064] SQUASHFS error: Failed to read block 0x63a: -5 [ 1497.289657][ T1278] ieee802154 phy1 wpan1: encryption failed: -22 [ 1497.326838][T11064] SQUASHFS error: Unable to read metadata cache entry [638] [ 1497.395788][T11064] SQUASHFS error: Unable to read directory block [26067d:ffff] [ 1497.462110][ T8] usb 6-1: USB disconnect, device number 3 [ 1497.467995][ C0] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 1497.468048][ C0] xpad 6-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1498.992931][T11117] netlink: 'syz.5.14764': attribute type 3 has an invalid length. [ 1499.054482][T11117] netlink: 201372 bytes leftover after parsing attributes in process `syz.5.14764'. [ 1500.335687][T11153] dlm: non-version read from control device 36 [ 1502.535081][T11223] xt_ecn: cannot match TCP bits for non-tcp packets [ 1502.818346][T11232] tmpfs: Bad value for 'mpol' [ 1504.142447][ T5801] usb 5-1: USB disconnect, device number 21 [ 1504.207719][ T5801] usb 5-1: ath9k_htc: USB layer deinitialized [ 1504.393826][T11286] loop5: detected capacity change from 0 to 256 [ 1504.536647][T11286] FAT-fs (loop5): Directory bread(block 64) failed [ 1504.576566][T11286] FAT-fs (loop5): Directory bread(block 65) failed [ 1504.601501][T11286] FAT-fs (loop5): Directory bread(block 66) failed [ 1504.608091][T11286] FAT-fs (loop5): Directory bread(block 67) failed [ 1504.690012][T11286] FAT-fs (loop5): Directory bread(block 68) failed [ 1504.696619][T11286] FAT-fs (loop5): Directory bread(block 69) failed [ 1504.708392][T11303] netlink: 16 bytes leftover after parsing attributes in process `syz.4.14817'. [ 1504.773084][T11286] FAT-fs (loop5): Directory bread(block 70) failed [ 1504.802886][T11306] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1504.810234][T11306] IPv6: NLM_F_CREATE should be set when creating new route [ 1504.817544][T11306] IPv6: NLM_F_CREATE should be set when creating new route [ 1504.833068][T11286] FAT-fs (loop5): Directory bread(block 71) failed [ 1504.854389][T11286] FAT-fs (loop5): Directory bread(block 72) failed [ 1504.862443][T11286] FAT-fs (loop5): Directory bread(block 73) failed [ 1505.821486][T11362] xt_AUDIT: Audit type out of range (valid range: 0..2) [ 1506.260383][T11334] loop3: detected capacity change from 0 to 32768 [ 1506.321075][T11334] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1506.337568][T11396] netlink: 4 bytes leftover after parsing attributes in process `syz.4.14839'. [ 1506.398476][T11408] loop5: detected capacity change from 0 to 256 [ 1506.464721][T11413] netlink: 56 bytes leftover after parsing attributes in process `syz.4.14842'. [ 1506.503603][T11408] FAT-fs (loop5): Directory bread(block 64) failed [ 1506.531987][T11334] XFS (loop3): Ending clean mount [ 1506.570173][T11408] FAT-fs (loop5): Directory bread(block 65) failed [ 1506.576856][T11408] FAT-fs (loop5): Directory bread(block 66) failed [ 1506.597275][ T1186] usb 1-1: new high-speed USB device number 67 using dummy_hcd [ 1506.621710][T11408] FAT-fs (loop5): Directory bread(block 67) failed [ 1506.686079][T11408] FAT-fs (loop5): Directory bread(block 68) failed [ 1506.692665][T11408] FAT-fs (loop5): Directory bread(block 69) failed [ 1506.734295][T11408] FAT-fs (loop5): Directory bread(block 70) failed [ 1506.772100][T11408] FAT-fs (loop5): Directory bread(block 71) failed [ 1506.778811][T11408] FAT-fs (loop5): Directory bread(block 72) failed [ 1506.815646][T11408] FAT-fs (loop5): Directory bread(block 73) failed [ 1506.828579][ T5769] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1506.869714][ T1186] usb 1-1: config 0 has an invalid descriptor of length 97, skipping remainder of the config [ 1506.891716][ T1186] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 1506.935597][ T1186] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1506.958866][ T1186] usb 1-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 1506.969978][ T1186] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1506.995154][ T1186] usb 1-1: Product: syz [ 1507.019665][ T1186] usb 1-1: Manufacturer: syz [ 1507.024307][ T1186] usb 1-1: SerialNumber: syz [ 1507.080086][ T28] audit: type=1800 audit(1774432309.838:653): pid=11408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.14841" name="file1" dev="loop5" ino=1048693 res=0 errno=0 [ 1507.106599][ T1186] usb 1-1: config 0 descriptor?? [ 1507.368065][ T1186] usb 1-1: Found UVC 34.00 device syz (8086:0b5b) [ 1507.391843][ T1186] usb 1-1: No valid video chain found. [ 1507.431551][ T1186] usb 1-1: USB disconnect, device number 67 [ 1507.621019][T11468] netlink: 12 bytes leftover after parsing attributes in process `syz.5.14851'. [ 1507.621923][T11466] xt_TCPMSS: Only works on TCP SYN packets [ 1507.973850][T11492] loop5: detected capacity change from 0 to 1024 [ 1508.029144][T11492] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1508.204407][T11492] EXT4-fs warning (device loop5): ext4_empty_dir:3147: inode #11: comm syz.5.14857: directory missing '.' [ 1508.333740][ T9744] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1508.749492][T11527] unsupported nlmsg_type 40 [ 1508.813306][T11267] usb 6-1: new low-speed USB device number 4 using dummy_hcd [ 1508.875212][T11508] loop3: detected capacity change from 0 to 32768 [ 1509.039250][T11267] usb 6-1: config index 0 descriptor too short (expected 6427, got 27) [ 1509.044130][T11499] loop0: detected capacity change from 0 to 40427 [ 1509.058423][T11267] usb 6-1: config 0 has an invalid interface number: 21 but max is 0 [ 1509.092091][T11499] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 1509.094023][T11267] usb 6-1: config 0 has no interface number 0 [ 1509.133004][T11499] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 1509.134053][T11267] usb 6-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt [ 1509.174709][T11499] F2FS-fs (loop0): heap/no_heap options were deprecated [ 1509.205258][T11267] usb 6-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1509.223106][T11499] F2FS-fs (loop0): invalid crc value [ 1509.242372][T11267] usb 6-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 1509.273873][T11267] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1509.301186][T11499] F2FS-fs (loop0): Found nat_bits in checkpoint [ 1509.301297][T11267] usb 6-1: config 0 descriptor?? [ 1509.461901][T11499] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 1509.476034][T11499] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 1509.832488][T11267] usb 6-1: USB disconnect, device number 4 [ 1509.924618][T11568] loop3: detected capacity change from 0 to 8192 [ 1509.981813][T11568] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1510.072449][T11568] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 1510.136330][T11568] REISERFS (device loop3): using ordered data mode [ 1510.192319][T11568] reiserfs: using flush barriers [ 1510.199246][T11568] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1510.257001][T11568] REISERFS (device loop3): checking transaction log (loop3) [ 1510.282111][T11568] REISERFS (device loop3): Using rupasov hash to sort names [ 1510.308675][T11568] REISERFS (device loop3): using 3.5.x disk format [ 1510.320847][T11568] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1510.375905][T11568] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1510.418989][T11568] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1510.440113][T11568] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2) [ 1510.465678][T11568] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 1510.524863][T11568] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1510.558230][T11568] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1510.687191][T11267] usb 5-1: new low-speed USB device number 22 using dummy_hcd [ 1510.890468][T11267] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1510.933514][T11267] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1510.953903][T11267] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1510.970155][T11267] usb 5-1: config 1 interface 0 has no altsetting 0 [ 1510.987809][T11267] usb 5-1: string descriptor 0 read error: -22 [ 1511.005599][T11267] usb 5-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice= 0.40 [ 1511.036824][T11267] usb 5-1: New USB device strings: Mfr=1, Product=3, SerialNumber=3 [ 1511.083499][T11267] usb 5-1: 0:2 : does not exist [ 1511.132132][T11267] usb-storage 5-1:1.1: USB Mass Storage device detected [ 1511.157241][T11657] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1511.386032][T11675] loop3: detected capacity change from 0 to 256 [ 1511.413463][T11675] exfat: Deprecated parameter 'namecase' [ 1511.459408][T11675] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 1511.525295][T11267] us122l: couldn't allocate write buffer [ 1511.542934][T11267] snd-usb-us122l: probe of 5-1:1.1 failed with error -22 [ 1511.589321][T11267] usb 5-1: USB disconnect, device number 22 [ 1512.336246][T11748] loop5: detected capacity change from 0 to 512 [ 1512.408004][T11748] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1512.435959][T11748] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1512.473554][T11267] usb 4-1: new high-speed USB device number 79 using dummy_hcd [ 1512.711235][T11267] usb 4-1: Using ep0 maxpacket: 32 [ 1512.725671][ T9744] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1512.728268][T11267] usb 4-1: config 0 has an invalid interface number: 35 but max is 0 [ 1512.758212][T11267] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1512.799211][T11267] usb 4-1: config 0 has no interface number 0 [ 1512.812487][T11267] usb 4-1: config 0 interface 35 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1512.839458][T11267] usb 4-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad [ 1512.850111][T11267] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1512.883190][T11267] usb 4-1: Product: syz [ 1512.903615][T11267] usb 4-1: Manufacturer: syz [ 1512.931397][T11267] usb 4-1: SerialNumber: syz [ 1512.955858][T11267] usb 4-1: config 0 descriptor?? [ 1512.968340][T11267] radio-si470x 4-1:0.35: could not find interrupt in endpoint [ 1512.991717][T11267] radio-si470x: probe of 4-1:0.35 failed with error -5 [ 1513.194351][T11764] loop0: detected capacity change from 0 to 32768 [ 1513.201486][T11267] radio-raremono 4-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 1513.251744][T11764] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.14907 (11764) [ 1513.312005][T11764] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1513.354151][T11764] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1513.398975][T11764] BTRFS info (device loop0): using free space tree [ 1513.423486][T11795] loop5: detected capacity change from 0 to 4096 [ 1513.433433][T11267] radio-raremono 4-1:0.35: raremono_cmd_main failed (-71) [ 1513.458415][T11267] radio-raremono 4-1:0.35: V4L2 device registered as radio48 [ 1513.516119][T11267] usb 4-1: USB disconnect, device number 79 [ 1513.551977][T11267] radio-raremono 4-1:0.35: Thanko's Raremono disconnected [ 1513.628792][T11764] BTRFS info (device loop0): enabling ssd optimizations [ 1513.660286][T11764] BTRFS info (device loop0): auto enabling async discard [ 1513.964898][ T5775] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1514.246699][T11863] netlink: 128 bytes leftover after parsing attributes in process `syz.0.14919'. [ 1514.278368][T11863] netlink: 20 bytes leftover after parsing attributes in process `syz.0.14919'. [ 1514.840243][T11899] delete_channel: no stack [ 1515.055583][T11908] loop3: detected capacity change from 0 to 512 [ 1515.176200][T11908] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1515.255333][T11908] ext4 filesystem being mounted at /3744/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1515.420301][T11936] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1515.463537][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1515.811573][T11965] xt_TCPMSS: Only works on TCP SYN packets [ 1515.817992][T11966] CIFS mount error: No usable UNC path provided in device string! [ 1515.817992][T11966] [ 1515.858274][T11966] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1515.941472][T11974] loop5: detected capacity change from 0 to 2048 [ 1516.017334][T11974] loop5: p1 < > p4 [ 1516.017334][T11974] p4: [ 1516.052695][T11974] loop5: p4 size 722688 extends beyond EOD, truncated [ 1516.068941][T11984] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6tnl0, syncid = 786440, id = 0 [ 1516.095401][T11974] loop5: p6 start 262464109 is beyond EOD, truncated [ 1516.102148][T11974] loop5: p7 size 2304 extends beyond EOD, truncated [ 1516.803107][T12021] openvswitch: netlink: Actions may not be safe on all matching packets [ 1516.967786][T12028] loop4: detected capacity change from 0 to 64 [ 1517.150215][T12037] loop0: detected capacity change from 0 to 1024 [ 1517.238186][T12037] hfsplus: invalid file type 0174377 for inode 21 [ 1517.451673][T12015] loop5: detected capacity change from 0 to 32768 [ 1517.503843][T12015] [ 1517.503843][T12015] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.503843][T12015] [ 1517.576101][T12015] [ 1517.576101][T12015] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.576101][T12015] [ 1517.616036][T12068] sctp: [Deprecated]: syz.0.14977 (pid 12068) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1517.616036][T12068] Use struct sctp_sack_info instead [ 1517.624370][T12015] [ 1517.624370][T12015] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.624370][T12015] [ 1517.666716][T12015] [ 1517.666716][T12015] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.666716][T12015] [ 1517.689987][T12015] [ 1517.689987][T12015] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.689987][T12015] [ 1517.736410][ T112] [ 1517.736410][ T112] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.736410][ T112] [ 1517.750550][ T8] usb 5-1: new full-speed USB device number 23 using dummy_hcd [ 1517.768141][T12073] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.14979'. [ 1517.781329][T12073] openvswitch: netlink: Key type 29 is not supported [ 1517.871602][ T9744] [ 1517.871602][ T9744] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.871602][ T9744] [ 1517.885977][ T9744] [ 1517.885977][ T9744] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1517.885977][ T9744] [ 1517.988712][ T8] usb 5-1: config 0 has an invalid interface number: 41 but max is 0 [ 1518.018563][ T8] usb 5-1: config 0 has no interface number 0 [ 1518.024805][ T8] usb 5-1: config 0 interface 41 has no altsetting 0 [ 1518.052414][ T8] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a [ 1518.071266][ T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1518.079320][ T8] usb 5-1: Product: syz [ 1518.092647][ T8] usb 5-1: Manufacturer: syz [ 1518.097406][ T8] usb 5-1: SerialNumber: syz [ 1518.110399][ T8] usb 5-1: config 0 descriptor?? [ 1518.302724][T12069] loop3: detected capacity change from 0 to 32768 [ 1518.352893][T12069] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1518.456215][T12069] XFS (loop3): Ending clean mount [ 1518.484703][T12069] XFS (loop3): Quotacheck needed: Please wait. [ 1518.580035][T12069] XFS (loop3): Quotacheck: Done. [ 1518.595469][ T8] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71 [ 1518.606851][ T8] CoreChips: probe of 5-1:0.41 failed with error -71 [ 1518.631815][ T8] usb 5-1: USB disconnect, device number 23 [ 1518.676483][ T5769] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1518.866007][T12126] loop5: detected capacity change from 0 to 4096 [ 1518.968059][T12126] ntfs: (device loop5): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1518.998272][T12126] ntfs: (device loop5): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x4 as bad. Run chkdsk. [ 1519.033440][T12126] ntfs: (device loop5): load_and_init_attrdef(): Failed to initialize attribute definition table. [ 1519.063165][T12126] ntfs: (device loop5): ntfs_fill_super(): Failed to load system files. [ 1519.285813][T12145] loop0: detected capacity change from 0 to 16 [ 1519.296701][T12145] erofs: (device loop0): mounted with root inode @ nid 36. [ 1519.668753][T12166] ALSA: mixer_oss: invalid OSS volume '' [ 1519.719634][T12173] loop5: detected capacity change from 0 to 16 [ 1519.780650][T12173] erofs: (device loop5): mounted with root inode @ nid 36. [ 1519.808607][T12182] netlink: 4 bytes leftover after parsing attributes in process `syz.3.15005'. [ 1519.835311][T12182] openvswitch: netlink: Missing key (keys=40, expected=80) [ 1519.989284][T12197] loop5: detected capacity change from 0 to 256 [ 1520.094234][T12200] loop0: detected capacity change from 0 to 4096 [ 1520.114232][T12200] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1520.137936][T11267] usb 5-1: new high-speed USB device number 24 using dummy_hcd [ 1520.200516][T12200] ntfs: (device loop0): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 1520.256217][T12200] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 1520.274688][T12200] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 1520.311651][T12200] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 1520.341840][T12200] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 1520.370521][T11267] usb 5-1: Using ep0 maxpacket: 16 [ 1520.411767][T11267] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice=29.00 [ 1520.424339][T11267] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1520.432463][T11267] usb 5-1: Product: syz [ 1520.447754][T12200] ntfs: volume version 3.1. [ 1520.454919][T11267] usb 5-1: Manufacturer: syz [ 1520.461266][T11267] usb 5-1: SerialNumber: syz [ 1520.490729][T11267] usb 5-1: config 0 descriptor?? [ 1520.498942][T11267] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected [ 1520.521253][T11267] usb 5-1: Detected FT4233HP [ 1520.650465][T12216] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 1520.878988][ T9744] ntfs3: loop5: ino=9, ntfs_sync_fs failed, -22. [ 1520.950040][T11267] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1520.979579][T11267] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1521.008778][T11267] usb 5-1: USB disconnect, device number 24 [ 1521.032283][T11267] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1521.075101][T11267] ftdi_sio 5-1:0.0: device disconnected [ 1521.200710][T12265] netlink: 20 bytes leftover after parsing attributes in process `syz.5.15020'. [ 1521.249530][T12272] netlink: 312 bytes leftover after parsing attributes in process `syz.0.15021'. [ 1521.365344][T12276] set_capacity_and_notify: 1 callbacks suppressed [ 1521.365359][T12276] loop3: detected capacity change from 0 to 1024 [ 1521.427436][ T4473] hfsplus: b-tree write err: -5, ino 25 [ 1521.447065][ T4473] hfsplus: b-tree write err: -5, ino 4 [ 1521.480530][ T4473] hfsplus: b-tree write err: -5, ino 2 [ 1521.532337][T12289] autofs4:pid:12289:autofs_fill_super: called with bogus options [ 1521.711527][T12298] loop4: detected capacity change from 0 to 64 [ 1521.753256][T12302] loop0: detected capacity change from 0 to 8 [ 1521.781610][T12298] Trying to free block not in datazone [ 1521.854087][T12302] SQUASHFS error: Unable to read directory block [629:26] [ 1521.897003][T12309] netlink: 256 bytes leftover after parsing attributes in process `syz.3.15032'. [ 1522.688411][T12353] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1522.761151][T12315] loop5: detected capacity change from 0 to 32768 [ 1522.807359][T12315] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.15033 (12315) [ 1522.869547][T12315] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1522.910562][T12315] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm [ 1522.953639][T12315] BTRFS info (device loop5): force zlib compression, level 3 [ 1522.986624][T12315] BTRFS info (device loop5): turning on flush-on-commit [ 1522.998619][T12315] BTRFS info (device loop5): max_inline at 4096 [ 1523.029192][T12315] BTRFS info (device loop5): using free space tree [ 1523.127364][T12411] bond5: entered allmulticast mode [ 1523.192876][T12411] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1523.221947][T12315] BTRFS info (device loop5): enabling ssd optimizations [ 1523.245398][T12315] BTRFS info (device loop5): auto enabling async discard [ 1523.315554][ T9744] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1523.474709][ T5753] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop5 scanned by udevd (5753) [ 1523.908761][T12496] netlink: 'syz.4.15063': attribute type 1 has an invalid length. [ 1523.937499][T12496] netlink: 244 bytes leftover after parsing attributes in process `syz.4.15063'. [ 1523.985982][T12494] loop0: detected capacity change from 0 to 4096 [ 1524.054833][T12494] ntfs: volume version 3.1. [ 1524.202322][T12504] loop3: detected capacity change from 0 to 4096 [ 1524.257997][T12504] ntfs: volume version 3.1. [ 1524.373980][T12504] __ntfs_error: 20 callbacks suppressed [ 1524.373996][T12504] ntfs: (device loop3): ntfs_truncate(): Inode 0x43 has unknown attribute type 0x80. Aborting truncate. [ 1524.395073][T12516] loop0: detected capacity change from 0 to 64 [ 1524.709767][T25665] Bluetooth: hci3: Malformed LE Event: 0x1b [ 1524.729141][T12532] autofs4:pid:12532:autofs_fill_super: called with bogus options [ 1524.945431][T12549] netlink: 28 bytes leftover after parsing attributes in process `syz.4.15078'. [ 1524.954771][T12549] netlink: 28 bytes leftover after parsing attributes in process `syz.4.15078'. [ 1525.353456][T12576] netlink: 'syz.5.15086': attribute type 1 has an invalid length. [ 1525.368832][ T28] audit: type=1326 audit(1774432326.946:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.424630][ T28] audit: type=1326 audit(1774432326.974:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.475406][ T28] audit: type=1326 audit(1774432326.974:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.551272][ T28] audit: type=1326 audit(1774432326.974:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.577981][ T28] audit: type=1326 audit(1774432326.974:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.669500][ T28] audit: type=1326 audit(1774432326.974:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.731610][ T28] audit: type=1326 audit(1774432326.974:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.824526][ T28] audit: type=1326 audit(1774432326.974:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1525.903248][ T28] audit: type=1326 audit(1774432326.974:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12578 comm="syz.3.15088" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1526.219042][ T5802] usb 4-1: new high-speed USB device number 80 using dummy_hcd [ 1526.424495][ T5802] usb 4-1: config 0 has an invalid interface number: 64 but max is 0 [ 1526.433069][ T5802] usb 4-1: config 0 has no interface number 0 [ 1526.443066][ T5802] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07 [ 1526.473910][ T5802] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1526.484940][ T5802] usb 4-1: Product: syz [ 1526.489230][ T5802] usb 4-1: Manufacturer: syz [ 1526.493847][ T5802] usb 4-1: SerialNumber: syz [ 1526.515976][ T5802] usb 4-1: config 0 descriptor?? [ 1526.578509][T12665] netlink: 132 bytes leftover after parsing attributes in process `syz.5.15113'. [ 1526.639616][T12655] loop4: detected capacity change from 0 to 4096 [ 1526.773444][ T5802] usb 4-1: Found UVC 0.08 device syz (046d:0823) [ 1526.779939][ T5802] usb 4-1: No valid video chain found. [ 1526.785826][T12655] ntfs: volume version 3.1. [ 1526.836805][ T5802] usb 4-1: USB disconnect, device number 80 [ 1527.101450][T12700] overlay: Unknown parameter '\' [ 1527.552225][T12720] loop5: detected capacity change from 0 to 4096 [ 1527.670727][T12720] ntfs: volume version 3.1. [ 1527.770851][T12748] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15134'. [ 1528.440734][T12797] netlink: 'syz.0.15147': attribute type 2 has an invalid length. [ 1528.462560][ T1186] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 1528.665930][ T1186] usb 6-1: Using ep0 maxpacket: 8 [ 1528.673787][ T1186] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1528.686393][T12815] loop3: detected capacity change from 0 to 256 [ 1528.704160][T12817] netlink: 24 bytes leftover after parsing attributes in process `syz.0.15154'. [ 1528.709785][ T1186] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1528.734518][T12815] exfat: Deprecated parameter 'utf8' [ 1528.739956][T12815] exfat: Deprecated parameter 'namecase' [ 1528.750015][ T1186] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 17520, setting to 1024 [ 1528.771563][ T1186] usb 6-1: New USB device found, idVendor=2466, idProduct=8010, bcdDevice= 0.40 [ 1528.796766][ T1186] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1528.810894][T12815] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x8b6193f0, utbl_chksum : 0xe619d30d) [ 1528.825158][ T1186] usb 6-1: Product: syz [ 1528.829421][ T1186] usb 6-1: Manufacturer: syz [ 1528.834578][ T1186] usb 6-1: SerialNumber: syz [ 1529.285312][ T1186] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 1529.306579][ T1186] usb 6-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 1529.365605][ T1186] usb 6-1: USB disconnect, device number 5 [ 1529.416985][ T5753] udevd[5753]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1529.475151][T12885] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15167'. [ 1529.558618][T12890] loop3: detected capacity change from 0 to 512 [ 1529.564681][T12889] ieee802154 phy1 wpan1: encryption failed: -22 [ 1529.577190][T12890] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e028, mo2=0002] [ 1529.599370][T12890] System zones: 1-12 [ 1529.605746][T12890] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.15169: invalid indirect mapped block 8 (level 2) [ 1529.628115][T12890] EXT4-fs (loop3): Remounting filesystem read-only [ 1529.638711][T12890] EXT4-fs (loop3): 1 truncate cleaned up [ 1529.651160][T12890] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1529.719328][T12901] loop4: detected capacity change from 0 to 256 [ 1529.757340][ T5769] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1529.797822][T12901] FAT-fs (loop4): Directory bread(block 64) failed [ 1529.820474][T12901] FAT-fs (loop4): Directory bread(block 65) failed [ 1529.853273][T12901] FAT-fs (loop4): Directory bread(block 66) failed [ 1529.879460][T12901] FAT-fs (loop4): Directory bread(block 67) failed [ 1529.900401][T12901] FAT-fs (loop4): Directory bread(block 68) failed [ 1529.928461][T12901] FAT-fs (loop4): Directory bread(block 69) failed [ 1529.951574][T12901] FAT-fs (loop4): Directory bread(block 70) failed [ 1529.958163][T12901] FAT-fs (loop4): Directory bread(block 71) failed [ 1529.986630][T12901] FAT-fs (loop4): Directory bread(block 72) failed [ 1530.003228][T12914] deleting an unspecified loop device is not supported. [ 1530.005566][T12901] FAT-fs (loop4): Directory bread(block 73) failed [ 1530.141474][T12924] netlink: 16 bytes leftover after parsing attributes in process `syz.0.15177'. [ 1530.950547][ T28] kauditd_printk_skb: 7 callbacks suppressed [ 1530.950562][ T28] audit: type=1326 audit(1774432332.166:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.3.15195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1530.982581][T12981] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1531.039477][ T28] audit: type=1326 audit(1774432332.203:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.3.15195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1531.124937][ T28] audit: type=1326 audit(1774432332.222:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.3.15195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1531.179921][ T28] audit: type=1326 audit(1774432332.222:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12979 comm="syz.3.15195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc52f99c799 code=0x7ffc0000 [ 1531.205243][T12997] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15199'. [ 1531.391977][ T1186] usb 6-1: new high-speed USB device number 6 using dummy_hcd [ 1531.619321][ T1186] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1531.635893][ T1186] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 248, changing to 7 [ 1531.651568][ T1186] usb 6-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1531.684373][ T1186] usb 6-1: New USB device found, idVendor=2b73, idProduct=0017, bcdDevice= 0.40 [ 1531.693785][ T1186] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1531.702914][ T1186] usb 6-1: Product: syz [ 1531.712762][ T1186] usb 6-1: Manufacturer: syz [ 1531.717403][ T1186] usb 6-1: SerialNumber: syz [ 1531.726624][T13036] netlink: 'syz.3.15212': attribute type 21 has an invalid length. [ 1531.840926][T30595] usb 5-1: new high-speed USB device number 25 using dummy_hcd [ 1531.909799][T13047] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15216'. [ 1531.961290][ T1186] usb 6-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 1531.983229][ T1186] snd-usb-audio: probe of 6-1:1.0 failed with error -71 [ 1531.998352][ T1186] usb 6-1: USB disconnect, device number 6 [ 1532.033365][T30595] usb 5-1: Using ep0 maxpacket: 16 [ 1532.048353][ T5753] udevd[5753]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1532.075820][T30595] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1532.087616][T30595] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1532.095654][T30595] usb 5-1: Product: syz [ 1532.111406][T30595] usb 5-1: Manufacturer: syz [ 1532.116050][T30595] usb 5-1: SerialNumber: syz [ 1532.143542][T30595] r8152-cfgselector 5-1: config 0 descriptor?? [ 1532.188965][T13083] loop3: detected capacity change from 0 to 64 [ 1532.441795][T13097] overlay: ./file0 is not a directory [ 1532.461234][T11267] usb 1-1: new high-speed USB device number 68 using dummy_hcd [ 1532.604503][T30595] r8152-cfgselector 5-1: Unknown version 0x0000 [ 1532.633266][T30595] r8152-cfgselector 5-1: USB disconnect, device number 25 [ 1532.677790][T11267] usb 1-1: config 160 has an invalid interface number: 200 but max is 0 [ 1532.696440][T11267] usb 1-1: config 160 has no interface number 0 [ 1532.710115][T11267] usb 1-1: config 160 interface 200 has no altsetting 0 [ 1532.726021][T11267] usb 1-1: New USB device found, idVendor=21bb, idProduct=2070, bcdDevice=87.0b [ 1532.738220][T11267] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1532.755116][T11267] usb 1-1: Product: syz [ 1532.762035][T11267] usb 1-1: Manufacturer: syz [ 1532.766721][T11267] usb 1-1: SerialNumber: syz [ 1533.029539][T11267] usb 1-1: Quirk or no altest; falling back to MIDI 1.0 [ 1533.048304][T11267] usb 1-1: MIDIStreaming interface descriptor not found [ 1533.118481][T11267] usb 1-1: USB disconnect, device number 68 [ 1533.241386][ T5865] udevd[5865]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:160.200/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1533.439008][T13181] netlink: set zone limit has 8 unknown bytes [ 1533.447819][T13180] xt_limit: Overflow, try lower: 65536/2147483648 [ 1533.945748][T13215] loop4: detected capacity change from 0 to 64 [ 1533.991929][T13215] hfs: unable to locate alternate MDB [ 1533.997363][T13215] hfs: continuing without an alternate MDB [ 1534.075189][ T28] audit: type=1800 audit(1774432335.084:676): pid=13215 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.15252" name="bus" dev="loop4" ino=21 res=0 errno=0 [ 1534.151768][ T4473] [ 1534.154139][ T4473] ====================================================== [ 1534.161164][ T4473] WARNING: possible circular locking dependency detected [ 1534.168196][ T4473] syzkaller #0 Not tainted [ 1534.172609][ T4473] ------------------------------------------------------ [ 1534.179638][ T4473] kworker/u4:9/4473 is trying to acquire lock: [ 1534.185800][ T4473] ffff888023af5578 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1380 [ 1534.196619][ T4473] [ 1534.196619][ T4473] but task is already holding lock: [ 1534.203968][ T4473] ffff88805d6ee0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 1534.213256][ T4473] [ 1534.213256][ T4473] which lock already depends on the new lock. [ 1534.213256][ T4473] [ 1534.223662][ T4473] [ 1534.223662][ T4473] the existing dependency chain (in reverse order) is: [ 1534.232709][ T4473] [ 1534.232709][ T4473] -> #1 (&tree->tree_lock/1){+.+.}-{3:3}: [ 1534.240618][ T4473] __mutex_lock+0x136/0xcc0 [ 1534.245640][ T4473] hfs_find_init+0x17e/0x1f0 [ 1534.250747][ T4473] hfs_get_block+0x557/0xc50 [ 1534.255848][ T4473] block_read_full_folio+0x44b/0xf60 [ 1534.261642][ T4473] filemap_read_folio+0x172/0x760 [ 1534.267172][ T4473] do_read_cache_folio+0x468/0x7d0 [ 1534.272927][ T4473] do_read_cache_page+0x32/0x250 [ 1534.278374][ T4473] __hfs_bnode_create+0x4b1/0x7b0 [ 1534.283918][ T4473] hfs_bnode_find+0x222/0xd40 [ 1534.289191][ T4473] hfs_brec_find+0x17c/0x500 [ 1534.294290][ T4473] hfs_brec_read+0x24/0x110 [ 1534.299305][ T4473] hfs_cat_find_brec+0x178/0x3f0 [ 1534.304747][ T4473] hfs_fill_super+0xee2/0x14a0 [ 1534.310020][ T4473] mount_bdev+0x221/0x2d0 [ 1534.314856][ T4473] legacy_get_tree+0xea/0x180 [ 1534.320039][ T4473] vfs_get_tree+0x8c/0x280 [ 1534.324964][ T4473] do_new_mount+0x24b/0xa40 [ 1534.329977][ T4473] __se_sys_mount+0x2e7/0x3d0 [ 1534.335159][ T4473] do_syscall_64+0x55/0xa0 [ 1534.340085][ T4473] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1534.346489][ T4473] [ 1534.346489][ T4473] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}: [ 1534.355687][ T4473] __lock_acquire+0x2df1/0x7d40 [ 1534.361047][ T4473] lock_acquire+0x19e/0x420 [ 1534.366062][ T4473] __mutex_lock+0x136/0xcc0 [ 1534.371088][ T4473] hfs_extend_file+0xff/0x1380 [ 1534.376359][ T4473] hfs_bmap_reserve+0x107/0x430 [ 1534.381714][ T4473] __hfs_ext_write_extent+0x1fa/0x470 [ 1534.387593][ T4473] hfs_ext_write_extent+0x17f/0x210 [ 1534.393295][ T4473] hfs_write_inode+0xdc/0x880 [ 1534.398650][ T4473] __writeback_single_inode+0x705/0xec0 [ 1534.404706][ T4473] writeback_sb_inodes+0x7cd/0xf50 [ 1534.410328][ T4473] wb_writeback+0x46a/0xbf0 [ 1534.415347][ T4473] wb_workfn+0x400/0xe60 [ 1534.420108][ T4473] process_scheduled_works+0xa5d/0x15d0 [ 1534.426162][ T4473] worker_thread+0xa55/0xfc0 [ 1534.431264][ T4473] kthread+0x2fa/0x390 [ 1534.435840][ T4473] ret_from_fork+0x48/0x80 [ 1534.440767][ T4473] ret_from_fork_asm+0x11/0x20 [ 1534.446043][ T4473] [ 1534.446043][ T4473] other info that might help us debug this: [ 1534.446043][ T4473] [ 1534.456341][ T4473] Possible unsafe locking scenario: [ 1534.456341][ T4473] [ 1534.463776][ T4473] CPU0 CPU1 [ 1534.469125][ T4473] ---- ---- [ 1534.474470][ T4473] lock(&tree->tree_lock/1); [ 1534.479139][ T4473] lock(&HFS_I(tree->inode)->extents_lock); [ 1534.487722][ T4473] lock(&tree->tree_lock/1); [ 1534.495099][ T4473] lock(&HFS_I(tree->inode)->extents_lock); [ 1534.501090][ T4473] [ 1534.501090][ T4473] *** DEADLOCK *** [ 1534.501090][ T4473] [ 1534.509220][ T4473] 3 locks held by kworker/u4:9/4473: [ 1534.514491][ T4473] #0: ffff88801ee59138 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 1534.525704][ T4473] #1: ffffc9000f4c7d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0 [ 1534.538140][ T4473] #2: ffff88805d6ee0b0 (&tree->tree_lock/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0 [ 1534.547889][ T4473] [ 1534.547889][ T4473] stack backtrace: [ 1534.553781][ T4473] CPU: 1 PID: 4473 Comm: kworker/u4:9 Not tainted syzkaller #0 [ 1534.561326][ T4473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1534.571376][ T4473] Workqueue: writeback wb_workfn (flush-7:4) [ 1534.577363][ T4473] Call Trace: [ 1534.580635][ T4473] [ 1534.583560][ T4473] dump_stack_lvl+0x18c/0x250 [ 1534.588234][ T4473] ? load_image+0x400/0x400 [ 1534.592728][ T4473] ? show_regs_print_info+0x20/0x20 [ 1534.597928][ T4473] ? print_circular_bug+0x12b/0x1a0 [ 1534.603118][ T4473] check_noncircular+0x2fc/0x400 [ 1534.608044][ T4473] ? look_up_lock_class+0x75/0x140 [ 1534.613146][ T4473] ? print_deadlock_bug+0x5d0/0x5d0 [ 1534.618335][ T4473] ? lockdep_lock+0xf5/0x230 [ 1534.622918][ T4473] ? _find_first_zero_bit+0xd3/0x100 [ 1534.628191][ T4473] __lock_acquire+0x2df1/0x7d40 [ 1534.633038][ T4473] ? arch_stack_walk+0x16e/0x190 [ 1534.637965][ T4473] ? ret_from_fork_asm+0x11/0x20 [ 1534.642902][ T4473] ? verify_lock_unused+0x140/0x140 [ 1534.648094][ T4473] ? stack_trace_save+0xaa/0x100 [ 1534.653018][ T4473] ? stack_trace_snprint+0xf0/0xf0 [ 1534.658118][ T4473] ? check_noncircular+0x18a/0x400 [ 1534.663219][ T4473] ? print_deadlock_bug+0x5d0/0x5d0 [ 1534.668410][ T4473] lock_acquire+0x19e/0x420 [ 1534.672903][ T4473] ? hfs_extend_file+0xff/0x1380 [ 1534.677832][ T4473] ? __might_sleep+0xe0/0xe0 [ 1534.682415][ T4473] ? read_lock_is_recursive+0x20/0x20 [ 1534.687806][ T4473] __mutex_lock+0x136/0xcc0 [ 1534.692317][ T4473] ? hfs_extend_file+0xff/0x1380 [ 1534.697247][ T4473] ? verify_lock_unused+0x140/0x140 [ 1534.702446][ T4473] ? hfs_extend_file+0xff/0x1380 [ 1534.707377][ T4473] ? mutex_lock_nested+0x20/0x20 [ 1534.712314][ T4473] hfs_extend_file+0xff/0x1380 [ 1534.717071][ T4473] ? hfs_ext_write_extent+0x152/0x210 [ 1534.722437][ T4473] ? hfs_write_inode+0xdc/0x880 [ 1534.727275][ T4473] ? hfs_get_block+0xc50/0xc50 [ 1534.732025][ T4473] ? trace_raw_output_contention_end+0xd0/0xd0 [ 1534.738166][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1534.742919][ T4473] ? trace_contention_end+0x39/0xe0 [ 1534.748107][ T4473] ? __asan_memset+0x22/0x40 [ 1534.752687][ T4473] ? hfs_brec_find+0x19b/0x500 [ 1534.757446][ T4473] ? hfs_find_init+0x17e/0x1f0 [ 1534.762199][ T4473] hfs_bmap_reserve+0x107/0x430 [ 1534.767042][ T4473] __hfs_ext_write_extent+0x1fa/0x470 [ 1534.772403][ T4473] hfs_ext_write_extent+0x17f/0x210 [ 1534.777589][ T4473] ? verify_lock_unused+0x140/0x140 [ 1534.782774][ T4473] ? hfs_ext_find_block+0x190/0x190 [ 1534.787965][ T4473] ? blk_start_plug+0x51/0x1a0 [ 1534.792731][ T4473] hfs_write_inode+0xdc/0x880 [ 1534.797400][ T4473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1534.802765][ T4473] ? __writeback_single_inode+0x48d/0xec0 [ 1534.808494][ T4473] ? __lock_acquire+0x7d40/0x7d40 [ 1534.813507][ T4473] ? do_raw_spin_lock+0x11f/0x2c0 [ 1534.818522][ T4473] ? __rwlock_init+0x150/0x150 [ 1534.823279][ T4473] __writeback_single_inode+0x705/0xec0 [ 1534.828820][ T4473] writeback_sb_inodes+0x7cd/0xf50 [ 1534.833929][ T4473] ? queue_io+0x550/0x550 [ 1534.838270][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1534.843050][ T4473] wb_writeback+0x46a/0xbf0 [ 1534.847565][ T4473] ? queue_io+0x3b1/0x550 [ 1534.851889][ T4473] ? percpu_ref_tryget+0x250/0x250 [ 1534.856992][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1534.862978][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1534.868171][ T4473] wb_workfn+0x400/0xe60 [ 1534.872415][ T4473] ? inode_wait_for_writeback+0x230/0x230 [ 1534.878133][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1534.884102][ T4473] ? read_lock_is_recursive+0x20/0x20 [ 1534.889463][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1534.894650][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1534.900364][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1534.906074][ T4473] process_scheduled_works+0xa5d/0x15d0 [ 1534.911626][ T4473] ? worker_attach_to_pool+0x380/0x380 [ 1534.917076][ T4473] ? assign_work+0x3d2/0x5d0 [ 1534.921662][ T4473] worker_thread+0xa55/0xfc0 [ 1534.926258][ T4473] kthread+0x2fa/0x390 [ 1534.930332][ T4473] ? pr_cont_work+0x560/0x560 [ 1534.935012][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1534.939623][ T4473] ret_from_fork+0x48/0x80 [ 1534.944037][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1534.948611][ T4473] ret_from_fork_asm+0x11/0x20 [ 1534.953379][ T4473] [ 1534.964282][ T4473] hfs: new node 0 already hashed? [ 1534.976103][ T4473] ------------[ cut here ]------------ [ 1534.981604][ T4473] WARNING: CPU: 1 PID: 4473 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440 [ 1534.990705][ T4473] Modules linked in: [ 1534.995044][ T4473] CPU: 1 PID: 4473 Comm: kworker/u4:9 Not tainted syzkaller #0 [ 1535.002861][ T4473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1535.013487][ T4473] Workqueue: writeback wb_workfn (flush-7:4) [ 1535.019678][ T4473] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 1535.025341][ T4473] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 1535.045023][ T4473] RSP: 0018:ffffc9000f4c6e18 EFLAGS: 00010246 [ 1535.051153][ T4473] RAX: 000000000000001f RBX: ffff88805d6ee000 RCX: 681759dc57500f00 [ 1535.059191][ T4473] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 1535.067166][ T4473] RBP: 0000000000000000 R08: ffffc9000f4c6a27 R09: 1ffff92001e98d44 [ 1535.075169][ T4473] R10: dffffc0000000000 R11: fffff52001e98d45 R12: 0000000000000000 [ 1535.083427][ T4473] R13: ffff88805d6ee0e0 R14: ffff888026ac4f00 R15: dffffc0000000000 [ 1535.091574][ T4473] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 1535.100612][ T4473] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1535.107244][ T4473] CR2: 00007fc52fc17dac CR3: 000000000cf32000 CR4: 00000000003506e0 [ 1535.115461][ T4473] Call Trace: [ 1535.119106][ T4473] [ 1535.122042][ T4473] hfs_bmap_alloc+0x541/0x5d0 [ 1535.126818][ T4473] ? hfs_bmap_reserve+0x430/0x430 [ 1535.131853][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1535.136658][ T4473] hfs_btree_inc_height+0x101/0xac0 [ 1535.141863][ T4473] ? __rwlock_init+0x150/0x150 [ 1535.146691][ T4473] ? hfs_brec_insert+0xbd0/0xbd0 [ 1535.151636][ T4473] ? do_raw_spin_unlock+0x121/0x230 [ 1535.156871][ T4473] hfs_brec_insert+0x748/0xbd0 [ 1535.161644][ T4473] ? hfs_brec_keylen+0x360/0x360 [ 1535.166709][ T4473] __hfs_ext_write_extent+0x2a1/0x470 [ 1535.172088][ T4473] hfs_ext_write_extent+0x17f/0x210 [ 1535.177315][ T4473] ? verify_lock_unused+0x140/0x140 [ 1535.182515][ T4473] ? hfs_ext_find_block+0x190/0x190 [ 1535.187883][ T4473] ? blk_start_plug+0x51/0x1a0 [ 1535.192665][ T4473] hfs_write_inode+0xdc/0x880 [ 1535.197582][ T4473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1535.202970][ T4473] ? __writeback_single_inode+0x48d/0xec0 [ 1535.208748][ T4473] ? __lock_acquire+0x7d40/0x7d40 [ 1535.213766][ T4473] ? do_raw_spin_lock+0x11f/0x2c0 [ 1535.218793][ T4473] ? __rwlock_init+0x150/0x150 [ 1535.223603][ T4473] __writeback_single_inode+0x705/0xec0 [ 1535.229665][ T4473] writeback_sb_inodes+0x7cd/0xf50 [ 1535.234882][ T4473] ? queue_io+0x550/0x550 [ 1535.239252][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1535.244086][ T4473] wb_writeback+0x46a/0xbf0 [ 1535.248599][ T4473] ? queue_io+0x3b1/0x550 [ 1535.253011][ T4473] ? percpu_ref_tryget+0x250/0x250 [ 1535.258130][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1535.264155][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1535.269355][ T4473] wb_workfn+0x400/0xe60 [ 1535.273729][ T4473] ? inode_wait_for_writeback+0x230/0x230 [ 1535.279464][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1535.285471][ T4473] ? read_lock_is_recursive+0x20/0x20 [ 1535.290851][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1535.296262][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1535.302007][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1535.307800][ T4473] process_scheduled_works+0xa5d/0x15d0 [ 1535.313458][ T4473] ? worker_attach_to_pool+0x380/0x380 [ 1535.319048][ T4473] ? assign_work+0x3d2/0x5d0 [ 1535.323660][ T4473] worker_thread+0xa55/0xfc0 [ 1535.328329][ T4473] kthread+0x2fa/0x390 [ 1535.332406][ T4473] ? pr_cont_work+0x560/0x560 [ 1535.337304][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1535.341892][ T4473] ret_from_fork+0x48/0x80 [ 1535.346301][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1535.351043][ T4473] ret_from_fork_asm+0x11/0x20 [ 1535.355814][ T4473] [ 1535.358893][ T4473] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1535.366276][ T4473] CPU: 1 PID: 4473 Comm: kworker/u4:9 Not tainted syzkaller #0 [ 1535.373814][ T4473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 1535.383861][ T4473] Workqueue: writeback wb_workfn (flush-7:4) [ 1535.389845][ T4473] Call Trace: [ 1535.393212][ T4473] [ 1535.396133][ T4473] dump_stack_lvl+0x18c/0x250 [ 1535.400804][ T4473] ? show_regs_print_info+0x20/0x20 [ 1535.405994][ T4473] ? load_image+0x400/0x400 [ 1535.410505][ T4473] panic+0x2dc/0x730 [ 1535.414393][ T4473] ? bpf_jit_dump+0xd0/0xd0 [ 1535.418890][ T4473] ? ret_from_fork_asm+0x11/0x20 [ 1535.423845][ T4473] __warn+0x2e0/0x470 [ 1535.427834][ T4473] ? hfs_bnode_create+0x3b9/0x440 [ 1535.432854][ T4473] ? hfs_bnode_create+0x3b9/0x440 [ 1535.437874][ T4473] report_bug+0x2be/0x4f0 [ 1535.442193][ T4473] ? hfs_bnode_create+0x3b9/0x440 [ 1535.447211][ T4473] ? hfs_bnode_create+0x3b9/0x440 [ 1535.452224][ T4473] ? hfs_bnode_create+0x3bb/0x440 [ 1535.457236][ T4473] handle_bug+0xcf/0x120 [ 1535.461473][ T4473] exc_invalid_op+0x1a/0x50 [ 1535.465966][ T4473] asm_exc_invalid_op+0x1a/0x20 [ 1535.470808][ T4473] RIP: 0010:hfs_bnode_create+0x3b9/0x440 [ 1535.476429][ T4473] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c [ 1535.496033][ T4473] RSP: 0018:ffffc9000f4c6e18 EFLAGS: 00010246 [ 1535.502089][ T4473] RAX: 000000000000001f RBX: ffff88805d6ee000 RCX: 681759dc57500f00 [ 1535.510055][ T4473] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000 [ 1535.518014][ T4473] RBP: 0000000000000000 R08: ffffc9000f4c6a27 R09: 1ffff92001e98d44 [ 1535.525973][ T4473] R10: dffffc0000000000 R11: fffff52001e98d45 R12: 0000000000000000 [ 1535.533937][ T4473] R13: ffff88805d6ee0e0 R14: ffff888026ac4f00 R15: dffffc0000000000 [ 1535.541904][ T4473] ? hfs_bnode_create+0x3b9/0x440 [ 1535.546925][ T4473] hfs_bmap_alloc+0x541/0x5d0 [ 1535.551633][ T4473] ? hfs_bmap_reserve+0x430/0x430 [ 1535.556645][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1535.561407][ T4473] hfs_btree_inc_height+0x101/0xac0 [ 1535.566592][ T4473] ? __rwlock_init+0x150/0x150 [ 1535.571369][ T4473] ? hfs_brec_insert+0xbd0/0xbd0 [ 1535.576293][ T4473] ? do_raw_spin_unlock+0x121/0x230 [ 1535.581480][ T4473] hfs_brec_insert+0x748/0xbd0 [ 1535.586254][ T4473] ? hfs_brec_keylen+0x360/0x360 [ 1535.591183][ T4473] __hfs_ext_write_extent+0x2a1/0x470 [ 1535.596588][ T4473] hfs_ext_write_extent+0x17f/0x210 [ 1535.601771][ T4473] ? verify_lock_unused+0x140/0x140 [ 1535.606958][ T4473] ? hfs_ext_find_block+0x190/0x190 [ 1535.612146][ T4473] ? blk_start_plug+0x51/0x1a0 [ 1535.616984][ T4473] hfs_write_inode+0xdc/0x880 [ 1535.621658][ T4473] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 1535.627104][ T4473] ? __writeback_single_inode+0x48d/0xec0 [ 1535.632901][ T4473] ? __lock_acquire+0x7d40/0x7d40 [ 1535.637915][ T4473] ? do_raw_spin_lock+0x11f/0x2c0 [ 1535.642930][ T4473] ? __rwlock_init+0x150/0x150 [ 1535.647688][ T4473] __writeback_single_inode+0x705/0xec0 [ 1535.653243][ T4473] writeback_sb_inodes+0x7cd/0xf50 [ 1535.658353][ T4473] ? queue_io+0x550/0x550 [ 1535.662702][ T4473] ? rcu_is_watching+0x15/0xb0 [ 1535.667487][ T4473] wb_writeback+0x46a/0xbf0 [ 1535.672083][ T4473] ? queue_io+0x3b1/0x550 [ 1535.676406][ T4473] ? percpu_ref_tryget+0x250/0x250 [ 1535.681511][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1535.687484][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1535.692675][ T4473] wb_workfn+0x400/0xe60 [ 1535.697006][ T4473] ? inode_wait_for_writeback+0x230/0x230 [ 1535.702723][ T4473] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1535.708695][ T4473] ? read_lock_is_recursive+0x20/0x20 [ 1535.714144][ T4473] ? _raw_spin_unlock_irq+0x23/0x50 [ 1535.719328][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1535.725039][ T4473] ? process_scheduled_works+0x96f/0x15d0 [ 1535.730757][ T4473] process_scheduled_works+0xa5d/0x15d0 [ 1535.736485][ T4473] ? worker_attach_to_pool+0x380/0x380 [ 1535.741938][ T4473] ? assign_work+0x3d2/0x5d0 [ 1535.746533][ T4473] worker_thread+0xa55/0xfc0 [ 1535.751118][ T4473] kthread+0x2fa/0x390 [ 1535.755172][ T4473] ? pr_cont_work+0x560/0x560 [ 1535.759836][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1535.764412][ T4473] ret_from_fork+0x48/0x80 [ 1535.768818][ T4473] ? kthread_blkcg+0xd0/0xd0 [ 1535.773395][ T4473] ret_from_fork_asm+0x11/0x20 [ 1535.778163][ T4473] [ 1535.781502][ T4473] Kernel Offset: disabled [ 1535.785813][ T4473] Rebooting in 86400 seconds..