last executing test programs: 3.150228828s ago: executing program 1 (id=9186): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]}) io_cancel(0x0, 0x0, 0x0) 3.05072635s ago: executing program 0 (id=9189): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, 0x0, 0x4d) 2.775423818s ago: executing program 1 (id=9194): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=@ipv6_newrule={0x1c, 0x1a, 0x1, 0x0, 0x25dfdc02, {0x81, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x3}}, 0x1c}}, 0x0) 2.77463866s ago: executing program 0 (id=9195): syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000340)='./file2\x00', 0x280400b, &(0x7f00000004c0)=ANY=[], 0x41, 0x230, &(0x7f00000006c0)="$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") listxattr(&(0x7f0000000040)='./file2\x00', 0x0, 0x0) 2.443582606s ago: executing program 0 (id=9201): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x804, &(0x7f0000000180)={[{@allow_utime={'allow_utime', 0x3d, 0x3ff}}, {@gid}, {@zero_size_dir}, {@errors_remount}, {@dmask={'dmask', 0x3d, 0x5}}, {@namecase}, {@gid}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@umask={'umask', 0x3d, 0x2}}, {@gid}]}, 0x1, 0x1534, &(0x7f0000000400)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xa0a2, 0x0, 0x0, 0x0, 0x0) 2.432698206s ago: executing program 1 (id=9202): r0 = syz_open_dev$swradio(&(0x7f0000000380), 0x0, 0x2) ioctl$VIDIOC_G_CTRL(r0, 0xc008561b, &(0x7f0000000000)={0x98f908, 0x8}) 2.212441954s ago: executing program 1 (id=9205): r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f00000002c0)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x174, &(0x7f00000005c0)=ANY=[@ANYBLOB="3f00004e6c8e5f059da33dfaa0f61d4b74e026aab7349ab85e0d3d3c451aad5877a7594e42b0cb9253c22af4ae22cba9088088baf0ff2ae13d94c3c459ab2e5c144c00003500004e"]) 2.170424806s ago: executing program 0 (id=9206): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x3, &(0x7f0000000140), 0x1, 0x25f, &(0x7f0000000b00)="$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") open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[@ANYBLOB="20000000020000000b"], 0x8840) 1.924278888s ago: executing program 0 (id=9210): r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000280)='net/rt6_stats\x00') read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020) 1.743903212s ago: executing program 0 (id=9212): syz_open_procfs(0x0, &(0x7f0000000180)='environ\x00') syz_usb_connect(0x5, 0x5a, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000ec13b2106d04f308280b0102030109024800010000000009046900000e0100002b4101"], 0x0) 1.485740786s ago: executing program 4 (id=9215): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) sigaltstack(0x0, 0x0) 1.398369849s ago: executing program 5 (id=9216): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x24, 0x14, 0x1, 0x0, 0x0, {0x2c}, [@INET_DIAG_REQ_BYTECODE={0xd, 0x1, "73e99a98e584b7dd5f"}]}, 0x24}}, 0x0) 1.389212267s ago: executing program 2 (id=9217): r0 = socket$inet_mptcp(0x2, 0x1, 0x106) ioctl$sock_SIOCOUTQNSD(r0, 0x894b, &(0x7f0000000840)) 1.327164063s ago: executing program 3 (id=9218): r0 = shmget(0x1, 0x4000, 0xa20, &(0x7f0000ffb000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x4000) 1.170093592s ago: executing program 5 (id=9219): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_RES_QP_GET(r0, &(0x7f00000021c0)={0x0, 0x0, &(0x7f0000002180)={&(0x7f00000000c0)={0x10, 0x140a, 0x1, 0x70bd2b, 0x25dfdbfd}, 0x10}}, 0x800) 1.142502092s ago: executing program 2 (id=9220): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r0, 0x84, 0x6e, &(0x7f0000000080)=[@in6={0xa, 0x4e20, 0x2, @dev={0xfe, 0x80, '\x00', 0x2a}, 0xbf20}], 0x1c) 1.098615981s ago: executing program 4 (id=9221): r0 = add_key$keyring(&(0x7f0000000080), &(0x7f0000000340)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff) keyctl$restrict_keyring(0x1d, r0, 0x0, 0x0) 1.036098019s ago: executing program 3 (id=9222): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x1, 0x6, 0x7ff00003}]}) ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0) 887.866625ms ago: executing program 5 (id=9223): creat(&(0x7f0000000000)='./bus\x00', 0x102) mount(&(0x7f00000003c0)=@filename='./bus\x00', &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,') 830.160815ms ago: executing program 4 (id=9224): r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) preadv2(r0, &(0x7f0000001540)=[{&(0x7f0000001380)=""/129, 0x81}], 0x1, 0x0, 0x0, 0x0) 829.617825ms ago: executing program 2 (id=9225): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f00000001c0)='.\x00', 0xffffffffffffff9c, 0x0, 0x240) 662.679527ms ago: executing program 3 (id=9226): r0 = syz_open_dev$video(&(0x7f00000000c0), 0x7, 0x8100) ioctl$VIDIOC_S_FMT(r0, 0xc0d05640, &(0x7f0000000100)={0x1, @pix={0x0, 0x0, 0x34565348, 0x0, 0x0, 0x0, 0x9, 0xfeedcafe, 0xe7, 0xffffff80, 0x0, 0x2}}) 661.619911ms ago: executing program 5 (id=9227): r0 = socket$kcm(0xa, 0x3, 0x73) sendmsg$inet(r0, &(0x7f0000001180)={&(0x7f0000000000)={0xa, 0x0, @empty}, 0xffac, &(0x7f0000001080)=[{&(0x7f0000000040)="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", 0xffa0}, {&(0x7f0000001040)="9d7fcf3efc63f4a6a555ba8b4726d7ccaf8a207100e69cfac4377876021d7131b838059f96bd206d4776368ed2a92432e5af71", 0x33}], 0x2, &(0x7f00000010c0)=[@ip_tos_int={{0x18, 0x29, 0x36}}, @ip_tos_u8={{0x38, 0x29, 0x3b}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @empty, @loopback}}}], 0x50}, 0x0) 619.319154ms ago: executing program 4 (id=9228): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)={0x1c, 0x18, 0x229, 0x0, 0x0, {0x2}, [@typed={0x8, 0x800, 0x0, 0x0, @u32=0x3}]}, 0x1c}}, 0x0) 592.320707ms ago: executing program 2 (id=9229): r0 = socket(0x10, 0x803, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x3e}, [@IFA_LOCAL={0x14, 0xb, @local}, @IFA_LOCAL={0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}, 0x40}, 0x1, 0x0, 0x0, 0x20004051}, 0x40) 558.513263ms ago: executing program 3 (id=9230): r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$PTP_EXTTS_REQUEST(r0, 0x40103d02, &(0x7f0000000080)={0x3}) 398.341954ms ago: executing program 1 (id=9231): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) ioctl$FS_IOC_GETFSLABEL(r0, 0x800452d2, 0x0) 390.275017ms ago: executing program 5 (id=9232): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000800)=ANY=[@ANYBLOB="380000005400e5010f1d01000000080007000000", @ANYRES32, @ANYBLOB="20000100", @ANYRES32, @ANYBLOB="01000100e000000100000000000000000000000008"], 0x38}}, 0x0) 343.882067ms ago: executing program 4 (id=9233): syz_mount_image$hfs(&(0x7f0000000480), &(0x7f0000000140)='./file1\x00', 0x3000840, &(0x7f00000004c0)=ANY=[@ANYBLOB="6469725f756d61736b3d303030303030303030303030303030342c66696c655f756d61736b3d30303030303030303030303030303030303030313334302c696f636861727365743d6d61637475726b6973682c636f6465706167653d69736f383835392d362c63726561746f723d4ddd71752c00eace691af6ae10469da9b01baceb6a9486a6be7f83429052dab3e6e5e287ba3d79e809945e4361c0019a8ed88ae1c6c541bb9a966c0e4d7bde2f8e3add0af5a9c74c520f889381fbcf573e0000000000"], 0x11, 0x2e1, &(0x7f0000000ac0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) 324.792139ms ago: executing program 2 (id=9234): r0 = shmget(0x1, 0x4000, 0xa20, &(0x7f0000ffb000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x4000) 304.383548ms ago: executing program 3 (id=9235): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="1c00000014000100000080000000000007000080080002"], 0x1c}], 0x1}, 0x0) 118.335023ms ago: executing program 1 (id=9236): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000004e80)=@setlink={0x168, 0x13, 0x1, 0xfffffffe, 0x0, {0x0, 0x0, 0x0, 0x0, 0x2006, 0x300}, [@IFLA_MASTER={0x8}, @IFLA_PROTO_DOWN={0x5}, @IFLA_LINK={0x8}, @IFLA_IFNAME={0x14, 0x3, 'batadv0\x00'}, @IFLA_MASTER={0x8}, @IFLA_AF_SPEC={0xf4, 0x1a, 0x0, 0x1, [@AF_INET6={0xf0, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x14, 0x7, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}, @IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @remote}]}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x0, 0x8, 0x4}, @IFLA_INET6_TOKEN={0x0, 0x7, @remote}, @IFLA_INET6_TOKEN={0x0, 0x7, @remote}, @IFLA_INET6_ADDR_GEN_MODE={0x0, 0x8, 0x19}, @IFLA_INET6_TOKEN={0x0, 0x7, @remote}, @IFLA_INET6_ADDR_GEN_MODE={0x0, 0x8, 0x24}, @IFLA_INET6_TOKEN={0x0, 0x7, @private0}]}, @AF_BRIDGE={0x4}, @AF_BRIDGE={0x4}, @AF_BRIDGE, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @loopback}]}, @AF_INET6={0x50, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5}, @IFLA_INET6_TOKEN={0x14, 0x7, @private2}, @IFLA_INET6_TOKEN={0x14, 0x7, @loopback}, @IFLA_INET6_TOKEN={0x14, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE={0x5}]}, @AF_BRIDGE={0x4}, @AF_BRIDGE={0x4}, @AF_INET={0x10, 0x2, 0x0, 0x1, {0xc, 0x1, 0x0, 0x1, [{0x8}]}}]}, @IFLA_TARGET_NETNSID={0x8, 0x2e, 0x4}, @IFLA_NUM_RX_QUEUES={0x8}, @IFLA_EXT_MASK={0x8}, @IFLA_PROMISCUITY={0x8}]}, 0x168}}, 0x0) 113.219492ms ago: executing program 2 (id=9237): r0 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0) ioctl$DRM_IOCTL_MODE_ADDFB2(r0, 0xc06864b8, &(0x7f0000000580)={0x0, 0xc1, 0x80, 0x3231564e, 0x6, [], [0x80ffff, 0x0, 0x0, 0xfffffffd], [], [0x400000000000001]}) 95.719991ms ago: executing program 5 (id=9238): r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10) sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f00000003c0)=ANY=[@ANYBLOB="140100001f000504000000000000000002"], 0x114}], 0x1}, 0x0) 65.503343ms ago: executing program 4 (id=9239): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000005cc0)={0x11, 0x8, &(0x7f0000000180)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000005d80)={0x0, 0x1}, 0xfffffffffffffe22}, 0x94) 0s ago: executing program 3 (id=9240): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000005c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x3}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x7}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @counter={{0xc}, @void}}]}, @NFT_MSG_NEWSETELEM={0x40, 0xc, 0xa, 0x101, 0x0, 0x0, {0x7}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x14, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_SET_ELEM_EXPRESSIONS={0x4}]}]}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0xd4}, 0x1, 0x0, 0x0, 0x20000841}, 0x40000) kernel console output (not intermixed with test programs): : Directory bread(block 70) failed [ 884.078457][T23668] FAT-fs (loop3): Directory bread(block 71) failed [ 884.085087][T23668] FAT-fs (loop3): Directory bread(block 72) failed [ 884.127622][T23668] FAT-fs (loop3): Directory bread(block 73) failed [ 884.645504][T23692] netlink: 68 bytes leftover after parsing attributes in process `syz.0.7562'. [ 884.835465][T23700] loop2: detected capacity change from 0 to 512 [ 884.908435][T23702] loop3: detected capacity change from 0 to 128 [ 884.951551][T23702] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 884.953812][T23700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 885.026043][T23702] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 885.033416][T23700] ext4 filesystem being mounted at /1253/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 885.188803][T23700] EXT4-fs error (device loop2): ext4_empty_dir:3085: inode #12: block 32: comm syz.2.7566: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 885.286340][T23700] EXT4-fs (loop2): Remounting filesystem read-only [ 885.293068][T23700] EXT4-fs warning (device loop2): ext4_empty_dir:3089: inode #12: comm syz.2.7566: directory missing '.' [ 885.588079][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 886.307890][ T10] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 886.451556][T23708] loop4: detected capacity change from 0 to 32768 [ 886.479202][T23708] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 886.488790][ T10] usb 2-1: Using ep0 maxpacket: 32 [ 886.496329][T23708] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 886.510003][ T10] usb 2-1: config 0 has an invalid interface number: 164 but max is 0 [ 886.529091][ T10] usb 2-1: config 0 has no interface number 0 [ 886.535207][ T10] usb 2-1: config 0 interface 164 has no altsetting 0 [ 886.551998][ T10] usb 2-1: New USB device found, idVendor=0c26, idProduct=0020, bcdDevice=cb.38 [ 886.580256][ T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 886.608860][ T10] usb 2-1: Product: syz [ 886.613041][ T10] usb 2-1: Manufacturer: syz [ 886.626750][ T10] usb 2-1: SerialNumber: syz [ 886.651519][ T10] usb 2-1: config 0 descriptor?? [ 886.738056][T23708] XFS (loop4): Ending clean mount [ 886.774293][T23708] XFS (loop4): Quotacheck needed: Please wait. [ 886.815002][T23725] loop0: detected capacity change from 0 to 32768 [ 886.849102][T23725] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.7577 (23725) [ 886.860883][T23708] XFS (loop4): Quotacheck: Done. [ 886.940555][ T10] usb 2-1: USB disconnect, device number 16 [ 886.970734][T23725] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 887.034161][T23725] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm [ 887.086699][ T6141] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 887.343368][T23725] BTRFS info (device loop0): enabling ssd optimizations [ 887.407913][T23725] BTRFS info (device loop0): enabling free space tree [ 887.740191][ T6148] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 888.038038][ T5827] usb 5-1: new low-speed USB device number 6 using dummy_hcd [ 888.250907][ T5827] usb 5-1: config index 0 descriptor too short (expected 6427, got 27) [ 888.259486][ T5827] usb 5-1: config 0 has an invalid interface number: 21 but max is 0 [ 888.267582][ T5827] usb 5-1: config 0 has no interface number 0 [ 888.313420][ T5827] usb 5-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 888.364952][ T5827] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 888.396487][ T5827] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 888.407884][T23809] loop5: detected capacity change from 0 to 4096 [ 888.440472][ T5827] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 888.449921][T23809] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 888.477776][ T5827] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 888.516622][ T5827] usb 5-1: config 0 descriptor?? [ 888.539044][T23798] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 888.542447][T23809] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 888.566180][T23809] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 888.734230][T23809] ntfs3(loop5): ino=1e, mi_enum_attr [ 888.768120][T23809] ntfs3(loop5): ino=1e, mi_enum_attr [ 888.774129][T23809] ntfs3(loop5): ino=1e, mi_enum_attr [ 888.887076][T23826] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7614'. [ 888.957407][T19755] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22. [ 888.967242][ T5827] usb 5-1: USB disconnect, device number 6 [ 888.974320][ T6153] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 889.011586][ T6153] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 889.042569][ T6153] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 889.157890][ T6270] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 889.338154][ T6270] usb 4-1: Using ep0 maxpacket: 32 [ 889.356149][ T6270] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 889.393059][ T30] audit: type=1326 audit(2000524688.964:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23840 comm="syz.2.7624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ad7d8eec9 code=0x7ffc0000 [ 889.394297][ T6270] usb 4-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00 [ 889.468076][ T30] audit: type=1326 audit(2000524688.964:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23840 comm="syz.2.7624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ad7d8eec9 code=0x7ffc0000 [ 889.483804][ T6270] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 889.568237][ T30] audit: type=1326 audit(2000524689.004:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23840 comm="syz.2.7624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f8ad7d8eec9 code=0x7ffc0000 [ 889.617458][ T6270] usb 4-1: config 0 descriptor?? [ 889.649810][ T30] audit: type=1326 audit(2000524689.004:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23840 comm="syz.2.7624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ad7d8eec9 code=0x7ffc0000 [ 889.774916][T23851] veth5: entered promiscuous mode [ 889.785828][ T30] audit: type=1326 audit(2000524689.004:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23840 comm="syz.2.7624" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ad7d8eec9 code=0x7ffc0000 [ 889.853269][ T6270] usb 4-1: string descriptor 0 read error: -71 [ 889.895155][ T6270] usbhid 4-1:0.0: can't add hid device: -71 [ 889.915353][ T6270] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 889.958432][ T6270] usb 4-1: USB disconnect, device number 18 [ 890.448913][T23873] netlink: 32 bytes leftover after parsing attributes in process `syz.2.7639'. [ 891.357803][T23907] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7651'. [ 891.668464][T23916] loop2: detected capacity change from 0 to 1024 [ 891.968978][T23925] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 892.020088][ T30] audit: type=1326 audit(2000524691.594:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23926 comm="syz.4.7665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 892.130624][ T30] audit: type=1326 audit(2000524691.594:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23926 comm="syz.4.7665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 892.226899][ T30] audit: type=1326 audit(2000524691.634:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23926 comm="syz.4.7665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 892.326062][ T30] audit: type=1326 audit(2000524691.634:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23926 comm="syz.4.7665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 892.400976][ T30] audit: type=1326 audit(2000524691.634:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23926 comm="syz.4.7665" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 892.706336][T23914] loop5: detected capacity change from 0 to 32768 [ 892.735657][T23914] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7658 (23914) [ 892.772312][T23914] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 892.797915][T23914] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm [ 892.935953][T23914] BTRFS info (device loop5): enabling ssd optimizations [ 892.959009][T23914] BTRFS info (device loop5): enabling free space tree [ 893.350240][ T6153] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 894.051817][T23992] loop4: detected capacity change from 0 to 1024 [ 894.214988][T23992] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 894.485353][ T6141] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 894.507374][T24007] loop2: detected capacity change from 0 to 4096 [ 894.581240][T24017] netlink: 'syz.0.7699': attribute type 1 has an invalid length. [ 894.999134][T24027] loop0: detected capacity change from 0 to 164 [ 895.083948][T24023] loop5: detected capacity change from 0 to 4096 [ 895.089958][T24027] Unsupported NM flag settings (240) [ 895.142195][T24023] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 895.368371][T24023] ntfs3(loop5): Failed to initialize $Extend/$ObjId. [ 895.639398][T24043] loop0: detected capacity change from 0 to 1024 [ 895.756215][T24049] IPVS: length: 90 != 8 [ 895.812215][T24043] hfsplus: invalid xattr key length: 0 [ 895.890080][T24052] loop2: detected capacity change from 0 to 164 [ 895.925657][T24052] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 895.976792][T24052] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 896.299163][T24065] netlink: 'syz.1.7723': attribute type 1 has an invalid length. [ 896.452706][T24069] loop4: detected capacity change from 0 to 64 [ 896.516416][T24062] loop3: detected capacity change from 0 to 4096 [ 896.599622][T24062] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 896.649071][T24062] ntfs3(loop3): ino=3, ntfs_set_state failed, -22. [ 896.669039][T24062] ntfs3(loop3): Failed to load $LogFile (-22). [ 896.675229][T24062] ntfs3(loop3): ino=3, ntfs3_write_inode failed, -22. [ 896.916823][ T30] kauditd_printk_skb: 14 callbacks suppressed [ 896.916848][ T30] audit: type=1326 audit(2000524696.484:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24082 comm="syz.4.7731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 896.998536][ T30] audit: type=1326 audit(2000524696.484:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24082 comm="syz.4.7731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 897.021752][ T30] audit: type=1326 audit(2000524696.494:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24082 comm="syz.4.7731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=279 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 897.089171][ T30] audit: type=1326 audit(2000524696.494:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24082 comm="syz.4.7731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 897.225457][ T30] audit: type=1326 audit(2000524696.494:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24082 comm="syz.4.7731" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 897.303931][T24090] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7735'. [ 897.385161][T24097] loop1: detected capacity change from 0 to 764 [ 897.831660][T24111] loop1: detected capacity change from 0 to 1024 [ 897.853484][T24111] EXT4-fs: Ignoring removed orlov option [ 897.859141][T24111] EXT4-fs: Ignoring removed nomblk_io_submit option [ 897.940332][T24111] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002] [ 897.969536][T24111] System zones: 0-1, 3-36 [ 898.006000][T24111] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 898.083265][T24126] netlink: 8 bytes leftover after parsing attributes in process `syz.0.7753'. [ 898.092267][T24126] netlink: 'syz.0.7753': attribute type 1 has an invalid length. [ 898.108607][T24126] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7753'. [ 898.325008][ T6156] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 898.530733][T24136] netlink: 'syz.1.7757': attribute type 1 has an invalid length. [ 899.032156][T24147] loop1: detected capacity change from 0 to 16 [ 899.074230][T24147] erofs (device loop1): mounted with root inode @ nid 36. [ 899.131317][ T6155] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[9000] [ 899.145327][T24147] erofs (device loop1): failed to decompress 6887 in[4096, 0] out[8192] [ 899.194414][T24147] erofs (device loop1): read error -117 @ 1 of nid 89 [ 899.213142][T24115] loop5: detected capacity change from 0 to 32768 [ 899.240928][ T30] audit: type=1800 audit(2000524698.813:176): pid=24147 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.7763" name="file3" dev="loop1" ino=89 res=0 errno=0 [ 899.293341][T24115] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7748 (24115) [ 899.375626][T24127] loop2: detected capacity change from 0 to 32768 [ 899.408443][T24115] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 899.460180][T24115] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm [ 899.489844][T24127] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 899.554355][T24127] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 899.737929][T24115] BTRFS info (device loop5): enabling ssd optimizations [ 899.809582][T24115] BTRFS info (device loop5): enabling free space tree [ 899.843287][T24127] XFS (loop2): Ending clean mount [ 899.911834][T24127] XFS (loop2): Quotacheck needed: Please wait. [ 899.974605][T24127] XFS (loop2): Quotacheck: Done. [ 900.088430][T24139] loop3: detected capacity change from 0 to 32768 [ 900.146695][T24184] loop0: detected capacity change from 0 to 4096 [ 900.179078][T24184] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 900.238711][ T6153] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 900.301952][ T6143] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 900.331487][T24184] ntfs3(loop0): ino=18, mi_enum_attr [ 900.374139][T24184] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 900.549605][ T6363] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 900.594209][T24192] netlink: 20 bytes leftover after parsing attributes in process `syz.4.7775'. [ 900.759662][ T6363] usb 2-1: Using ep0 maxpacket: 32 [ 900.771353][ T6363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 900.805569][ T6363] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 900.893334][ T6363] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 900.950047][ T6363] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 901.029170][ T6363] usb 2-1: config 0 descriptor?? [ 901.103404][T24203] comedi comedi3: aio_iiro_16: a I/O base address must be specified [ 901.113324][ T6363] hub 2-1:0.0: USB hub found [ 901.118647][T24201] netlink: 52 bytes leftover after parsing attributes in process `syz.4.7777'. [ 901.177701][T24201] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 901.253580][T24205] loop3: detected capacity change from 0 to 256 [ 901.307435][ T6363] hub 2-1:0.0: config failed, hub doesn't have any ports! (err -19) [ 901.532341][ T6363] usbhid 2-1:0.0: can't add hid device: -71 [ 901.573829][ T6363] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 901.650860][ T6363] usb 2-1: USB disconnect, device number 17 [ 902.650107][T24255] netlink: 'syz.4.7799': attribute type 11 has an invalid length. [ 902.657968][T24255] netlink: 'syz.4.7799': attribute type 4 has an invalid length. [ 902.708414][T24255] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7799'. [ 902.786790][ T10] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 902.864771][T24263] loop5: detected capacity change from 0 to 2048 [ 902.921102][T24263] EXT4-fs: Ignoring removed i_version option [ 902.988084][ T10] usb 3-1: Using ep0 maxpacket: 32 [ 903.012934][ T10] usb 3-1: config 0 has an invalid interface number: 35 but max is 0 [ 903.063655][ T10] usb 3-1: config 0 has no interface number 0 [ 903.085608][T24263] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 903.158002][ T10] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 903.208064][ T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 903.240178][ T10] usb 3-1: Product: syz [ 903.244356][ T10] usb 3-1: Manufacturer: syz [ 903.259369][ T10] usb 3-1: SerialNumber: syz [ 903.291692][ T10] usb 3-1: config 0 descriptor?? [ 903.319692][ T10] radio-si470x 3-1:0.35: could not find interrupt in endpoint [ 903.365160][ T10] radio-si470x 3-1:0.35: probe with driver radio-si470x failed with error -5 [ 903.383170][ T6153] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 903.526512][ T10] radio-raremono 3-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 903.743595][ T10] radio-raremono 3-1:0.35: raremono_cmd_main failed (-71) [ 903.790309][ T10] radio-raremono 3-1:0.35: V4L2 device registered as radio48 [ 903.800606][ T6130] usb 4-1: new full-speed USB device number 19 using dummy_hcd [ 903.827811][ T10] usb 3-1: USB disconnect, device number 4 [ 903.870958][ T10] radio-raremono 3-1:0.35: Thanko's Raremono disconnected [ 904.028550][ T6130] usb 4-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 904.060035][ T6130] usb 4-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 904.107064][ T6130] usb 4-1: Product: syz [ 904.115669][ T6130] usb 4-1: Manufacturer: syz [ 904.125739][ T6130] usb 4-1: SerialNumber: syz [ 904.176308][ T6130] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 904.350728][ T6352] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 904.532797][ T6352] usb 5-1: Using ep0 maxpacket: 8 [ 904.560098][ T6352] usb 5-1: config 6 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 904.590100][ T6352] usb 5-1: config 6 interface 0 altsetting 0 has an endpoint descriptor with address 0xEC, changing to 0x8C [ 904.603382][ T6130] vp7045: USB control message 'in' went wrong. [ 904.625834][ T6130] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 904.640664][ T6352] usb 5-1: config 6 interface 0 altsetting 0 endpoint 0x8C has invalid wMaxPacketSize 0 [ 904.655702][ T6130] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 904.674415][ T6352] usb 5-1: config 6 interface 0 altsetting 0 bulk endpoint 0x8C has invalid maxpacket 0 [ 904.695893][ T6130] usb 4-1: USB disconnect, device number 19 [ 904.712077][ T6352] usb 5-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91 [ 904.736168][ T6352] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 904.746995][ T6352] usb 5-1: Product: syz [ 904.754509][ T6352] usb 5-1: Manufacturer: syz [ 904.764642][ T6352] usb 5-1: SerialNumber: syz [ 904.806918][ T6352] hso 5-1:6.0: Can't find BULK OUT endpoint [ 905.008194][ T6270] usb 5-1: USB disconnect, device number 7 [ 905.109329][T24334] PM: Enabling pm_trace changes system date and time during resume. [ 905.109329][T24334] PM: Correct system time has to be restored manually after resume. [ 905.349290][T24342] nftables ruleset with unbound set [ 905.519041][T24347] loop3: detected capacity change from 0 to 16 [ 905.590600][T24347] erofs (device loop3): mounted with root inode @ nid 36. [ 906.387143][T24380] bridge_slave_0: left allmulticast mode [ 906.401129][T24380] bridge0: port 1(bridge_slave_0) entered disabled state [ 906.487061][ T5827] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 906.652849][ T5827] usb 2-1: Using ep0 maxpacket: 8 [ 906.662830][ T5827] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 906.700803][ T5827] usb 2-1: config 0 interface 0 has no altsetting 0 [ 906.730548][ T5827] usb 2-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=bc.76 [ 906.759300][ T5827] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 906.808482][ T5827] usb 2-1: Product: syz [ 906.818599][ T5827] usb 2-1: Manufacturer: syz [ 906.830378][ T5827] usb 2-1: SerialNumber: syz [ 906.904970][ T5827] usb 2-1: config 0 descriptor?? [ 906.935177][ T5827] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 found [ 907.153942][ T5827] snd_usb_toneport 2-1:0.0: cannot get proper max packet size [ 907.180124][ T5827] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 now disconnected [ 907.196460][T24409] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7870'. [ 907.202970][ T5827] snd_usb_toneport 2-1:0.0: probe with driver snd_usb_toneport failed with error -22 [ 907.277227][T24406] loop4: detected capacity change from 0 to 4096 [ 907.411245][T24406] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 907.436070][ T5827] usb 2-1: USB disconnect, device number 18 [ 907.463371][ T10] usb 6-1: new high-speed USB device number 96 using dummy_hcd [ 907.662976][T19763] ntfs3(loop4): ino=9, ntfs3_write_inode failed, -22. [ 907.679993][ T10] usb 6-1: config 0 has an invalid interface number: 120 but max is 0 [ 907.701376][ T6141] ntfs3(loop4): ino=9, ntfs_sync_fs failed, -22. [ 907.705866][ T10] usb 6-1: config 0 has no interface number 0 [ 907.734169][ T10] usb 6-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 907.787242][ T10] usb 6-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 907.820523][ T10] usb 6-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 907.832510][ T10] usb 6-1: Product: syz [ 907.832554][T24424] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7879'. [ 907.836679][ T10] usb 6-1: SerialNumber: syz [ 907.881381][T24424] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7879'. [ 907.906527][ T10] usb 6-1: config 0 descriptor?? [ 907.934941][ T10] input: syz as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.120/input/input68 [ 908.162075][T24432] netlink: 'syz.0.7882': attribute type 9 has an invalid length. [ 908.225431][T24432] netlink: 224 bytes leftover after parsing attributes in process `syz.0.7882'. [ 908.244705][T24438] sctp: [Deprecated]: syz.1.7885 (pid 24438) Use of int in maxseg socket option. [ 908.244705][T24438] Use struct sctp_assoc_value instead [ 908.394522][T24441] netlink: 14 bytes leftover after parsing attributes in process `syz.4.7886'. [ 908.418285][ T6282] usb 6-1: USB disconnect, device number 96 [ 908.531465][T24441] hsr_slave_0: left promiscuous mode [ 908.577402][T24441] hsr_slave_1: left promiscuous mode [ 908.975061][ T6282] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 909.143179][ T6282] usb 3-1: config 0 has an invalid interface number: 50 but max is 0 [ 909.180652][ T6282] usb 3-1: config 0 has no interface number 0 [ 909.199768][ T6282] usb 3-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 909.271469][ T6282] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc [ 909.300837][T24474] netlink: 'syz.4.7899': attribute type 5 has an invalid length. [ 909.308860][ T6282] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 909.330159][ T6282] usb 3-1: Product: syz [ 909.359744][ T6282] usb 3-1: Manufacturer: syz [ 909.375707][ T6282] usb 3-1: SerialNumber: syz [ 909.392599][T24478] netlink: 'syz.1.7902': attribute type 13 has an invalid length. [ 909.429578][ T6282] usb 3-1: config 0 descriptor?? [ 909.450594][ T6282] yurex 3-1:0.50: USB YUREX device now attached to Yurex #0 [ 909.930442][T22030] usb 3-1: USB disconnect, device number 5 [ 909.951516][T22030] yurex 3-1:0.50: USB YUREX #0 now disconnected [ 910.079420][T24502] netlink: 'syz.4.7911': attribute type 1 has an invalid length. [ 910.133902][T24502] netlink: 224 bytes leftover after parsing attributes in process `syz.4.7911'. [ 910.235080][T24507] loop5: detected capacity change from 0 to 2048 [ 910.286625][T24507] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 910.381946][T24515] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 910.655862][T24521] bridge_slave_0: left allmulticast mode [ 910.693673][T24521] bridge0: port 1(bridge_slave_0) entered disabled state [ 911.120293][T24538] netlink: 'syz.0.7926': attribute type 5 has an invalid length. [ 911.320835][T24545] loop4: detected capacity change from 0 to 1024 [ 911.328555][T24547] netlink: 'syz.5.7931': attribute type 1 has an invalid length. [ 911.458626][T24554] netlink: 6 bytes leftover after parsing attributes in process `syz.2.7933'. [ 911.524946][T24554] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 911.651404][T24555] ip6tnl1: entered promiscuous mode [ 911.677677][T24553] loop1: detected capacity change from 0 to 4096 [ 911.690820][T24555] ip6tnl1: entered allmulticast mode [ 911.757024][T24553] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 911.881131][T24563] bridge_slave_0: left allmulticast mode [ 911.901423][T24563] bridge0: port 1(bridge_slave_0) entered disabled state [ 912.151454][ T6363] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 912.336965][ T6363] usb 4-1: Using ep0 maxpacket: 16 [ 912.350090][ T6363] usb 4-1: config index 0 descriptor too short (expected 65, got 36) [ 912.376683][T24579] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7946'. [ 912.387725][ T6363] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 912.409098][T24579] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7946'. [ 912.438897][ T6363] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 912.472828][ T6363] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 912.531473][ T6363] usb 4-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 912.571083][ T6363] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 912.587806][T24583] loop1: detected capacity change from 0 to 2048 [ 912.608277][ T6363] usb 4-1: config 0 descriptor?? [ 912.638767][ T6363] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input70 [ 912.650481][ T6130] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 912.679174][T24583] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 912.679767][ T5190] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 912.753928][ T30] audit: type=1800 audit(2000524712.322:177): pid=24583 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.7948" name="file1" dev="loop1" ino=1367 res=0 errno=0 [ 912.756974][ T5190] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 912.796586][ T5190] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 912.831241][ T6130] usb 5-1: Using ep0 maxpacket: 8 [ 912.842574][ T6130] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 912.842615][ T6130] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 912.842681][ T6130] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10 [ 912.842731][ T6130] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024 [ 912.842798][ T6130] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00 [ 912.842839][ T6130] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 912.844451][T24566] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 912.866172][ T6130] hub 5-1:1.0: bad descriptor, ignoring hub [ 912.901247][ T5190] pxrc 4-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 913.006748][ T6352] usb 4-1: USB disconnect, device number 20 [ 913.061357][ T6130] hub 5-1:1.0: probe with driver hub failed with error -5 [ 913.094593][ T6130] cdc_wdm 5-1:1.0: skipping garbage [ 913.099821][ T6130] cdc_wdm 5-1:1.0: skipping garbage [ 913.151486][ T6130] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 913.157410][ T6130] cdc_wdm 5-1:1.0: Unknown control protocol [ 913.189224][T24597] netlink: 'syz.2.7956': attribute type 21 has an invalid length. [ 913.245462][ T6130] usb 5-1: USB disconnect, device number 8 [ 913.429906][T24603] bridge_slave_0: left allmulticast mode [ 913.436921][T24603] bridge0: port 1(bridge_slave_0) entered disabled state [ 913.607163][T24607] loop5: detected capacity change from 0 to 256 [ 913.682930][T24611] netlink: 172 bytes leftover after parsing attributes in process `syz.3.7963'. [ 913.699746][T24607] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 913.844607][T24616] netlink: 44 bytes leftover after parsing attributes in process `syz.0.7966'. [ 914.060024][T24617] bond0 (unregistering): Released all slaves [ 915.017376][T24661] netlink: 'syz.4.7987': attribute type 1 has an invalid length. [ 915.736549][T24634] loop2: detected capacity change from 0 to 32768 [ 916.016999][T24690] loop1: detected capacity change from 0 to 256 [ 916.043060][T24690] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 916.342729][T24702] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8008'. [ 916.388717][T24702] netlink: 28 bytes leftover after parsing attributes in process `syz.5.8008'. [ 916.539245][T24670] loop3: detected capacity change from 0 to 32768 [ 916.571685][T22030] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 916.618924][T24711] loop2: detected capacity change from 0 to 512 [ 916.620358][T24670] JBD2: Ignoring recovery information on journal [ 916.629756][T24711] EXT4-fs: Ignoring removed mblk_io_submit option [ 916.666953][T24711] EXT4-fs error (device loop2): ext4_orphan_get:1392: comm syz.2.8012: inode #13: comm syz.2.8012: iget: illegal inode # [ 916.768367][T24670] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 916.779101][T22030] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 916.798601][T24720] netlink: 268 bytes leftover after parsing attributes in process `syz.1.8013'. [ 916.826383][T24711] EXT4-fs (loop2): Remounting filesystem read-only [ 916.834764][T24720] unsupported nla_type 65024 [ 916.847602][T22030] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84 [ 916.895741][T24711] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 916.912023][T22030] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10 [ 916.941694][T22030] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0 [ 916.985760][T22030] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 917.064978][T22030] usb 1-1: New USB device found, idVendor=084e, idProduct=1001, bcdDevice=ed.ae [ 917.094617][T22030] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 917.134301][T22030] usb 1-1: Product: syz [ 917.148823][T22030] usb 1-1: Manufacturer: syz [ 917.170189][T22030] usb 1-1: SerialNumber: syz [ 917.220995][T22030] usb 1-1: config 0 descriptor?? [ 917.272181][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 917.272455][ T6139] ocfs2: Unmounting device (7,3) on (node local) [ 917.294351][T22030] input: KB Gear Tablet as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input71 [ 917.698715][ T6130] usb 1-1: USB disconnect, device number 10 [ 917.939137][T24740] overlay: Bad value for 'workdir' [ 918.347710][T24748] loop4: detected capacity change from 0 to 4096 [ 918.404323][T24719] loop5: detected capacity change from 0 to 32768 [ 918.449784][T24719] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 918.725402][T24719] XFS (loop5): Ending clean mount [ 919.045784][ T6153] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 919.155338][T24780] netlink: 10 bytes leftover after parsing attributes in process `syz.0.8041'. [ 919.286786][T24788] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8046'. [ 919.432136][T24792] netlink: 'syz.2.8047': attribute type 303 has an invalid length. [ 919.974201][T24812] netlink: 'syz.1.8056': attribute type 21 has an invalid length. [ 920.035049][T24812] netlink: 156 bytes leftover after parsing attributes in process `syz.1.8056'. [ 920.207121][T24811] loop4: detected capacity change from 0 to 4096 [ 920.252092][T24811] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 920.325399][T24826] i2c i2c-0: Invalid block write size 253 [ 920.496402][T24811] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 920.686034][T24837] loop3: detected capacity change from 0 to 256 [ 920.693368][T19763] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 920.712120][ T6141] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 920.724114][T24837] exfat: Deprecated parameter 'utf8' [ 920.757475][ T6141] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 920.787847][T24834] loop1: detected capacity change from 0 to 4096 [ 920.814721][ T6141] ntfs3(loop4): ino=3, ntfs_set_state failed, -22. [ 920.824232][T24837] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 920.854558][T14092] ntfs3(loop4): ino=3, ntfs3_write_inode failed, -22. [ 920.885491][ T30] audit: type=1400 audit(2000524720.441:178): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=73226865645F737769746368 pid=24839 comm="syz.5.8073" [ 920.961388][T24845] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 921.028329][T24834] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 921.087387][T24834] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=12) [ 921.172651][T24834] Remounting filesystem read-only [ 921.181131][T24834] NILFS (loop1): error -5 truncating bmap (ino=12) [ 921.361746][ T30] audit: type=1326 audit(2000524720.920:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24854 comm="syz.3.8078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 921.414983][ T6156] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer [ 921.486889][ T30] audit: type=1326 audit(2000524720.920:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24854 comm="syz.3.8078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 921.576460][T24861] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8082'. [ 921.585602][ T30] audit: type=1326 audit(2000524720.960:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24854 comm="syz.3.8078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 921.731258][ T30] audit: type=1326 audit(2000524721.290:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24854 comm="syz.3.8078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 921.824984][ T30] audit: type=1326 audit(2000524721.290:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24854 comm="syz.3.8078" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 921.847353][ C1] vkms_vblank_simulate: vblank timer overrun [ 921.956664][ T30] audit: type=1326 audit(2000524721.470:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24869 comm="syz.5.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 921.979041][ C1] vkms_vblank_simulate: vblank timer overrun [ 922.049359][ T30] audit: type=1326 audit(2000524721.470:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24869 comm="syz.5.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 922.130096][T24875] netlink: 212408 bytes leftover after parsing attributes in process `syz.4.8088'. [ 922.152314][ T30] audit: type=1326 audit(2000524721.480:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24869 comm="syz.5.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 922.219014][T24879] netlink: 512 bytes leftover after parsing attributes in process `syz.5.8090'. [ 922.231764][ T30] audit: type=1326 audit(2000524721.480:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24869 comm="syz.5.8086" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 922.996237][T24865] loop2: detected capacity change from 0 to 32768 [ 923.022869][T24865] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8083 (24865) [ 923.089465][T24865] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 923.120228][T24865] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 923.410763][T24865] BTRFS info (device loop2): enabling ssd optimizations [ 923.432107][T24865] BTRFS info (device loop2): enabling free space tree [ 923.593439][ T6143] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 924.092590][ T6352] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 924.145208][T24891] loop3: detected capacity change from 0 to 32768 [ 924.245601][T24891] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 924.262686][ T6352] usb 2-1: Using ep0 maxpacket: 32 [ 924.276894][T24891] OCFS2: ERROR (device loop3): ocfs2_validate_xattr_block: Extended attribute block #2304 has bad signature [ 924.323562][ T6352] usb 2-1: descriptor type invalid, skip [ 924.327117][T24901] loop4: detected capacity change from 0 to 32768 [ 924.341790][ T6352] usb 2-1: descriptor type invalid, skip [ 924.367776][T24891] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 924.398166][ T6352] usb 2-1: config 1 interface 0 altsetting 251 bulk endpoint 0x1 has invalid maxpacket 32 [ 924.436444][ T6352] usb 2-1: config 1 interface 0 altsetting 251 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 924.453092][T24891] OCFS2: File system is now read-only. [ 924.458571][T24891] (syz.3.8096,24891,1):ocfs2_xattr_block_find:2831 ERROR: status = -30 [ 924.504761][ T6352] usb 2-1: config 1 interface 0 has no altsetting 0 [ 924.595828][ T6352] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 924.621480][ T6352] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 924.657180][ T6352] usb 2-1: Product: syz [ 924.665583][ T6139] ocfs2: Unmounting device (7,3) on (node local) [ 924.691876][ T6352] usb 2-1: Manufacturer: syz [ 924.696774][T24939] loop5: detected capacity change from 0 to 4096 [ 924.712074][ T6352] usb 2-1: SerialNumber: syz [ 924.761696][T24927] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 925.124399][ T6352] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 19 if 0 alt 251 proto 1 vid 0x0525 pid 0xA4A8 [ 925.165122][ T6352] usb 2-1: USB disconnect, device number 19 [ 925.178988][ T6352] usblp0: removed [ 925.467359][T24929] loop2: detected capacity change from 0 to 32768 [ 925.587618][T24929] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 925.651715][T24952] loop3: detected capacity change from 0 to 4096 [ 925.760556][T24929] OCFS2: ERROR (device loop2): ocfs2_validate_gd_parent: Group descriptor #17056 has bad parent pointer (0, expected 74) [ 925.803586][T24964] loop5: detected capacity change from 0 to 256 [ 925.809970][T24952] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512). [ 925.826436][T24929] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 925.889463][T24929] OCFS2: Returning error to the calling process. [ 925.923318][T24964] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d) [ 925.935704][T24929] (syz.2.8105,24929,0):ocfs2_search_chain:1817 ERROR: status = -5 [ 925.956488][T24952] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 925.964905][T24929] (syz.2.8105,24929,0):ocfs2_search_chain:1940 ERROR: status = -5 [ 926.007763][T24929] (syz.2.8105,24929,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -5 [ 926.029160][T24952] ntfs3(loop3): Failed to load $Extend (-22). [ 926.048516][T24929] (syz.2.8105,24929,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -5 [ 926.086745][T24952] ntfs3(loop3): Failed to initialize $Extend. [ 926.104131][T24970] CIFS: VFS: Malformed UNC in devname [ 926.108872][T24929] (syz.2.8105,24929,0):ocfs2_claim_new_inode:2298 ERROR: status = -5 [ 926.179008][T24929] (syz.2.8105,24929,0):ocfs2_claim_new_inode:2313 ERROR: status = -5 [ 926.206739][T24929] (syz.2.8105,24929,0):ocfs2_mknod_locked:641 ERROR: status = -5 [ 926.268840][T24929] (syz.2.8105,24929,0):ocfs2_mknod:388 ERROR: status = -5 [ 926.275891][T24972] loop4: detected capacity change from 0 to 512 [ 926.316479][T24972] EXT4-fs (loop4): Test dummy encryption mode enabled [ 926.317288][T24929] (syz.2.8105,24929,0):ocfs2_mknod:505 ERROR: status = -5 [ 926.372919][T24972] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended [ 926.414246][T24972] EXT4-fs (loop4): Errors on filesystem, clearing orphan list. [ 926.442632][T24929] (syz.2.8105,24929,0):ocfs2_create:678 ERROR: status = -5 [ 926.498661][T24972] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 926.617191][T24979] loop1: detected capacity change from 0 to 2048 [ 926.665239][T24972] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 926.697076][ T7119] loop1: p1 < > p4 [ 926.697076][ T7119] p4: [ 926.708141][ T7119] loop1: p4 size 722688 extends beyond EOD, truncated [ 926.713850][ T6143] ocfs2: Unmounting device (7,2) on (node local) [ 926.722126][T24984] loop5: detected capacity change from 0 to 64 [ 926.753136][ T6270] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 926.766031][T24979] loop1: p1 < > p4 [ 926.766031][T24979] p4: [ 926.805909][T24979] loop1: p4 size 722688 extends beyond EOD, truncated [ 926.965309][ T6270] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 926.982285][ T6270] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18 [ 927.015256][ T6141] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 927.096150][ T6270] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 927.133013][ T6270] usb 1-1: New USB device strings: Mfr=16, Product=0, SerialNumber=1 [ 927.141125][ T6270] usb 1-1: Manufacturer: syz [ 927.185746][ T6270] usb 1-1: SerialNumber: syz [ 927.445401][ T6270] usb 1-1: bad CDC descriptors [ 927.480465][ T6270] usb 1-1: USB disconnect, device number 11 [ 927.531716][ T30] kauditd_printk_skb: 6 callbacks suppressed [ 927.531740][ T30] audit: type=1326 audit(2000524727.090:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25002 comm="syz.4.8139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 927.627546][ T7009] udevd[7009]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 927.664634][ T5839] udevd[5839]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 927.681321][ T30] audit: type=1326 audit(2000524727.090:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25002 comm="syz.4.8139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 927.699289][T25006] loop2: detected capacity change from 0 to 256 [ 927.752808][ T30] audit: type=1326 audit(2000524727.120:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25002 comm="syz.4.8139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 927.808766][ T7009] udevd[7009]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory [ 927.827378][ T5839] udevd[5839]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory [ 927.904066][ T30] audit: type=1326 audit(2000524727.470:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25002 comm="syz.4.8139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 927.913668][T25006] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 928.003928][ T30] audit: type=1326 audit(2000524727.470:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25002 comm="syz.4.8139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 928.011993][T25006] exFAT-fs (loop2): failed to load alloc-bitmap [ 928.093069][T25006] exFAT-fs (loop2): failed to recognize exfat type [ 928.212042][T25020] netlink: 'syz.0.8146': attribute type 2 has an invalid length. [ 928.231991][T25020] netlink: 'syz.0.8146': attribute type 8 has an invalid length. [ 928.270610][T25020] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8146'. [ 928.597347][T25030] 9p: Unknown access argument 18446744073709551615: -34 [ 928.675681][T25034] loop2: detected capacity change from 0 to 64 [ 928.755006][T25034] Trying to free block not in datazone [ 930.072398][T25086] loop2: detected capacity change from 0 to 16 [ 930.124115][T25086] erofs (device loop2): mounted with root inode @ nid 36. [ 930.383377][T25052] loop3: detected capacity change from 0 to 32768 [ 930.444019][T25052] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 930.485380][T25094] loop1: detected capacity change from 0 to 4096 [ 930.636902][T25116] loop2: detected capacity change from 0 to 512 [ 930.678088][T25094] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 930.688340][T25116] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 930.702396][T25116] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 930.712971][T25116] EXT4-fs (loop2): orphan cleanup on readonly fs [ 930.720201][T25052] XFS (loop3): Ending clean mount [ 930.735068][T25116] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #13: comm syz.2.8191: iget: bad i_size value: 12154761577498 [ 930.762736][T25116] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.8191: couldn't read orphan inode 13 (err -117) [ 930.837761][T25119] loop5: detected capacity change from 0 to 64 [ 930.856019][T25116] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 930.946116][T25094] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 930.962888][T25121] nftables ruleset with unbound chain [ 930.974445][T25094] ntfs3(loop1): ino=19, mi_enum_attr [ 930.991416][T25116] EXT4-fs warning (device loop2): dx_probe:859: inode #2: comm syz.2.8191: dx entry: limit 65535 != root limit 120 [ 931.026210][ T6139] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 931.053484][T25116] EXT4-fs warning (device loop2): dx_probe:933: inode #2: comm syz.2.8191: Corrupt directory, running e2fsck is recommended [ 931.087405][T25094] ntfs3(loop1): failed to convert "c46c" to cp1251 [ 931.115707][T25094] ntfs3(loop1): ino=20, mi_enum_attr [ 931.320782][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 931.617052][T25127] loop4: detected capacity change from 0 to 4096 [ 931.665628][T25127] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512). [ 931.829803][T25141] loop2: detected capacity change from 0 to 16 [ 931.870047][T25141] erofs: Unknown parameter 'ÿÿÿÿ0xffffffffffffffffÿÿ18446744073709551615' [ 931.925603][T25141] cgroup: Invalid name [ 932.132126][T25147] netlink: 'syz.0.8206': attribute type 1 has an invalid length. [ 932.177627][T25147] netlink: 228 bytes leftover after parsing attributes in process `syz.0.8206'. [ 932.763164][T25174] loop2: detected capacity change from 0 to 128 [ 932.862105][T25174] FAT-fs (loop2): Directory bread(block 11554) failed [ 932.933781][T25174] FAT-fs (loop2): Directory bread(block 11555) failed [ 932.943036][T25174] FAT-fs (loop2): Directory bread(block 11556) failed [ 932.968903][T25174] FAT-fs (loop2): Directory bread(block 11557) failed [ 933.006537][T25174] FAT-fs (loop2): Directory bread(block 11558) failed [ 933.040069][T25174] FAT-fs (loop2): Directory bread(block 11559) failed [ 933.075569][T25174] FAT-fs (loop2): Directory bread(block 11560) failed [ 933.098434][T25174] FAT-fs (loop2): Directory bread(block 11561) failed [ 933.124010][T25174] FAT-fs (loop2): Directory bread(block 11562) failed [ 933.143300][T25174] FAT-fs (loop2): Directory bread(block 11563) failed [ 933.232203][T25193] loop5: detected capacity change from 0 to 512 [ 933.347211][T25198] comedi comedi3: pcl812: I/O port conflict (0x5,16) [ 933.361354][T25193] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 933.471557][T25204] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8234'. [ 933.490692][T25205] usb usb3: usbfs: process 25205 (syz.4.8232) did not claim interface 0 before use [ 933.533127][T25193] EXT4-fs error (device loop5): ext4_validate_block_bitmap:423: comm syz.5.8228: bg 0: bad block bitmap checksum [ 933.625361][T25193] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Filesystem failed CRC [ 933.626248][T25209] loop2: detected capacity change from 0 to 256 [ 933.696954][T25209] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d) [ 933.860486][ T6153] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 934.476474][ T30] audit: type=1326 audit(2000524734.039:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25242 comm="syz.3.8253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 934.586807][ T30] audit: type=1326 audit(2000524734.069:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25242 comm="syz.3.8253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 934.691900][ T30] audit: type=1326 audit(2000524734.069:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25242 comm="syz.3.8253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 934.794323][ T30] audit: type=1326 audit(2000524734.069:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25242 comm="syz.3.8253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 934.816189][T25255] loop3: detected capacity change from 0 to 256 [ 934.839253][T25255] exfat: Deprecated parameter 'namecase' [ 934.870869][T25255] exfat: Deprecated parameter 'namecase' [ 934.964264][T25255] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 935.463041][T25280] netlink: 'syz.0.8270': attribute type 1 has an invalid length. [ 935.474764][T25280] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8270'. [ 935.489986][T25278] loop1: detected capacity change from 0 to 1024 [ 935.574041][ T6352] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 935.765989][ T6352] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 935.825673][ T6352] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 935.833693][ T6352] usb 4-1: Product: syz [ 935.862301][ T6352] usb 4-1: Manufacturer: syz [ 935.867273][ T6352] usb 4-1: SerialNumber: syz [ 935.916414][ T6352] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 935.956555][ T10] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 936.395665][T22030] usb 4-1: USB disconnect, device number 21 [ 936.464111][ T6282] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 936.632593][ T6282] usb 5-1: config 0 has an invalid interface number: 64 but max is 0 [ 936.661175][ T6282] usb 5-1: config 0 has no interface number 0 [ 936.687852][ T6282] usb 5-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07 [ 936.704139][ T6282] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 936.722422][ T6282] usb 5-1: Product: syz [ 936.731049][ T6282] usb 5-1: Manufacturer: syz [ 936.753903][ T6282] usb 5-1: SerialNumber: syz [ 936.764180][ T30] audit: type=1326 audit(2000524736.319:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25319 comm="syz.5.8290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 936.792712][ T6282] usb 5-1: config 0 descriptor?? [ 936.821953][ T30] audit: type=1326 audit(2000524736.319:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25319 comm="syz.5.8290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 936.844322][T25322] PKCS8: Unsupported PKCS#8 version [ 936.886651][ T30] audit: type=1326 audit(2000524736.369:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25319 comm="syz.5.8290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 936.978167][ T30] audit: type=1326 audit(2000524736.369:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25319 comm="syz.5.8290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 937.054342][ T6282] uvcvideo 5-1:0.64: Found Unit with invalid ID 0 [ 937.062706][ T10] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 937.065977][ T6282] uvcvideo 5-1:0.64: Found UVC 0.08 device syz (046d:0823) [ 937.087576][ T30] audit: type=1326 audit(2000524736.369:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25319 comm="syz.5.8290" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0834f8eec9 code=0x7ffc0000 [ 937.102397][ T10] ath9k_htc: Failed to initialize the device [ 937.131201][ T6282] uvcvideo 5-1:0.64: Entity type for entity Output 65535 was not initialized! [ 937.159624][ T6282] uvcvideo 5-1:0.64: Failed to create links for entity 65535 [ 937.171310][T22030] usb 4-1: ath9k_htc: USB layer deinitialized [ 937.191953][ T6282] uvcvideo 5-1:0.64: Failed to register entities (-22). [ 937.232549][ T6282] usb 5-1: USB disconnect, device number 9 [ 937.283908][T25300] loop2: detected capacity change from 0 to 32768 [ 937.367840][T25300] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 937.561505][T25300] XFS (loop2): Ending clean mount [ 937.626315][T25300] XFS (loop2): Quotacheck needed: Please wait. [ 937.705543][T25300] XFS (loop2): Quotacheck: Done. [ 937.900621][ T6143] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 938.065216][T25364] comedi comedi0: comedi_config --init_data is deprecated [ 938.889589][T25376] loop4: detected capacity change from 0 to 4096 [ 938.915148][T25382] loop3: detected capacity change from 0 to 1024 [ 938.947365][T25376] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 939.049039][T25376] ntfs3(loop4): ino=19, mi_enum_attr [ 939.076382][T25376] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 939.197689][T19763] hfsplus: b-tree write err: -5, ino 4 [ 939.866029][T25408] tmpfs: Bad value for 'grpquota_inode_hardlimit' [ 940.002350][T25414] loop5: detected capacity change from 0 to 64 [ 940.049482][T25381] loop1: detected capacity change from 0 to 32768 [ 940.153759][T25420] tmpfs: Bad value for 'mpol' [ 940.580822][T25432] loop3: detected capacity change from 0 to 2048 [ 940.632283][T25432] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 940.634133][T25434] loop5: detected capacity change from 0 to 64 [ 940.695410][T25432] syz.3.8343: attempt to access beyond end of device [ 940.695410][T25432] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 940.710923][T25437] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 940.804237][T25432] syz.3.8343: attempt to access beyond end of device [ 940.804237][T25432] loop3: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 940.858692][T25432] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=0) [ 941.129929][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 941.276999][T25451] loop4: detected capacity change from 0 to 64 [ 941.411098][T25456] IPv6: NLM_F_CREATE should be specified when creating new route [ 941.614988][T25463] netlink: 16 bytes leftover after parsing attributes in process `syz.5.8359'. [ 941.710394][T25466] loop4: detected capacity change from 0 to 512 [ 941.783617][T25466] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.8357: bg 0: block 248: padding at end of block bitmap is not set [ 941.811434][T25466] Quota error (device loop4): write_blk: dquota write failed [ 941.857286][T25466] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 941.867846][T25466] EXT4-fs error (device loop4): ext4_acquire_dquot:6943: comm syz.4.8357: Failed to acquire dquot type 1 [ 941.887669][T25466] EXT4-fs (loop4): 1 truncate cleaned up [ 941.911981][T25466] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 941.953288][T25466] ext4 filesystem being mounted at /1314/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 942.158644][ T6141] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 942.466123][T25492] Unknown options in mask b7f2 [ 942.507939][T25494] loop1: detected capacity change from 0 to 64 [ 942.743384][ T30] audit: type=1326 audit(2000524742.298:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25498 comm="syz.4.8373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 942.845014][ T30] audit: type=1326 audit(2000524742.328:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25498 comm="syz.4.8373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 942.963464][ T30] audit: type=1326 audit(2000524742.348:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25498 comm="syz.4.8373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=108 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 943.044347][T25502] loop2: detected capacity change from 0 to 4096 [ 943.054223][ T30] audit: type=1326 audit(2000524742.348:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25498 comm="syz.4.8373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 943.142964][ T30] audit: type=1326 audit(2000524742.348:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25498 comm="syz.4.8373" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 943.290845][T25502] ntfs3(loop2): ino=5, "/" indx_read [ 943.317343][T25502] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 943.426582][T25514] netlink: 'syz.5.8380': attribute type 23 has an invalid length. [ 943.733240][T25522] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8384'. [ 943.773672][T25522] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8384'. [ 943.783792][T25522] netlink: 3 bytes leftover after parsing attributes in process `syz.5.8384'. [ 943.895237][T25524] netlink: 'syz.0.8385': attribute type 21 has an invalid length. [ 943.903169][T25524] netlink: 152 bytes leftover after parsing attributes in process `syz.0.8385'. [ 943.907528][T25529] loop2: detected capacity change from 0 to 136 [ 943.932043][T25489] loop3: detected capacity change from 0 to 32768 [ 944.021521][T25489] ERROR: (device loop3): dbAlloc: the hint is outside the map [ 944.021521][T25489] [ 944.061326][T25489] ialloc: diAlloc returned -5! [ 944.397447][T25540] loop1: detected capacity change from 0 to 256 [ 944.411909][T25538] ip6erspan0: entered promiscuous mode [ 944.442056][T25541] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null. [ 944.473660][T25541] overlayfs: missing 'lowerdir' [ 945.624401][T25585] Device name not specified. [ 945.624401][T25585] [ 946.015315][ T6363] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 946.179956][ T6363] usb 3-1: Using ep0 maxpacket: 16 [ 946.200728][T25609] netlink: 'syz.1.8427': attribute type 7 has an invalid length. [ 946.223252][ T6363] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 946.227562][T25609] netlink: 'syz.1.8427': attribute type 8 has an invalid length. [ 946.232594][ T6363] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 946.232634][ T6363] usb 3-1: Product: syz [ 946.232663][ T6363] usb 3-1: Manufacturer: syz [ 946.232691][ T6363] usb 3-1: SerialNumber: syz [ 946.305995][ T6363] r8152-cfgselector 3-1: Unknown version 0x0000 [ 946.312280][ T6363] r8152-cfgselector 3-1: config 0 descriptor?? [ 946.760434][ T6363] r8152-cfgselector 3-1: USB disconnect, device number 6 [ 946.819501][T25590] loop3: detected capacity change from 0 to 32768 [ 946.868305][T25590] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 946.929588][T25590] XFS (loop3): Ending clean mount [ 946.954785][T25590] XFS (loop3): Quotacheck needed: Please wait. [ 947.047481][T25590] XFS (loop3): Quotacheck: Done. [ 947.104693][T25611] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 947.251197][ T6139] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 947.417417][T25643] loop4: detected capacity change from 0 to 4096 [ 947.665769][T25643] ntfs3(loop4): Failed to initialize $Extend/$ObjId. [ 947.931306][T22030] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 948.085866][T22030] usb 1-1: Using ep0 maxpacket: 8 [ 948.115926][T22030] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 948.148689][T22030] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 948.205574][T22030] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0 [ 948.215287][T22030] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 948.303075][T22030] usb 1-1: config 1 interface 1 has no altsetting 0 [ 948.315900][T22030] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 948.335853][T22030] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 948.343989][T22030] usb 1-1: Product: syz [ 948.356493][T22030] usb 1-1: Manufacturer: syz [ 948.380063][T22030] usb 1-1: SerialNumber: syz [ 948.469276][T25675] loop3: detected capacity change from 0 to 2048 [ 948.546230][T25675] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 948.660453][T25689] syz.1.8463: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 948.689559][T22030] usb 1-1: 2:1 : no or invalid class specific endpoint descriptor [ 948.714001][T22030] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc [ 948.725096][T22030] usb 1-1: 2:1 : invalid channels 0 [ 948.733536][T25689] CPU: 1 UID: 0 PID: 25689 Comm: syz.1.8463 Not tainted syzkaller #0 PREEMPT(full) [ 948.733583][T25689] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 948.733606][T25689] Call Trace: [ 948.733618][T25689] [ 948.733633][T25689] dump_stack_lvl+0x16c/0x1f0 [ 948.733686][T25689] warn_alloc+0x248/0x3a0 [ 948.733743][T25689] ? __pfx_warn_alloc+0x10/0x10 [ 948.733792][T25689] ? lockdep_hardirqs_on+0x7c/0x110 [ 948.733836][T25689] ? srso_alias_return_thunk+0x5/0xfbef5 [ 948.733897][T25689] ? srso_alias_return_thunk+0x5/0xfbef5 [ 948.733949][T25689] ? kasan_save_stack+0x42/0x60 [ 948.734007][T25689] ? kasan_save_stack+0x33/0x60 [ 948.734064][T25689] ? kasan_save_track+0x14/0x30 [ 948.734126][T25689] ? xskq_create+0x52/0x1d0 [ 948.734163][T25689] ? xsk_setsockopt+0x74e/0x9a0 [ 948.734194][T25689] ? do_sock_setsockopt+0xf3/0x1d0 [ 948.734236][T25689] ? xskq_create+0xfb/0x1d0 [ 948.734276][T25689] __vmalloc_node_range_noprof+0xfbc/0x1480 [ 948.734338][T25689] ? xskq_create+0xfb/0x1d0 [ 948.734388][T25689] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 948.734451][T25689] ? xskq_create+0xfb/0x1d0 [ 948.734489][T25689] vmalloc_user_noprof+0x9e/0xe0 [ 948.734534][T25689] ? xskq_create+0xfb/0x1d0 [ 948.734573][T25689] xskq_create+0xfb/0x1d0 [ 948.734615][T25689] xsk_setsockopt+0x74e/0x9a0 [ 948.734647][T25689] ? __pfx_aa_sk_perm+0x10/0x10 [ 948.734686][T25689] ? __pfx_xsk_setsockopt+0x10/0x10 [ 948.734748][T25689] ? srso_alias_return_thunk+0x5/0xfbef5 [ 948.734793][T25689] ? find_held_lock+0x2b/0x80 [ 948.734853][T25689] ? srso_alias_return_thunk+0x5/0xfbef5 [ 948.734897][T25689] ? aa_sock_opt_perm+0xfd/0x1c0 [ 948.734956][T25689] ? __pfx_xsk_setsockopt+0x10/0x10 [ 948.735022][T25689] do_sock_setsockopt+0xf3/0x1d0 [ 948.735065][T25689] __sys_setsockopt+0x1a0/0x230 [ 948.735131][T25689] __x64_sys_setsockopt+0xbd/0x160 [ 948.735183][T25689] ? do_syscall_64+0x91/0x4e0 [ 948.735229][T25689] ? srso_alias_return_thunk+0x5/0xfbef5 [ 948.735273][T25689] ? lockdep_hardirqs_on+0x7c/0x110 [ 948.735316][T25689] do_syscall_64+0xcd/0x4e0 [ 948.735367][T25689] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 948.735405][T25689] RIP: 0033:0x7f83eb98eec9 [ 948.735433][T25689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 948.735470][T25689] RSP: 002b:00007f83ec8f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 948.735506][T25689] RAX: ffffffffffffffda RBX: 00007f83ebbe5fa0 RCX: 00007f83eb98eec9 [ 948.735532][T25689] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003 [ 948.735555][T25689] RBP: 00007f83eba11f91 R08: 0000000000000052 R09: 0000000000000000 [ 948.735579][T25689] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 948.735605][T25689] R13: 00007f83ebbe6038 R14: 00007f83ebbe5fa0 R15: 00007ffc1b4eba48 [ 948.735654][T25689] [ 949.071591][T25689] Mem-Info: [ 949.074736][T25689] active_anon:8990 inactive_anon:0 isolated_anon:0 [ 949.074736][T25689] active_file:9604 inactive_file:46703 isolated_file:0 [ 949.074736][T25689] unevictable:768 dirty:413 writeback:0 [ 949.074736][T25689] slab_reclaimable:11825 slab_unreclaimable:108578 [ 949.074736][T25689] mapped:36342 shmem:1608 pagetables:1727 [ 949.074736][T25689] sec_pagetables:0 bounce:0 [ 949.074736][T25689] kernel_misc_reclaimable:0 [ 949.074736][T25689] free:1273872 free_pcp:10528 free_cma:0 [ 949.120209][T25689] Node 0 active_anon:35960kB inactive_anon:0kB active_file:38416kB inactive_file:186612kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:145368kB dirty:1652kB writeback:0kB shmem:4896kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:12904kB pagetables:6576kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 949.160621][T25689] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 949.190752][T25689] Node 0 DMA free:15356kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 949.238368][T22030] usb 1-1: USB disconnect, device number 12 [ 949.245986][T25689] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 949.269637][T25689] Node 0 DMA32 free:1170748kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:35048kB inactive_anon:0kB active_file:38416kB inactive_file:186616kB unevictable:1536kB writepending:1736kB zspages:0kB present:3129332kB managed:2547888kB mlocked:0kB bounce:0kB free_pcp:40664kB local_pcp:20000kB free_cma:0kB [ 949.370117][ T5839] udevd[5839]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 949.403565][T25698] loop2: detected capacity change from 0 to 1024 [ 949.415058][T25689] lowmem_reserve[]: 0 0 0 0 0 [ 949.433867][T25689] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 949.503886][T25698] EXT4-fs: Ignoring removed bh option [ 949.519103][T25702] loop3: detected capacity change from 0 to 128 [ 949.548461][T25689] lowmem_reserve[]: 0 0 0 0 0 [ 949.549179][T25702] EXT4-fs warning (device loop3): ext4_init_metadata_csum:4634: metadata_csum and uninit_bg are redundant flags; please run fsck. [ 949.578385][T25689] Node 1 Normal free:3909384kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:2080kB local_pcp:0kB free_cma:0kB [ 949.595761][T25702] EXT4-fs (loop3): Encoding requested by superblock is unknown [ 949.635913][T25698] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 949.663674][T25689] lowmem_reserve[]: 0 0 0 0 0 [ 949.675444][T25689] Node 0 DMA: 1*4kB (U) 1*8kB (U) 1*16kB (U) 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15356kB [ 949.710053][T25711] loop5: detected capacity change from 0 to 512 [ 949.731334][T25689] Node 0 DMA32: 1113*4kB (UM) 1777*8kB (UME) 1677*16kB (UM) 1539*32kB (UME) 925*64kB (UM) 614*128kB (UM) 453*256kB (UM) 286*512kB (UM) 137*1024kB (UM) 2*2048kB (UM) 130*4096kB (M) = 1171804kB [ 949.740687][T25698] EXT4-fs error (device loop2): ext4_get_first_dir_block:3540: inode #11: comm syz.2.8467: directory missing '.' [ 949.751162][T25689] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 949.774858][T25689] Node 1 Normal: 206*4kB (UME) 52*8kB (UME) 43*16kB (UME) 220*32kB (UME) 102*64kB (UME) 35*128kB (UME) 17*256kB (UME) 8*512kB (UME) 4*1024kB (UM) 3*2048kB (UME) 945*4096kB (M) = 3909384kB [ 949.795422][T25689] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 949.805138][T25689] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 949.824756][T25711] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 949.840233][T25689] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 949.857339][T25698] EXT4-fs (loop2): Remounting filesystem read-only [ 949.898298][T25689] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 949.926278][T25702] tmpfs: Bad value for 'grpquota_block_hardlimit' [ 949.956130][T25689] 57627 total pagecache pages [ 949.960820][T25689] 0 pages in swap cache [ 949.990332][T25689] Free swap = 124996kB [ 949.994497][T25689] Total swap = 124996kB [ 950.019192][T25689] 2097051 pages RAM [ 950.028454][T25689] 0 pages HighMem/MovableOnly [ 950.049828][T25689] 428437 pages reserved [ 950.053994][T25689] 0 pages cma reserved [ 950.168656][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 950.303090][T25720] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 950.341394][T25720] overlayfs: missing 'lowerdir' [ 950.394331][T25729] loop2: detected capacity change from 0 to 512 [ 950.411629][T25729] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 950.454843][T25729] EXT4-fs (loop2): 1 truncate cleaned up [ 950.545060][T25729] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 950.753385][T25740] netlink: 'syz.5.8486': attribute type 21 has an invalid length. [ 950.777861][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 951.974966][T25788] loop1: detected capacity change from 0 to 256 [ 952.099396][T25788] exfat: Deprecated parameter 'namecase' [ 952.105332][T25788] exfat: Deprecated parameter 'utf8' [ 952.188637][T25788] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 952.927171][T25776] loop5: detected capacity change from 0 to 32768 [ 953.068358][ T30] audit: type=1326 audit(2000524753.616:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25813 comm="syz.1.8523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 953.176118][ T30] audit: type=1326 audit(2000524753.616:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25813 comm="syz.1.8523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 953.291204][ T30] audit: type=1326 audit(2000524753.666:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25813 comm="syz.1.8523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 953.415708][ T30] audit: type=1326 audit(2000524753.666:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25813 comm="syz.1.8523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 953.546289][ T30] audit: type=1326 audit(2000524753.666:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25813 comm="syz.1.8523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 953.787945][T25834] IPv6: sit1: Disabled Multicast RS [ 953.815686][T25834] sit1: entered allmulticast mode [ 953.976302][ T6282] usb 6-1: new high-speed USB device number 97 using dummy_hcd [ 954.090977][T25847] loop3: detected capacity change from 0 to 256 [ 954.153220][T25847] exfat: Deprecated parameter 'utf8' [ 954.170422][ T6282] usb 6-1: Using ep0 maxpacket: 16 [ 954.178440][ T6282] usb 6-1: config 0 has an invalid interface number: 161 but max is 0 [ 954.196696][ T6363] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 954.204783][ T6282] usb 6-1: config 0 has no interface number 0 [ 954.216151][T25847] exfat: Deprecated parameter 'utf8' [ 954.234081][ T6282] usb 6-1: config 0 interface 161 has no altsetting 0 [ 954.261269][T25847] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d) [ 954.297159][ T6282] usb 6-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01 [ 954.311714][ T6282] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 954.340596][ T6282] usb 6-1: Product: syz [ 954.344785][ T6282] usb 6-1: Manufacturer: syz [ 954.353709][ T6282] usb 6-1: SerialNumber: syz [ 954.367198][ T6282] usb 6-1: config 0 descriptor?? [ 954.368080][ T6363] usb 2-1: config 17 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 954.386833][ T6282] ums-jumpshot 6-1:0.161: USB Mass Storage device detected [ 954.411632][ T6363] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7 [ 954.413276][ T6282] ums-jumpshot 6-1:0.161: Quirks match for vid 05dc pid 0001: 2 [ 954.447186][ T6363] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024 [ 954.458654][ T6363] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 954.467768][ T6363] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 954.480737][T25842] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 954.536152][ T10] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 954.617865][ T5827] usb 6-1: USB disconnect, device number 97 [ 954.721595][ T10] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 954.754828][ T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 954.795299][ T10] usb 1-1: config 0 descriptor?? [ 954.803971][T25863] loop4: detected capacity change from 0 to 4096 [ 954.876652][T25863] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 954.889773][T25869] loop3: detected capacity change from 0 to 1024 [ 954.897977][T25869] EXT4-fs: Ignoring removed bh option [ 954.912848][ T6363] aiptek 2-1:17.0: Aiptek using 400 ms programming speed [ 954.930743][ T6363] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input72 [ 954.957627][T25869] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 955.083230][ T6363] usb 2-1: USB disconnect, device number 20 [ 955.083303][ C0] aiptek 2-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 955.197663][T25869] EXT4-fs error (device loop3): ext4_get_first_dir_block:3540: inode #11: comm syz.3.8548: directory missing '.' [ 955.234388][T25869] EXT4-fs (loop3): Remounting filesystem read-only [ 955.236469][ T6141] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.253409][T25875] loop2: detected capacity change from 0 to 128 [ 955.286270][ T10] ath6kl: Failed to submit usb control message: -71 [ 955.292913][ T10] ath6kl: unable to send the bmi data to the device: -71 [ 955.333029][ T10] ath6kl: Unable to send get target info: -71 [ 955.358495][T25875] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 955.404455][T25875] ext4 filesystem being mounted at /1412/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 955.406321][ T10] ath6kl: Failed to init ath6kl core: -71 [ 955.497398][ T10] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 955.560733][ T10] usb 1-1: USB disconnect, device number 13 [ 955.583739][ T6139] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 955.754542][ T6143] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 955.831099][T25890] loop5: detected capacity change from 0 to 128 [ 955.891752][T25890] EXT4-fs: Ignoring removed nomblk_io_submit option [ 955.927079][T25890] EXT4-fs (loop5): Test dummy encryption mode enabled [ 955.959127][T25890] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 956.006169][T25890] ext4 filesystem being mounted at /1357/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 956.092458][T25898] loop4: detected capacity change from 0 to 4096 [ 956.102908][T25898] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512). [ 956.132697][T25890] EXT4-fs (loop5): re-mounted 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 956.399491][ T6153] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 957.088756][T25932] loop3: detected capacity change from 0 to 64 [ 957.468774][T25943] loop5: detected capacity change from 0 to 64 [ 957.964682][T25957] loop3: detected capacity change from 0 to 4096 [ 957.972445][T25961] loop4: detected capacity change from 0 to 512 [ 958.012300][T25965] loop5: detected capacity change from 0 to 256 [ 958.022445][T25961] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 958.061453][T25965] exfat: Deprecated parameter 'namecase' [ 958.071607][T25968] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 958.108931][T25961] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 958.163033][T25961] ext4 filesystem being mounted at /1360/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 958.176307][T25965] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d) [ 958.254840][T25957] syz.3.8588: attempt to access beyond end of device [ 958.254840][T25957] loop3: rw=0, sector=26388279066816, nr_sectors = 8 limit=4096 [ 958.361144][T25957] NILFS (loop3): I/O error reading meta-data file (ino=6, block-offset=1) [ 958.633161][ T6141] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 959.186162][ T10] usb 6-1: new high-speed USB device number 98 using dummy_hcd [ 959.376172][ T10] usb 6-1: Using ep0 maxpacket: 16 [ 959.389618][ T10] usb 6-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 959.411774][ T10] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 959.453766][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 152, changing to 11 [ 959.495883][ T10] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 8285, setting to 1024 [ 959.536229][ T10] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 959.581476][ T10] usb 6-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 959.601223][ T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 959.621434][ T10] usb 6-1: Product: syz [ 959.625611][ T10] usb 6-1: Manufacturer: syz [ 959.635037][T25976] loop2: detected capacity change from 0 to 32768 [ 959.651679][ T10] usb 6-1: SerialNumber: syz [ 959.673640][T25976] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8596 (25976) [ 959.691162][ T10] usb 6-1: config 0 descriptor?? [ 959.783137][T25978] loop1: detected capacity change from 0 to 32768 [ 959.801384][T25976] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 959.825679][T25976] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 959.851358][T25978] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 959.989695][ T10] appledisplay 6-1:0.0: Error while getting initial brightness: -110 [ 959.996810][T25976] BTRFS info (device loop2): enabling ssd optimizations [ 960.030276][ T10] appledisplay 6-1:0.0: probe with driver appledisplay failed with error -110 [ 960.032848][T25976] BTRFS info (device loop2): enabling free space tree [ 960.064977][T25978] XFS (loop1): Ending clean mount [ 960.065342][ T10] usb 6-1: USB disconnect, device number 98 [ 960.108220][T25978] XFS (loop1): Quotacheck needed: Please wait. [ 960.231015][T25978] XFS (loop1): Quotacheck: Done. [ 960.474042][ T6156] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 960.496515][ T6143] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 960.611409][T26038] loop4: detected capacity change from 0 to 1024 [ 960.629865][T25994] loop3: detected capacity change from 0 to 32768 [ 960.638839][T26038] hfsplus: Filesystem is marked locked, mounting read-only. [ 960.718699][T25994] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 960.739432][T26038] hfsplus: invalid catalog entry type in lookup [ 960.851979][T25994] XFS (loop3): Ending clean mount [ 960.927011][T25994] XFS (loop3): Quotacheck needed: Please wait. [ 961.081099][T25994] XFS (loop3): Quotacheck: Done. [ 961.447870][ T6139] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 961.742222][ T30] audit: type=1326 audit(2000524762.296:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26061 comm="syz.3.8621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 961.846475][ T30] audit: type=1326 audit(2000524762.296:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26061 comm="syz.3.8621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 961.877537][T26058] loop2: detected capacity change from 0 to 4096 [ 961.916626][T26058] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 961.966599][ T30] audit: type=1326 audit(2000524762.296:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26061 comm="syz.3.8621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 962.088993][ T30] audit: type=1326 audit(2000524762.296:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26061 comm="syz.3.8621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 962.188873][ T30] audit: type=1326 audit(2000524762.296:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26061 comm="syz.3.8621" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa05078eec9 code=0x7ffc0000 [ 963.120256][T26102] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8643'. [ 963.355174][T26113] netlink: 256 bytes leftover after parsing attributes in process `syz.1.8649'. [ 963.409752][T26116] loop5: detected capacity change from 0 to 164 [ 963.478883][T26116] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 963.640178][T26112] loop3: detected capacity change from 0 to 4096 [ 963.680876][T26112] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 963.732339][T26074] loop4: detected capacity change from 0 to 32768 [ 963.883154][T26074] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 964.077764][T26074] XFS (loop4): Ending clean mount [ 964.121718][T26074] XFS (loop4): Quotacheck needed: Please wait. [ 964.160913][T26145] netlink: 'syz.2.8660': attribute type 21 has an invalid length. [ 964.215569][T26145] netlink: 152 bytes leftover after parsing attributes in process `syz.2.8660'. [ 964.315299][T26074] XFS (loop4): Quotacheck: Done. [ 964.565974][T26154] loop5: detected capacity change from 0 to 512 [ 964.578238][ T6141] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 964.640956][T26154] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 964.747476][T26154] EXT4-fs (loop5): 1 truncate cleaned up [ 964.808480][T26154] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 964.934580][T26154] EXT4-fs error (device loop5): ext4_append:79: inode #2: comm syz.5.8665: Logical block already allocated [ 964.941945][T26172] loop1: detected capacity change from 0 to 8 [ 965.026574][T26172] SQUASHFS error: Unable to read directory block [629:0] [ 965.041717][T26154] EXT4-fs (loop5): Remounting filesystem read-only [ 965.139518][T26174] netlink: 'syz.3.8673': attribute type 3 has an invalid length. [ 965.182036][T26174] netlink: 666 bytes leftover after parsing attributes in process `syz.3.8673'. [ 965.201881][T26176] loop2: detected capacity change from 0 to 1024 [ 965.252134][ T6153] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 965.869631][T26196] loop5: detected capacity change from 0 to 1024 [ 965.966341][ T6282] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 966.048351][T26197] loop3: detected capacity change from 0 to 4096 [ 966.097849][T26197] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 966.117980][T14092] hfsplus: b-tree write err: -5, ino 4 [ 966.139958][ T6282] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 966.156786][ T6282] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 966.197623][ T6282] usb 2-1: Product: syz [ 966.201838][ T6282] usb 2-1: Manufacturer: syz [ 966.224681][T26197] ntfs3(loop3): ino=3, ntfs_set_state failed, -22. [ 966.236263][ T6282] usb 2-1: SerialNumber: syz [ 966.256649][T26197] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 966.319908][ T6282] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 966.338004][T26205] kAFS: unable to lookup cell '/' [ 966.371202][ T5827] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 966.613936][ T13] ntfs3(loop3): ino=3, ntfs3_write_inode failed, -22. [ 966.669293][ T6139] ntfs3(loop3): ino=3, ntfs_set_state failed, -22. [ 966.675851][ T6139] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 966.725884][ T6139] ntfs3(loop3): ino=3, ntfs_set_state failed, -22. [ 966.759198][T14092] ntfs3(loop3): ino=3, ntfs3_write_inode failed, -22. [ 967.143094][T26219] loop4: detected capacity change from 0 to 64 [ 967.182823][T26220] netlink: 'syz.3.8692': attribute type 1 has an invalid length. [ 967.280073][T26220] netlink: 'syz.3.8692': attribute type 2 has an invalid length. [ 968.532056][T26233] loop3: detected capacity change from 0 to 512 [ 968.583606][T26235] loop1: detected capacity change from 0 to 512 [ 968.682937][T26233] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 968.711698][T26235] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 968.761119][T26233] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2 [ 968.827575][T26233] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #13: comm syz.3.8701: invalid indirect mapped block 512 (level 0) [ 968.875668][T26235] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 968.986696][T26233] EXT4-fs (loop3): 1 truncate cleaned up [ 969.014293][T26235] ext4 filesystem being mounted at /1402/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 969.043900][T26233] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 969.060908][T26208] loop2: detected capacity change from 0 to 32768 [ 969.235091][T26208] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 969.250816][T26233] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 4: comm syz.3.8701: lblock 0 mapped to illegal pblock 4 (length 1) [ 969.324907][T26208] workqueue: Failed to create a rescuer kthread for wq "xfs-log/loop2": -EINTR [ 969.325520][T26208] XFS (loop2): log mount failed [ 969.801420][T26251] loop5: detected capacity change from 0 to 4096 [ 969.831406][ T6139] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 970.083884][T26251] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 970.272392][ T6156] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 970.537135][ T6153] ntfs3(loop5): ino=9, ntfs_sync_fs failed, -22. [ 970.543619][T26264] mmap: syz.0.8714 (26264): VmData 37482496 exceed data ulimit 9. Update limits or use boot option ignore_rlimit_data. [ 973.602250][T26315] netlink: 184 bytes leftover after parsing attributes in process `syz.1.8737'. [ 975.658538][T26350] loop2: detected capacity change from 0 to 164 [ 975.850640][T26350] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 975.872021][T26355] loop3: detected capacity change from 0 to 1024 [ 976.465542][T19757] hfsplus: b-tree write err: -5, ino 4 [ 977.085656][T26374] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8766'. [ 977.188164][T26374] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8766'. [ 977.466460][T26380] tipc: Can't bind to reserved service type 0 [ 978.676866][T26397] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 978.849448][T26399] ip6erspan0: entered promiscuous mode [ 979.414312][ T30] audit: type=1326 audit(2000524779.976:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26409 comm="syz.4.8783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 979.639151][ T30] audit: type=1326 audit(2000524780.006:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26409 comm="syz.4.8783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 979.659130][ C1] sched: DL replenish lagged too much [ 979.912525][ T30] audit: type=1326 audit(2000524780.026:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26409 comm="syz.4.8783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 980.139762][ T30] audit: type=1326 audit(2000524780.026:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26409 comm="syz.4.8783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 980.405236][ T30] audit: type=1326 audit(2000524780.026:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26409 comm="syz.4.8783" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15d738eec9 code=0x7ffc0000 [ 980.536231][T26419] loop5: detected capacity change from 0 to 4096 [ 980.681179][T26419] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512). [ 980.963792][T26429] loop4: detected capacity change from 0 to 8 [ 981.091701][T26429] SQUASHFS error: Failed to read block 0x738: -5 [ 981.136958][ T5827] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 981.145794][ T5827] ath9k_htc: Failed to initialize the device [ 981.171338][T26429] SQUASHFS error: Unable to read metadata cache entry [736] [ 981.509021][T26435] vim2m vim2m.0: Fourcc format (0x31384142) invalid. [ 981.618548][ T6282] usb 2-1: USB disconnect, device number 21 [ 981.649113][ T6282] usb 2-1: ath9k_htc: USB layer deinitialized [ 981.934241][T26439] loop2: detected capacity change from 0 to 4096 [ 982.000634][T26439] ntfs3(loop2): Different NTFS sector size (2048) and media sector size (512). [ 982.432668][T26464] loop1: detected capacity change from 0 to 24 [ 982.473150][T26464] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 982.520022][T26464] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 982.617648][T26464] VFS: Lookup of 'file0' in romfs loop1 would have caused loop [ 982.804919][T26478] loop3: detected capacity change from 0 to 64 [ 983.031423][T26486] loop1: detected capacity change from 0 to 256 [ 983.056756][T26486] exfat: Deprecated parameter 'utf8' [ 983.110047][T26486] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 983.229876][T26492] netlink: 'syz.3.8824': attribute type 1 has an invalid length. [ 983.266612][T26492] netlink: 'syz.3.8824': attribute type 1 has an invalid length. [ 984.577463][T26549] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8850'. [ 984.624306][ T6130] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 984.810516][ T6363] usb 5-1: new full-speed USB device number 10 using dummy_hcd [ 984.832491][ T6130] usb 3-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd [ 984.846877][ T6130] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 984.854909][ T6130] usb 3-1: Product: syz [ 984.876837][ T6130] usb 3-1: Manufacturer: syz [ 984.886123][ T6130] usb 3-1: SerialNumber: syz [ 984.921362][T26562] tmpfs: Bad value for 'mpol' [ 984.928316][ T6130] usb 3-1: config 0 descriptor?? [ 984.981595][ T6155] Bluetooth: hci6: urb ffff888027239100 submission failed (2) [ 984.995635][ T6363] usb 5-1: config 0 has an invalid interface number: 3 but max is 2 [ 985.012233][T26564] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8859'. [ 985.017168][ T6363] usb 5-1: config 0 has an invalid interface number: 176 but max is 2 [ 985.031629][ T6363] usb 5-1: config 0 has no interface number 1 [ 985.038475][ T6363] usb 5-1: config 0 has no interface number 2 [ 985.045179][ T6363] usb 5-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac [ 985.055966][ T6363] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 985.080860][ T6363] usb 5-1: config 0 descriptor?? [ 985.192913][ T6130] usb 3-1: USB disconnect, device number 7 [ 985.302749][ T6363] qcserial 5-1:0.3: Qualcomm USB modem converter detected [ 985.448117][T26578] loop3: detected capacity change from 0 to 2048 [ 985.502374][T26578] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 985.535412][T26578] UDF-fs: Scanning with blocksize 512 failed [ 985.583513][ T6130] usb 5-1: USB disconnect, device number 10 [ 985.594824][ T6130] qcserial 5-1:0.3: device disconnected [ 985.610328][T26578] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 986.664634][T26585] loop1: detected capacity change from 0 to 32768 [ 986.711632][T26585] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8869 (26585) [ 986.792183][T26585] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 986.827176][T26585] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 986.954661][ T6282] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 987.067384][T26585] BTRFS info (device loop1): enabling ssd optimizations [ 987.116580][T26585] BTRFS info (device loop1): enabling free space tree [ 987.131527][ T6282] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 987.168360][ T6282] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 987.176386][ T6282] usb 4-1: Product: syz [ 987.228722][ T6282] usb 4-1: Manufacturer: syz [ 987.248626][ T6282] usb 4-1: SerialNumber: syz [ 987.299699][ T6282] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 987.338122][T26653] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8895'. [ 987.338307][ T5827] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 987.422129][T26585] BTRFS info (device loop1): balance: start -susage=34359738372,drange=7..107,limit=3330..0 [ 987.475860][T26585] BTRFS info (device loop1): balance: ended with status: 0 [ 987.678147][ C1] usb 4-1: ath9k_htc: invalid pkt_len (fd10) [ 987.739752][ T6156] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 988.031679][ T24] usb 4-1: USB disconnect, device number 22 [ 988.419832][ T5827] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 988.427408][T26676] loop4: detected capacity change from 0 to 256 [ 988.462937][ T5827] ath9k_htc: Failed to initialize the device [ 988.474456][T26676] exfat: Deprecated parameter 'namecase' [ 988.497244][ T24] usb 4-1: ath9k_htc: USB layer deinitialized [ 988.611304][T26676] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 989.337457][T26704] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8919'. [ 989.393094][T26704] netlink: 60 bytes leftover after parsing attributes in process `syz.2.8919'. [ 989.626997][T26715] netlink: 1010 bytes leftover after parsing attributes in process `syz.1.8925'. [ 989.655053][T26715] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 989.690615][T26713] loop4: detected capacity change from 0 to 4096 [ 989.722026][T26713] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 989.731130][ T6363] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 989.800483][T26713] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 989.819094][T26713] ntfs3(loop4): mft corrupted [ 989.823881][T26713] ntfs3(loop4): Failed to load $Extend (-22). [ 989.866719][T26713] ntfs3(loop4): Failed to initialize $Extend. [ 989.912931][ T6363] usb 1-1: New USB device found, idVendor=08fd, idProduct=0002, bcdDevice=ca.fd [ 989.959193][T26684] loop5: detected capacity change from 0 to 32768 [ 989.966984][ T6363] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 989.975262][ T6363] usb 1-1: Product: syz [ 989.982592][T26713] ntfs3(loop4): ino=1e, mi_enum_attr [ 989.999583][T26713] ntfs3(loop4): ino=1e, mi_enum_attr [ 990.028906][ T6363] usb 1-1: Manufacturer: syz [ 990.033534][ T6363] usb 1-1: SerialNumber: syz [ 990.051628][T26684] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 990.089125][ T6363] usb 1-1: config 0 descriptor?? [ 990.132015][ T6155] Bluetooth: hci6: urb ffff888056846300 submission failed (2) [ 990.247260][T26684] XFS (loop5): Ending clean mount [ 990.256223][T26684] XFS (loop5): Quotacheck needed: Please wait. [ 990.390141][ T6363] usb 1-1: USB disconnect, device number 14 [ 990.397035][T26684] XFS (loop5): Quotacheck: Done. [ 990.686461][ T6153] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 990.768314][T26746] loop1: detected capacity change from 0 to 1024 [ 990.817210][T26746] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 990.946311][T26747] loop3: detected capacity change from 0 to 4096 [ 990.958670][T26746] EXT4-fs error (device loop1): ext4_map_blocks:814: inode #3: block 1: comm syz.1.8936: lblock 1 mapped to illegal pblock 1 (length 1) [ 991.027035][T26747] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 991.049201][T26746] Quota error (device loop1): write_blk: dquota write failed [ 991.071137][T26746] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 991.123193][T26746] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.8936: Failed to acquire dquot type 0 [ 991.163169][T26747] ntfs3(loop3): Failed to initialize $Extend/$ObjId. [ 991.208335][T26746] EXT4-fs error (device loop1): ext4_free_blocks:6705: comm syz.1.8936: Freeing blocks not in datazone - block = 0, count = 4096 [ 991.253551][T26746] EXT4-fs error (device loop1): ext4_read_inode_bitmap:138: comm syz.1.8936: Invalid inode bitmap blk 0 in block_group 0 [ 991.267569][T19757] EXT4-fs error (device loop1): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:10: lblock 1 mapped to illegal pblock 1 (length 1) [ 991.306965][T26746] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem [ 991.341987][T26746] EXT4-fs (loop1): 1 orphan inode deleted [ 991.356695][T19757] Quota error (device loop1): remove_tree: Can't read quota data block 1 [ 991.368867][T26746] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 991.384875][T19757] EXT4-fs error (device loop1): ext4_release_dquot:6979: comm kworker/u8:10: Failed to release dquot type 0 [ 991.718850][ T6156] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 991.749191][T26775] loop4: detected capacity change from 0 to 16 [ 991.796663][T26775] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 991.852934][T26775] cramfs: Error -3 while decompressing! [ 991.906886][T26775] cramfs: ffffffff9a97c128(27)->ffff88804f376000(4096) [ 991.913973][T26775] cramfs: Error -3 while decompressing! [ 991.936653][T26775] cramfs: ffffffff9a97c143(16)->ffff888041355000(4096) [ 991.943583][T26775] cramfs: Error -3 while decompressing! [ 992.017079][T26775] cramfs: ffffffff9a97c128(27)->ffff88804f376000(4096) [ 992.031776][ T30] audit: type=1800 audit(2000524792.595:228): pid=26775 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.8951" name="file2" dev="loop4" ino=348 res=0 errno=0 [ 992.877614][ T6130] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 993.043402][ T6130] usb 3-1: Using ep0 maxpacket: 32 [ 993.065454][ T6130] usb 3-1: config 40 has an invalid interface number: 140 but max is 0 [ 993.085595][ T6130] usb 3-1: config 40 has no interface number 0 [ 993.092074][ T6130] usb 3-1: config 40 interface 140 has no altsetting 0 [ 993.102759][ T6130] usb 3-1: New USB device found, idVendor=2040, idProduct=b200, bcdDevice=c7.df [ 993.126703][ T6130] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 993.168229][ T6130] usb 3-1: Product: syz [ 993.176750][ T6130] usb 3-1: Manufacturer: syz [ 993.181365][ T6130] usb 3-1: SerialNumber: syz [ 993.426203][ T6130] dvb-usb: found a 'Hauppauge ATSC MiniCard (B200)' in cold state, will try to load a firmware [ 993.503316][ T6130] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw' [ 993.539925][ T6130] dib0700: firmware download failed at 7 with -22 [ 993.674654][T26843] loop1: detected capacity change from 0 to 512 [ 993.694987][T26841] program syz.0.8983 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 993.709669][ T5827] usb 3-1: USB disconnect, device number 8 [ 993.764093][T26843] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.8982: iget: bad i_size value: 38620345925642 [ 993.838240][T26843] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.8982: couldn't read orphan inode 15 (err -117) [ 993.919935][T26843] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 993.966526][T26822] loop5: detected capacity change from 0 to 32768 [ 993.996813][ T24] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 994.009607][T26822] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8973 (26822) [ 994.060181][T26822] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 994.094830][T26822] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm [ 994.149907][ T6156] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 994.199223][ T24] usb 5-1: New USB device found, idVendor=0f11, idProduct=1000, bcdDevice= 0.7f [ 994.211679][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 994.231307][ T24] usb 5-1: config 0 descriptor?? [ 994.248759][T26822] BTRFS info (device loop5): enabling ssd optimizations [ 994.258928][T26822] BTRFS info (device loop5): enabling free space tree [ 994.457176][ T24] usb 5-1: string descriptor 0 read error: -71 [ 994.493420][ T24] ldusb 5-1:0.0: Interrupt in endpoint not found [ 994.532592][ T24] usb 5-1: USB disconnect, device number 11 [ 994.552174][T26881] __vm_enough_memory: pid: 26881, comm: syz.0.8994, bytes: 4503599627366400 not enough memory for the allocation [ 994.643540][ T6153] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 995.488895][T26903] loop4: detected capacity change from 0 to 2048 [ 995.541176][T26903] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 995.666933][ T24] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 995.795144][T26876] loop1: detected capacity change from 0 to 32768 [ 995.844833][T26876] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8991 (26876) [ 995.894870][ T24] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 995.936115][ T24] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 995.956430][T26876] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 995.984617][ T24] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 996.006762][T26876] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm [ 996.023196][ T24] usb 3-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 996.032573][ T24] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 996.041735][ T24] usb 3-1: Product: syz [ 996.046007][ T24] usb 3-1: Manufacturer: syz [ 996.050723][ T24] usb 3-1: SerialNumber: syz [ 996.060933][ T24] usb 3-1: config 0 descriptor?? [ 996.105643][T26906] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 996.116856][T26906] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 996.135525][ T24] usb 3-1: ucan: probing device on interface #0 [ 996.198869][T26876] BTRFS info (device loop1): allowing degraded mounts [ 996.205707][T26876] BTRFS info (device loop1): enabling ssd optimizations [ 996.279050][T26876] BTRFS info (device loop1): enabling free space tree [ 996.336861][T26876] BTRFS info (device loop1): force zlib compression, level 3 [ 996.390212][ T24] usb 3-1: ucan: device protocol version 0 is not supported [ 996.414487][ T24] usb 3-1: ucan: probe failed; try to update the device firmware [ 996.586801][ T6282] usb 6-1: new high-speed USB device number 99 using dummy_hcd [ 996.651419][ T6130] usb 3-1: USB disconnect, device number 9 [ 996.683837][ T6156] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 996.800153][ T6282] usb 6-1: config 1 has an invalid interface number: 7 but max is 0 [ 996.817350][ T6282] usb 6-1: config 1 has no interface number 0 [ 996.836781][ T6282] usb 6-1: config 1 interface 7 altsetting 0 has an endpoint descriptor with address 0xDB, changing to 0x8B [ 996.848804][ T6282] usb 6-1: config 1 interface 7 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64 [ 996.866946][ T6282] usb 6-1: config 1 interface 7 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 996.913642][ T6282] usb 6-1: New USB device found, idVendor=1199, idProduct=68a3, bcdDevice= 0.00 [ 996.943675][ T6282] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 996.990676][ T6282] usb 6-1: Product: syz [ 996.994894][ T6282] usb 6-1: Manufacturer: syz [ 997.026854][ T6282] usb 6-1: SerialNumber: syz [ 997.054916][T26942] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 997.329146][T26942] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22 [ 997.373349][ T6282] usb 6-1: No status endpoint found [ 997.658961][ T6130] usb 6-1: USB disconnect, device number 99 [ 999.070370][T27028] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9059'. [ 999.227619][T27033] loop3: detected capacity change from 0 to 64 [ 999.709689][T27053] loop1: detected capacity change from 0 to 8 [ 999.772574][T27053] SQUASHFS error: Failed to read block 0x1ec: -5 [ 999.803930][T27053] SQUASHFS error: Unable to read metadata cache entry [1ea] [ 1000.806864][ T6282] usb 6-1: new high-speed USB device number 100 using dummy_hcd [ 1000.914479][T27101] loop2: detected capacity change from 0 to 512 [ 1000.945059][T27101] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1000.986830][ T6282] usb 6-1: Using ep0 maxpacket: 32 [ 1001.006627][ T6282] usb 6-1: config 40 has an invalid interface number: 140 but max is 0 [ 1001.016804][ T5827] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1001.037207][T27101] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1001.058007][ T6282] usb 6-1: config 40 has no interface number 0 [ 1001.087384][ T6282] usb 6-1: config 40 interface 140 has no altsetting 0 [ 1001.094613][T27101] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102] [ 1001.128075][T27101] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80) [ 1001.140362][ T6282] usb 6-1: New USB device found, idVendor=2040, idProduct=b200, bcdDevice=c7.df [ 1001.187439][ T6282] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1001.195477][ T6282] usb 6-1: Product: syz [ 1001.215453][T27101] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1001.234571][ T6282] usb 6-1: Manufacturer: syz [ 1001.243152][T27101] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1001.266985][ T5827] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023 [ 1001.277625][ T6282] usb 6-1: SerialNumber: syz [ 1001.286182][ T5827] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBA, changing to 0x8A [ 1001.319999][ T5827] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8A has invalid maxpacket 121 [ 1001.337140][T27101] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1001.347535][T27101] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80) [ 1001.357584][ T5827] usb 2-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10 [ 1001.368728][T27092] loop3: detected capacity change from 0 to 32768 [ 1001.388729][T27092] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.9091 (27092) [ 1001.401654][ T5827] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1001.401696][ T5827] usb 2-1: Product: syz [ 1001.401724][ T5827] usb 2-1: Manufacturer: syz [ 1001.401779][ T5827] usb 2-1: SerialNumber: syz [ 1001.429255][ T5827] usb 2-1: config 0 descriptor?? [ 1001.454779][T27092] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1001.473688][T27097] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 1001.475072][T27092] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm [ 1001.483870][T27097] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 1001.497000][ T6130] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 1001.509293][ T6143] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1001.522167][ T5827] usb 2-1: ucan: probing device on interface #0 [ 1001.555196][ T6282] dvb-usb: found a 'Hauppauge ATSC MiniCard (B200)' in cold state, will try to load a firmware [ 1001.588935][ T6282] dvb-usb: downloading firmware from file 'dvb-usb-dib0700-1.20.fw' [ 1001.598540][ T6282] dib0700: firmware download failed at 7 with -22 [ 1001.666870][ T6130] usb 1-1: Using ep0 maxpacket: 8 [ 1001.685269][ T6130] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1001.710950][T27092] BTRFS info (device loop3): allowing degraded mounts [ 1001.712830][T27126] netlink: 256 bytes leftover after parsing attributes in process `syz.2.9100'. [ 1001.722340][T27092] BTRFS info (device loop3): enabling ssd optimizations [ 1001.734719][T27092] BTRFS info (device loop3): enabling free space tree [ 1001.741630][ T6130] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 1001.741674][ T6130] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1001.761756][T27092] BTRFS info (device loop3): force zlib compression, level 3 [ 1001.771892][ T6130] usb 1-1: config 0 descriptor?? [ 1001.794645][ T6282] usb 6-1: USB disconnect, device number 100 [ 1001.821420][ T5827] usb 2-1: ucan: device protocol version 0 is not supported [ 1001.837783][ T5827] usb 2-1: ucan: probe failed; try to update the device firmware [ 1001.849615][ T6130] gspca_main: vc032x-2.14.0 probing 046d:0892 [ 1002.070543][ T6363] usb 2-1: USB disconnect, device number 22 [ 1002.119410][ T6139] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1002.230014][ T6130] gspca_vc032x: reg_w err -71 [ 1002.253525][ T6130] vc032x 1-1:0.0: probe with driver vc032x failed with error -71 [ 1002.277041][T27107] loop4: detected capacity change from 0 to 32768 [ 1002.296282][ T6130] usb 1-1: USB disconnect, device number 15 [ 1002.442533][T27107] ERROR: (device loop4): diAllocBit: iag inconsistent [ 1002.442533][T27107] [ 1002.495705][T27107] ialloc: diAlloc returned -5! [ 1002.577435][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 1002.958889][T27143] loop4: detected capacity change from 0 to 64 [ 1003.338139][ T6282] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 1003.546982][ T6282] usb 1-1: Using ep0 maxpacket: 16 [ 1003.556632][ T6282] usb 1-1: config 0 has an invalid interface number: 251 but max is 0 [ 1003.579109][T27163] wg1: entered promiscuous mode [ 1003.586034][T27163] wg1: entered allmulticast mode [ 1003.586795][ T6282] usb 1-1: config 0 has no interface number 0 [ 1003.615826][ T6282] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 1003.675731][ T6282] usb 1-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 1003.738372][ T6282] usb 1-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 1003.760193][ T6282] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1003.772394][T27169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9122'. [ 1003.785488][T27169] netlink: 12 bytes leftover after parsing attributes in process `syz.4.9122'. [ 1003.821361][ T6282] usb 1-1: Product: syz [ 1003.831929][T27165] bond2: entered allmulticast mode [ 1003.848010][ T6282] usb 1-1: Manufacturer: syz [ 1003.863281][T27165] 8021q: adding VLAN 0 to HW filter on device bond2 [ 1003.877197][ T6282] usb 1-1: SerialNumber: syz [ 1003.898114][ T6282] usb 1-1: config 0 descriptor?? [ 1003.942696][T27149] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1003.970369][T27149] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.040044][T27174] netlink: 48 bytes leftover after parsing attributes in process `syz.4.9123'. [ 1004.069814][T27139] loop3: detected capacity change from 0 to 32768 [ 1004.103456][T27139] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.9105 (27139) [ 1004.168480][T27139] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1004.205350][T27139] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 1004.220653][T27149] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.250267][T27149] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1004.372452][T27139] BTRFS info (device loop3): enabling ssd optimizations [ 1004.388651][T27139] BTRFS info (device loop3): enabling free space tree [ 1004.477019][ T6282] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1004.526009][ T6282] asix 1-1:0.251 (unnamed net_device) (uninitialized): Failed to read MAC address: -71 [ 1004.583195][ T6282] asix 1-1:0.251: probe with driver asix failed with error -5 [ 1004.644853][ T6282] usb 1-1: USB disconnect, device number 16 [ 1004.674852][ T6139] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1004.798898][T27208] netlink: 'syz.2.9132': attribute type 1 has an invalid length. [ 1004.829223][T27208] netlink: 224 bytes leftover after parsing attributes in process `syz.2.9132'. [ 1006.053734][T19759] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1006.073204][T19759] netdevsim netdevsim2 netdevsim0: unset [1, 1] type 2 family 0 port 256 - 0 [ 1006.363721][T27265] loop5: detected capacity change from 0 to 512 [ 1006.403692][T27267] netlink: 'syz.1.9161': attribute type 1 has an invalid length. [ 1006.428018][T27265] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1006.455206][T27269] sctp: [Deprecated]: syz.0.9162 (pid 27269) Use of int in maxseg socket option. [ 1006.455206][T27269] Use struct sctp_assoc_value instead [ 1006.513785][T27265] EXT4-fs (loop5): revision level too high, forcing read-only mode [ 1006.526979][T27265] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102] [ 1006.601575][T27265] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 1006.643278][T27278] loop1: detected capacity change from 0 to 16 [ 1006.657317][T27265] EXT4-fs (loop5): Skipping orphan cleanup due to unknown ROCOMPAT features [ 1006.682255][T27265] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1006.696094][T27278] erofs (device loop1): DAX unsupported by block device. Turning off DAX. [ 1006.719851][T27278] erofs (device loop1): EXPERIMENTAL EROFS subpage compressed block support in use. Use at your own risk! [ 1006.752651][T27278] erofs (device loop1): mounted with root inode @ nid 36. [ 1006.763334][T27265] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1006.800203][T27278] syz.1.9167: attempt to access beyond end of device [ 1006.800203][T27278] loop1: rw=0, sector=131157, nr_sectors = 1 limit=16 [ 1006.843162][T27265] EXT4-fs (loop5): couldn't mount RDWR because of unsupported optional features (80) [ 1006.861475][T27278] erofs (device loop1): read error -5 @ 0 of nid 36 [ 1007.033145][ T6153] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1007.149196][T27291] loop2: detected capacity change from 0 to 16 [ 1007.217868][T27291] erofs (device loop2): mounted with root inode @ nid 36. [ 1008.005734][ T30] audit: type=1326 audit(2000524808.565:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27319 comm="syz.1.9186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 1008.099187][ T30] audit: type=1326 audit(2000524808.565:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27319 comm="syz.1.9186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 1008.160994][T27328] dlm: Unknown command passed to DLM device : 128 [ 1008.160994][T27328] [ 1008.196313][ T30] audit: type=1326 audit(2000524808.565:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27319 comm="syz.1.9186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=210 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 1008.309249][ T30] audit: type=1326 audit(2000524808.565:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27319 comm="syz.1.9186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 1008.354971][T27338] netlink: 'syz.3.9196': attribute type 1 has an invalid length. [ 1008.362846][T27338] netlink: 224 bytes leftover after parsing attributes in process `syz.3.9196'. [ 1008.426972][ T30] audit: type=1326 audit(2000524808.565:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27319 comm="syz.1.9186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb98eec9 code=0x7ffc0000 [ 1009.182667][ T6130] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 1009.352898][ T6130] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1009.384301][ T6130] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1009.418637][ T6130] usb 2-1: Product: syz [ 1009.432994][ T6130] usb 2-1: Manufacturer: syz [ 1009.447500][ T6130] usb 2-1: SerialNumber: syz [ 1009.467449][ T6130] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1009.499057][ T6363] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1009.607715][ T10] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 1009.796950][ T10] usb 1-1: Using ep0 maxpacket: 16 [ 1009.837130][ T10] usb 1-1: config 0 has an invalid interface number: 105 but max is 0 [ 1009.845330][ T10] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1009.873865][ T10] usb 1-1: config 0 has no interface number 0 [ 1009.900959][ T10] usb 1-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1009.910530][ T10] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1009.949917][ T10] usb 1-1: Product: syz [ 1009.954183][ T10] usb 1-1: Manufacturer: syz [ 1009.989467][ T10] usb 1-1: SerialNumber: syz [ 1009.991264][ T6282] usb 2-1: USB disconnect, device number 23 [ 1010.058140][ T10] usb 1-1: config 0 descriptor?? [ 1010.092400][ T10] uvcvideo 1-1:0.105: Found Unit with invalid ID 0 [ 1010.119317][ T10] uvcvideo 1-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 1010.126645][ T10] uvcvideo 1-1:0.105: No valid video chain found. [ 1010.334642][ T6352] usb 1-1: USB disconnect, device number 17 [ 1010.509107][T27403] netlink: 'syz.2.9229': attribute type 11 has an invalid length. [ 1010.577025][ T6363] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive [ 1010.599325][ T6363] ath9k_htc: Failed to initialize the device [ 1010.625320][ T6282] usb 2-1: ath9k_htc: USB layer deinitialized [ 1010.734785][T27413] loop4: detected capacity change from 0 to 64 [ 1010.958019][T19759] [ 1010.960390][T19759] ====================================================== [ 1010.967396][T19759] WARNING: possible circular locking dependency detected [ 1010.974402][T19759] syzkaller #0 Not tainted [ 1010.978808][T19759] ------------------------------------------------------ [ 1010.985815][T19759] kworker/u8:11/19759 is trying to acquire lock: [ 1010.992129][T19759] ffff88806a8b1af8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa5/0xcd0 [ 1011.002864][T19759] [ 1011.002864][T19759] but task is already holding lock: [ 1011.010214][T19759] ffff8880538680b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x19c/0x310 [ 1011.019763][T19759] [ 1011.019763][T19759] which lock already depends on the new lock. [ 1011.019763][T19759] [ 1011.030155][T19759] [ 1011.030155][T19759] the existing dependency chain (in reverse order) is: [ 1011.039155][T19759] [ 1011.039155][T19759] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}: [ 1011.047269][T19759] __mutex_lock+0x193/0x1060 [ 1011.052392][T19759] hfs_find_init+0x19c/0x310 [ 1011.057518][T19759] hfs_ext_read_extent+0x19b/0x9e0 [ 1011.063154][T19759] hfs_get_block+0x568/0x830 [ 1011.068268][T19759] block_read_full_folio+0x457/0x850 [ 1011.074087][T19759] filemap_read_folio+0xc8/0x2a0 [ 1011.079557][T19759] do_read_cache_folio+0x263/0x5c0 [ 1011.085205][T19759] read_cache_page+0x5b/0x160 [ 1011.090417][T19759] __hfs_bnode_create+0x70b/0x9b0 [ 1011.095988][T19759] hfs_bnode_find+0x2cc/0xd40 [ 1011.101186][T19759] hfs_brec_find+0x3a2/0x650 [ 1011.106313][T19759] hfs_brec_read+0x26/0x120 [ 1011.111352][T19759] hfs_cat_find_brec+0xd8/0x2c0 [ 1011.116729][T19759] hfs_fill_super+0x524/0x800 [ 1011.121941][T19759] get_tree_bdev_flags+0x38c/0x620 [ 1011.127590][T19759] vfs_get_tree+0x8e/0x340 [ 1011.132536][T19759] path_mount+0x7b9/0x23a0 [ 1011.137473][T19759] __x64_sys_mount+0x293/0x310 [ 1011.142757][T19759] do_syscall_64+0xcd/0x4e0 [ 1011.147797][T19759] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1011.154212][T19759] [ 1011.154212][T19759] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 1011.163518][T19759] __lock_acquire+0x12a6/0x1ce0 [ 1011.168896][T19759] lock_acquire+0x179/0x350 [ 1011.173922][T19759] __mutex_lock+0x193/0x1060 [ 1011.179042][T19759] hfs_extend_file+0xa5/0xcd0 [ 1011.184245][T19759] hfs_bmap_reserve+0x2ab/0x3a0 [ 1011.189620][T19759] __hfs_ext_write_extent+0x3cf/0x520 [ 1011.195518][T19759] hfs_ext_write_extent+0x1b5/0x1f0 [ 1011.201242][T19759] hfs_write_inode+0xcc/0xab0 [ 1011.206447][T19759] __writeback_single_inode+0xb3e/0xfb0 [ 1011.212524][T19759] writeback_sb_inodes+0x60d/0xfa0 [ 1011.218169][T19759] wb_writeback+0x419/0xb70 [ 1011.223201][T19759] wb_workfn+0x14d/0xbe0 [ 1011.227973][T19759] process_one_work+0x9cf/0x1b70 [ 1011.233449][T19759] worker_thread+0x6c8/0xf10 [ 1011.238565][T19759] kthread+0x3c5/0x780 [ 1011.243160][T19759] ret_from_fork+0x56d/0x730 [ 1011.248271][T19759] ret_from_fork_asm+0x1a/0x30 [ 1011.253566][T19759] [ 1011.253566][T19759] other info that might help us debug this: [ 1011.253566][T19759] [ 1011.263777][T19759] Possible unsafe locking scenario: [ 1011.263777][T19759] [ 1011.271213][T19759] CPU0 CPU1 [ 1011.276562][T19759] ---- ---- [ 1011.281913][T19759] lock(&tree->tree_lock#2/1); [ 1011.286786][T19759] lock(&HFS_I(tree->inode)->extents_lock); [ 1011.295287][T19759] lock(&tree->tree_lock#2/1); [ 1011.302680][T19759] lock(&HFS_I(tree->inode)->extents_lock); [ 1011.308676][T19759] [ 1011.308676][T19759] *** DEADLOCK *** [ 1011.308676][T19759] [ 1011.316805][T19759] 3 locks held by kworker/u8:11/19759: [ 1011.322251][T19759] #0: ffff8880212a2948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1011.333002][T19759] #1: ffffc9002037fd10 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1011.344962][T19759] #2: ffff8880538680b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x19c/0x310 [ 1011.354953][T19759] [ 1011.354953][T19759] stack backtrace: [ 1011.360831][T19759] CPU: 0 UID: 0 PID: 19759 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) [ 1011.360870][T19759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1011.360893][T19759] Workqueue: writeback wb_workfn (flush-7:4) [ 1011.360944][T19759] Call Trace: [ 1011.360956][T19759] [ 1011.360969][T19759] dump_stack_lvl+0x116/0x1f0 [ 1011.361010][T19759] print_circular_bug+0x275/0x350 [ 1011.361045][T19759] check_noncircular+0x14c/0x170 [ 1011.361084][T19759] __lock_acquire+0x12a6/0x1ce0 [ 1011.361127][T19759] lock_acquire+0x179/0x350 [ 1011.361160][T19759] ? hfs_extend_file+0xa5/0xcd0 [ 1011.361199][T19759] ? __pfx___might_resched+0x10/0x10 [ 1011.361248][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.361290][T19759] ? hfs_extend_file+0xa5/0xcd0 [ 1011.361327][T19759] __mutex_lock+0x193/0x1060 [ 1011.361367][T19759] ? hfs_extend_file+0xa5/0xcd0 [ 1011.361403][T19759] ? __lock_acquire+0x107f/0x1ce0 [ 1011.361442][T19759] ? __pfx___mutex_lock+0x10/0x10 [ 1011.361489][T19759] ? __pfx___might_resched+0x10/0x10 [ 1011.361538][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.361577][T19759] ? rcu_is_watching+0x12/0xc0 [ 1011.361628][T19759] ? hfs_extend_file+0xa5/0xcd0 [ 1011.361664][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.361703][T19759] hfs_extend_file+0xa5/0xcd0 [ 1011.361743][T19759] ? __pfx_hfs_extend_file+0x10/0x10 [ 1011.361781][T19759] ? hfs_brec_find+0x4dc/0x650 [ 1011.361839][T19759] hfs_bmap_reserve+0x2ab/0x3a0 [ 1011.361871][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.361916][T19759] __hfs_ext_write_extent+0x3cf/0x520 [ 1011.361954][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.361997][T19759] hfs_ext_write_extent+0x1b5/0x1f0 [ 1011.362035][T19759] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1011.362078][T19759] ? blk_finish_plug+0x16/0xa0 [ 1011.362108][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362147][T19759] ? mpage_writepages+0x159/0x1c0 [ 1011.362195][T19759] ? __pfx_mpage_writepages+0x10/0x10 [ 1011.362246][T19759] hfs_write_inode+0xcc/0xab0 [ 1011.362289][T19759] ? __pfx_hfs_write_inode+0x10/0x10 [ 1011.362330][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1011.362367][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362407][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1011.362448][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362493][T19759] __writeback_single_inode+0xb3e/0xfb0 [ 1011.362539][T19759] ? __pfx___writeback_single_inode+0x10/0x10 [ 1011.362582][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362621][T19759] ? do_raw_spin_unlock+0x172/0x230 [ 1011.362664][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362718][T19759] writeback_sb_inodes+0x60d/0xfa0 [ 1011.362771][T19759] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1011.362846][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362885][T19759] ? rcu_is_watching+0x12/0xc0 [ 1011.362933][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.362972][T19759] ? queue_io+0x3f6/0x520 [ 1011.363009][T19759] wb_writeback+0x419/0xb70 [ 1011.363056][T19759] ? __pfx_wb_writeback+0x10/0x10 [ 1011.363097][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363142][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363181][T19759] ? mark_held_locks+0x49/0x80 [ 1011.363217][T19759] wb_workfn+0x14d/0xbe0 [ 1011.363262][T19759] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1011.363300][T19759] ? __pfx_wb_workfn+0x10/0x10 [ 1011.363346][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363387][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363428][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363467][T19759] ? rcu_is_watching+0x12/0xc0 [ 1011.363518][T19759] process_one_work+0x9cf/0x1b70 [ 1011.363567][T19759] ? __pfx_process_one_work+0x10/0x10 [ 1011.363608][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363652][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363692][T19759] ? assign_work+0x1a0/0x250 [ 1011.363729][T19759] worker_thread+0x6c8/0xf10 [ 1011.363784][T19759] ? __pfx_worker_thread+0x10/0x10 [ 1011.363831][T19759] kthread+0x3c5/0x780 [ 1011.363868][T19759] ? __pfx_kthread+0x10/0x10 [ 1011.363905][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1011.363944][T19759] ? rcu_is_watching+0x12/0xc0 [ 1011.363992][T19759] ? __pfx_kthread+0x10/0x10 [ 1011.364029][T19759] ret_from_fork+0x56d/0x730 [ 1011.364064][T19759] ? __pfx_kthread+0x10/0x10 [ 1011.364101][T19759] ret_from_fork_asm+0x1a/0x30 [ 1011.364155][T19759] [ 1011.815534][T27422] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9236'. [ 1011.863956][T19759] hfs: new node 0 already hashed? [ 1011.869532][T19759] ------------[ cut here ]------------ [ 1011.872846][T27424] netlink: 256 bytes leftover after parsing attributes in process `syz.5.9238'. [ 1011.874996][T19759] WARNING: CPU: 0 PID: 19759 at fs/hfs/bnode.c:520 hfs_bnode_create+0x14c/0x5e0 [ 1011.893407][T19759] Modules linked in: [ 1011.894559][T27422] netlink: 168 bytes leftover after parsing attributes in process `syz.1.9236'. [ 1011.897555][T19759] CPU: 0 UID: 0 PID: 19759 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) [ 1011.916720][T19759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1011.927111][T19759] Workqueue: writeback wb_workfn (flush-7:4) [ 1011.933461][T19759] RIP: 0010:hfs_bnode_create+0x14c/0x5e0 [ 1011.939146][T19759] Code: ea 18 ff 45 39 fc 75 9e e8 51 f0 18 ff 4c 89 f7 e8 b9 ee af 08 e8 44 f0 18 ff 44 89 e6 48 c7 c7 20 c5 8a 8b e8 a5 92 f7 fe 90 <0f> 0b 90 e8 2c f0 18 ff 48 89 d8 48 83 c4 28 5b 5d 41 5c 41 5d 41 [ 1011.958819][T19759] RSP: 0018:ffffc9002037f080 EFLAGS: 00010286 [ 1011.960815][T27422] netlink: 168 bytes leftover after parsing attributes in process `syz.1.9236'. [ 1011.964899][T19759] RAX: 000000000000001f RBX: ffff888030302300 RCX: ffffffff8199c7a9 [ 1011.964928][T19759] RDX: 0000000000000000 RSI: ffffffff819a42d6 RDI: 0000000000000005 [ 1011.989928][T19759] RBP: ffff888053868000 R08: 0000000000000005 R09: 0000000000000000 [ 1011.997962][T19759] R10: 0000000080000000 R11: 77656e203a736668 R12: 0000000000000000 [ 1011.998228][T27422] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 1012.005957][T19759] R13: dffffc0000000000 R14: ffff8880538680e0 R15: 0000000000000000 [ 1012.029696][T19759] FS: 0000000000000000(0000) GS:ffff888124e6a000(0000) knlGS:0000000000000000 [ 1012.038689][T19759] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1012.045290][T19759] CR2: 00007ffe1d6dbba8 CR3: 0000000052beb000 CR4: 0000000000350ef0 [ 1012.053313][T19759] Call Trace: [ 1012.056593][T19759] [ 1012.059574][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.065237][T19759] ? hfs_bnode_put+0x20c/0x460 [ 1012.070057][T19759] hfs_bmap_alloc+0x7d7/0x960 [ 1012.074758][T19759] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1012.080025][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.085709][T19759] ? hfs_bnode_read.part.0+0x16b/0x5d0 [ 1012.091299][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.096978][T19759] ? const_folio_flags+0x5b/0x100 [ 1012.102056][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.107731][T19759] ? folio_mark_accessed+0xc1/0xc00 [ 1012.112988][T19759] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1012.118780][T19759] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1012.125132][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.130850][T19759] ? _raw_spin_unlock+0x28/0x50 [ 1012.135734][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.141419][T19759] ? hfs_bnode_put+0x20c/0x460 [ 1012.146202][T19759] hfs_brec_insert+0x8b1/0xc40 [ 1012.151040][T19759] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1012.156367][T19759] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1012.161452][T19759] __hfs_ext_write_extent+0x3fa/0x520 [ 1012.166856][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.172707][T19759] hfs_ext_write_extent+0x1b5/0x1f0 [ 1012.177951][T19759] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1012.183700][T19759] ? blk_finish_plug+0x16/0xa0 [ 1012.188511][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.194171][T19759] ? mpage_writepages+0x159/0x1c0 [ 1012.199253][T19759] ? __pfx_mpage_writepages+0x10/0x10 [ 1012.204679][T19759] hfs_write_inode+0xcc/0xab0 [ 1012.209391][T19759] ? __pfx_hfs_write_inode+0x10/0x10 [ 1012.214728][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1012.219708][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.225386][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1012.230388][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.236068][T19759] __writeback_single_inode+0xb3e/0xfb0 [ 1012.241661][T19759] ? __pfx___writeback_single_inode+0x10/0x10 [ 1012.247835][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.253505][T19759] ? do_raw_spin_unlock+0x172/0x230 [ 1012.258765][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.264427][T19759] writeback_sb_inodes+0x60d/0xfa0 [ 1012.269593][T19759] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1012.275277][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.280951][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.285765][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.291457][T19759] ? queue_io+0x3f6/0x520 [ 1012.295818][T19759] wb_writeback+0x419/0xb70 [ 1012.300418][T19759] ? __pfx_wb_writeback+0x10/0x10 [ 1012.305492][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.311199][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.316857][T19759] ? mark_held_locks+0x49/0x80 [ 1012.321726][T19759] wb_workfn+0x14d/0xbe0 [ 1012.325977][T19759] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1012.331845][T19759] ? __pfx_wb_workfn+0x10/0x10 [ 1012.336656][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.342333][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.348044][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.353711][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.358529][T19759] process_one_work+0x9cf/0x1b70 [ 1012.363498][T19759] ? __pfx_process_one_work+0x10/0x10 [ 1012.368941][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.374598][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.380291][T19759] ? assign_work+0x1a0/0x250 [ 1012.384919][T19759] worker_thread+0x6c8/0xf10 [ 1012.389557][T19759] ? __pfx_worker_thread+0x10/0x10 [ 1012.394694][T19759] kthread+0x3c5/0x780 [ 1012.398796][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.403428][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.409146][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.413959][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.418666][T19759] ret_from_fork+0x56d/0x730 [ 1012.423289][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.428053][T19759] ret_from_fork_asm+0x1a/0x30 [ 1012.432882][T19759] [ 1012.435930][T19759] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1012.443213][T19759] CPU: 0 UID: 0 PID: 19759 Comm: kworker/u8:11 Not tainted syzkaller #0 PREEMPT(full) [ 1012.452851][T19759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1012.462906][T19759] Workqueue: writeback wb_workfn (flush-7:4) [ 1012.469010][T19759] Call Trace: [ 1012.472280][T19759] [ 1012.475202][T19759] dump_stack_lvl+0x3d/0x1f0 [ 1012.479809][T19759] vpanic+0x640/0x6f0 [ 1012.483801][T19759] ? hfs_bnode_create+0x14c/0x5e0 [ 1012.488829][T19759] panic+0xca/0xd0 [ 1012.492560][T19759] ? __pfx_panic+0x10/0x10 [ 1012.496991][T19759] ? check_panic_on_warn+0x1f/0xb0 [ 1012.502120][T19759] check_panic_on_warn+0xab/0xb0 [ 1012.507068][T19759] __warn+0xf6/0x3c0 [ 1012.510970][T19759] ? hfs_bnode_create+0x14c/0x5e0 [ 1012.515998][T19759] report_bug+0x3c3/0x580 [ 1012.520334][T19759] ? hfs_bnode_create+0x14c/0x5e0 [ 1012.525363][T19759] handle_bug+0x184/0x210 [ 1012.529712][T19759] exc_invalid_op+0x17/0x50 [ 1012.534239][T19759] asm_exc_invalid_op+0x1a/0x20 [ 1012.539096][T19759] RIP: 0010:hfs_bnode_create+0x14c/0x5e0 [ 1012.544736][T19759] Code: ea 18 ff 45 39 fc 75 9e e8 51 f0 18 ff 4c 89 f7 e8 b9 ee af 08 e8 44 f0 18 ff 44 89 e6 48 c7 c7 20 c5 8a 8b e8 a5 92 f7 fe 90 <0f> 0b 90 e8 2c f0 18 ff 48 89 d8 48 83 c4 28 5b 5d 41 5c 41 5d 41 [ 1012.564347][T19759] RSP: 0018:ffffc9002037f080 EFLAGS: 00010286 [ 1012.570421][T19759] RAX: 000000000000001f RBX: ffff888030302300 RCX: ffffffff8199c7a9 [ 1012.578395][T19759] RDX: 0000000000000000 RSI: ffffffff819a42d6 RDI: 0000000000000005 [ 1012.586365][T19759] RBP: ffff888053868000 R08: 0000000000000005 R09: 0000000000000000 [ 1012.594332][T19759] R10: 0000000080000000 R11: 77656e203a736668 R12: 0000000000000000 [ 1012.602305][T19759] R13: dffffc0000000000 R14: ffff8880538680e0 R15: 0000000000000000 [ 1012.610284][T19759] ? __wake_up_klogd.part.0+0x99/0xf0 [ 1012.615670][T19759] ? vprintk_emit+0x1e6/0x680 [ 1012.620368][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.626013][T19759] ? hfs_bnode_put+0x20c/0x460 [ 1012.630784][T19759] hfs_bmap_alloc+0x7d7/0x960 [ 1012.635478][T19759] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1012.640680][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.646324][T19759] ? hfs_bnode_read.part.0+0x16b/0x5d0 [ 1012.651807][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.657449][T19759] ? const_folio_flags+0x5b/0x100 [ 1012.662489][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.668133][T19759] ? folio_mark_accessed+0xc1/0xc00 [ 1012.673360][T19759] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1012.679088][T19759] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1012.685425][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.691085][T19759] ? _raw_spin_unlock+0x28/0x50 [ 1012.695960][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.701605][T19759] ? hfs_bnode_put+0x20c/0x460 [ 1012.706380][T19759] hfs_brec_insert+0x8b1/0xc40 [ 1012.711162][T19759] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1012.716452][T19759] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1012.721488][T19759] __hfs_ext_write_extent+0x3fa/0x520 [ 1012.726872][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.732522][T19759] hfs_ext_write_extent+0x1b5/0x1f0 [ 1012.737734][T19759] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1012.743481][T19759] ? blk_finish_plug+0x16/0xa0 [ 1012.748250][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.753910][T19759] ? mpage_writepages+0x159/0x1c0 [ 1012.758979][T19759] ? __pfx_mpage_writepages+0x10/0x10 [ 1012.764381][T19759] hfs_write_inode+0xcc/0xab0 [ 1012.769077][T19759] ? __pfx_hfs_write_inode+0x10/0x10 [ 1012.774385][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1012.779352][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.784997][T19759] ? __lock_acquire+0xb97/0x1ce0 [ 1012.790389][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.796040][T19759] __writeback_single_inode+0xb3e/0xfb0 [ 1012.801613][T19759] ? __pfx___writeback_single_inode+0x10/0x10 [ 1012.807715][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.813357][T19759] ? do_raw_spin_unlock+0x172/0x230 [ 1012.818572][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.824216][T19759] writeback_sb_inodes+0x60d/0xfa0 [ 1012.829351][T19759] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1012.835026][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.840845][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.845629][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.851270][T19759] ? queue_io+0x3f6/0x520 [ 1012.855608][T19759] wb_writeback+0x419/0xb70 [ 1012.860142][T19759] ? __pfx_wb_writeback+0x10/0x10 [ 1012.865189][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.870847][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.876504][T19759] ? mark_held_locks+0x49/0x80 [ 1012.881277][T19759] wb_workfn+0x14d/0xbe0 [ 1012.885547][T19759] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1012.891366][T19759] ? __pfx_wb_workfn+0x10/0x10 [ 1012.896157][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.901812][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.907457][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.913100][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.917885][T19759] process_one_work+0x9cf/0x1b70 [ 1012.922854][T19759] ? __pfx_process_one_work+0x10/0x10 [ 1012.928239][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.933889][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.939531][T19759] ? assign_work+0x1a0/0x250 [ 1012.944132][T19759] worker_thread+0x6c8/0xf10 [ 1012.948746][T19759] ? __pfx_worker_thread+0x10/0x10 [ 1012.953872][T19759] kthread+0x3c5/0x780 [ 1012.957950][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.962548][T19759] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1012.968187][T19759] ? rcu_is_watching+0x12/0xc0 [ 1012.972974][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.977570][T19759] ret_from_fork+0x56d/0x730 [ 1012.982163][T19759] ? __pfx_kthread+0x10/0x10 [ 1012.986762][T19759] ret_from_fork_asm+0x1a/0x30 [ 1012.991555][T19759] [ 1012.994652][T19759] Kernel Offset: disabled [ 1012.998964][T19759] Rebooting in 86400 seconds..